LeakIX - Host 81.28.12.12

Host 81.28.12.12

The Netherlands

Noyan Abr Arvan Co. ( Private Joint Stock)

Software information

nginx nginx

tcp/443 tcp/80

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: nocache.sip.tg
Port: 443
URL: https://nocache.sip.tg

First seen 2024-09-24 16:40
Last seen 2024-11-23 16:14
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dbadec856badec856badec856badec856
```
Found 1 files trough .DS_Store spidering:

/countries
```
  Found on 2024-11-23 16:14
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: nocache.sip.tg
Port: 80
URL: http://nocache.sip.tg

First seen 2024-07-26 16:55
Last seen 2024-11-23 16:14
Open for 119 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dbadec856badec856badec856badec856
```
Found 1 files trough .DS_Store spidering:

/countries
```
  Found on 2024-11-23 16:14
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: realtydriver.ru
Port: 443
URL: https://realtydriver.ru

First seen 2022-08-24 00:34
Last seen 2024-11-23 14:13
Open for 822 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652209dcee67

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@bitbucket.org:hardcode_msk/realtydriver-website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "dev-popov"]
	remote = origin
	merge = refs/heads/dev-popov
[branch "dev"]
	remote = origin
	merge = refs/heads/dev
	vscode-merge-base = origin/master

Found on 2024-11-23 14:13

439 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652284ce2947

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@bitbucket.org:hardcode_msk/realtydriver-website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "dev-popov"]
	remote = origin
	merge = refs/heads/dev-popov
[branch "dev"]
	remote = origin
	merge = refs/heads/dev

Found on 2024-07-26 15:14

404 Bytes

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: npm-registry.clubdrei.com
Port: 443
URL: https://npm-registry.clubdrei.com

First seen 2024-05-25 17:23
Last seen 2024-11-23 00:18
Open for 181 days

Fingerprint: b18befd9dd653682bd555f2abd555f2abd555f2abd555f2abd555f2abd555f2a

{"_id":"config.json","_rev":"20-06a48c50606e9c65b6ed04112ea371ac","name":"config.json","description":"nconf wrapper that simplifies work with environment specific configuration files.","dist-tags":{"latest":"0.0.4"},"versions":{"0.0.1":{"version":"0.0.1","name":"config.json","description":"nconf wrapper that simplifies work with environment specific configuration files.","keywords":["configuration","config","json","nconf","wrapper"],"author":{"name":"Romuald Bulyshko","email":"romuald@bulyshko.com","url":"http://romualdbulyshko.com"},"repository":{"type":"git","url":"https://github.com/bulyshko/config.json"},"bugs":"https://github.com/bulyshko/config.json/issues","main":"./lib/config.js","dependencies":{"nconf":"0.6.7"},"devDependencies":{"mocha":"1.9.0"},"scripts":{"test":"mocha test/*-test.js"},"_id":"config.json@0.0.1","dist":{"shasum":"3b5cf4feedc246e5464de3e3404e084280ff045d","tarball":"https://registry.npmjs.org/config.json/-/config.json-0.0.1.tgz","integrity":"sha512-FSPsWzk2JYowOd/q55LUzNoET2UnRijM6dCxHGu27WEqLiS/AfBf4mt0CW25DxmiCSSAlsErznpgJ5VxK8D+4Q==","signatures":[{"keyid":"SHA256:jl3bwswu80PjjokCgh0o2w5c2U4LhQAE57gj9cz1kzA","sig":"MEYCIQCWF48yPMURQ+pmK8MvklWdtZS50m72uDPfYV50eJyy/gIhAPuQsZfFEd+sFJ+oZIkh3xh5jyR53nIALpGLYXeHzbrD"}]},"_from":".","_npmVersion":"1.2.17","_npmUser":{"name":"bulyshko","email":"romuald@bulyshko.com"},"maintainers":[{"name":"bulyshko","email":"romuald@bulyshko.com"}],"directories":{},"deprecated":"Package no longer supported. Contact Support at https://www.npmjs.com/support for more info."},"0.0.2":{"version":"0.0.2","name":"config.json","description":"nconf wrapper that simplifies work with environment specific configuration files.","keywords":["configuration","config","json","nconf","wrapper"],"author":{"name":"Romuald Bulyshko","email":"romuald@bulyshko.com","url":"http://romualdbulyshko.com"},"repository":{"type":"git","url":"https://github.com/bulyshko/config.json"},"bugs":{"url":"https://github.com/bulyshko/config.json/issues"},"main":"./lib/config.js","dependencies":{"nconf":"~0.6.9"},"devDependencies":{"mocha":"~1.17.1"},"scripts":{"test":"mocha test/*-test.js"},"homepage":"https://github.com/bulyshko/config.json","_id":"config.json@0.0.2","dist":{"shasum":"9c446cbba8f234d95b003c8fa812772fdc69b3ca","tarball":"https://registry.npmjs.org/config.json/-/config.json-0.0.2.tgz","integrity":"sha512-/Rujn+/J9X1snDBg22Grux5tQqEo7/yEUMaqWLVMlSvNmXWcbUzbVnXVh2PUpP0wHPX/p+19ltRAEME/wOnSKQ==","signatures":[{"keyid":"SHA256:jl3bwswu80PjjokCgh0o2w5c2U4LhQAE57gj9cz1kzA","sig":"MEUCIAni+iD8gse0uCxV+zuJvaIq5BeO79EOdGe35A+uxYBrAiEAlUgqUFaF90EM347Dx6UdXF1s0F//1cpeU4hvgBrvgzc="}]},"_from":".","_npmVersion":"1.3.21","_npmUser":{"name":"bulyshko","email":"romuald@bulyshko.com"},"maintainers":[{"name":"bulyshko","email":"romuald@bulyshko.com"}],"directories":{},"deprecated":"Package no longer supported. Contact Support at https://www.npmjs.com/support for more info."},"0.0.3":{"version":"0.0.3","name":"config.json","description":"nconf wrapper that simplifies work with environment specific configuration files.","keywords":["configuration","config","json","nconf","wrapper"],"author":{"name":"Romuald Bulyshko","email":"romuald@bulyshko.com","url":"http://romualdbulyshko.com"},"repository":{"type":"git","url":"https://github.com/bulyshko/config.json"},"bugs":{"url":"https://github.com/bulyshko/config.json/issues"},"main":"./lib/config.js","dependencies":{"nconf":"0.6.9"},"devDependencies":{"mocha":"1.18.2"},"scripts":{"test":"mocha test/*-test.js"},"homepage":"https://github.com/bulyshko/config.json","_id":"config.json@0.0.3","dist":{"shasum":"5a12471f3166b505e2df7a9d1bc8372cadd24e67","tarball":"https://registry.npmjs.org/config.json/-/config.json-0.0.3.tgz","integrity":"sha512-vMP8dmpjdKQXICoA8gBtKda0izaz50HK/d9sFcu6Nbis90kXGInbMhq9CxdPzo0OjptHyIYx0w+mXqPLlAOD4w==","signatures":[{"keyid":"SHA256:jl3bwswu80PjjokCgh0o2w5c2U4LhQAE57gj9cz1kzA","sig":"MEUCIEiyjZSuJqRuEtkOjxPeoMNcIaBv61ytOANOLVHTRjztAiEA6z/c5cuUFx6xuEQvopvBPXbMuWAt2DHrvDN6aNBYh/o="}]},"_from":".","_npmVersion":"1.4.3","_npmUser":{"name":"bulyshko","email":"romuald@bulyshko.com"},"maintainers":[{"name":"bulyshko","email":"romuald@bulyshko.com"}],"directories":{},"deprecated":"Package no longer supported. Contact Support at https://www.npmjs.com/support for more info."},"0.0.4":{"version":"0.0.4","name":"config.json","description":"nconf wrapper that simplifies work with environment specific configuration files.","keywords":["configuration","config","json","nconf","wrapper"],"author":{"name":"Romuald Bulyshko","email":"romuald@bulyshko.com","url":"https://bulyshko.com"},"repository":{"type":"git","url":"https://github.com/bulyshko/config.json"},"bugs":{"url":"https://github.com/bulyshko/config.json/issues"},"main":"./lib/config.js","dependencies":{"nconf":"0.7.1"},"devDependencies":{"mocha":"2.2.1"},"scripts":{"test":"mocha test/*-test.js"},"gitHead":"f5f578629cb7e0cdc6fd0b3a5786cd7a2e7b6dba","homepage":"https://github.com/bulyshko/config.json","_id":"config.json@0.0.4","_shasum":"dc0250105dd984888c0372b2f4cabbd8a2fd1afb","_from":".","_npmVersion":"2.0.0-beta.0","_npmUser":{"name":"bulyshko","email":"romuald@bulyshko.com"},"maintainers":[{"name":"bulyshko","email":"romuald@bulyshko.com"}],"dist":{"shasum":"dc0250105dd984888c0372b2f4cabbd8a2fd1afb","tarball":"https://registry.npmjs.org/config.json/-/config.json-0.0.4.tgz","integrity":"sha512-+DLkKk1/j13Pn1ZH2306KcI5aMrvbXNXFW1eWxYqjFuZaUfw1pszolMo/wnc43kxakidJNbjwcrrudFATAYFdQ==","signatures":[{"keyid":"SHA256:jl3bwswu80PjjokCgh0o2w5c2U4LhQAE57gj9cz1kzA","sig":"MEQCIA/W4BSbjyxr+wV/azYmYJvcDz280Hd2/gFArpLrkmO6AiB1pPAq8O4baNiOkRLyh99fOn80DwWH8C7dpiBGd+OjpQ=="}]},"directories":{},"deprecated":"Package no longer supported. Contact Support at https://www.npmjs.com/support for more info."}},"readme":"# config.json\n\n[nconf][nconf] wrapper that simplifies work\nwith environment specific configuration files.\n\n[![Build Status][build]][travis] [![Dependency Status][dependency]][david]\n\n**config.json** is easy to use; it:\n\n- loads the default configuration file;\n- loads environment specific configuration file and overrides defaults;\n\nand then:\n\n- uses environment variables;\n- and command-line arguments to override data from configuration files.\n\n## Installation\n\n```\nnpm install config.json\n```\n\n## Usage\n\nThe top-level of `config.json` is a function that loads configuration file with the given `filepath`.\n\n### Create default configuration file\n\n```\nvi sample.json\n```\n\n```json\n{\n  \"domain\": \"www.example.com\",\n  \"mongodb\": {\n    \"host\": \"localhost\",\n    \"port\": 27017\n  }\n}\n```\n\n### Create environment specific configuration file\n\n```\nvi sample.development.json\n```\n\n```json\n{\n  \"domain\": \"dev.example.com\"\n}\n```\n\n**Note:** Environment specific configuration files should be in the same directory as the default one.\n\n### Test config.json in action\n\n```\nvi sample.js\n```\n\n```js\nvar config = require('config.json')('./sample.json');\n\nconsole.log(\"domain:\", config.domain);\nconsole.log(\"mongodb:\\n\",\n  \"host:\", config.mongodb.host, \"\\n\",\n  \"port:\", config.mongodb.port);\n```\n\nRun the above script:\n\n```\nNODE_ENV=development node ./sample.js --mongodb:host \"dharma.mongohq.com\" --mongodb:port 10065\n```\n\nThe output will be:\n\n```\ndomain: dev.example.com\nmongodb:\n host: dharma.mongohq.com\n port: 10065\n```\n\n### Load configuration for the specific environment\n\nEnvironment can be set by passing `env` argument:\n\n```js\nvar developmentConfig = require('config.json')('./sample.json', 'development');\nvar productionConfig = require('config.json')('./sample.json', 'production');\n```\n\n### One more thing...\n\n`filepath` can be empty if your configuration file is in the current working directory of the process and is called **config.json**.\n\n## License\n\nReleased under the [MIT license][license].\n\n[nconf]:https://github.com/flatiron/nconf\n[license]:https://raw.github.com/bulyshko/config.json/master/LICENSE\n[build]:https://travis-ci.org/bulyshko/config.json.svg?branch=master\n[travis]:https://travis-ci.org/bulyshko/config.json\n[dependency]:https://david-dm.org/bulyshko/config.json.svg?theme=shields.io\n[david]:https://david-dm.org/bulyshko/config.json\n","maintainers":[{"name":"bulyshko","email":"romuald@bulyshko.com"}],"time":{"modified":"2022-08-28T08:46:02.296Z","created":"2013-04-05T20:03:34.240Z","0.0.1":"2013-04-05T20:03:37.972Z","0.0.2":"2014-01-29T13:40:21.204Z","0.0.3":"2014-04-01T05:03:40.165Z","0.0.4":"2015-03-21T10:13:46.277Z"},"author":{"name":"Romuald Bulyshko","email":"romuald@bulyshko.com","url":"https://bulyshko.com"},"repository":{"type":"git","url":"https://github.com/bulyshko/config.json"},"readmeFilename":"README.md","homepage":"https://github.com/bulyshko/config.json","keywords":["configuration","config","json","nconf","wrapper"],"bugs":{"url":"https://github.com/bulyshko/config.json/issues"},"users":{"bingeboy":true,"mseminatore":true,"rbiffle":true,"hyloque":true,"gpuente":true,"yonier":true,"foropeza":true,"kipty":true}}

Found on 2024-11-23 00:18

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

This information can be very useful if the application is sent sensitive information as GET requests. If you monitor this page you might be able to find CSRF tokens, API keys, hidden paths, and other sensitive information being sent to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: cdn.woodys-burger.hu
Port: 443
URL: https://cdn.woodys-burger.hu

First seen 2024-10-16 15:14
Last seen 2024-11-22 23:38
Open for 37 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f7979100f7979100f4d01916

Apache Status

Apache Server Status for img.woodysburger.hu (via 192.168.1.2)

Server Version: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4
Server MPM: WinNT
Apache Lounge VS16 Server built: Mar  7 2023 13:21:03

Current Time: Saturday, 23-Nov-2024 00:38:29 Central Europe Standard Time
Restart Time: Monday, 04-Nov-2024 04:36:44 Central Europe Standard Time
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  18 days 20 hours 1 minute 45 seconds
Server load: -1.00 -1.00 -1.00
Total accesses: 93290 - Total Traffic: 52.6 GB - Total Duration: 51072005
.0573 requests/sec - 33.9 kB/second - 0.6 MB/request - 547.454 ms/request
7 requests currently being processed, 143 idle workers
________________________________________________________________
____________K___KK__K_____________WKK___________________________
______________________
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMSSReqDurConnChildSlotClientProtocolVHostRequest

0-073240/550/550_
1415550103820.01.321.32
172.71.210.114http/1.1img.woodysburger.hu:443GET /test/wp-includes/wlwmanifest.xml HTTP/1.1

0-073240/4785/4785_
16152032169620.06027.466027.46
89.134.14.170http/1.1stream.williwish.hu:80GET / HTTP/1.1

0-073240/3688/3688_
234976080073430.01502.661502.66
172.71.126.214http/1.1www.notionsystem.hu:443GET /_phpmyadmin_/index.php?lang=en HTTP/1.1

0-073240/2589/2589_
14155802214180.0170.11170.11
172.68.225.200http/1.1img.woodysburger.hu:80GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1

0-073241/3359/3359K
0019496580.34821.234821.23
172.71.103.99http/1.1img.woodysburger.hu:443GET /v2/_catalog HTTP/1.1

0-073240/382/382_
2349780287060.02.072.07
51.83.72.125http/1.1rp.notionrp.hu:80GET /sql/php-myadmin/index.php?lang=en HTTP/1.1

0-073240/1787/1787_
234978032051660.0596.93596.93
51.83.72.125http/1.1rp.notionrp.hu:80GET /phpmyadmin2020/index.php?lang=en HTTP/1.1

0-073240/3408/3408_
23497804728370.01094.971094.97
172.71.134.215http/1.1www.notionsystem.hu:443GET /pma/index.php?lang=en HTTP/1.1

0-073242/987/987K
001143690.6327.20327.20
172.71.182.179http/1.1img.woodysburger.hu:443GET /.vscode/sftp.json HTTP/1.1

0-073241/3550/3550K
018150760.31532.211532.21
172.71.99.67http/1.1img.woodysburger.hu:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-073240/959/959_
1415580540490.02.652.65
162.158.178.66http/1.1rp.notionrp.hu:80GET /2020/wp-includes/wlwmanifest.xml HTTP/1.1

0-073240/2429/2429_
2349770507420.023.8823.88
172.71.126.231http/1.1www.notionsystem.hu:443GET /phpmyadmin2020/index.php?lang=en HTTP/1.1

0-073242/1424/1424K
00310390.6337.15337.15
172.71.182.248http/1.1img.woodysburger.hu:443GET /debug/default/view?panel=config HTTP/1.1

0-073240/948/948_
2349770182540.02.762.76
51.83.72.125http/1.1rp.notionrp.hu:80GET /phpMyAdmin2/index.php?lang=en HTTP/1.1

0-073240/2178/2178_
14156001619840.087.4687.46
172.68.225.86http/1.1img.woodysburger.hu:80GET /2021/wp-includes/wlwmanifest.xml HTTP/1.1

0-073240/2515/2515_
2349760164523000.018875.9018875.90
172.71.123.52http/1.1www.notionsystem.hu:443GET /phpMyAdmin-5/index.php?lang=en HTTP/1.1

0-073240/1382/1382_
2349760261530.03.623.62
51.83.72.125http/1.1rp.notionrp.hu:80GET /_phpmyadmin_/index.php?lang=en HTTP/1.1

0-073240/2447/2447_
14155602258720.0273.45273.45
172.71.210.114http/1.1img.woodysburger.hu:80GET /test/wp-includes/wlwmanifest.xml HTTP/1.1

0-073240/386/386_
217113086990.00.700.70
179.43.189.138http/1.1pekrokut.hu:443GET /prestashop/.git/config HTTP/1.1

0-073240/3064/3064_
1415570572930.08.218.21
162.158.114.157http/1.1rp.notionrp.hu:80GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1

0-073240/1732/1732_
14155603194410.0810.60810.60
172.71.218.62http/1.1gcdnapiv4.woodysburger.hu:443GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1

0-073240/2504/2504_
104279096710.022.2022.20
89.134.14.170http/1.1stream.notionsystem.hu:80GET /socket?api_key=7bd4f01016224958aea876f07010c3f9&deviceId=T

0-073240/364/364_
23497804320.00.710.71
51.83.72.125http/1.1rp.notionrp.hu:80GET /sql/phpmanager/index.php?lang=en HTTP/1.1

0-073240/2130/2130_
14155401611380.063.8563.85
172.71.215.203http/1.1img.woodysburger.hu:443GET /site/wp-includes/wlwmanifest.xml HTTP/1.1

0-073240/1562/1562_
234977035650.04.114.11
51.83.72.125http/1.1rp.notionrp.hu:80GET /mysqlmanager/index.php?lang=en HTTP/1.1

0-073240/2954/2954_
154963000147325970.072.7572.75
192.168.1.1http/1.1stream.notionsystem.hu:80GET /Videos/47d298a7-0447-b10c-2b17-a29e23c51f5a/47d298a70447b1

0-073240/1434/1434W
006888290.0967.68967.68
172.71.99.141http/1.1img.woodysburger.hu:443GET /server-status HTTP/1.1

0-073241/3174/3174K
002807710.33770.523770.52
172.71.183.43http/1.1img.woodysburger.hu:443GET /server HTTP/1.1

0-073241/3862/3862K
001859370.31815.461815.46
172.71.99.221http/1.1img.woodysburger.hu:443GET /about HTTP/1.1

0-073240/1633/1633_
234976159080.03.713.71
141.101.68.106http/1.1www.notionsystem.hu:443GET /phpmyadmin2018/index.php?lang=en HTTP/1.1

0-073240/849/849_
234977074310.02.992.99
51.83.72.125http/1.1rp.notionrp.hu:80GET /phpMyAdmin-5/index.php?lang=en HTTP/1.1

0-073240/1366/1366_
234976032830.02.362.36
141.101.95.108http/1.1www.notionsystem.hu:443GET /phpMyAdmin6.0/index.php?lang=en HTTP/1.1

0-073240/969/969_
104278036180.03.133.13
89.134.14.170http/1.1stream.williwish.hu:80GET / HTTP/1.1

0-073240/1339/1339_
2171130110930.0109.93109.93
179.43.189.138http/1.1pekrokut.hu:443GET /dist/.git/config HTTP/1.1

0-073240/1293/1293_
234977140740.02.652.65
172.71.130.73http/1.1www.notionsystem.hu:443GET /mysqlmanager/index.php?lang=en HTTP/1.1

0-073240/2069/2069_
234976043480.010.8410.84
51.83.72.125http/1.1rp.notionrp.hu:80GET /phpmyadmin2018/index.php?lang=en HTTP/1.1

0-073240/8/8_
234978060.00.000.00
141.101.68.195http/1.1www.notionsystem.hu:443GET /sql/php-myadmin/index.php?lang=en HTTP/1.1

0-073240/1053/1053_
2349760105210.03.503.50
51.83.72.125http/1.1rp.notionrp.hu:80GET /phpmyadmin4/index.php?lang=en HTTP/1.1

0-073240/971/971_
234975063100.03.093.09
51.83.72.125http/1.1rp.notionrp.hu:80GET /admin/phpMyAdmin/index.php?lang=en HTTP/1.1

0-073240/1070/1070_
23497803485890.02666.432666.43
172.71.134.228http/1.1www.notionsystem.hu:443GET /sql/phpmanager/index.php?lang=en HTTP/1.1

0-073240/1504/1504_
2349760950960.0632.71632.71
51.83.72.125http/1.1rp.notionrp.hu:80GET /phpMyAdmin6.0/index.php?lang=en HTTP/1.1

0-073240/44/44_
15085840510.00.130.13
172.70.47.50http/1.1notionsystem.hu:443GET /etc/ssl/private/server.key HTTP/1.1

0-073240/490/490_
2349781786930.0710.83710.83
172.71.118.207http/1.1www.notionsystem.hu:443GET /phpMyAdmin-5.2/index.php?lang=en HTTP/1.1

0-073240/134/134_
1508584011440.00.730.73
172.71.183.113http/1.1notionsystem.hu:443GET /.ssh/id_ed25519 HTTP/1.1

0-073240/216/216_
15085840123510.00.980.98
172.71.182.203http/1.1notionsystem.hu:443GET /config.json HTTP/1.1

0-073240/2773/2773_
234977024289870.01419.971419.97
51.83.72.125http/1.1rp.notionrp.hu:80GET /phpMyAdmin3/index.php?lang=en HTTP/1.1

0-073240/664/664_
234977059181040.01994.831994.83
172.71.130.25http/1.1www.notionsystem.hu:443GET /phpMyAdmin2/index.php?lang=en HTTP/1.1

0-073240/727/727_
15085840352810.096.4696.46
172.71.103.7http/1.1notionsystem.hu:443GET /config.xml HTTP/1.1

0-073240/87/87_
150858401110.00.230.23
172.71.182.202http/1.1notionsystem.hu:443GET /wp-admin/setup-config.php HTTP/1.1

0-073240/57/57_
15085840980.00.080.08
172.70.46.243http/1.1notionsystem.hu:443GET /.vscode/sftp.json HTTP/1.1

0-073240/1343/1343_
2349780617990.0180.53180.53
51.83.72.125http/1.1

Found on 2024-11-22 23:38

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f7979100f7979100f17666dd

Apache Status

Apache Server Status for img.woodysburger.hu (via 192.168.1.2)

Server Version: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4
Server MPM: WinNT
Apache Lounge VS16 Server built: Mar  7 2023 13:21:03

Current Time: Thursday, 21-Nov-2024 03:18:27 Central Europe Standard Time
Restart Time: Monday, 04-Nov-2024 04:36:44 Central Europe Standard Time
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  16 days 22 hours 41 minutes 42 seconds
Server load: -1.00 -1.00 -1.00
Total accesses: 81927 - Total Traffic: 39.9 GB - Total Duration: 48778929
.056 requests/sec - 28.6 kB/second - 511.0 kB/request - 595.395 ms/request
9 requests currently being processed, 141 idle workers
________________________________________________________________
_________K_WK_____K___K____K_______KK___K_______________________
______________________
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMSSReqDurConnChildSlotClientProtocolVHostRequest

0-073240/448/448_
539100100080.01.041.04
179.43.189.138http/1.1pekrokut.hu:443GET /extensions/.git/config HTTP/1.1

0-073241/3181/3181K
1030041430.33460.343460.34
172.70.47.132http/1.1img.woodysburger.hu:443GET /server HTTP/1.1

0-073240/3688/3688_
71774080073430.01502.661502.66
172.71.126.214http/1.1www.notionsystem.hu:443GET /_phpmyadmin_/index.php?lang=en HTTP/1.1

0-073240/2585/2585W
002214140.0170.09170.09
172.71.99.151http/1.1img.woodysburger.hu:443GET /server-status HTTP/1.1

0-073241/2240/2240K
1317800680.32179.412179.41
172.71.183.100http/1.1img.woodysburger.hu:443GET / HTTP/1.1

0-073240/382/382_
717760287060.02.072.07
51.83.72.125http/1.1rp.notionrp.hu:80GET /sql/php-myadmin/index.php?lang=en HTTP/1.1

0-073240/1787/1787_
71775032051660.0596.93596.93
51.83.72.125http/1.1rp.notionrp.hu:80GET /phpmyadmin2020/index.php?lang=en HTTP/1.1

0-073240/3408/3408_
7177604728370.01094.971094.97
172.71.134.215http/1.1www.notionsystem.hu:443GET /pma/index.php?lang=en HTTP/1.1

0-073240/115/115_
4261201840.00.350.35
162.158.79.36http/1.1woodysburger.hu:80HEAD /wp-includes/ HTTP/1.1

0-073240/2334/2334_
5391007427290.0915.13915.13
179.43.189.138http/1.1pekrokut.hu:443GET /node_modules/.git/config HTTP/1.1

0-073241/957/957K
00540490.32.652.65
172.71.103.47http/1.1img.woodysburger.hu:443GET /debug/default/view?panel=config HTTP/1.1

0-073240/2429/2429_
717750507420.023.8823.88
172.71.126.231http/1.1www.notionsystem.hu:443GET /phpmyadmin2020/index.php?lang=en HTTP/1.1

0-073240/496/496_
53910037530.01.821.82
179.43.189.138http/1.1pekrokut.hu:443GET /template/.git/config HTTP/1.1

0-073240/948/948_
717740182540.02.762.76
51.83.72.125http/1.1rp.notionrp.hu:80GET /phpMyAdmin2/index.php?lang=en HTTP/1.1

0-073241/2176/2176K
131619840.387.4687.46
172.70.46.81http/1.1img.woodysburger.hu:443GET / HTTP/1.1

0-073240/2515/2515_
717740164523000.018875.9018875.90
172.71.123.52http/1.1www.notionsystem.hu:443GET /phpMyAdmin-5/index.php?lang=en HTTP/1.1

0-073240/1382/1382_
717740261530.03.623.62
51.83.72.125http/1.1rp.notionrp.hu:80GET /_phpmyadmin_/index.php?lang=en HTTP/1.1

0-073240/2444/2444_
5391002258710.0273.45273.45
179.43.189.138http/1.1pekrokut.hu:443GET /docs/.git/config HTTP/1.1

0-073240/386/386_
53910086990.00.700.70
179.43.189.138http/1.1pekrokut.hu:443GET /prestashop/.git/config HTTP/1.1

0-073241/3061/3061K
00572930.38.218.21
172.71.99.211http/1.1img.woodysburger.hu:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-073240/1728/1728_
5391003194370.0810.59810.59
179.43.189.138http/1.1pekrokut.hu:443GET /wp-content/.git/config HTTP/1.1

0-073240/2497/2497_
53910196610.022.2022.20
179.43.189.138http/1.1pekrokut.hu:443GET /uploads/.git/config HTTP/1.1

0-073240/364/364_
7177504320.00.710.71
51.83.72.125http/1.1rp.notionrp.hu:80GET /sql/phpmanager/index.php?lang=en HTTP/1.1

0-073240/2129/2129_
5391001611380.063.8563.85
179.43.189.138http/1.1pekrokut.hu:443GET /themes/.git/config HTTP/1.1

0-073240/1562/1562_
71775035650.04.114.11
51.83.72.125http/1.1rp.notionrp.hu:80GET /mysqlmanager/index.php?lang=en HTTP/1.1

0-073240/2644/2644_
5391001123200.060.3960.39
179.43.189.138http/1.1pekrokut.hu:443GET /plugins/.git/config HTTP/1.1

0-073240/28/28_
539100270.00.070.07
179.43.189.138http/1.1pekrokut.hu:443GET /env/.git/config HTTP/1.1

0-073241/721/721K
00117640.36.566.56
172.71.183.151http/1.1img.woodysburger.hu:443GET /about HTTP/1.1

0-073241/2725/2725K
00678350.319.1719.17
172.71.99.89http/1.1img.woodysburger.hu:443GET /.vscode/sftp.json HTTP/1.1

0-073240/1633/1633_
71774159080.03.713.71
141.101.68.106http/1.1www.notionsystem.hu:443GET /phpmyadmin2018/index.php?lang=en HTTP/1.1

0-073240/849/849_
71774074310.02.992.99
51.83.72.125http/1.1rp.notionrp.hu:80GET /phpMyAdmin-5/index.php?lang=en HTTP/1.1

0-073240/1366/1366_
71773032830.02.362.36
141.101.95.108http/1.1www.notionsystem.hu:443GET /phpMyAdmin6.0/index.php?lang=en HTTP/1.1

0-073241/779/779K
0033510.32.832.83
172.71.182.23http/1.1img.woodysburger.hu:443GET /v2/_catalog HTTP/1.1

0-073240/1339/1339_
539100110930.0109.93109.93
179.43.189.138http/1.1pekrokut.hu:443GET /dist/.git/config HTTP/1.1

0-073240/1293/1293_
71775140740.02.652.65
172.71.130.73http/1.1www.notionsystem.hu:443GET /mysqlmanager/index.php?lang=en HTTP/1.1

0-073240/2069/2069_
71774043480.010.8410.84
51.83.72.125http/1.1rp.notionrp.hu:80GET /phpmyadmin2018/index.php?lang=en HTTP/1.1

0-073240/8/8_
71776060.00.000.00
141.101.68.195http/1.1www.notionsystem.hu:443GET /sql/php-myadmin/index.php?lang=en HTTP/1.1

0-073240/1053/1053_
717740105210.03.503.50
51.83.72.125http/1.1rp.notionrp.hu:80GET /phpmyadmin4/index.php?lang=en HTTP/1.1

0-073240/971/971_
71773063100.03.093.09
51.83.72.125http/1.1rp.notionrp.hu:80GET /admin/phpMyAdmin/index.php?lang=en HTTP/1.1

0-073240/1070/1070_
7177503485890.02666.432666.43
172.71.134.228http/1.1www.notionsystem.hu:443GET /sql/phpmanager/index.php?lang=en HTTP/1.1

0-073240/1504/1504_
717730950960.0632.71632.71
51.83.72.125http/1.1rp.notionrp.hu:80GET /phpMyAdmin6.0/index.php?lang=en HTTP/1.1

0-073240/44/44_
13453810510.00.130.13
172.70.47.50http/1.1notionsystem.hu:443GET /etc/ssl/private/server.key HTTP/1.1

0-073240/490/490_
717751786930.0710.83710.83
172.71.118.207http/1.1www.notionsystem.hu:443GET /phpMyAdmin-5.2/index.php?lang=en HTTP/1.1

0-073240/134/134_
1345381011440.00.730.73
172.71.183.113http/1.1notionsystem.hu:443GET /.ssh/id_ed25519 HTTP/1.1

0-073240/216/216_
13453810123510.00.980.98
172.71.182.203http/1.1notionsystem.hu:443GET /config.json HTTP/1.1

0-073240/2773/2773_
71775024289870.01419.971419.97
51.83.72.125http/1.1rp.notionrp.hu:80GET /phpMyAdmin3/index.php?lang=en HTTP/1.1

0-073240/664/664_
71774059181040.01994.831994.83
172.71.130.25http/1.1www.notionsystem.hu:443GET /phpMyAdmin2/index.php?lang=en HTTP/1.1

0-073240/727/727_
13453810352810.096.4696.46
172.71.103.7http/1.1notionsystem.hu:443GET /config.xml HTTP/1.1

0-073240/87/87_
134538101110.00.230.23
172.71.182.202http/1.1notionsystem.hu:443GET /wp-admin/setup-config.php HTTP/1.1

0-073240/57/57_
13453810980.00.080.08
172.70.46.243http/1.1notionsystem.hu:443GET /.vscode/sftp.json HTTP/1.1

0-073240/1343/1343_
717750617990.0180.53180.53
51.83.72.125http/1.1rp.notionrp.hu:80GET /phpMyAdmin-5.2/index.php?lang=en HTTP/1.1

0-073240/459/459_
13453810845630.0294.01294.01
172.71.182.116http/1.1notionsystem.hu:443<

Found on 2024-11-21 02:18

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f7979100f7979100ea8c1f83

Apache Status

Apache Server Status for img.woodysburger.hu (via 192.168.1.2)

Server Version: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4
Server MPM: WinNT
Apache Lounge VS16 Server built: Mar  7 2023 13:21:03

Current Time: Monday, 18-Nov-2024 17:20:09 Central Europe Standard Time
Restart Time: Monday, 04-Nov-2024 04:36:44 Central Europe Standard Time
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  14 days 12 hours 43 minutes 25 seconds
Server load: -1.00 -1.00 -1.00
Total accesses: 71496 - Total Traffic: 39.9 GB - Total Duration: 48664058
.057 requests/sec - 33.3 kB/second - 0.6 MB/request - 680.654 ms/request
7 requests currently being processed, 143 idle workers
________________________________________________________________
_________________W_K____________K______K_KK___C_________________
______________________
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMSSReqDurConnChildSlotClientProtocolVHostRequest

0-073240/440/440_
6105370100060.01.031.03
38.242.130.24http/1.1rp.notionrp.hu:80GET /phpmyadmin2022/index.php?lang=en HTTP/1.1

0-073240/2551/2551_
223376029922280.03459.203459.20
172.71.118.187http/1.1img.woodysburger.hu:443GET /images../.git/config HTTP/1.1

0-073240/3671/3671_
223376080073310.01502.661502.66
172.71.164.103http/1.1img.woodysburger.hu:443GET /wp-content/.git/config HTTP/1.1

0-073240/2377/2377_
8322012210860.0169.81169.81
178.33.224.212http/1.1play.notionrp.hu:443GET /players.json HTTP/1.1

0-073240/1761/1761_
223376017734700.02178.442178.44
172.68.194.181http/1.1img.woodysburger.hu:443GET /backend/.git/config HTTP/1.1

0-073240/378/378_
6105360287030.02.072.07
38.242.130.24http/1.1rp.notionrp.hu:80GET /administrator/phpMyAdmin/index.php?lang=en HTTP/1.1

0-073240/1281/1281_
223376132045380.0595.95595.95
172.71.119.72http/1.1img.woodysburger.hu:443GET /extensions/.git/config HTTP/1.1

0-073240/3404/3404_
22337604728370.01094.971094.97
162.158.110.234http/1.1img.woodysburger.hu:443GET /media/uploads/.git/config HTTP/1.1

0-073240/20/20_
6105370360.00.170.17
38.242.130.24http/1.1rp.notionrp.hu:80GET /program/index.php?lang=en HTTP/1.1

0-073240/2210/2210W
007426130.0914.94914.94
172.71.154.120http/1.1img.woodysburger.hu:443GET /server-status HTTP/1.1

0-073240/439/439_
6105360476780.01.601.60
38.242.130.24http/1.1rp.notionrp.hu:80GET /mysql/dbadmin/index.php?lang=en HTTP/1.1

0-073241/2359/2359K
20507100.323.8523.85
172.71.158.187http/1.1img.woodysburger.hu:443GET /about HTTP/1.1

0-073240/489/489_
610536037490.01.821.82
38.242.130.24http/1.1rp.notionrp.hu:80GET /admin/db/index.php?lang=en HTTP/1.1

0-073240/865/865_
2233760181800.02.682.68
162.158.110.168http/1.1img.woodysburger.hu:443GET /resources/.git/config HTTP/1.1

0-073240/1783/1783_
61053701240380.086.8486.84
38.242.130.24http/1.1rp.notionrp.hu:80GET /sql/phpMyAdmin2/index.php?lang=en HTTP/1.1

0-073240/2508/2508_
2233760164522900.018875.9018875.90
172.68.193.169http/1.1img.woodysburger.hu:443GET /layout/.git/config HTTP/1.1

0-073240/1070/1070_
832710250950.02.812.81
141.94.203.6http/1.1play.notionrp.hu:443GET //players.json HTTP/1.1

0-073240/2437/2437_
22337602258710.0273.45273.45
172.71.164.136http/1.1img.woodysburger.hu:443GET /assets../.git/config HTTP/1.1

0-073240/379/379_
610537086950.00.700.70
38.242.130.24http/1.1rp.notionrp.hu:80GET /sql/sql/index.php?lang=en HTTP/1.1

0-073240/3035/3035_
2233760572780.08.168.16
172.71.148.75http/1.1img.woodysburger.hu:443GET /panel/.git/config HTTP/1.1

0-073240/1721/1721_
22337603194350.0810.59810.59
172.71.148.140http/1.1img.woodysburger.hu:443GET /app/.git/config HTTP/1.1

0-073240/2489/2489_
223376196500.022.1922.19
172.69.225.227http/1.1img.woodysburger.hu:443GET /source/.git/config HTTP/1.1

0-073240/360/360_
61053704290.00.710.71
38.242.130.24http/1.1rp.notionrp.hu:80GET /phpMyAdmin-3/index.php?lang=en HTTP/1.1

0-073240/2121/2121_
22337601611370.063.8563.85
172.71.148.119http/1.1img.woodysburger.hu:443GET /files/.git/config HTTP/1.1

0-073241/1160/1160K
1030080.33.363.36
172.69.23.112http/1.1img.woodysburger.hu:443GET /v2/_catalog HTTP/1.1

0-073240/2225/2225_
22337611106100.059.4759.47
172.70.247.80http/1.1img.woodysburger.hu:443GET /lib../.git/config HTTP/1.1

0-073240/4/4_
610536140.00.000.00
38.242.130.24http/1.1rp.notionrp.hu:80GET /admin/sqladmin/index.php?lang=en HTTP/1.1

0-073240/4/4_
610536040.00.000.00
38.242.130.24http/1.1rp.notionrp.hu:80GET /phpmy/index.php?lang=en HTTP/1.1

0-073240/2342/2342_
2233760610960.012.3412.34
172.68.192.177http/1.1img.woodysburger.hu:443GET /views/.git/config HTTP/1.1

0-073240/1131/1131_
223376051770.02.922.92
172.69.150.178http/1.1img.woodysburger.hu:443GET /plugins/.git/config HTTP/1.1

0-073240/405/405_
1200127250.01.331.33
172.68.46.141http/1.1

0-073241/970/970K
4025460.31.651.65
172.71.155.49http/1.1img.woodysburger.hu:443GET /server HTTP/1.1

0-073240/5/5_
83372040.00.000.00
172.70.227.146http/1.1

0-073241/1277/1277K
00110310.3109.87109.87
172.71.158.141http/1.1img.woodysburger.hu:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-073242/773/773K
2017280.61.741.74
172.69.23.206http/1.1img.woodysburger.hu:443GET /debug/default/view?panel=config HTTP/1.1

0-073240/1545/1545_
1154129090.03.093.09
178.33.224.212http/1.1play.notionrp.hu:443GET /players.json HTTP/1.1

0-073240/4/4_
610536030.00.000.00
38.242.130.24http/1.1rp.notionrp.hu:80GET /db/phpMyAdmin-4/index.php?lang=en HTTP/1.1

0-073240/807/807_
83272041490.02.552.55
108.162.221.27http/1.1www.woodys-burger.hu:443GET / HTTP/1.1

0-073241/551/551C
537760.31.201.20
172.69.134.153http/1.1img.woodysburger.hu:443GET / HTTP/1.1

0-073240/1064/1064_
22337603485850.02666.432666.43
172.71.246.101http/1.1img.woodysburger.hu:443GET /css../.git/config HTTP/1.1

0-073240/1498/1498_
2233760950930.0632.71632.71
172.71.130.173http/1.1img.woodysburger.hu:443GET /themes/.git/config HTTP/1.1

0-073240/44/44_
11366830510.00.130.13
172.70.47.50http/1.1notionsystem.hu:443GET /etc/ssl/private/server.key HTTP/1.1

0-073240/486/486_
6105380786900.0710.83710.83
38.242.130.24http/1.1rp.notionrp.hu:80GET /dbadmin/index.php?lang=en HTTP/1.1

0-073240/134/134_
1136683011440.00.730.73
172.71.183.113http/1.1notionsystem.hu:443GET /.ssh/id_ed25519 HTTP/1.1

0-073240/216/216_
11366830123510.00.980.98
172.71.182.203http/1.1notionsystem.hu:443GET /config.json HTTP/1.1

0-073240/2769/2769_
223376024289850.01419.971419.97
172.70.242.9http/1.1img.woodysburger.hu:443GET /templates/.git/config HTTP/1.1

0-073240/659/659_
223376059181020.01994.831994.83
172.70.250.122http/1.1img.woodysburger.hu:443GET /api/.git/config HTTP/1.1

0-073240/727/727_
11366830352810.096.4696.46
172.71.103.7http/1.1notionsystem.hu:443GET /config.xml HTTP/1.1

0-073240/87/87_
113668301110.00.230.23
172.71.182.202http/1.1notionsystem.hu:443GET /wp-admin/setup-config.php HTTP/1.1

0-073240/57/57_
11366830980.00.080.08
172.70.46.243http/1.1notionsystem.hu:443GET /.vscode/sftp.json HTTP/1.1

0-073240/633/633_
833720589240.0174.60174.60
172.68.118.248http/1.1

0-073240/459/459_
11366830845630.0294.01294.01
172.71.182.116http/1.1notionsystem.hu:443GET /feed HTTP/1.1

0-073240/118/118_
113668301530.00.260.26
172.71.103.4http/1.1notion

Found on 2024-11-18 16:20

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f7979100f7979100b203998a

Apache Status

Apache Server Status for img.woodysburger.hu (via 192.168.1.2)

Server Version: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4
Server MPM: WinNT
Apache Lounge VS16 Server built: Mar  7 2023 13:21:03

Current Time: Saturday, 16-Nov-2024 19:43:23 Central Europe Standard Time
Restart Time: Monday, 04-Nov-2024 04:36:44 Central Europe Standard Time
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  12 days 15 hours 6 minutes 38 seconds
Server load: -1.00 -1.00 -1.00
Total accesses: 64700 - Total Traffic: 39.8 GB - Total Duration: 48639922
.0593 requests/sec - 38.2 kB/second - 0.6 MB/request - 751.776 ms/request
7 requests currently being processed, 143 idle workers
________________________________________________________________
___________________K____________K______K_K_K_K__________________
___W__________________
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMSSReqDurConnChildSlotClientProtocolVHostRequest

0-073240/440/440_
4463300100060.01.031.03
38.242.130.24http/1.1rp.notionrp.hu:80GET /phpmyadmin2022/index.php?lang=en HTTP/1.1

0-073240/2551/2551_
59170029922280.03459.203459.20
172.71.118.187http/1.1img.woodysburger.hu:443GET /images../.git/config HTTP/1.1

0-073240/3671/3671_
59170080073310.01502.661502.66
172.71.164.103http/1.1img.woodysburger.hu:443GET /wp-content/.git/config HTTP/1.1

0-073240/2359/2359_
5917002210740.0169.81169.81
172.71.144.16http/1.1img.woodysburger.hu:443GET /env/.git/config HTTP/1.1

0-073240/1761/1761_
59170017734700.02178.442178.44
172.68.194.181http/1.1img.woodysburger.hu:443GET /backend/.git/config HTTP/1.1

0-073240/378/378_
4463300287030.02.072.07
38.242.130.24http/1.1rp.notionrp.hu:80GET /administrator/phpMyAdmin/index.php?lang=en HTTP/1.1

0-073240/1281/1281_
59170132045380.0595.95595.95
172.71.119.72http/1.1img.woodysburger.hu:443GET /extensions/.git/config HTTP/1.1

0-073240/3404/3404_
5917004728370.01094.971094.97
162.158.110.234http/1.1img.woodysburger.hu:443GET /media/uploads/.git/config HTTP/1.1

0-073240/20/20_
4463310360.00.170.17
38.242.130.24http/1.1rp.notionrp.hu:80GET /program/index.php?lang=en HTTP/1.1

0-073240/1880/1880_
5917007420540.0913.62913.62
172.70.250.53http/1.1img.woodysburger.hu:443GET /common/.git/config HTTP/1.1

0-073240/439/439_
4463300476780.01.601.60
38.242.130.24http/1.1rp.notionrp.hu:80GET /mysql/dbadmin/index.php?lang=en HTTP/1.1

0-073241/1687/1687K
30482110.315.2715.27
172.71.155.29http/1.1img.woodysburger.hu:443GET /about HTTP/1.1

0-073240/489/489_
446330037490.01.821.82
38.242.130.24http/1.1rp.notionrp.hu:80GET /admin/db/index.php?lang=en HTTP/1.1

0-073240/865/865_
591700181800.02.682.68
162.158.110.168http/1.1img.woodysburger.hu:443GET /resources/.git/config HTTP/1.1

0-073240/1783/1783_
44633101240380.086.8486.84
38.242.130.24http/1.1rp.notionrp.hu:80GET /sql/phpMyAdmin2/index.php?lang=en HTTP/1.1

0-073240/2508/2508_
591700164522900.018875.9018875.90
172.68.193.169http/1.1img.woodysburger.hu:443GET /layout/.git/config HTTP/1.1

0-073240/1048/1048_
591700250820.02.772.77
172.71.131.126http/1.1img.woodysburger.hu:443GET /data/.git/config HTTP/1.1

0-073240/2437/2437_
5917002258710.0273.45273.45
172.71.164.136http/1.1img.woodysburger.hu:443GET /assets../.git/config HTTP/1.1

0-073240/379/379_
446330086950.00.700.70
38.242.130.24http/1.1rp.notionrp.hu:80GET /sql/sql/index.php?lang=en HTTP/1.1

0-073240/3035/3035_
591700572780.08.168.16
172.71.148.75http/1.1img.woodysburger.hu:443GET /panel/.git/config HTTP/1.1

0-073240/1721/1721_
5917003194350.0810.59810.59
172.71.148.140http/1.1img.woodysburger.hu:443GET /app/.git/config HTTP/1.1

0-073240/2489/2489_
59170196500.022.1922.19
172.69.225.227http/1.1img.woodysburger.hu:443GET /source/.git/config HTTP/1.1

0-073240/360/360_
44633004290.00.710.71
38.242.130.24http/1.1rp.notionrp.hu:80GET /phpMyAdmin-3/index.php?lang=en HTTP/1.1

0-073240/2121/2121_
5917001611370.063.8563.85
172.71.148.119http/1.1img.woodysburger.hu:443GET /files/.git/config HTTP/1.1

0-073241/295/295K
006010.30.520.52
172.69.22.231http/1.1img.woodysburger.hu:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-073240/2225/2225_
5917011106100.059.4759.47
172.70.247.80http/1.1img.woodysburger.hu:443GET /lib../.git/config HTTP/1.1

0-073240/4/4_
446330140.00.000.00
38.242.130.24http/1.1rp.notionrp.hu:80GET /admin/sqladmin/index.php?lang=en HTTP/1.1

0-073240/4/4_
446330040.00.000.00
38.242.130.24http/1.1rp.notionrp.hu:80GET /phpmy/index.php?lang=en HTTP/1.1

0-073240/2342/2342_
591700610960.012.3412.34
172.68.192.177http/1.1img.woodysburger.hu:443GET /views/.git/config HTTP/1.1

0-073240/1131/1131_
59170051770.02.922.92
172.69.150.178http/1.1img.woodysburger.hu:443GET /plugins/.git/config HTTP/1.1

0-073240/187/187_
15903021060.00.460.46
5.135.143.71http/1.1play.notionrp.hu:443GET /players.json HTTP/1.1

0-073241/257/257K
303360.30.420.42
172.69.135.92http/1.1img.woodysburger.hu:443GET /.vscode/sftp.json HTTP/1.1

0-073240/5/5_
59170040.00.000.00
162.158.110.168http/1.1img.woodysburger.hu:443GET /prestashop/.git/config HTTP/1.1

0-073241/355/355K
4011360.31.021.02
162.158.167.42http/1.1img.woodysburger.hu:443GET /server HTTP/1.1

0-073240/293/293_
11863011670.00.710.71
172.69.6.28http/1.1notionsystem.hu:443GET / HTTP/1.1

0-073241/439/439K
205470.30.530.53
172.69.135.22http/1.1img.woodysburger.hu:443GET /debug/default/view?panel=config HTTP/1.1

0-073240/4/4_
446329030.00.000.00
38.242.130.24http/1.1rp.notionrp.hu:80GET /db/phpMyAdmin-4/index.php?lang=en HTTP/1.1

0-073241/299/299K
1022330.31.211.21
172.71.158.141http/1.1img.woodysburger.hu:443GET /v2/_catalog HTTP/1.1

0-073240/262/262_
1186304520.00.680.68
172.70.179.50http/1.1notionsystem.hu:443GET / HTTP/1.1

0-073240/1064/1064_
5917003485850.02666.432666.43
172.71.246.101http/1.1img.woodysburger.hu:443GET /css../.git/config HTTP/1.1

0-073240/1498/1498_
591700950930.0632.71632.71
172.71.130.173http/1.1img.woodysburger.hu:443GET /themes/.git/config HTTP/1.1

0-073240/44/44_
9724770510.00.130.13
172.70.47.50http/1.1notionsystem.hu:443GET /etc/ssl/private/server.key HTTP/1.1

0-073240/486/486_
4463320786900.0710.83710.83
38.242.130.24http/1.1rp.notionrp.hu:80GET /dbadmin/index.php?lang=en HTTP/1.1

0-073240/134/134_
972477011440.00.730.73
172.71.183.113http/1.1notionsystem.hu:443GET /.ssh/id_ed25519 HTTP/1.1

0-073240/216/216_
9724770123510.00.980.98
172.71.182.203http/1.1notionsystem.hu:443GET /config.json HTTP/1.1

0-073240/2769/2769_
59170024289850.01419.971419.97
172.70.242.9http/1.1img.woodysburger.hu:443GET /templates/.git/config HTTP/1.1

0-073240/659/659_
59170059181020.01994.831994.83
172.70.250.122http/1.1img.woodysburger.hu:443GET /api/.git/config HTTP/1.1

0-073240/727/727_
9724770352810.096.4696.46
172.71.103.7http/1.1notionsystem.hu:443GET /config.xml HTTP/1.1

0-073240/87/87_
97247701110.00.230.23
172.71.182.202http/1.1notionsystem.hu:443GET /wp-admin/setup-config.php HTTP/1.1

0-073240/57/57_
9724770980.00.080.08
172.70.46.243http/1.1notionsystem.hu:443GET /.vscode/sftp.json HTTP/1.1

0-073240/633/633_
591700589240.0174.60174.60
172.71.164.68http/1.1img.woodysburger.hu:443GET /drupal/sites/.git/config HTTP/1.1

0-073240/459/459_
9724770845630.0294.01294.01
172.71.182.116http/1.1notionsystem.hu:443GET /feed HTTP/1.1

0-073240/118/118_

Found on 2024-11-16 18:43

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f7979100f797910011a2f311

Apache Status

Apache Server Status for img.woodysburger.hu (via 192.168.1.2)

Server Version: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4
Server MPM: WinNT
Apache Lounge VS16 Server built: Mar  7 2023 13:21:03

Current Time: Thursday, 14-Nov-2024 14:47:46 Central Europe Standard Time
Restart Time: Monday, 04-Nov-2024 04:36:44 Central Europe Standard Time
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  10 days 10 hours 11 minutes 2 seconds
Server load: -1.00 -1.00 -1.00
Total accesses: 54866 - Total Traffic: 16.4 GB - Total Duration: 27495515
.0609 requests/sec - 19.1 kB/second - 314.0 kB/request - 501.139 ms/request
9 requests currently being processed, 141 idle workers
________________________________________________________________
____________K__K___K___K____W__K_______________K_____K__________
____________________K_
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMSSReqDurConnChildSlotClientProtocolVHostRequest

0-073240/440/440_
2557940100060.01.031.03
38.242.130.24http/1.1rp.notionrp.hu:80GET /phpmyadmin2022/index.php?lang=en HTTP/1.1

0-073240/2184/2184_
677800539020.013.9413.94
172.71.215.179http/1.1img.woodysburger.hu:443GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1

0-073240/3670/3670_
255792080073290.01502.661502.66
38.242.130.24http/1.1rp.notionrp.hu:80GET /index.php?lang=en HTTP/1.1

0-073240/2357/2357_
25579202210720.0169.81169.81
38.242.130.24http/1.1rp.notionrp.hu:80GET /mysql/pma/index.php?lang=en HTTP/1.1

0-073241/1380/1380K
10779310.3471.47471.47
172.71.183.98http/1.1img.woodysburger.hu:443GET /server HTTP/1.1

0-073240/378/378_
2557940287030.02.072.07
38.242.130.24http/1.1rp.notionrp.hu:80GET /administrator/phpMyAdmin/index.php?lang=en HTTP/1.1

0-073240/1042/1042_
107657032032050.0594.85594.85
172.71.219.64http/1.1img.woodysburger.hu:443GET /2020/wp-includes/wlwmanifest.xml HTTP/1.1

0-073241/2844/2844K
104690360.31087.681087.68
172.71.99.90http/1.1img.woodysburger.hu:443GET /.vscode/sftp.json HTTP/1.1

0-073240/20/20_
2557940360.00.170.17
38.242.130.24http/1.1rp.notionrp.hu:80GET /program/index.php?lang=en HTTP/1.1

0-073240/1691/1691_
6778017417070.0913.25913.25
162.158.178.80http/1.1gcdnapiv4.woodysburger.hu:443GET /site/wp-includes/wlwmanifest.xml HTTP/1.1

0-073240/439/439_
2557930476780.01.601.60
38.242.130.24http/1.1rp.notionrp.hu:80GET /mysql/dbadmin/index.php?lang=en HTTP/1.1

0-073241/750/750K
00364260.313.2213.22
172.71.95.22http/1.1img.woodysburger.hu:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-073240/489/489_
255794037490.01.821.82
38.242.130.24http/1.1rp.notionrp.hu:80GET /admin/db/index.php?lang=en HTTP/1.1

0-073240/864/864_
1128660181800.02.682.68
172.70.246.184http/1.1img.woodysburger.hu:443GET /config/.env HTTP/1.1

0-073240/1783/1783_
25579501240380.086.8486.84
38.242.130.24http/1.1rp.notionrp.hu:80GET /sql/phpMyAdmin2/index.php?lang=en HTTP/1.1

0-073241/1728/1728K
23184330.3181.20181.20
172.71.103.99http/1.1img.woodysburger.hu:443GET / HTTP/1.1

0-073240/1046/1046_
2557910250820.02.772.77
198.41.242.203http/1.1www.notionsystem.hu:443GET /administrator/db/index.php?lang=en HTTP/1.1

0-073240/1453/1453_
6778102078880.0270.59270.59
172.71.219.46http/1.1img.woodysburger.hu:80GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1

0-073240/379/379_
255794086950.00.700.70
38.242.130.24http/1.1rp.notionrp.hu:80GET /sql/sql/index.php?lang=en HTTP/1.1

0-073240/3027/3027_
1128660572690.08.158.15
172.68.195.185http/1.1img.woodysburger.hu:443GET /backend/.env HTTP/1.1

0-073240/1565/1565W
003187880.0810.22810.22
172.71.183.46http/1.1img.woodysburger.hu:443GET /server-status HTTP/1.1

0-073240/1839/1839_
67781061650.015.5215.52
162.158.114.173http/1.1gcdnapiv4.woodysburger.hu:443GET /test/wp-includes/wlwmanifest.xml HTTP/1.1

0-073240/360/360_
25579404290.00.710.71
38.242.130.24http/1.1rp.notionrp.hu:80GET /phpMyAdmin-3/index.php?lang=en HTTP/1.1

0-073241/1855/1855K
001608430.363.5163.51
172.71.103.153http/1.1img.woodysburger.hu:443GET /debug/default/view?panel=config HTTP/1.1

0-073240/4/4_
255793050.00.000.00
38.242.130.24http/1.1rp.notionrp.hu:80GET /db/webadmin/index.php?lang=en HTTP/1.1

0-073240/1993/1993_
6778001088620.058.6758.67
172.68.225.205http/1.1rp.notionrp.hu:80GET /site/wp-includes/wlwmanifest.xml HTTP/1.1

0-073240/4/4_
255794140.00.000.00
38.242.130.24http/1.1rp.notionrp.hu:80GET /admin/sqladmin/index.php?lang=en HTTP/1.1

0-073240/4/4_
255793040.00.000.00
38.242.130.24http/1.1rp.notionrp.hu:80GET /phpmy/index.php?lang=en HTTP/1.1

0-073240/1941/1941_
677800576060.09.939.93
162.158.179.10http/1.1img.woodysburger.hu:80GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1

0-073240/1130/1130_
255792051750.02.922.92
38.242.130.24http/1.1rp.notionrp.hu:80GET /mysql/index.php?lang=en HTTP/1.1

0-073240/4/4_
255793020.00.000.00
38.242.130.24http/1.1rp.notionrp.hu:80GET /phpMyAdmin-5.2.1/index.php?lang=en HTTP/1.1

0-073240/4/4_
255792020.00.000.00
38.242.130.24http/1.1rp.notionrp.hu:80GET /db/db-admin/index.php?lang=en HTTP/1.1

0-073240/4/4_
255792040.00.000.00
38.242.130.24http/1.1rp.notionrp.hu:80GET /mysql/web/index.php?lang=en HTTP/1.1

0-073240/4/4_
255793040.00.000.00
38.242.130.24http/1.1rp.notionrp.hu:80GET /phpMyAdmin-5/index.php?lang=en HTTP/1.1

0-073240/4/4_
255793010.00.000.00
38.242.130.24http/1.1rp.notionrp.hu:80GET /sql/sqladmin/index.php?lang=en HTTP/1.1

0-073240/4/4_
255792040.00.000.00
38.242.130.24http/1.1rp.notionrp.hu:80GET /shopdb/index.php?lang=en HTTP/1.1

0-073240/4/4_
255793030.00.000.00
38.242.130.24http/1.1rp.notionrp.hu:80GET /db/phpMyAdmin-4/index.php?lang=en HTTP/1.1

0-073240/4/4_
255792060.00.000.00
38.242.130.24http/1.1rp.notionrp.hu:80GET /phpMyAdmin-5.2.1-all-languages/index.php?lang=en HTTP/1.1

0-073240/4/4_
255793030.00.000.00
38.242.130.24http/1.1rp.notionrp.hu:80GET /phpMyAdmin4/index.php?lang=en HTTP/1.1

0-073241/1042/1042K
003485350.32666.392666.39
172.70.46.122http/1.1img.woodysburger.hu:443GET /v2/_catalog HTTP/1.1

0-073240/1086/1086_
677820934280.0631.88631.88
162.158.114.248http/1.1img.woodysburger.hu:80GET /2021/wp-includes/wlwmanifest.xml HTTP/1.1

0-073240/44/44_
7819410510.00.130.13
172.70.47.50http/1.1notionsystem.hu:443GET /etc/ssl/private/server.key HTTP/1.1

0-073240/486/486_
2557950786900.0710.83710.83
38.242.130.24http/1.1rp.notionrp.hu:80GET /dbadmin/index.php?lang=en HTTP/1.1

0-073240/134/134_
781941011440.00.730.73
172.71.183.113http/1.1notionsystem.hu:443GET /.ssh/id_ed25519 HTTP/1.1

0-073240/216/216_
7819410123510.00.980.98
172.71.182.203http/1.1notionsystem.hu:443GET /config.json HTTP/1.1

0-073241/2542/2542K
1124281460.31419.531419.53
172.71.182.22http/1.1img.woodysburger.hu:443GET /about HTTP/1.1

0-073240/648/648_
107656059180930.01994.811994.81
172.71.210.8http/1.1gcdnapiv4.woodysburger.hu:443GET /2021/wp-includes/wlwmanifest.xml HTTP/1.1

0-073240/727/727_
7819410352810.096.4696.46
172.71.103.7http/1.1notionsystem.hu:443GET /config.xml HTTP/1.1

0-073240/87/87_
78194101110.00.230.23
172.71.182.202http/1.1notionsystem.hu:443GET /wp-admin/setup-config.php HTTP/1.1

0-073240/57/57_
7819410980.00.080.08
172.70.46.243http/1.1notionsystem.hu:443GET /.vscode/sftp.json HTTP/1.1

0-073240/632/632_
2557920589240.0174.60174.60
38.242.130.24http/1.1rp.notionrp.hu:80GET /phpmyadmin2021/index.php?lang=en HTTP/1.1

0-073240/459/459_
7819410845630.0294.01294.01
172.71.182.116<

Found on 2024-11-14 13:48

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f7979100f7979100af5e3551

Apache Status

Apache Server Status for img.woodysburger.hu (via 192.168.1.2)

Server Version: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4
Server MPM: WinNT
Apache Lounge VS16 Server built: Mar  7 2023 13:21:03

Current Time: Sunday, 10-Nov-2024 14:30:29 Central Europe Standard Time
Restart Time: Monday, 04-Nov-2024 04:36:44 Central Europe Standard Time
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  6 days 9 hours 53 minutes 44 seconds
Server load: -1.00 -1.00 -1.00
Total accesses: 31367 - Total Traffic: 5.9 GB - Total Duration: 1655599
.0566 requests/sec - 11.1 kB/second - 196.7 kB/request - 52.7816 ms/request
6 requests currently being processed, 144 idle workers
________________________________________________________________
_________W_K__KK___________K___K________________________________
______________________
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMSSReqDurConnChildSlotClientProtocolVHostRequest

0-073240/437/437_
2850310100060.01.031.03
172.71.123.100http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073240/1612/1612W
00370220.05.145.14
172.71.98.224http/1.1img.woodysburger.hu:443GET /server-status HTTP/1.1

0-073240/2418/2418_
206300494380.011.1511.15
162.158.33.222http/1.1notionsystem.hu:443GET / HTTP/1.1

0-073241/1930/1930K
10110670.34.344.34
141.101.76.89http/1.1img.woodysburger.hu:443GET /server HTTP/1.1

0-073240/42/42_
2685200570.00.170.17
172.68.50.157http/1.1www.notionsystem.hu:443GET /mysql/dbadmin/index.php?lang=en HTTP/1.1

0-073240/375/375_
3394840287030.02.072.07
162.158.203.167http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073241/477/477K
0016890.30.980.98
172.71.98.149http/1.1img.woodysburger.hu:443GET /.vscode/sftp.json HTTP/1.1

0-073241/826/826K
0043720.32.252.25
172.71.99.37http/1.1img.woodysburger.hu:443GET /about HTTP/1.1

0-073240/17/17_
2850310350.00.170.17
162.158.14.113http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073240/454/454_
87473119950.01.381.38
176.31.236.143http/1.1play.notionrp.hu:443GET /players.json HTTP/1.1

0-073240/436/436_
2850301476780.01.601.60
172.70.230.36http/1.1www.woodysburger.hu:443GET / HTTP/1.1

0-073240/129/129_
28503101700.00.260.26
172.71.156.139http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073240/486/486_
339484037490.01.821.82
141.101.98.206http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073240/117/117_
33948404720.00.390.39
172.71.118.109http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073240/1066/1066_
265921464080.02.192.19
141.101.96.22http/1.1gcdnapiv4.woodysburger.hu:443GET /.aws/credentials HTTP/1.1

0-073240/607/607_
285021010060.01.471.47
162.158.202.38http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073240/756/756_
265931165240.01.251.25
162.158.110.211http/1.1gcdnapiv4.woodysburger.hu:443GET /.env.exemple HTTP/1.1

0-073240/693/693_
87456045020.01.661.66
116.203.20.2http/1.1

0-073240/376/376_
285031086930.00.700.70
162.158.155.208http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073242/1088/1088K
00103570.62.852.85
172.70.46.202http/1.1img.woodysburger.hu:443GET /v2/_catalog HTTP/1.1

0-073240/9/9_
2850301170.00.090.09
172.70.82.122http/1.1www.woodysburger.hu:443GET / HTTP/1.1

0-073240/759/759_
138228020410.02.632.63
172.71.134.30http/1.1www.notionsystem.hu:443GET /phpinfo.php HTTP/1.1

0-073240/357/357_
28503104290.00.710.71
172.68.186.34http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073243/1178/1178K
00222500.910.2410.24
141.101.76.141http/1.1img.woodysburger.hu:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-073240/1/1_
435303240.00.000.00
172.70.46.204http/1.1www.notionsystem.hu:443GET /cloud-config.yml HTTP/1.1

0-073240/1286/1286_
4325038520.03.863.86
162.158.74.52http/1.1notionsystem.hu:443GET / HTTP/1.1

0-073240/1/1_
435303120.00.000.00
172.70.46.205http/1.1www.notionsystem.hu:443GET /.kube/config HTTP/1.1

0-073240/1/1_
435303240.00.000.00
172.71.102.188http/1.1www.notionsystem.hu:443GET /api/.env HTTP/1.1

0-073240/1273/1273_
265934357160.02.302.30
172.71.164.169http/1.1gcdnapiv4.woodysburger.hu:443GET /.env HTTP/1.1

0-073240/478/478_
13822807910.01.011.01
141.94.203.6http/1.1play.notionrp.hu:443GET //players.json HTTP/1.1

0-073240/1/1_
435303120.00.000.00
172.71.98.43http/1.1www.notionsystem.hu:443GET /config/production.json HTTP/1.1

0-073240/1/1_
435303120.00.000.00
172.71.99.165http/1.1www.notionsystem.hu:443GET /.ssh/id_rsa HTTP/1.1

0-073240/1/1_
435303240.00.000.00
172.71.94.223http/1.1www.notionsystem.hu:443GET /.env.production HTTP/1.1

0-073240/1/1_
435303240.00.000.00
172.70.46.205http/1.1www.notionsystem.hu:443GET /.aws/credentials HTTP/1.1

0-073240/1/1_
435303010.00.000.00
172.71.98.42http/1.1www.notionsystem.hu:443GET /.vscode/sftp.json HTTP/1.1

0-073240/1/1_
435303240.00.000.00
141.101.76.111http/1.1www.notionsystem.hu:443GET /config.yaml HTTP/1.1

0-073240/1/1_
435303130.00.000.00
172.71.183.163http/1.1www.notionsystem.hu:443GET /.svn/wc.db HTTP/1.1

0-073240/1/1_
435303360.00.000.00
172.70.47.185http/1.1www.notionsystem.hu:443GET /dump.sql HTTP/1.1

0-073240/1/1_
435303230.00.000.00
141.101.76.164http/1.1www.notionsystem.hu:443GET /docker-compose.yml HTTP/1.1

0-073240/615/615_
43530302924560.02659.512659.51
172.70.46.222http/1.1notionsystem.hu:443GET /server.key HTTP/1.1

0-073240/793/793_
4353030929310.0631.39631.39
172.71.98.165http/1.1notionsystem.hu:443GET / HTTP/1.1

0-073240/44/44_
4353030510.00.130.13
172.70.47.50http/1.1notionsystem.hu:443GET /etc/ssl/private/server.key HTTP/1.1

0-073240/484/484_
4353030786900.0710.83710.83
141.101.76.236http/1.1notionsystem.hu:443GET /config/database.php HTTP/1.1

0-073240/134/134_
435303011440.00.730.73
172.71.183.113http/1.1notionsystem.hu:443GET /.ssh/id_ed25519 HTTP/1.1

0-073240/216/216_
4353030123510.00.980.98
172.71.182.203http/1.1notionsystem.hu:443GET /config.json HTTP/1.1

0-073240/556/556_
43530301342070.0147.83147.83
172.70.46.126http/1.1notionsystem.hu:443GET /config.php HTTP/1.1

0-073240/291/291_
4353031423450.039.9139.91
172.70.46.7http/1.1notionsystem.hu:443GET /.env HTTP/1.1

0-073240/727/727_
4353030352810.096.4696.46
172.71.103.7http/1.1notionsystem.hu:443GET /config.xml HTTP/1.1

0-073240/87/87_
43530301110.00.230.23
172.71.182.202http/1.1notionsystem.hu:443GET /wp-admin/setup-config.php HTTP/1.1

0-073240/57/57_
4353030980.00.080.08
172.70.46.243http/1.1notionsystem.hu:443GET /.vscode/sftp.json HTTP/1.1

0-073240/629/629_
4353030589240.0174.60174.60
172.70.46.147http/1.1notionsystem.hu:443GET /_vti_pvt/service.pwd HTTP/1.1

0-073240/459/459_
4353030845630.0294.01294.01
172.71.182.116http/1.1notionsystem.hu:443GET /feed HTTP/1.1

0-073240/118/118_
43530301530.00.260.26
172.71.103.4http/1.1notionsystem.hu:443GET /api/.env HTTP/1.1

0-073240/140/140_
43530301930.00.600.60
172.71.103.8http/1.1notionsystem.hu:443GET /secrets.json HTTP/1.1

0-073240/7/7_
4353030100.00.000.00
141.101.76.39http/1.1notionsystem.hu:443GET /.git/HEAD HTTP/

Found on 2024-11-12 12:38

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f7979100f797910099394557

Apache Status

Apache Server Status for img.woodysburger.hu (via 192.168.1.2)

Server Version: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4
Server MPM: WinNT
Apache Lounge VS16 Server built: Mar  7 2023 13:21:03

Current Time: Friday, 08-Nov-2024 13:43:59 Central Europe Standard Time
Restart Time: Monday, 04-Nov-2024 04:36:44 Central Europe Standard Time
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 days 9 hours 7 minutes 15 seconds
Server load: -1.00 -1.00 -1.00
Total accesses: 22020 - Total Traffic: 5.9 GB - Total Duration: 1489779
.0582 requests/sec - 16.2 kB/second - 278.6 kB/request - 67.6557 ms/request
8 requests currently being processed, 142 idle workers
________________________________________________________________
_________K_K___W______K______K___K___K__________________________
____________________K_
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMSSReqDurConnChildSlotClientProtocolVHostRequest

0-073240/437/437_
1094410100060.01.031.03
172.71.123.100http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073241/877/877K
0143600.32.552.55
172.71.182.179http/1.1img.woodysburger.hu:443GET /about HTTP/1.1

0-073240/858/858_
929290288090.02.012.01
172.68.159.86http/1.1www.notionsystem.hu:443GET /phpMyAdmin3/index.php?lang=en HTTP/1.1

0-073241/956/956K
1224300.31.951.95
172.71.103.154http/1.1img.woodysburger.hu:443GET / HTTP/1.1

0-073240/42/42_
929300570.00.170.17
172.68.50.157http/1.1www.notionsystem.hu:443GET /mysql/dbadmin/index.php?lang=en HTTP/1.1

0-073240/375/375_
1638940287030.02.072.07
162.158.203.167http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073240/218/218_
7478505420.00.690.69
103.15.51.201http/1.1rp.notionrp.hu:80GET /db/webadmin/index.php?lang=en HTTP/1.1

0-073240/322/322W
0014440.00.630.63
172.71.94.174http/1.1img.woodysburger.hu:443GET /server-status HTTP/1.1

0-073240/17/17_
1094410350.00.170.17
162.158.14.113http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073240/328/328_
74938117870.01.221.22
178.33.224.212http/1.1play.notionrp.hu:443GET /players.json HTTP/1.1

0-073240/436/436_
1094411476780.01.601.60
172.70.230.36http/1.1www.woodysburger.hu:443GET / HTTP/1.1

0-073240/129/129_
10944101700.00.260.26
172.71.156.139http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073240/486/486_
163894037490.01.821.82
141.101.98.206http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073240/117/117_
16389404720.00.390.39
172.71.118.109http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073241/610/610K
00340320.31.281.28
172.71.94.122http/1.1img.woodysburger.hu:443GET /v2/_catalog HTTP/1.1

0-073240/607/607_
109431010060.01.471.47
162.158.202.38http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073240/19/19_
929291330.00.100.10
162.158.102.126http/1.1www.notionsystem.hu:443GET /MyAdmin/index.php?lang=en HTTP/1.1

0-073240/266/266_
92929034540.00.840.84
172.68.159.45http/1.1www.notionsystem.hu:443GET /_phpmyadmin/index.php?lang=en HTTP/1.1

0-073240/376/376_
109441086930.00.700.70
162.158.155.208http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073240/240/240_
8070002840.00.460.46
178.33.224.212http/1.1play.notionrp.hu:443GET /info.json HTTP/1.1

0-073240/9/9_
1094401170.00.090.09
172.70.82.122http/1.1www.woodysburger.hu:443GET / HTTP/1.1

0-073241/482/482K
0110350.31.941.94
172.70.46.55http/1.1img.woodysburger.hu:443GET /server HTTP/1.1

0-073240/357/357_
10944104290.00.710.71
172.68.186.34http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073240/419/419_
74795014520.01.271.27
162.158.178.160http/1.1www.notionsystem.hu:443GET /mysql/web/index.php?lang=en HTTP/1.1

0-073240/1/1_
259713240.00.000.00
172.70.46.204http/1.1www.notionsystem.hu:443GET /cloud-config.yml HTTP/1.1

0-073241/836/836K
0122250.32.912.91
172.71.102.206http/1.1img.woodysburger.hu:443GET /.vscode/sftp.json HTTP/1.1

0-073240/1/1_
259713120.00.000.00
172.70.46.205http/1.1www.notionsystem.hu:443GET /.kube/config HTTP/1.1

0-073240/1/1_
259713240.00.000.00
172.71.102.188http/1.1www.notionsystem.hu:443GET /api/.env HTTP/1.1

0-073240/245/245_
8070013680.00.680.68
178.33.224.212http/1.1play.notionrp.hu:443GET /players.json HTTP/1.1

0-073241/377/377K
006140.30.860.86
172.70.46.184http/1.1img.woodysburger.hu:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-073240/1/1_
259713120.00.000.00
172.71.98.43http/1.1www.notionsystem.hu:443GET /config/production.json HTTP/1.1

0-073240/1/1_
259713120.00.000.00
172.71.99.165http/1.1www.notionsystem.hu:443GET /.ssh/id_rsa HTTP/1.1

0-073240/1/1_
259713240.00.000.00
172.71.94.223http/1.1www.notionsystem.hu:443GET /.env.production HTTP/1.1

0-073240/1/1_
259713240.00.000.00
172.70.46.205http/1.1www.notionsystem.hu:443GET /.aws/credentials HTTP/1.1

0-073240/1/1_
259713010.00.000.00
172.71.98.42http/1.1www.notionsystem.hu:443GET /.vscode/sftp.json HTTP/1.1

0-073240/1/1_
259713240.00.000.00
141.101.76.111http/1.1www.notionsystem.hu:443GET /config.yaml HTTP/1.1

0-073240/1/1_
259713130.00.000.00
172.71.183.163http/1.1www.notionsystem.hu:443GET /.svn/wc.db HTTP/1.1

0-073240/1/1_
259713360.00.000.00
172.70.47.185http/1.1www.notionsystem.hu:443GET /dump.sql HTTP/1.1

0-073240/1/1_
259713230.00.000.00
141.101.76.164http/1.1www.notionsystem.hu:443GET /docker-compose.yml HTTP/1.1

0-073240/615/615_
25971302924560.02659.512659.51
172.70.46.222http/1.1notionsystem.hu:443GET /server.key HTTP/1.1

0-073240/793/793_
2597130929310.0631.39631.39
172.71.98.165http/1.1notionsystem.hu:443GET / HTTP/1.1

0-073240/44/44_
2597130510.00.130.13
172.70.47.50http/1.1notionsystem.hu:443GET /etc/ssl/private/server.key HTTP/1.1

0-073240/484/484_
2597130786900.0710.83710.83
141.101.76.236http/1.1notionsystem.hu:443GET /config/database.php HTTP/1.1

0-073240/134/134_
259713011440.00.730.73
172.71.183.113http/1.1notionsystem.hu:443GET /.ssh/id_ed25519 HTTP/1.1

0-073240/216/216_
2597130123510.00.980.98
172.71.182.203http/1.1notionsystem.hu:443GET /config.json HTTP/1.1

0-073240/556/556_
25971301342070.0147.83147.83
172.70.46.126http/1.1notionsystem.hu:443GET /config.php HTTP/1.1

0-073240/291/291_
2597131423450.039.9139.91
172.70.46.7http/1.1notionsystem.hu:443GET /.env HTTP/1.1

0-073240/727/727_
2597130352810.096.4696.46
172.71.103.7http/1.1notionsystem.hu:443GET /config.xml HTTP/1.1

0-073240/87/87_
25971301110.00.230.23
172.71.182.202http/1.1notionsystem.hu:443GET /wp-admin/setup-config.php HTTP/1.1

0-073240/57/57_
2597130980.00.080.08
172.70.46.243http/1.1notionsystem.hu:443GET /.vscode/sftp.json HTTP/1.1

0-073240/629/629_
2597130589240.0174.60174.60
172.70.46.147http/1.1notionsystem.hu:443GET /_vti_pvt/service.pwd HTTP/1.1

0-073240/459/459_
2597130845630.0294.01294.01
172.71.182.116http/1.1notionsystem.hu:443GET /feed HTTP/1.1

0-073240/118/118_
25971301530.00.260.26
172.71.103.4http/1.1notionsystem.hu:443GET /api/.env HTTP/1.1

0-073240/140/140_
25971301930.00.600.60
172.71.103.8http/1.1notionsystem.hu:443GET /secrets.json HTTP/1.1

0-073240/7/7_
2597130100.00.000.00
141.10

Found on 2024-11-08 12:44

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f7979100f797910056fd7d32

Apache Status

Apache Server Status for img.woodysburger.hu (via 192.168.1.2)

Server Version: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4
Server MPM: WinNT
Apache Lounge VS16 Server built: Mar  7 2023 13:21:03

Current Time: Wednesday, 06-Nov-2024 10:19:05 Central Europe Standard Time
Restart Time: Monday, 04-Nov-2024 04:36:44 Central Europe Standard Time
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  2 days 5 hours 42 minutes 20 seconds
Server load: -1.00 -1.00 -1.00
Total accesses: 14023 - Total Traffic: 5.8 GB - Total Duration: 1450991
.0725 requests/sec - 31.6 kB/second - 435.8 kB/request - 103.472 ms/request
7 requests currently being processed, 143 idle workers
________________________________________________________________
___K_________K____K_K_KK__W_____________________________________
______________________
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMSSReqDurConnChildSlotClientProtocolVHostRequest

0-073241/370/370K
0099240.30.920.92
172.71.99.183http/1.1img.woodysburger.hu:443GET /v2/_catalog HTTP/1.1

0-073240/85/85_
669280800.00.090.09
172.71.212.43http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073240/428/428_
3501419249640.00.750.75
141.101.69.94http/1.1shrt.notionsystem.hu:443GET /adatbazis HTTP/1.1

0-073240/8/8_
669282190.00.060.06
162.158.18.161http/1.1www.woodysburger.hu:443GET / HTTP/1.1

0-073240/28/28_
669290330.00.050.05
172.70.86.62http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073242/255/255K
01285650.61.821.82
172.71.182.178http/1.1img.woodysburger.hu:443GET /about HTTP/1.1

0-073240/6/6_
66928090.00.020.02
172.68.22.106http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073240/4/4_
42177170.00.020.02
172.70.236.130http/1.1

0-073240/4/4_
669281120.00.060.06
162.158.203.14http/1.1www.woodysburger.hu:443GET / HTTP/1.1

0-073240/4/4_
669280120.00.040.04
172.71.124.141http/1.1woodysburger.hu:443GET / HTTP/1.1

0-073241/300/300K
00410690.30.660.66
172.71.102.65http/1.1img.woodysburger.hu:443GET /debug/default/view?panel=config HTTP/1.1

0-073240/1/1_
74619350.00.000.00
172.71.183.111http/1.1www.notionsystem.hu:443GET /.git/HEAD HTTP/1.1

0-073242/403/403K
0036530.61.631.63
172.70.47.132http/1.1img.woodysburger.hu:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-073240/4/4_
669281130.00.060.06
172.71.126.247http/1.1www.woodysburger.hu:443GET / HTTP/1.1

0-073241/260/260K
00333220.30.420.42
172.70.47.41http/1.1img.woodysburger.hu:443GET /.vscode/sftp.json HTTP/1.1

0-073241/510/510K
138800.31.261.26
141.101.77.18http/1.1img.woodysburger.hu:443GET / HTTP/1.1

0-073240/1/1_
74619360.00.000.00
172.71.94.104http/1.1www.notionsystem.hu:443GET /wp-admin/setup-config.php HTTP/1.1

0-073240/1/1_
74619360.00.000.00
172.71.103.17http/1.1www.notionsystem.hu:443GET /.ssh/id_ed25519 HTTP/1.1

0-073240/336/336W
0086510.00.580.58
172.70.47.111http/1.1img.woodysburger.hu:443GET /server-status HTTP/1.1

0-073240/1/1_
74619240.00.000.00
172.71.103.70http/1.1www.notionsystem.hu:443GET /database.sql HTTP/1.1

0-073240/1/1_
74619130.00.000.00
172.71.99.136http/1.1www.notionsystem.hu:443GET /_vti_pvt/administrators.pwd HTTP/1.1

0-073240/1/1_
74619250.00.000.00
172.70.46.151http/1.1www.notionsystem.hu:443GET /feed HTTP/1.1

0-073240/1/1_
74619240.00.000.00
172.71.182.25http/1.1www.notionsystem.hu:443GET /phpinfo.php HTTP/1.1

0-073240/1/1_
74619360.00.000.00
172.70.47.53http/1.1www.notionsystem.hu:443GET /config.json HTTP/1.1

0-073240/1/1_
74619240.00.000.00
172.70.46.204http/1.1www.notionsystem.hu:443GET /cloud-config.yml HTTP/1.1

0-073240/1/1_
74619240.00.000.00
172.70.46.96http/1.1www.notionsystem.hu:443GET /etc/shadow HTTP/1.1

0-073240/1/1_
74619120.00.000.00
172.70.46.205http/1.1www.notionsystem.hu:443GET /.kube/config HTTP/1.1

0-073240/1/1_
74619240.00.000.00
172.71.102.188http/1.1www.notionsystem.hu:443GET /api/.env HTTP/1.1

0-073240/1/1_
74619360.00.000.00
172.71.183.162http/1.1www.notionsystem.hu:443GET /backup.sql HTTP/1.1

0-073240/75/75_
669281950.00.210.21
172.69.194.127http/1.1www.woodysburger.hu:443GET / HTTP/1.1

0-073240/1/1_
74619120.00.000.00
172.71.98.43http/1.1www.notionsystem.hu:443GET /config/production.json HTTP/1.1

0-073240/1/1_
74619120.00.000.00
172.71.99.165http/1.1www.notionsystem.hu:443GET /.ssh/id_rsa HTTP/1.1

0-073240/1/1_
74619240.00.000.00
172.71.94.223http/1.1www.notionsystem.hu:443GET /.env.production HTTP/1.1

0-073240/1/1_
74619240.00.000.00
172.70.46.205http/1.1www.notionsystem.hu:443GET /.aws/credentials HTTP/1.1

0-073240/1/1_
74619010.00.000.00
172.71.98.42http/1.1www.notionsystem.hu:443GET /.vscode/sftp.json HTTP/1.1

0-073240/1/1_
74619240.00.000.00
141.101.76.111http/1.1www.notionsystem.hu:443GET /config.yaml HTTP/1.1

0-073240/1/1_
74619130.00.000.00
172.71.183.163http/1.1www.notionsystem.hu:443GET /.svn/wc.db HTTP/1.1

0-073240/1/1_
74619360.00.000.00
172.70.47.185http/1.1www.notionsystem.hu:443GET /dump.sql HTTP/1.1

0-073240/1/1_
74619230.00.000.00
141.101.76.164http/1.1www.notionsystem.hu:443GET /docker-compose.yml HTTP/1.1

0-073240/615/615_
7461902924560.02659.512659.51
172.70.46.222http/1.1notionsystem.hu:443GET /server.key HTTP/1.1

0-073240/793/793_
746190929310.0631.39631.39
172.71.98.165http/1.1notionsystem.hu:443GET / HTTP/1.1

0-073240/44/44_
746190510.00.130.13
172.70.47.50http/1.1notionsystem.hu:443GET /etc/ssl/private/server.key HTTP/1.1

0-073240/484/484_
746190786900.0710.83710.83
141.101.76.236http/1.1notionsystem.hu:443GET /config/database.php HTTP/1.1

0-073240/134/134_
74619011440.00.730.73
172.71.183.113http/1.1notionsystem.hu:443GET /.ssh/id_ed25519 HTTP/1.1

0-073240/216/216_
746190123510.00.980.98
172.71.182.203http/1.1notionsystem.hu:443GET /config.json HTTP/1.1

0-073240/556/556_
7461901342070.0147.83147.83
172.70.46.126http/1.1notionsystem.hu:443GET /config.php HTTP/1.1

0-073240/291/291_
746191423450.039.9139.91
172.70.46.7http/1.1notionsystem.hu:443GET /.env HTTP/1.1

0-073240/727/727_
746190352810.096.4696.46
172.71.103.7http/1.1notionsystem.hu:443GET /config.xml HTTP/1.1

0-073240/87/87_
7461901110.00.230.23
172.71.182.202http/1.1notionsystem.hu:443GET /wp-admin/setup-config.php HTTP/1.1

0-073240/57/57_
746190980.00.080.08
172.70.46.243http/1.1notionsystem.hu:443GET /.vscode/sftp.json HTTP/1.1

0-073240/629/629_
746190589240.0174.60174.60
172.70.46.147http/1.1notionsystem.hu:443GET /_vti_pvt/service.pwd HTTP/1.1

0-073240/459/459_
746190845630.0294.01294.01
172.71.182.116http/1.1notionsystem.hu:443GET /feed HTTP/1.1

0-073240/118/118_
7461901530.00.260.26
172.71.103.4http/1.1notionsystem.hu:443GET /api/.env HTTP/1.1

0-073240/140/140_
7461901930.00.600.60
172.71.103.8http/1.1notionsystem.hu:443GET /secrets.json HTTP/1.1

0-073240/7/7_
746190100.00.000.00
141.101.76.39http/1.1notionsystem.hu:443GET /.git/HEAD HTTP/1.1

0-073240/34/34_
7461

Found on 2024-11-06 09:19

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f7979100f7979100e9005b27

Apache Status

Apache Server Status for img.woodysburger.hu (via 192.168.1.2)

Server Version: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4
Server MPM: WinNT
Apache Lounge VS16 Server built: Mar  7 2023 13:21:03

Current Time: Monday, 04-Nov-2024 08:47:23 Central Europe Standard Time
Restart Time: Monday, 04-Nov-2024 04:36:44 Central Europe Standard Time
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 hours 10 minutes 39 seconds
Server load: -1.00 -1.00 -1.00
Total accesses: 1636 - Total Traffic: 3.8 MB - Total Duration: 8398
.109 requests/sec - 265 B/second - 2444 B/request - 5.13325 ms/request
7 requests currently being processed, 143 idle workers
________________________________________________________________
________________________________________________________________
________K_K_KK_WC___K_
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMSSReqDurConnChildSlotClientProtocolVHostRequest

0-073241/2/2K
3150.30.000.00
172.70.110.214http/1.1img.woodysburger.hu:443GET /about HTTP/1.1

0-073240/1/1_
2559120.00.000.00
172.71.151.134http/1.1gcdnapiv4.woodysburger.hu:443GET / HTTP/1.1

0-073241/3/3K
3180.30.000.00
172.70.114.203http/1.1img.woodysburger.hu:443GET /.vscode/sftp.json HTTP/1.1

0-073240/1/1_
2561000.00.000.00
172.68.22.23http/1.1rp.notionrp.hu:80GET / HTTP/1.1

0-073241/37/37K
10640.30.100.10
162.158.154.229http/1.1img.woodysburger.hu:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-073241/3/3K
1270.30.000.00
172.70.230.11http/1.1img.woodysburger.hu:443GET /v2/_catalog HTTP/1.1

0-073240/55/55_
25590730.00.110.11
172.71.151.99http/1.1rp.notionrp.hu:80GET / HTTP/1.1

0-073240/475/475W
0012890.00.310.31
162.158.159.221http/1.1img.woodysburger.hu:443GET /server-status HTTP/1.1

0-073241/542/542C
503290.31.281.28
162.158.158.71http/1.1img.woodysburger.hu:443GET /server HTTP/1.1

0-073240/25/25_
255811610.00.120.12
162.158.41.76http/1.1gcdnapiv4.woodysburger.hu:443GET / HTTP/1.1

0-073240/144/144_
255707250.00.410.41
172.71.150.29http/1.1rp.notionrp.hu:80GET / HTTP/1.1

0-073240/35/35_
2559017210.00.200.20
108.162.245.55http/1.1gcdnapiv4.woodysburger.hu:443GET / HTTP/1.1

0-073241/66/66K
2128220.30.850.85
162.158.154.91http/1.1img.woodysburger.hu:443GET /debug/default/view?panel=config HTTP/1.1

0-073240/247/247_
2560111880.00.440.44
108.162.246.26http/1.1gcdnapiv4.woodysburger.hu:443GET / HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 38subcaches: 32, indexes per subcache: 88time left on oldest entries' objects: avg: 193 seconds, (range: 43...299)index usage: 1%, cache usage: 1%total entries stored since starting: 1138total entries replaced since starting: 0total entries expired since starting: 1099total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 9 misstotal removes since starting: 1 hit, 0 miss


Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4 Server at img.woodysburger.hu Port 443

Found on 2024-11-04 07:47

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3183ea3a3183ea3a31bd1eee6d

Apache Status

Apache Server Status for img.woodys-burger.hu (via 192.168.1.2)

Server Version: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4
Server MPM: WinNT
Apache Lounge VS16 Server built: Mar  7 2023 13:21:03

Current Time: Saturday, 02-Nov-2024 06:41:01 Central Europe Standard Time
Restart Time: Tuesday, 29-Oct-2024 00:20:51 Central Europe Standard Time
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 days 6 hours 20 minutes 9 seconds
Server load: -1.00 -1.00 -1.00
Total accesses: 23394 - Total Traffic: 1.1 GB - Total Duration: 5686624
.0635 requests/sec - 3322 B/second - 51.1 kB/request - 243.08 ms/request
4 requests currently being processed, 146 idle workers
________________________________________________________________
_______K_____________________________K_________K________________
W_____________________
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMSSReqDurConnChildSlotClientProtocolVHostRequest

0-019000/5/5_
2043211230.00.070.07
141.101.68.113http/1.1

0-019000/7/7_
2044632320.00.090.09
172.70.82.141http/1.1www.woodys-burger.hu:443GET /en/?g=ZFJn HTTP/1.1

0-019000/57/57_
20446512590.00.760.76
172.70.82.233http/1.1www.woodys-burger.hu:443GET /en/?g=xje6 HTTP/1.1

0-019000/135/135_
20446635820.01.801.80
172.70.54.52http/1.1www.woodys-burger.hu:443GET /en/?g=q1eeekZ5 HTTP/1.1

0-019000/17/17_
2044621690.00.230.23
172.70.82.141http/1.1www.woodys-burger.hu:443GET /en/?g=ZFJn HTTP/1.1

0-019000/6/6_
2043211260.00.080.08
172.71.218.85http/1.1

0-019000/4/4_
2043670170.00.050.05
141.101.109.172http/1.1

0-019000/40/40_
20446522290.00.530.53
172.70.55.201http/1.1www.woodys-burger.hu:443GET /en/?g=naqAsu15 HTTP/1.1

0-019000/59/59_
20446522890.00.790.79
172.70.55.21http/1.1www.woodys-burger.hu:443GET /en/?g=KEJE HTTP/1.1

0-019000/6/6_
2043381210.00.080.08
162.158.190.85http/1.1

0-019000/12/12_
2043321530.00.160.16
172.68.50.164http/1.1

0-019000/33/33_
20446631520.00.440.44
172.70.55.85http/1.1www.woodys-burger.hu:443GET /en/?g=3WBkgK5 HTTP/1.1

0-019000/14/14_
2043230590.00.190.19
162.158.162.34http/1.1

0-019000/33/33_
20446611680.00.440.44
172.70.83.62http/1.1www.woodys-burger.hu:443GET /en/?g=ejusKp0Vo HTTP/1.1

0-019000/69/69_
20446323010.00.920.92
108.162.210.249http/1.1www.woodys-burger.hu:443GET /en/?g=MrUQ HTTP/1.1

0-019000/81/81_
20446633780.01.081.08
172.70.54.39http/1.1www.woodys-burger.hu:443GET /en/?g=HebKqlcB HTTP/1.1

0-019000/6/6_
2043302270.00.080.08
172.70.254.112http/1.1

0-019000/80/80_
20446623660.01.071.07
172.70.55.22http/1.1www.woodys-burger.hu:443GET /en/?g=KEJE HTTP/1.1

0-019000/5/5_
2043201290.00.070.07
172.69.221.140http/1.1

0-019000/76/76_
20446623530.01.021.02
172.70.255.241http/1.1www.woodys-burger.hu:443GET /en/?g=inLd5CZcn HTTP/1.1

0-019000/4/4_
2043341190.00.050.05
172.68.50.156http/1.1

0-019000/23/23_
2043262920.00.310.31
198.41.230.68http/1.1

0-019000/11/11_
2044651470.00.150.15
172.70.83.66http/1.1www.woodys-burger.hu:443GET /en/?g=IPOBF HTTP/1.1

0-019000/75/75_
20446633220.01.001.00
172.70.54.52http/1.1www.woodys-burger.hu:443GET /en/?g=q1eeekZ5 HTTP/1.1

0-019000/5/5_
2043671290.00.050.05
172.70.46.160http/1.1smashbrothers.hu:443GET / HTTP/1.1

0-019000/1150/1150_
15401121860.01.991.99
172.69.214.204http/1.1img.woodys-burger.hu:443GET /.git/config HTTP/1.1

0-019000/61/61_
20446612680.00.820.82
172.70.54.38http/1.1www.woodys-burger.hu:443GET /en/?g=HebKqlcB HTTP/1.1

0-019000/6/6_
2043222320.00.080.08
172.70.143.25http/1.1

0-019000/49/49_
20446522190.00.660.66
172.70.55.202http/1.1www.woodys-burger.hu:443GET /en/?g=naqAsu15 HTTP/1.1

0-019000/52/52_
20446632370.00.700.70
172.70.255.243http/1.1www.woodys-burger.hu:443GET /en/?g=wFyE09Z HTTP/1.1

0-019000/4/4_
2043311170.00.050.05
172.68.159.50http/1.1

0-019000/98/98_
20446514650.01.311.31
172.70.83.31http/1.1www.woodys-burger.hu:443GET /en/?g=FQYjV0 HTTP/1.1

0-019000/52/52_
20446622570.00.700.70
172.70.82.233http/1.1www.woodys-burger.hu:443GET /en/?g=xje6 HTTP/1.1

0-019000/60/60_
20446632620.00.800.80
172.70.83.61http/1.1www.woodys-burger.hu:443GET /en/?g=ejusKp0Vo HTTP/1.1

0-019000/27/27_
20446511370.00.360.36
172.70.55.22http/1.1www.woodys-burger.hu:443GET /en/?g=KEJE HTTP/1.1

0-019000/9/9_
2043311370.00.120.12
162.158.210.71http/1.1

0-019000/7/7_
2043361270.00.090.09
162.158.202.96http/1.1

0-019000/90/90_
20446524300.01.201.20
172.70.83.158http/1.1www.woodys-burger.hu:443GET /en/?g=6zVj HTTP/1.1

0-019000/50/50_
20446622320.00.670.67
108.162.210.249http/1.1www.woodys-burger.hu:443GET /en/?g=MrUQ HTTP/1.1

0-019000/88/88_
20446644150.01.181.18
172.70.54.47http/1.1www.woodys-burger.hu:443GET /en/?g=7xWI0GlFHC HTTP/1.1

0-019000/4/4_
2043221190.00.050.05
162.158.138.101http/1.1

0-019000/6/6_
2043281250.00.080.08
172.71.26.111http/1.1

0-019000/42/42_
20446642250.00.560.56
172.70.54.4http/1.1www.woodys-burger.hu:443GET /en/?g=eUvO HTTP/1.1

0-019000/88/88_
20446634310.01.181.18
108.162.210.249http/1.1www.woodys-burger.hu:443GET /en/?g=MrUQ HTTP/1.1

0-019000/15/15_
2008981550.00.200.20
162.158.19.39http/1.1www.woodys-burger.hu:443GET /en/?g=%RAND% HTTP/1.1

0-019000/47/47_
20089822510.00.680.68
141.101.105.9http/1.1www.woodys-burger.hu:443GET /en/?g=%RAND% HTTP/1.1

0-019000/20/20_
154010730.00.250.25
172.70.80.65http/1.1img.woodys-burger.hu:443GET /.env HTTP/1.1

0-019000/71/71_
20446313380.00.950.95
172.70.82.141http/1.1www.woodys-burger.hu:443GET /en/?g=ZFJn HTTP/1.1

0-019000/1134/1134_
43023840.02.312.31
172.71.150.219http/1.1www.woodys-burger.hu:443GET /css/style.css HTTP/1.1

0-019000/125/125_
15403116070.01.741.74
172.70.80.125http/1.1img.woodys-burger.hu:443GET /server-status HTTP/1.1

0-019000/828/828_
15404014120.01.811.81
172.69.130.10http/1.1img.woodys-burger.hu:443GET /v2/_catalog HTTP/1.1

0-019000/11/11_
2043342470.00.150.15
108.162.221.100http/1.1

0-019000/8/8_
2044601330.00.110.11
172.68.218.132http/1.1

0-019000/13/13_
2043371550.00.170.17
172.71.131.81http/1.1

0-019000/11/11_
2044540470.00.150.15
172.69.90.223http/1.1

0-019000/5/5_
2043241250.00.070.07
162.158.91.88http/1.1

0-019000/4/4_
2043441170.00.050.05
172.71.118.193http/1.1

0-019000/15/15_
2044662650.00.200.20
172.70.255.87http/1.1www.woodys-burger.hu:443GET /en/?g=BRYZo6 HTTP/1.1

0-019000/79/79_
20446623420.01.061.06
172.70.83.61http/1.1www.woodys-burge

Found on 2024-11-02 05:41

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3183ea3a3183ea3a31dea5b321

Apache Status

Apache Server Status for img.woodys-burger.hu (via 192.168.1.2)

Server Version: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4
Server MPM: WinNT
Apache Lounge VS16 Server built: Mar  7 2023 13:21:03

Current Time: Saturday, 02-Nov-2024 02:24:12 Central Europe Standard Time
Restart Time: Tuesday, 29-Oct-2024 00:20:51 Central Europe Standard Time
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 days 2 hours 3 minutes 21 seconds
Server load: -1.00 -1.00 -1.00
Total accesses: 22859 - Total Traffic: 1.1 GB - Total Duration: 5662213
.0648 requests/sec - 3463 B/second - 52.2 kB/request - 247.702 ms/request
11 requests currently being processed, 139 idle workers
_________________________K______________________KWK_____________
_______R____________________R________R_________K_______K________
K_______K_____________
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMSSReqDurConnChildSlotClientProtocolVHostRequest

0-019000/5/5_
1889121230.00.070.07
141.101.68.113http/1.1

0-019000/7/7_
1890542320.00.090.09
172.70.82.141http/1.1www.woodys-burger.hu:443GET /en/?g=ZFJn HTTP/1.1

0-019000/57/57_
18905712590.00.760.76
172.70.82.233http/1.1www.woodys-burger.hu:443GET /en/?g=xje6 HTTP/1.1

0-019000/135/135_
18905735820.01.801.80
172.70.54.52http/1.1www.woodys-burger.hu:443GET /en/?g=q1eeekZ5 HTTP/1.1

0-019000/17/17_
1890541690.00.230.23
172.70.82.141http/1.1www.woodys-burger.hu:443GET /en/?g=ZFJn HTTP/1.1

0-019000/6/6_
1889121260.00.080.08
172.71.218.85http/1.1

0-019000/4/4_
1889580170.00.050.05
141.101.109.172http/1.1

0-019000/40/40_
18905722290.00.530.53
172.70.55.201http/1.1www.woodys-burger.hu:443GET /en/?g=naqAsu15 HTTP/1.1

0-019000/59/59_
18905722890.00.790.79
172.70.55.21http/1.1www.woodys-burger.hu:443GET /en/?g=KEJE HTTP/1.1

0-019000/6/6_
1889291210.00.080.08
162.158.190.85http/1.1

0-019000/12/12_
1889231530.00.160.16
172.68.50.164http/1.1

0-019000/33/33_
18905831520.00.440.44
172.70.55.85http/1.1www.woodys-burger.hu:443GET /en/?g=3WBkgK5 HTTP/1.1

0-019000/14/14_
1889140590.00.190.19
162.158.162.34http/1.1

0-019000/33/33_
18905711680.00.440.44
172.70.83.62http/1.1www.woodys-burger.hu:443GET /en/?g=ejusKp0Vo HTTP/1.1

0-019000/69/69_
18905523010.00.920.92
108.162.210.249http/1.1www.woodys-burger.hu:443GET /en/?g=MrUQ HTTP/1.1

0-019000/81/81_
18905733780.01.081.08
172.70.54.39http/1.1www.woodys-burger.hu:443GET /en/?g=HebKqlcB HTTP/1.1

0-019000/6/6_
1889212270.00.080.08
172.70.254.112http/1.1

0-019000/80/80_
18905823660.01.071.07
172.70.55.22http/1.1www.woodys-burger.hu:443GET /en/?g=KEJE HTTP/1.1

0-019000/5/5_
1889111290.00.070.07
172.69.221.140http/1.1

0-019000/76/76_
18905823530.01.021.02
172.70.255.241http/1.1www.woodys-burger.hu:443GET /en/?g=inLd5CZcn HTTP/1.1

0-019000/4/4_
1889251190.00.050.05
172.68.50.156http/1.1

0-019000/23/23_
1889172920.00.310.31
198.41.230.68http/1.1

0-019000/11/11_
1890561470.00.150.15
172.70.83.66http/1.1www.woodys-burger.hu:443GET /en/?g=IPOBF HTTP/1.1

0-019000/75/75_
18905733220.01.001.00
172.70.54.52http/1.1www.woodys-burger.hu:443GET /en/?g=q1eeekZ5 HTTP/1.1

0-019000/5/5_
1889591290.00.050.05
172.70.46.160http/1.1smashbrothers.hu:443GET / HTTP/1.1

0-019002/1149/1149K
3421840.61.991.99
108.162.241.147http/1.1img.woodys-burger.hu:443GET / HTTP/1.1

0-019000/61/61_
18905712680.00.820.82
172.70.54.38http/1.1www.woodys-burger.hu:443GET /en/?g=HebKqlcB HTTP/1.1

0-019000/6/6_
1889132320.00.080.08
172.70.143.25http/1.1

0-019000/49/49_
18905722190.00.660.66
172.70.55.202http/1.1www.woodys-burger.hu:443GET /en/?g=naqAsu15 HTTP/1.1

0-019000/52/52_
18905832370.00.700.70
172.70.255.243http/1.1www.woodys-burger.hu:443GET /en/?g=wFyE09Z HTTP/1.1

0-019000/4/4_
1889221170.00.050.05
172.68.159.50http/1.1

0-019000/98/98_
18905614650.01.311.31
172.70.83.31http/1.1www.woodys-burger.hu:443GET /en/?g=FQYjV0 HTTP/1.1

0-019000/52/52_
18905822570.00.700.70
172.70.82.233http/1.1www.woodys-burger.hu:443GET /en/?g=xje6 HTTP/1.1

0-019000/60/60_
18905832620.00.800.80
172.70.83.61http/1.1www.woodys-burger.hu:443GET /en/?g=ejusKp0Vo HTTP/1.1

0-019000/27/27_
18905711370.00.360.36
172.70.55.22http/1.1www.woodys-burger.hu:443GET /en/?g=KEJE HTTP/1.1

0-019000/9/9_
1889221370.00.120.12
162.158.210.71http/1.1

0-019000/7/7_
1889281270.00.090.09
162.158.202.96http/1.1

0-019000/90/90_
18905724300.01.201.20
172.70.83.158http/1.1www.woodys-burger.hu:443GET /en/?g=6zVj HTTP/1.1

0-019000/50/50_
18905822320.00.670.67
108.162.210.249http/1.1www.woodys-burger.hu:443GET /en/?g=MrUQ HTTP/1.1

0-019000/88/88_
18905844150.01.181.18
172.70.54.47http/1.1www.woodys-burger.hu:443GET /en/?g=7xWI0GlFHC HTTP/1.1

0-019000/4/4_
1889141190.00.050.05
162.158.138.101http/1.1

0-019000/6/6_
1889191250.00.080.08
172.71.26.111http/1.1

0-019000/42/42_
18905842250.00.560.56
172.70.54.4http/1.1www.woodys-burger.hu:443GET /en/?g=eUvO HTTP/1.1

0-019000/88/88_
18905734310.01.181.18
108.162.210.249http/1.1www.woodys-burger.hu:443GET /en/?g=MrUQ HTTP/1.1

0-019000/15/15_
1854891550.00.200.20
162.158.19.39http/1.1www.woodys-burger.hu:443GET /en/?g=%RAND% HTTP/1.1

0-019000/47/47_
18548922510.00.680.68
141.101.105.9http/1.1www.woodys-burger.hu:443GET /en/?g=%RAND% HTTP/1.1

0-019000/19/19_
1854892730.00.250.25
162.158.120.178http/1.1www.woodys-burger.hu:443GET /en/?g=%RAND% HTTP/1.1

0-019000/71/71_
18905413380.00.950.95
172.70.82.141http/1.1www.woodys-burger.hu:443GET /en/?g=ZFJn HTTP/1.1

0-019001/1068/1068K
1023000.32.182.18
108.162.241.8http/1.1img.woodys-burger.hu:443GET /debug/default/view?panel=config HTTP/1.1

0-019000/124/124W
0016050.01.701.70
172.70.80.125http/1.1img.woodys-burger.hu:443GET /server-status HTTP/1.1

0-019001/828/828K
0014120.31.811.81
172.69.130.10http/1.1img.woodys-burger.hu:443GET /v2/_catalog HTTP/1.1

0-019000/11/11_
1889252470.00.150.15
108.162.221.100http/1.1

0-019000/8/8_
1890521330.00.110.11
172.68.218.132http/1.1

0-019000/13/13_
1889291550.00.170.17
172.71.131.81http/1.1

0-019000/11/11_
1890450470.00.150.15
172.69.90.223http/1.1

0-019000/5/5_
1889161250.00.070.07
162.158.91.88http/1.1

0-019000/4/4_
1889351170.00.050.05
172.71.118.193http/1.1

0-019000/15/15_
1890572650.00.200.20
172.70.255.87http/1.1www.woodys-burger.hu:443GET /en/?g=BRYZo6 HTTP/1.1

0-019000/79/79_
18905723420.01.061.06
172.70.83.61http

Found on 2024-11-02 01:24

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3183ea3a3183ea3a313450e9ba

Apache Status

Apache Server Status for img.woodys-burger.hu (via 192.168.1.2)

Server Version: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4
Server MPM: WinNT
Apache Lounge VS16 Server built: Mar  7 2023 13:21:03

Current Time: Thursday, 31-Oct-2024 02:47:52 Central Europe Standard Time
Restart Time: Tuesday, 29-Oct-2024 00:20:51 Central Europe Standard Time
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  2 days 2 hours 27 minutes 1 second
Server load: -1.00 -1.00 -1.00
Total accesses: 14337 - Total Traffic: 1.1 GB - Total Duration: 5642260
.0789 requests/sec - 6.4 kB/second - 81.6 kB/request - 393.545 ms/request
8 requests currently being processed, 142 idle workers
_________________________W______________________KK___________K__
_______________________________________________K_______K________
K____________________K
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMSSReqDurConnChildSlotClientProtocolVHostRequest

0-019000/5/5_
175321230.00.070.07
141.101.68.113http/1.1

0-019000/7/7_
176742320.00.090.09
172.70.82.141http/1.1www.woodys-burger.hu:443GET /en/?g=ZFJn HTTP/1.1

0-019000/57/57_
1767612590.00.760.76
172.70.82.233http/1.1www.woodys-burger.hu:443GET /en/?g=xje6 HTTP/1.1

0-019000/135/135_
1767735820.01.801.80
172.70.54.52http/1.1www.woodys-burger.hu:443GET /en/?g=q1eeekZ5 HTTP/1.1

0-019000/17/17_
176731690.00.230.23
172.70.82.141http/1.1www.woodys-burger.hu:443GET /en/?g=ZFJn HTTP/1.1

0-019000/6/6_
175321260.00.080.08
172.71.218.85http/1.1

0-019000/4/4_
175780170.00.050.05
141.101.109.172http/1.1

0-019000/40/40_
1767622290.00.530.53
172.70.55.201http/1.1www.woodys-burger.hu:443GET /en/?g=naqAsu15 HTTP/1.1

0-019000/59/59_
1767722890.00.790.79
172.70.55.21http/1.1www.woodys-burger.hu:443GET /en/?g=KEJE HTTP/1.1

0-019000/6/6_
175491210.00.080.08
162.158.190.85http/1.1

0-019000/12/12_
175431530.00.160.16
172.68.50.164http/1.1

0-019000/33/33_
1767831520.00.440.44
172.70.55.85http/1.1www.woodys-burger.hu:443GET /en/?g=3WBkgK5 HTTP/1.1

0-019000/14/14_
175340590.00.190.19
162.158.162.34http/1.1

0-019000/33/33_
1767711680.00.440.44
172.70.83.62http/1.1www.woodys-burger.hu:443GET /en/?g=ejusKp0Vo HTTP/1.1

0-019000/69/69_
1767523010.00.920.92
108.162.210.249http/1.1www.woodys-burger.hu:443GET /en/?g=MrUQ HTTP/1.1

0-019000/81/81_
1767733780.01.081.08
172.70.54.39http/1.1www.woodys-burger.hu:443GET /en/?g=HebKqlcB HTTP/1.1

0-019000/6/6_
175412270.00.080.08
172.70.254.112http/1.1

0-019000/80/80_
1767823660.01.071.07
172.70.55.22http/1.1www.woodys-burger.hu:443GET /en/?g=KEJE HTTP/1.1

0-019000/5/5_
175311290.00.070.07
172.69.221.140http/1.1

0-019000/76/76_
1767823530.01.021.02
172.70.255.241http/1.1www.woodys-burger.hu:443GET /en/?g=inLd5CZcn HTTP/1.1

0-019000/4/4_
175451190.00.050.05
172.68.50.156http/1.1

0-019000/23/23_
175372920.00.310.31
198.41.230.68http/1.1

0-019000/11/11_
176761470.00.150.15
172.70.83.66http/1.1www.woodys-burger.hu:443GET /en/?g=IPOBF HTTP/1.1

0-019000/75/75_
1767733220.01.001.00
172.70.54.52http/1.1www.woodys-burger.hu:443GET /en/?g=q1eeekZ5 HTTP/1.1

0-019000/5/5_
175791290.00.050.05
172.70.46.160http/1.1smashbrothers.hu:443GET / HTTP/1.1

0-019000/61/61W
006610.00.540.54
141.101.76.201http/1.1img.woodys-burger.hu:443GET /server-status HTTP/1.1

0-019000/61/61_
1767712680.00.820.82
172.70.54.38http/1.1www.woodys-burger.hu:443GET /en/?g=HebKqlcB HTTP/1.1

0-019000/6/6_
175332320.00.080.08
172.70.143.25http/1.1

0-019000/49/49_
1767722190.00.660.66
172.70.55.202http/1.1www.woodys-burger.hu:443GET /en/?g=naqAsu15 HTTP/1.1

0-019000/52/52_
1767832370.00.700.70
172.70.255.243http/1.1www.woodys-burger.hu:443GET /en/?g=wFyE09Z HTTP/1.1

0-019000/4/4_
175421170.00.050.05
172.68.159.50http/1.1

0-019000/98/98_
1767614650.01.311.31
172.70.83.31http/1.1www.woodys-burger.hu:443GET /en/?g=FQYjV0 HTTP/1.1

0-019000/52/52_
1767822570.00.700.70
172.70.82.233http/1.1www.woodys-burger.hu:443GET /en/?g=xje6 HTTP/1.1

0-019000/60/60_
1767832620.00.800.80
172.70.83.61http/1.1www.woodys-burger.hu:443GET /en/?g=ejusKp0Vo HTTP/1.1

0-019000/27/27_
1767611370.00.360.36
172.70.55.22http/1.1www.woodys-burger.hu:443GET /en/?g=KEJE HTTP/1.1

0-019000/9/9_
175421370.00.120.12
162.158.210.71http/1.1

0-019000/7/7_
175481270.00.090.09
162.158.202.96http/1.1

0-019000/90/90_
1767724300.01.201.20
172.70.83.158http/1.1www.woodys-burger.hu:443GET /en/?g=6zVj HTTP/1.1

0-019000/50/50_
1767822320.00.670.67
108.162.210.249http/1.1www.woodys-burger.hu:443GET /en/?g=MrUQ HTTP/1.1

0-019000/88/88_
1767844150.01.181.18
172.70.54.47http/1.1www.woodys-burger.hu:443GET /en/?g=7xWI0GlFHC HTTP/1.1

0-019000/4/4_
175331190.00.050.05
162.158.138.101http/1.1

0-019000/6/6_
175391250.00.080.08
172.71.26.111http/1.1

0-019000/42/42_
1767842250.00.560.56
172.70.54.4http/1.1www.woodys-burger.hu:443GET /en/?g=eUvO HTTP/1.1

0-019000/88/88_
1767734310.01.181.18
108.162.210.249http/1.1www.woodys-burger.hu:443GET /en/?g=MrUQ HTTP/1.1

0-019000/15/15_
141091550.00.200.20
162.158.19.39http/1.1www.woodys-burger.hu:443GET /en/?g=%RAND% HTTP/1.1

0-019000/47/47_
1410922510.00.680.68
141.101.105.9http/1.1www.woodys-burger.hu:443GET /en/?g=%RAND% HTTP/1.1

0-019000/19/19_
141092730.00.250.25
162.158.120.178http/1.1www.woodys-burger.hu:443GET /en/?g=%RAND% HTTP/1.1

0-019000/71/71_
1767413380.00.950.95
172.70.82.141http/1.1www.woodys-burger.hu:443GET /en/?g=ZFJn HTTP/1.1

0-019001/95/95K
005370.30.750.75
172.70.46.250http/1.1img.woodys-burger.hu:443GET /about HTTP/1.1

0-019001/35/35K
00820.30.190.19
172.71.103.140http/1.1img.woodys-burger.hu:443GET /.vscode/sftp.json HTTP/1.1

0-019000/36/36_
141092620.00.180.18
172.69.188.183http/1.1www.woodys-burger.hu:443GET /en/?g=%RAND% HTTP/1.1

0-019000/11/11_
175452470.00.150.15
108.162.221.100http/1.1

0-019000/8/8_
176721330.00.110.11
172.68.218.132http/1.1

0-019000/13/13_
175491550.00.170.17
172.71.131.81http/1.1

0-019000/11/11_
176650470.00.150.15
172.69.90.223http/1.1

0-019000/5/5_
175361250.00.070.07
162.158.91.88http/1.1

0-019000/4/4_
175551170.00.050.05
172.71.118.193http/1.1

0-019000/15/15_
176772650.00.200.20
172.70.255.87http/1.1www.woodys-burger.hu:443GET /en/?g=BRYZo6 HTTP/1.1

0-019000/79/79_
1767723420.01.061.06
172.70.83.61http/1.1www.woodys-burger.hu:443GET /en/?g=ejusKp0Vo HTTP

Found on 2024-10-31 01:48

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3183ea3a3183ea3a31e99c8495

Apache Status

Apache Server Status for img.woodys-burger.hu (via 192.168.1.2)

Server Version: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4
Server MPM: WinNT
Apache Lounge VS16 Server built: Mar  7 2023 13:21:03

Current Time: Monday, 28-Oct-2024 14:04:45 Central Europe Standard Time
Restart Time: Monday, 28-Oct-2024 00:54:09 Central Europe Standard Time
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  13 hours 10 minutes 36 seconds
Server load: -1.00 -1.00 -1.00
Total accesses: 1783 - Total Traffic: 4.2 MB - Total Duration: 33305
.0376 requests/sec - 92 B/second - 2464 B/request - 18.6792 ms/request
8 requests currently being processed, 142 idle workers
________________________________________________________________
________________________________________________________________
___________KKKK___KKWK
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMSSReqDurConnChildSlotClientProtocolVHostRequest

0-0213521/203/203K
102290.30.250.25
172.71.182.254http/1.1img.woodys-burger.hu:443GET /server HTTP/1.1

0-0213521/156/156K
001720.30.320.32
172.70.47.12http/1.1img.woodys-burger.hu:443GET /v2/_catalog HTTP/1.1

0-0213521/96/96K
001100.30.150.15
172.71.99.108http/1.1img.woodys-burger.hu:443GET /debug/default/view?panel=config HTTP/1.1

0-0213521/90/90K
101880.30.220.22
172.70.46.250http/1.1img.woodys-burger.hu:443GET /about HTTP/1.1

0-0213520/144/144_
2529502400.00.340.34
172.70.230.243http/1.1www.woodys-burger.hu:443GET /css/style.css HTTP/1.1

0-0213520/23/23_
2529601120.00.160.16
172.70.110.246http/1.1woodys-burger.hu:443GET / HTTP/1.1

0-0213520/27/27_
252951440.00.090.09
162.158.154.61http/1.1www.woodys-burger.hu:443GET / HTTP/1.1

0-0213521/191/191K
003220.30.380.38
172.70.46.16http/1.1img.woodys-burger.hu:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-0213521/350/350K
106560.30.690.69
172.71.103.140http/1.1img.woodys-burger.hu:443GET /.vscode/sftp.json HTTP/1.1

0-0213520/214/214W
00295610.00.430.43
141.101.76.200http/1.1img.woodys-burger.hu:443GET /server-status HTTP/1.1

0-0213522/289/289K
1216660.61.161.16
172.71.103.64http/1.1img.woodys-burger.hu:443GET / HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 32subcaches: 32, indexes per subcache: 88time left on oldest entries' objects: avg: 219 seconds, (range: 87...299)index usage: 1%, cache usage: 1%total entries stored since starting: 3260total entries replaced since starting: 0total entries expired since starting: 3228total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 38 misstotal removes since starting: 0 hit, 3 miss


Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4 Server at img.woodys-burger.hu Port 443

Found on 2024-10-28 13:05

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3183ea3a3183ea3a3148eeb5ce

Apache Status

Apache Server Status for img.woodys-burger.hu (via 192.168.1.2)

Server Version: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4
Server MPM: WinNT
Apache Lounge VS16 Server built: Mar  7 2023 13:21:03

Current Time: Saturday, 26-Oct-2024 17:48:56 Central Europe Daylight Time
Restart Time: Tuesday, 22-Oct-2024 00:02:42 Central Europe Daylight Time
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 days 17 hours 46 minutes 14 seconds
Server load: -1.00 -1.00 -1.00
Total accesses: 18932 - Total Traffic: 67.5 MB - Total Duration: 109564
.0462 requests/sec - 172 B/second - 3741 B/request - 5.78724 ms/request
8 requests currently being processed, 142 idle workers
________________________________________________________________
______________________________________________________K_________
_K___K__K__K_KW______K
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMSSReqDurConnChildSlotClientProtocolVHostRequest

0-0207281/524/524K
00261500.32.142.14
172.70.46.17http/1.1img.woodys-burger.hu:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-0207280/414/414_
2875169880.05.175.17
172.71.134.160http/1.1www.woodys-burger.hu:443GET / HTTP/1.1

0-0207280/198/198_
137802400.00.330.33
172.70.127.57http/1.1notionsystem.hu:443GET / HTTP/1.1

0-0207280/139/139_
287421350.00.150.15
162.158.14.161http/1.1www.woodys-burger.hu:443GET / HTTP/1.1

0-0207280/452/452_
2875131140.03.133.13
172.69.43.213http/1.1www.woodys-burger.hu:443GET / HTTP/1.1

0-0207281/456/456K
0112030.30.870.87
172.71.103.139http/1.1img.woodys-burger.hu:443GET /.vscode/sftp.json HTTP/1.1

0-0207280/526/526_
2875044240.01.341.34
162.158.14.220http/1.1woodys-burger.hu:443GET / HTTP/1.1

0-0207280/625/625_
287507650.01.251.25
172.70.246.51http/1.1www.woodys-burger.hu:443GET / HTTP/1.1

0-0207281/595/595K
0036200.32.702.70
172.70.47.11http/1.1img.woodys-burger.hu:443GET /v2/_catalog HTTP/1.1

0-0207280/1755/1755_
2875043940.03.663.66
172.71.144.78http/1.1woodys-burger.hu:443GET / HTTP/1.1

0-0207281/365/365K
0034690.32.482.48
172.70.46.251http/1.1img.woodys-burger.hu:443GET /about HTTP/1.1

0-0207280/928/928_
2874038740.03.093.09
172.70.255.112http/1.1www.woodys-burger.hu:443GET / HTTP/1.1

0-0207280/1023/1023_
10961029460.02.432.43
172.70.55.95http/1.1woodys-burger.hu:443GET / HTTP/1.1

0-0207281/1005/1005K
0037960.33.573.57
172.71.99.108http/1.1img.woodys-burger.hu:443GET /debug/default/view?panel=config HTTP/1.1

0-0207280/1444/1444_
28750108730.04.654.65
172.70.55.96http/1.1woodys-burger.hu:443GET / HTTP/1.1

0-0207281/1104/1104K
1063200.34.284.28
172.71.182.254http/1.1img.woodys-burger.hu:443GET /server HTTP/1.1

0-0207280/755/755W
0028310.01.781.78
141.101.76.201http/1.1img.woodys-burger.hu:443GET /server-status HTTP/1.1

0-0207280/156/156_
2875013890.02.972.97
172.71.127.120http/1.1woodys-burger.hu:443GET / HTTP/1.1

0-0207280/521/521_
287409900.01.011.01
162.158.162.97http/1.1woodys-burger.hu:443GET / HTTP/1.1

0-0207280/854/854_
2875043140.02.792.79
172.70.162.153http/1.1woodys-burger.hu:443GET / HTTP/1.1

0-0207280/1460/1460_
10961022770.03.303.30
172.68.111.13http/1.1woodys-burger.hu:443GET / HTTP/1.1

0-0207280/788/788_
1378050730.07.237.23
172.69.59.67http/1.1notionsystem.hu:443GET / HTTP/1.1

0-0207280/2076/2076_
10961054870.04.914.91
172.71.127.120http/1.1woodys-burger.hu:443GET / HTTP/1.1

0-0207282/769/769K
1348790.62.312.31
172.71.103.64http/1.1img.woodys-burger.hu:443GET / HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 36subcaches: 32, indexes per subcache: 88time left on oldest entries' objects: avg: 199 seconds, (range: 42...299)index usage: 1%, cache usage: 1%total entries stored since starting: 28563total entries replaced since starting: 0total entries expired since starting: 28524total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 196 misstotal removes since starting: 3 hit, 10 miss


Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4 Server at img.woodys-burger.hu Port 443

Found on 2024-10-26 15:49

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3183ea3a3183ea3a3114e8aa3d

Apache Status

Apache Server Status for img.woodys-burger.hu (via 192.168.1.2)

Server Version: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4
Server MPM: WinNT
Apache Lounge VS16 Server built: Mar  7 2023 13:21:03

Current Time: Thursday, 24-Oct-2024 19:21:15 Central Europe Daylight Time
Restart Time: Tuesday, 22-Oct-2024 00:02:42 Central Europe Daylight Time
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  2 days 19 hours 18 minutes 33 seconds
Server load: -1.00 -1.00 -1.00
Total accesses: 12044 - Total Traffic: 44.4 MB - Total Duration: 73732
.0497 requests/sec - 192 B/second - 3867 B/request - 6.12189 ms/request
8 requests currently being processed, 142 idle workers
________________________________________________________________
______________________________________________________K________W
_K__K_______KK______KK
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMSSReqDurConnChildSlotClientProtocolVHostRequest

0-0207281/310/310K
00244400.30.690.69
172.70.47.12http/1.1img.woodys-burger.hu:443GET /v2/_catalog HTTP/1.1

0-0207280/268/268_
23007059300.04.234.23
172.71.131.204http/1.1rp.notionrp.hu:80GET /app-ads.txt HTTP/1.1

0-0207280/95/95W
001000.00.100.10
141.101.76.200http/1.1img.woodys-burger.hu:443GET /server-status HTTP/1.1

0-0207281/191/191K
005960.30.380.38
172.70.46.16http/1.1img.woodys-burger.hu:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-0207280/203/203_
817106750.00.520.52
141.94.203.6http/1.1play.notionrp.hu:443GET //players.json HTTP/1.1

0-0207281/509/509K
006290.31.011.01
172.71.99.108http/1.1img.woodys-burger.hu:443GET /debug/default/view?panel=config HTTP/1.1

0-0207280/251/251_
23009212980.00.810.81
172.69.223.170http/1.1www.notionsystem.hu:443GET / HTTP/1.1

0-0207280/1584/1584_
23007042080.03.353.35
172.69.223.96http/1.1rp.notionrp.hu:80GET /sellers.json HTTP/1.1

0-0207280/90/90_
23007013350.01.761.76
172.71.126.233http/1.1www.notionsystem.hu:443GET /app-ads.txt HTTP/1.1

0-0207280/835/835_
8168137600.02.932.93
172.70.175.164http/1.1www.woodys-burger.hu:443GET /css/fonts/unisansheavy.otf HTTP/1.1

0-0207280/515/515_
23007023940.01.721.72
141.101.68.54http/1.1woodys-burger.hu:443GET /app-ads.txt HTTP/1.1

0-0207280/886/886_
23007136700.03.413.41
141.101.95.34http/1.1woodys-burger.hu:443GET /ads.txt HTTP/1.1

0-0207282/744/744K
1344150.62.222.22
172.71.103.64http/1.1img.woodys-burger.hu:443GET / HTTP/1.1

0-0207281/876/876K
1018120.32.102.10
172.71.183.2http/1.1img.woodys-burger.hu:443GET /server HTTP/1.1

0-0207280/251/251_
2301005830.00.580.58
172.71.134.106http/1.1rp.notionrp.hu:80HEAD / HTTP/1.1

0-0207280/135/135_
23007013640.02.932.93
141.101.95.83http/1.1www.notionsystem.hu:443GET /sellers.json HTTP/1.1

0-0207280/276/276_
816907120.00.580.58
162.158.79.7http/1.1woodys-burger.hu:443GET / HTTP/1.1

0-0207280/410/410_
23008138170.01.951.95
172.71.134.161http/1.1www.woodys-burger.hu:443GET / HTTP/1.1

0-0207280/1099/1099_
8168018710.02.712.71
172.70.35.201http/1.1www.woodys-burger.hu:443GET / HTTP/1.1

0-0207280/616/616_
8168040000.06.446.44
172.68.245.184http/1.1www.woodys-burger.hu:443GET /css/style.css HTTP/1.1

0-0207281/1506/1506K
1038970.32.932.93
172.71.103.139http/1.1img.woodys-burger.hu:443GET /.vscode/sftp.json HTTP/1.1

0-0207281/394/394K
0122130.31.041.04
172.70.46.251http/1.1img.woodys-burger.hu:443GET /about HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 30subcaches: 32, indexes per subcache: 88time left on oldest entries' objects: avg: 243 seconds, (range: 175...299)index usage: 1%, cache usage: 1%total entries stored since starting: 17225total entries replaced since starting: 0total entries expired since starting: 17195total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 106 misstotal removes since starting: 0 hit, 7 miss


Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4 Server at img.woodys-burger.hu Port 443

Found on 2024-10-24 17:21

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3183ea3a3183ea3a315277d056

Apache Status

Apache Server Status for img.woodys-burger.hu (via 192.168.1.2)

Server Version: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4
Server MPM: WinNT
Apache Lounge VS16 Server built: Mar  7 2023 13:21:03

Current Time: Tuesday, 22-Oct-2024 18:55:38 Central Europe Daylight Time
Restart Time: Tuesday, 22-Oct-2024 00:02:42 Central Europe Daylight Time
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  18 hours 52 minutes 56 seconds
Server load: -1.00 -1.00 -1.00
Total accesses: 4351 - Total Traffic: 26.6 MB - Total Duration: 20221
.064 requests/sec - 410 B/second - 6.3 kB/request - 4.64744 ms/request
8 requests currently being processed, 142 idle workers
________________________________________________________________
___________________________________________________________K____
______K__K__WK____KKK_
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMSSReqDurConnChildSlotClientProtocolVHostRequest

0-0207281/131/131K
1019810.33.793.79
172.69.130.71http/1.1img.woodys-burger.hu:443GET /about HTTP/1.1

0-0207281/707/707K
2016020.31.731.73
172.70.80.111http/1.1img.woodys-burger.hu:443GET /server HTTP/1.1

0-0207280/42/42_
66639110260.01.571.57
172.71.98.210http/1.1www.woodys-burger.hu:443GET /en/ HTTP/1.1

0-0207281/608/608K
1115410.31.871.87
108.162.241.8http/1.1img.woodys-burger.hu:443GET /debug/default/view?panel=config HTTP/1.1

0-0207280/8/8_
823103640.00.150.15
172.68.50.98http/1.1www.pekrokut.hu:443GET /admin/plugins/jquery-file-upload/server/php/index.php?file

0-0207280/454/454_
8231125000.02.392.39
172.68.18.6http/1.1

0-0207280/253/253W
007630.00.850.85
172.70.80.124http/1.1img.woodys-burger.hu:443GET /server-status HTTP/1.1

0-0207282/568/568K
3314390.61.421.42
108.162.241.147http/1.1img.woodys-burger.hu:443GET / HTTP/1.1

0-0207280/61/61_
64326212670.02.792.79
172.71.102.185http/1.1www.woodys-burger.hu:443GET /en/ HTTP/1.1

0-0207281/179/179K
008990.31.471.47
172.69.130.10http/1.1img.woodys-burger.hu:443GET /v2/_catalog HTTP/1.1

0-0207281/104/104K
0031160.35.795.79
172.70.80.67http/1.1img.woodys-burger.hu:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-0207281/1214/1214K
2035800.32.502.50
108.162.241.163http/1.1img.woodys-burger.hu:443GET /.vscode/sftp.json HTTP/1.1

0-0207280/22/22_
6663821360.00.300.30
35.188.230.68http/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 36subcaches: 32, indexes per subcache: 88time left on oldest entries' objects: avg: 168 seconds, (range: 35...299)index usage: 1%, cache usage: 1%total entries stored since starting: 4891total entries replaced since starting: 0total entries expired since starting: 4855total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 22 misstotal removes since starting: 0 hit, 2 miss


Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4 Server at img.woodys-burger.hu Port 443

Found on 2024-10-22 16:55

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3183ea3a3183ea3a31d859168e

Apache Status

Apache Server Status for img.woodys-burger.hu (via 192.168.1.2)

Server Version: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4
Server MPM: WinNT
Apache Lounge VS16 Server built: Mar  7 2023 13:21:03

Current Time: Sunday, 20-Oct-2024 18:51:53 Central Europe Daylight Time
Restart Time: Wednesday, 16-Oct-2024 16:47:07 Central Europe Daylight Time
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 days 2 hours 4 minutes 45 seconds
Server load: -1.00 -1.00 -1.00
Total accesses: 18739 - Total Traffic: 51.6 MB - Total Duration: 83381
.0531 requests/sec - 153 B/second - 2885 B/request - 4.4496 ms/request
7 requests currently being processed, 143 idle workers
________________________________________________________________
__________________________________________________K_________KW__
_KK_K_______________K_
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMSSReqDurConnChildSlotClientProtocolVHostRequest

0-059440/9/9_
3070381150.00.010.01
172.70.46.169http/1.1play.notionrp.hu:443GET /dump.sql HTTP/1.1

0-059440/10/10_
3070380110.00.020.02
172.71.182.127http/1.1play.notionrp.hu:443GET / HTTP/1.1

0-059440/13/13_
92851140.00.010.01
172.70.39.70http/1.1shrt.notionsystem.hu:443GET /jellyfinweb/node_modules.react-dom.bundle.js?4eb8ea179f4fc

0-059441/37/37K
23450.30.030.03
172.71.99.177http/1.1img.woodys-burger.hu:443GET / HTTP/1.1

0-059440/302/302_
9286041930.01.331.33
172.71.223.48http/1.1shrt.notionsystem.hu:443GET /jellyfinweb/node_modules.lodash-es.bundle.js?4eb8ea179f4fc

0-059440/133/133_
9288251710.00.130.13
172.71.223.90http/1.1shrt.notionsystem.hu:443GET /jellyfinweb/[email protected]?4eb8ea17

0-059440/117/117_
25630530.00.040.04
172.69.7.189http/1.1cdn.pekrokut.hu:443GET /images/social/yt.svg HTTP/1.1

0-059440/7/7_
54030060.00.000.00
128.116.151.24http/1.1rp.notionrp.hu:80GET /phpMyAdmin5.1/index.php?lang=en HTTP/1.1

0-059440/50/50_
928824800.00.020.02
172.71.194.196http/1.1shrt.notionsystem.hu:443GET /jellyfinweb/[email protected]?4eb8ea179

0-059440/9/9_
9286160.00.000.00
172.71.222.72http/1.1shrt.notionsystem.hu:443GET /jellyfinweb/[email protected]?4

0-059440/280/280_
9286460060.01.111.11
172.70.43.210http/1.1shrt.notionsystem.hu:443GET /jellyfinweb/node_modules.react-transition-group.bundle.js?

0-059440/9/9_
540340110.00.000.00
162.158.23.78http/1.1www.notionsystem.hu:443GET /phpMyAdmin-4.9.10-all-languages/index.php?lang=en HTTP/1.1

0-059440/427/427_
9286149090.06.636.63
172.68.244.133http/1.1shrt.notionsystem.hu:443GET /jellyfinweb/node_modules.core-js.bundle.js?4eb8ea179f4fc2b

0-059442/534/534K
0024140.61.021.02
172.71.102.106http/1.1img.woodys-burger.hu:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-059441/431/431W
0046610.31.301.30
172.71.182.214http/1.1img.woodys-burger.hu:443GET /server-status HTTP/1.1

0-059440/489/489_
9287630940.01.721.72
172.70.39.49http/1.1shrt.notionsystem.hu:443GET /jellyfinweb/[email protected]?4eb8ea179f4

0-059440/536/536_
256325800.00.750.75
172.69.6.13http/1.1cdn.pekrokut.hu:443GET /images/Logo.svg HTTP/1.1

0-059440/8/8_
54034080.00.000.00
128.116.151.24http/1.1rp.notionrp.hu:80GET /phpMyAdmin-latest-english/index.php?lang=en HTTP/1.1

0-059441/323/323K
1066290.31.831.83
172.71.103.125http/1.1img.woodys-burger.hu:443GET /server HTTP/1.1

0-059441/41/41K
1012480.30.490.49
172.71.183.17http/1.1img.woodys-burger.hu:443GET /.vscode/sftp.json HTTP/1.1

0-059440/10/10_
54029080.00.000.00
162.158.22.54http/1.1www.notionsystem.hu:443GET /phpMyAdmin-5.2.0-all-languages/index.php?lang=en HTTP/1.1

0-059441/719/719K
0025120.31.371.37
172.70.47.13http/1.1img.woodys-burger.hu:443GET /about HTTP/1.1

0-059440/857/857_
92881429610.01.781.78
172.70.174.153http/1.1shrt.notionsystem.hu:443GET /jellyfinweb/60232.css?4eb8ea179f4fc2baed3a HTTP/1.1

0-059440/461/461_
2564115760.01.291.29
172.70.127.91http/1.1www.pekrokut.hu:443GET / HTTP/1.1

0-059440/1888/1888_
9285131750.02.312.31
172.71.194.145http/1.1shrt.notionsystem.hu:443GET /jellyfinweb/[email protected]?4eb8ea17

0-059440/423/423_
54031019510.01.111.11
128.116.151.24http/1.1rp.notionrp.hu:80GET /phpMyAdmin3/index.php?lang=en HTTP/1.1

0-059440/310/310_
9287120260.01.311.31
172.70.175.53http/1.1shrt.notionsystem.hu:443GET /jellyfinweb/[email protected]?4eb

0-059440/931/931_
9288259260.03.003.00
172.70.134.214http/1.1shrt.notionsystem.hu:443GET /jellyfinweb/runtime.bundle.js?4eb8ea179f4fc2baed3a HTTP/1.

0-059440/966/966_
92881114070.01.661.66
172.71.194.62http/1.1shrt.notionsystem.hu:443GET /jellyfinweb/[email protected]?4eb8ea179

0-059440/2437/2437_
9287139280.04.214.21
172.71.194.91http/1.1shrt.notionsystem.hu:443GET /jellyfinweb/node_modules.date-fns.esm.bundle.js?4eb8ea179f

0-059440/251/251_
54029023250.01.291.29
128.116.151.24http/1.1rp.notionrp.hu:80GET /mysql/web/index.php?lang=en HTTP/1.1

0-059440/1110/1110_
2563129080.02.172.17
172.69.58.43http/1.1www.pekrokut.hu:443GET / HTTP/1.1

0-059440/390/390_
9287831190.02.222.22
172.68.15.212http/1.1shrt.notionsystem.hu:443GET /jellyfinweb/[email protected]?4eb8ea179f4f

0-059440/68/68_
928784200.00.620.62
172.70.35.39http/1.1shrt.notionsystem.hu:443GET /jellyfinweb/[email protected]?4e

0-059440/332/332_
92882729080.03.343.34
172.71.190.55http/1.1shrt.notionsystem.hu:443GET /jellyfinweb/main.jellyfin.css?4eb8ea179f4fc2baed3a HTTP/1.

0-059440/776/776_
9287126040.02.022.02
172.70.34.122http/1.1shrt.notionsystem.hu:443GET /jellyfinweb/[email protected]?4eb8ea179f4fc

0-059440/676/676_
928616700.00.800.80
172.71.194.128http/1.1shrt.notionsystem.hu:443GET /jellyfinweb/node_modules.axios.bundle.js?4eb8ea179f4fc2bae

0-059441/496/496K
2316480.31.291.29
172.71.182.223http/1.1img.woodys-burger.hu:443GET / HTTP/1.1

0-059440/1873/1873_
9286171370.03.323.32
172.71.222.87http/1.1shrt.notionsystem.hu:443GET /jellyfinweb/[email protected]?4eb8ea17


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 30subcaches: 32, indexes per subcache: 88time left on oldest entries' objects: avg: 207 seconds, (range: 55...298)index usage: 1%, cache usage: 1%total entries stored since starting: 23852total entries replaced since starting: 0total entries expired since starting: 23819total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 176 misstotal removes since starting: 3 hit, 10 miss


Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4 Server at img.woodys-burger.hu Port 443

Found on 2024-10-20 16:52

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3183ea3a3183ea3a31559ff75e

Apache Status

Apache Server Status for img.woodys-burger.hu (via 192.168.1.2)

Server Version: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4
Server MPM: WinNT
Apache Lounge VS16 Server built: Mar  7 2023 13:21:03

Current Time: Friday, 18-Oct-2024 17:54:31 Central Europe Daylight Time
Restart Time: Wednesday, 16-Oct-2024 16:47:07 Central Europe Daylight Time
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  2 days 1 hour 7 minutes 23 seconds
Server load: -1.00 -1.00 -1.00
Total accesses: 10441 - Total Traffic: 24.5 MB - Total Duration: 32291
.059 requests/sec - 145 B/second - 2459 B/request - 3.09271 ms/request
9 requests currently being processed, 141 idle workers
________________________________________________________________
____________________________________________________________K_KW
_K__KKK_____KK________
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMSSReqDurConnChildSlotClientProtocolVHostRequest

0-059440/9/9_
1307971150.00.010.01
172.70.46.169http/1.1play.notionrp.hu:443GET /dump.sql HTTP/1.1

0-059440/10/10_
1307970110.00.020.02
172.71.182.127http/1.1play.notionrp.hu:443GET / HTTP/1.1

0-059440/8/8_
130797170.00.010.01
172.71.98.131http/1.1play.notionrp.hu:443GET /_vti_pvt/service.pwd HTTP/1.1

0-059440/2/2_
130797120.00.000.00
172.71.103.96http/1.1play.notionrp.hu:443GET /backup.zip HTTP/1.1

0-059440/2/2_
130797120.00.000.00
172.71.94.145http/1.1play.notionrp.hu:443GET /.ssh/id_rsa HTTP/1.1

0-059440/2/2_
130797000.00.000.00
172.70.46.103http/1.1play.notionrp.hu:443GET /.aws/credentials HTTP/1.1

0-059440/2/2_
130797000.00.000.00
172.71.98.128http/1.1play.notionrp.hu:443GET /_vti_pvt/authors.pwd HTTP/1.1

0-059440/2/2_
130797140.00.000.00
172.70.46.5http/1.1play.notionrp.hu:443GET /web.config HTTP/1.1

0-059440/2/2_
130796000.00.000.00
172.71.98.98http/1.1play.notionrp.hu:443GET /config.php HTTP/1.1

0-059440/2/2_
130796120.00.000.00
172.71.94.117http/1.1play.notionrp.hu:443GET /config.yaml HTTP/1.1

0-059440/2/2_
130797120.00.000.00
172.71.183.61http/1.1play.notionrp.hu:443GET /config.yml HTTP/1.1

0-059440/2/2_
130796130.00.000.00
172.71.99.196http/1.1play.notionrp.hu:443GET /.env HTTP/1.1

0-059440/2/2_
130796140.00.000.00
172.71.182.18http/1.1play.notionrp.hu:443GET /user_secrets.yml HTTP/1.1

0-059441/44/44K
00510.30.080.08
172.70.46.207http/1.1img.woodys-burger.hu:443GET /v2/_catalog HTTP/1.1

0-059440/2/2_
130796000.00.000.00
172.71.94.157http/1.1play.notionrp.hu:443GET /secrets.json HTTP/1.1

0-059441/67/67K
10990.30.100.10
172.71.103.125http/1.1img.woodys-burger.hu:443GET /server HTTP/1.1

0-059440/235/235W
002470.00.320.32
172.71.102.204http/1.1img.woodys-burger.hu:443GET /server-status HTTP/1.1

0-059440/2/2_
130796000.00.000.00
172.71.98.130http/1.1play.notionrp.hu:443GET /.ssh/id_ecdsa HTTP/1.1

0-059441/64/64K
01810.30.170.17
172.71.99.58http/1.1img.woodys-burger.hu:443GET /about HTTP/1.1

0-059440/2/2_
130796000.00.000.00
172.71.99.54http/1.1play.notionrp.hu:443GET /.svn/wc.db HTTP/1.1

0-059440/2/2_
130796000.00.000.00
172.71.183.225http/1.1play.notionrp.hu:443GET /.env.production HTTP/1.1

0-059441/425/425K
007490.30.540.54
172.71.94.245http/1.1img.woodys-burger.hu:443GET /debug/default/view?panel=config HTTP/1.1

0-059441/207/207K
1317410.30.750.75
172.71.98.73http/1.1img.woodys-burger.hu:443GET / HTTP/1.1

0-059441/137/137K
0011860.30.760.76
172.71.94.77http/1.1img.woodys-burger.hu:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-059440/1877/1877_
22749031670.02.312.31
172.71.131.173http/1.1www.notionsystem.hu:443GET / HTTP/1.1

0-059440/39/39_
22748115200.00.510.51
172.71.123.66http/1.1play.notionrp.hu:443GET /favicon.ico HTTP/1.1

0-059440/304/304_
130796020220.01.301.30
172.70.47.96http/1.1play.notionrp.hu:443GET /config/production.json HTTP/1.1

0-059440/521/521_
22748054210.02.332.33
172.69.223.95http/1.1rp.notionrp.hu:80GET /ads.txt HTTP/1.1

0-059440/645/645_
2274906760.00.820.82
172.71.126.147http/1.1rp.notionrp.hu:80GET /favicon.ico HTTP/1.1

0-059441/1692/1692K
2220760.32.612.61
172.71.99.141http/1.1img.woodys-burger.hu:443GET / HTTP/1.1

0-059441/16/16K
1010010.30.470.47
172.71.183.17http/1.1img.woodys-burger.hu:443GET /.vscode/sftp.json HTTP/1.1

0-059440/1027/1027_
22749328250.02.072.07
172.71.118.102http/1.1proxy.notionsystem.hu:443GET /?url=https://cdn.notionsystem.hu/img/favicon/favicon.ico H

0-059440/230/230_
2274207780.01.041.04
172.71.130.194http/1.1rp.notionrp.hu:80GET / HTTP/1.1

0-059440/55/55_
13079603830.00.620.62
172.71.183.117http/1.1play.notionrp.hu:443GET /wp-admin/setup-config.php HTTP/1.1

0-059440/315/315_
130797028400.03.333.33
172.71.103.171http/1.1play.notionrp.hu:443GET /cloud-config.yml HTTP/1.1

0-059440/769/769_
130796126000.02.022.02
172.71.98.99http/1.1play.notionrp.hu:443GET /.ssh/id_ed25519 HTTP/1.1

0-059440/546/546_
2274904910.00.460.46
172.71.118.202http/1.1play.notionrp.hu:443GET / HTTP/1.1

0-059440/453/453_
130796015790.01.221.22
172.70.47.178http/1.1play.notionrp.hu:443GET /etc/shadow HTTP/1.1

0-059440/718/718_
2274906930.00.620.62
172.71.118.216http/1.1www.notionsystem.hu:443GET /favicon.ico HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 34subcaches: 32, indexes per subcache: 88time left on oldest entries' objects: avg: 254 seconds, (range: 116...299)index usage: 1%, cache usage: 1%total entries stored since starting: 12003total entries replaced since starting: 0total entries expired since starting: 11969total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 85 misstotal removes since starting: 0 hit, 3 miss


Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4 Server at img.woodys-burger.hu Port 443

Found on 2024-10-18 15:54

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3183ea3a3183ea3a3136620000

Apache Status

Apache Server Status for img.woodys-burger.hu (via 192.168.1.2)

Server Version: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4
Server MPM: WinNT
Apache Lounge VS16 Server built: Mar  7 2023 13:21:03

Current Time: Wednesday, 16-Oct-2024 17:14:41 Central Europe Daylight Time
Restart Time: Wednesday, 16-Oct-2024 16:47:07 Central Europe Daylight Time
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  27 minutes 34 seconds
Server load: -1.00 -1.00 -1.00
Total accesses: 984 - Total Traffic: 495 kB - Total Duration: 859
.595 requests/sec - 306 B/second - 515 B/request - .872967 ms/request
9 requests currently being processed, 141 idle workers
________________________________________________________________
________________________________________________________________
_____________WKKKKKKKK
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMSSReqDurConnChildSlotClientProtocolVHostRequest

0-059440/0/0W
0178013851600.00.000.00
172.70.47.13http/1.1img.woodys-burger.hu:443GET /server-status HTTP/1.1

0-059441/1/1K
0240.30.000.00
172.71.103.15http/1.1img.woodys-burger.hu:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-059441/1/1K
0010.30.000.00
172.70.47.124http/1.1img.woodys-burger.hu:443GET /debug/default/view?panel=config HTTP/1.1

0-059441/1/1K
0120.30.000.00
172.71.99.120http/1.1img.woodys-burger.hu:443GET /about HTTP/1.1

0-059442/2/2K
0170.60.000.00
172.70.47.33http/1.1img.woodys-burger.hu:443GET /.vscode/sftp.json HTTP/1.1

0-059441/451/451K
241090.30.160.16
172.71.183.173http/1.1img.woodys-burger.hu:443GET / HTTP/1.1

0-059441/362/362K
122490.30.150.15
172.71.98.46http/1.1img.woodys-burger.hu:443GET / HTTP/1.1

0-059441/157/157K
244720.30.170.17
172.71.183.17http/1.1img.woodys-burger.hu:443GET / HTTP/1.1

0-059442/9/9K
01120.60.000.00
172.71.182.214http/1.1img.woodys-burger.hu:443GET /v2/_catalog HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 34subcaches: 32, indexes per subcache: 88time left on oldest entries' objects: avg: 182 seconds, (range: 21...299)index usage: 1%, cache usage: 1%total entries stored since starting: 144total entries replaced since starting: 0total entries expired since starting: 110total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss


Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4 Server at img.woodys-burger.hu Port 443

Found on 2024-10-16 15:14

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: intel.coloringco.com.au
Port: 80
URL: http://intel.coloringco.com.au

First seen 2024-06-12 14:14
Last seen 2024-11-22 23:31
Open for 163 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbf3e43805

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://gitlab.websiteserverhost.net/lopadas/croftech.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[branch "design_changes"]
	remote = origin
	merge = refs/heads/design_changes
[branch "development"]
	remote = origin
	merge = refs/heads/development

Found on 2024-11-22 23:31

466 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb097dba6d

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://gitlab.websiteserverhost.net/lopadas/croftech.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main

Found on 2024-09-03 23:24

316 Bytes

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: npm-registry.cdn-gitlab-202.clubdrei.com
Port: 443
URL: https://npm-registry.cdn-gitlab-202.clubdrei.com

First seen 2024-05-25 15:23
Last seen 2024-11-22 22:18
Open for 181 days

Fingerprint: b18befd9dd653682bd555f2abd555f2abd555f2abd555f2abd555f2abd555f2a

{"_id":"config.json","_rev":"20-06a48c50606e9c65b6ed04112ea371ac","name":"config.json","description":"nconf wrapper that simplifies work with environment specific configuration files.","dist-tags":{"latest":"0.0.4"},"versions":{"0.0.1":{"version":"0.0.1","name":"config.json","description":"nconf wrapper that simplifies work with environment specific configuration files.","keywords":["configuration","config","json","nconf","wrapper"],"author":{"name":"Romuald Bulyshko","email":"romuald@bulyshko.com","url":"http://romualdbulyshko.com"},"repository":{"type":"git","url":"https://github.com/bulyshko/config.json"},"bugs":"https://github.com/bulyshko/config.json/issues","main":"./lib/config.js","dependencies":{"nconf":"0.6.7"},"devDependencies":{"mocha":"1.9.0"},"scripts":{"test":"mocha test/*-test.js"},"_id":"config.json@0.0.1","dist":{"shasum":"3b5cf4feedc246e5464de3e3404e084280ff045d","tarball":"https://registry.npmjs.org/config.json/-/config.json-0.0.1.tgz","integrity":"sha512-FSPsWzk2JYowOd/q55LUzNoET2UnRijM6dCxHGu27WEqLiS/AfBf4mt0CW25DxmiCSSAlsErznpgJ5VxK8D+4Q==","signatures":[{"keyid":"SHA256:jl3bwswu80PjjokCgh0o2w5c2U4LhQAE57gj9cz1kzA","sig":"MEYCIQCWF48yPMURQ+pmK8MvklWdtZS50m72uDPfYV50eJyy/gIhAPuQsZfFEd+sFJ+oZIkh3xh5jyR53nIALpGLYXeHzbrD"}]},"_from":".","_npmVersion":"1.2.17","_npmUser":{"name":"bulyshko","email":"romuald@bulyshko.com"},"maintainers":[{"name":"bulyshko","email":"romuald@bulyshko.com"}],"directories":{},"deprecated":"Package no longer supported. Contact Support at https://www.npmjs.com/support for more info."},"0.0.2":{"version":"0.0.2","name":"config.json","description":"nconf wrapper that simplifies work with environment specific configuration files.","keywords":["configuration","config","json","nconf","wrapper"],"author":{"name":"Romuald Bulyshko","email":"romuald@bulyshko.com","url":"http://romualdbulyshko.com"},"repository":{"type":"git","url":"https://github.com/bulyshko/config.json"},"bugs":{"url":"https://github.com/bulyshko/config.json/issues"},"main":"./lib/config.js","dependencies":{"nconf":"~0.6.9"},"devDependencies":{"mocha":"~1.17.1"},"scripts":{"test":"mocha test/*-test.js"},"homepage":"https://github.com/bulyshko/config.json","_id":"config.json@0.0.2","dist":{"shasum":"9c446cbba8f234d95b003c8fa812772fdc69b3ca","tarball":"https://registry.npmjs.org/config.json/-/config.json-0.0.2.tgz","integrity":"sha512-/Rujn+/J9X1snDBg22Grux5tQqEo7/yEUMaqWLVMlSvNmXWcbUzbVnXVh2PUpP0wHPX/p+19ltRAEME/wOnSKQ==","signatures":[{"keyid":"SHA256:jl3bwswu80PjjokCgh0o2w5c2U4LhQAE57gj9cz1kzA","sig":"MEUCIAni+iD8gse0uCxV+zuJvaIq5BeO79EOdGe35A+uxYBrAiEAlUgqUFaF90EM347Dx6UdXF1s0F//1cpeU4hvgBrvgzc="}]},"_from":".","_npmVersion":"1.3.21","_npmUser":{"name":"bulyshko","email":"romuald@bulyshko.com"},"maintainers":[{"name":"bulyshko","email":"romuald@bulyshko.com"}],"directories":{},"deprecated":"Package no longer supported. Contact Support at https://www.npmjs.com/support for more info."},"0.0.3":{"version":"0.0.3","name":"config.json","description":"nconf wrapper that simplifies work with environment specific configuration files.","keywords":["configuration","config","json","nconf","wrapper"],"author":{"name":"Romuald Bulyshko","email":"romuald@bulyshko.com","url":"http://romualdbulyshko.com"},"repository":{"type":"git","url":"https://github.com/bulyshko/config.json"},"bugs":{"url":"https://github.com/bulyshko/config.json/issues"},"main":"./lib/config.js","dependencies":{"nconf":"0.6.9"},"devDependencies":{"mocha":"1.18.2"},"scripts":{"test":"mocha test/*-test.js"},"homepage":"https://github.com/bulyshko/config.json","_id":"config.json@0.0.3","dist":{"shasum":"5a12471f3166b505e2df7a9d1bc8372cadd24e67","tarball":"https://registry.npmjs.org/config.json/-/config.json-0.0.3.tgz","integrity":"sha512-vMP8dmpjdKQXICoA8gBtKda0izaz50HK/d9sFcu6Nbis90kXGInbMhq9CxdPzo0OjptHyIYx0w+mXqPLlAOD4w==","signatures":[{"keyid":"SHA256:jl3bwswu80PjjokCgh0o2w5c2U4LhQAE57gj9cz1kzA","sig":"MEUCIEiyjZSuJqRuEtkOjxPeoMNcIaBv61ytOANOLVHTRjztAiEA6z/c5cuUFx6xuEQvopvBPXbMuWAt2DHrvDN6aNBYh/o="}]},"_from":".","_npmVersion":"1.4.3","_npmUser":{"name":"bulyshko","email":"romuald@bulyshko.com"},"maintainers":[{"name":"bulyshko","email":"romuald@bulyshko.com"}],"directories":{},"deprecated":"Package no longer supported. Contact Support at https://www.npmjs.com/support for more info."},"0.0.4":{"version":"0.0.4","name":"config.json","description":"nconf wrapper that simplifies work with environment specific configuration files.","keywords":["configuration","config","json","nconf","wrapper"],"author":{"name":"Romuald Bulyshko","email":"romuald@bulyshko.com","url":"https://bulyshko.com"},"repository":{"type":"git","url":"https://github.com/bulyshko/config.json"},"bugs":{"url":"https://github.com/bulyshko/config.json/issues"},"main":"./lib/config.js","dependencies":{"nconf":"0.7.1"},"devDependencies":{"mocha":"2.2.1"},"scripts":{"test":"mocha test/*-test.js"},"gitHead":"f5f578629cb7e0cdc6fd0b3a5786cd7a2e7b6dba","homepage":"https://github.com/bulyshko/config.json","_id":"config.json@0.0.4","_shasum":"dc0250105dd984888c0372b2f4cabbd8a2fd1afb","_from":".","_npmVersion":"2.0.0-beta.0","_npmUser":{"name":"bulyshko","email":"romuald@bulyshko.com"},"maintainers":[{"name":"bulyshko","email":"romuald@bulyshko.com"}],"dist":{"shasum":"dc0250105dd984888c0372b2f4cabbd8a2fd1afb","tarball":"https://registry.npmjs.org/config.json/-/config.json-0.0.4.tgz","integrity":"sha512-+DLkKk1/j13Pn1ZH2306KcI5aMrvbXNXFW1eWxYqjFuZaUfw1pszolMo/wnc43kxakidJNbjwcrrudFATAYFdQ==","signatures":[{"keyid":"SHA256:jl3bwswu80PjjokCgh0o2w5c2U4LhQAE57gj9cz1kzA","sig":"MEQCIA/W4BSbjyxr+wV/azYmYJvcDz280Hd2/gFArpLrkmO6AiB1pPAq8O4baNiOkRLyh99fOn80DwWH8C7dpiBGd+OjpQ=="}]},"directories":{},"deprecated":"Package no longer supported. Contact Support at https://www.npmjs.com/support for more info."}},"readme":"# config.json\n\n[nconf][nconf] wrapper that simplifies work\nwith environment specific configuration files.\n\n[![Build Status][build]][travis] [![Dependency Status][dependency]][david]\n\n**config.json** is easy to use; it:\n\n- loads the default configuration file;\n- loads environment specific configuration file and overrides defaults;\n\nand then:\n\n- uses environment variables;\n- and command-line arguments to override data from configuration files.\n\n## Installation\n\n```\nnpm install config.json\n```\n\n## Usage\n\nThe top-level of `config.json` is a function that loads configuration file with the given `filepath`.\n\n### Create default configuration file\n\n```\nvi sample.json\n```\n\n```json\n{\n  \"domain\": \"www.example.com\",\n  \"mongodb\": {\n    \"host\": \"localhost\",\n    \"port\": 27017\n  }\n}\n```\n\n### Create environment specific configuration file\n\n```\nvi sample.development.json\n```\n\n```json\n{\n  \"domain\": \"dev.example.com\"\n}\n```\n\n**Note:** Environment specific configuration files should be in the same directory as the default one.\n\n### Test config.json in action\n\n```\nvi sample.js\n```\n\n```js\nvar config = require('config.json')('./sample.json');\n\nconsole.log(\"domain:\", config.domain);\nconsole.log(\"mongodb:\\n\",\n  \"host:\", config.mongodb.host, \"\\n\",\n  \"port:\", config.mongodb.port);\n```\n\nRun the above script:\n\n```\nNODE_ENV=development node ./sample.js --mongodb:host \"dharma.mongohq.com\" --mongodb:port 10065\n```\n\nThe output will be:\n\n```\ndomain: dev.example.com\nmongodb:\n host: dharma.mongohq.com\n port: 10065\n```\n\n### Load configuration for the specific environment\n\nEnvironment can be set by passing `env` argument:\n\n```js\nvar developmentConfig = require('config.json')('./sample.json', 'development');\nvar productionConfig = require('config.json')('./sample.json', 'production');\n```\n\n### One more thing...\n\n`filepath` can be empty if your configuration file is in the current working directory of the process and is called **config.json**.\n\n## License\n\nReleased under the [MIT license][license].\n\n[nconf]:https://github.com/flatiron/nconf\n[license]:https://raw.github.com/bulyshko/config.json/master/LICENSE\n[build]:https://travis-ci.org/bulyshko/config.json.svg?branch=master\n[travis]:https://travis-ci.org/bulyshko/config.json\n[dependency]:https://david-dm.org/bulyshko/config.json.svg?theme=shields.io\n[david]:https://david-dm.org/bulyshko/config.json\n","maintainers":[{"name":"bulyshko","email":"romuald@bulyshko.com"}],"time":{"modified":"2022-08-28T08:46:02.296Z","created":"2013-04-05T20:03:34.240Z","0.0.1":"2013-04-05T20:03:37.972Z","0.0.2":"2014-01-29T13:40:21.204Z","0.0.3":"2014-04-01T05:03:40.165Z","0.0.4":"2015-03-21T10:13:46.277Z"},"author":{"name":"Romuald Bulyshko","email":"romuald@bulyshko.com","url":"https://bulyshko.com"},"repository":{"type":"git","url":"https://github.com/bulyshko/config.json"},"readmeFilename":"README.md","homepage":"https://github.com/bulyshko/config.json","keywords":["configuration","config","json","nconf","wrapper"],"bugs":{"url":"https://github.com/bulyshko/config.json/issues"},"users":{"bingeboy":true,"mseminatore":true,"rbiffle":true,"hyloque":true,"gpuente":true,"yonier":true,"foropeza":true,"kipty":true}}

Found on 2024-11-22 22:18

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: c.trevorcarpenter.name
Port: 443
URL: https://c.trevorcarpenter.name

First seen 2023-03-11 19:08
Last seen 2024-11-22 22:12
Open for 622 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b712656bb0d71c37a2cfdbc5691050420b

Found 128 files trough .DS_Store spidering:

/.git
/about
/bio
/documents
/documents/certificates
/documents/certificates/Coursera compdata 2013
/documents/certificates/Coursera datamanagement 2013
/documents/certificates/Coursera neuroethics 2013
/documents/fic
/films-by-frequency
/films-by-frequency/Nicolas Jenson
/films-by-frequency/tmdb-posters
/frequently-anticipated-questions
/glossary
/images
/images/tmdb-posters
/images/tmdb-posters/0abb7b3cf794af64d43df5d00b21ef6f.jpg
/images/tmdb-posters/1cdNSyhJ7cpz0n5qd2V6K7icOzZ.jpg
/images/tmdb-posters/1eZEk793evkaIOjBwNO2cFS6h5x.jpg
/images/tmdb-posters/1W8ZeVzUK79YjBuXonWHSps6D7H.jpg
/images/tmdb-posters/2tZN90vb39CBgKjOXAcGmrFFNaS.jpg
/images/tmdb-posters/3AFEVmISqWoVWpeKDkCVM3Jpj7S.jpg
/images/tmdb-posters/3erJD9QQcx4hhLJ4yaAw8SLWnZN.jpg
/images/tmdb-posters/46LmAPu3HjXknRTzfHgVMRgtAwe.jpg
/images/tmdb-posters/4tC7mrHpWpG5AZmQuVS7sCDzPT.jpg
/images/tmdb-posters/4WqxYBY1OvGhtpyAKam7Cs6GkpC.jpg
/images/tmdb-posters/4XAaMo2nBZR3eH8HU6AbPkBKEXI.jpg
/images/tmdb-posters/4YgdRwJ8pANrooetaaEUxKIXykl.jpg
/images/tmdb-posters/5Oz7iIqZjPTBsyTwfpbAwPlIxFP.jpg
/images/tmdb-posters/5zW3sowkXI1DGaD7ngKbfvD4hTI.jpg
/images/tmdb-posters/6QDeHwBXDHbCbuzStgUpuUAqnap.jpg
/images/tmdb-posters/7Kk1ZsrAul2Lg7Pe45XOcUf2ARQ.jpg
/images/tmdb-posters/7m5bkmTsqHVen6L0BkqSd3KoPL1.jpg
/images/tmdb-posters/7XxOj3vQ701L9u0gkZ2TtliLxjN.jpg
/images/tmdb-posters/84HR8v3vtz91vTouBX3H5eEWJvP.jpg
/images/tmdb-posters/8JGmaQSfFVhOpH3NwdHBw9uJvzs.jpg
/images/tmdb-posters/8JOzt7uFZyshcuzCBmYU6CDJL4D.jpg
/images/tmdb-posters/8ZBbMOrFLSuA1Fe1eOrBEAho4Uv.jpg
/images/tmdb-posters/94m7J9YeO0W7IEbfsOtFbweGgcu.jpg
/images/tmdb-posters/9fManbsdRhwW4QLnmBrrajSeBBb.jpg
/images/tmdb-posters/9ggHy0AOzSD5lAf29mAfHLaM5Sa.jpg
/images/tmdb-posters/a0j18XNVhP4RcW3wXwsqT0kVoQm.jpg
/images/tmdb-posters/Aj8TNw2NbINvr7gvc1XKfEtdEbV.jpg
/images/tmdb-posters/avoKZfgBzyBGJsrAr2WQOwZK978.jpg
/images/tmdb-posters/blmXomqwW7qfBFN0KkwN6GpYZGi.jpg
/images/tmdb-posters/bUyjDLzgwlx44aVE8SaC5jRThzT.jpg
/images/tmdb-posters/cp5b54AtG288dvNIpMIjGeCZ0w4.jpg
/images/tmdb-posters/d3HNrLrqXFY90xBiVhsWlumNUaK.jpg
/images/tmdb-posters/Ded5Kl7MDZQTbFpoNI62tLVWUN.jpg
/images/tmdb-posters/dRchzFXWwdhIcWCazREhF8lj1uy.jpg
/images/tmdb-posters/dTU9aSksoDhnjELPCKhpsSpvbbT.jpg
/images/tmdb-posters/eE3GGSkD8ziNOYgnWGoODlpOZPV.jpg
/images/tmdb-posters/eQ5SVeWsl8bIL3K4TPQC4McA9SG.jpg
/images/tmdb-posters/eWEItyc6NvttKTCGOuhHzypHFqa.jpg
/images/tmdb-posters/ewH7inSEI7IUOkFcwFgpbEQHWK1.jpg
/images/tmdb-posters/eyu2MPT9tLoHg1PgSLcvrH0EgDQ.jpg
/images/tmdb-posters/fhm3SFtrcyzA1rGT00OnOeZ4WDF.jpg
/images/tmdb-posters/fkipS6g260yMr7KYphGgVunkSjY.jpg
/images/tmdb-posters/frZj5djlU9hFEjMcL21RJZVuG5O.jpg
/images/tmdb-posters/g3qZofBWiLauJviv27f8zpEFbki.jpg
/images/tmdb-posters/gHm96BRW4GoI339rF1vYoYTB6Qe.jpg
/images/tmdb-posters/gQB8Y5RCMkv2zwzFHbUJX3kAhvA.jpg
/images/tmdb-posters/hyan5Uc0lGpPuad94DM1pLxneiP.jpg
/images/tmdb-posters/iaSTaVaCelkmMMAj846D925QUpo.jpg
/images/tmdb-posters/IwFugPaYFhJOAkPVFG3I3xR6wA.jpg
/images/tmdb-posters/iyTD2QnySNMPUPE3IedZQipSWfz.jpg
/images/tmdb-posters/jwOPAI4bJQzIRPMeNbZ8fg5Of6R.jpg
/images/tmdb-posters/kAq5XH5sNTHmNASzzMO8L0cBAwC.jpg
/images/tmdb-posters/kho48mWJ5xuiLn5bpuIvO6ZP7ep.jpg
/images/tmdb-posters/kPMx2t4S6KuYRKDKwB3xJTzy2y2.jpg
/images/tmdb-posters/lGgIQ10NJ3d0X0uFbbUN4pRrMFZ.jpg
/images/tmdb-posters/lpVzSwNOYUibQV76yUysTze4vHn.jpg
/images/tmdb-posters/mAH0TZmcNQzJKE16HYhWqK8rxUs.jpg
/images/tmdb-posters/mKr2XAwJDLQR3hDFNoyHALMRspv.jpg
/images/tmdb-posters/mOyZ0UAWaOJartFq2G3Cv0soFtQ.jpg
/images/tmdb-posters/nRa2O99lJOoRSPOGJZsp1Ihc952.jpg
/images/tmdb-posters/nRsB8ucAjQQ0rsctlIQ2RwGHoOo.jpg
/images/tmdb-posters/nXjh15UzrvlkVIVUQJWAuKEsP4w.jpg
/images/tmdb-posters/oHMRhVytkVApLyCNML659LQZiQ1.jpg
/images/tmdb-posters/oHT70ef0lutC0SkiXpTKtwr60KS.jpg
/images/tmdb-posters/olwRQIN5QzDbKmtTqGsNbEPYxC4.jpg
/images/tmdb-posters/pV08yva1qMTal07y63HnniC74JN.jpg
/images/tmdb-posters/pZ3qP5v5Jf0LoRqBC-cJlMQ9qDBgPyUK56ujLFmizw8.jpg
/images/tmdb-posters/r5BgizKTAyoOaVy6Evda86TczSZ.jpg
/images/tmdb-posters/rxlrlqTAXIQ2v4GoE9UAxFUaAZw.jpg
/images/tmdb-posters/sBwJXBWVPSn7tkXoSqFVNRFBGeh.jpg
/images/tmdb-posters/srOo0wG8ELmmVtVxYfgkGVOPjCV.jpg
/images/tmdb-posters/szqoRv1gqhbfB46Xs5bv1v2Fq9h.jpg
/images/tmdb-posters/tNxaR9GBrQVBsGVc5CUxXrUWWxd.jpg
/images/tmdb-posters/uQEVm6yyzt9OhZAfSf6Dg4qexcw.jpg
/images/tmdb-posters/vA4iAPU1St7XNip3UeOd9zu5C2u.jpg
/images/tmdb-posters/vAIq1n0LjePYFLwJlHrGih58bVZ.jpg
/images/tmdb-posters/vL7Xw04nFMHwnvXRFCmYYAzMUvY.jpg
/images/tmdb-posters/w0kxhsv0qobU2P7rTe9qfBQsdQJ.jpg
/images/tmdb-posters/WAllsbrook_TheMirror-Reg_Sm_1024x1024.jpg
/images/tmdb-posters/wO8XKAt3JUpdij27gIq6Maq4JMp.jpg
/images/tmdb-posters/xejFBC19Nc7Xi1MiIvcf84ZCy2g.jpg
/images/tmdb-posters/yY4kbIq3s6JFYagzOJhbQv3heus.jpg
/images/tmdb-posters/zhgzjwrsrgp7RVPOOdiJChOJNEe.jpg
/images/tmdb-posters/zT8XclM0tX5nVsnU3Idsn2Nzdo5.jpg
/intro-old
/juvenilia
/juvenilia/analytical-psych-geb
/juvenilia/being-there
/juvenilia/fungi-network
/juvenilia/how-to-avoid-writing
/juvenilia/masscult
/juvenilia/rr5
/juvenilia/rr7
/juvenilia/still-life-narrative
/juvenilia/why-write
/massive-open-online-courses
/moodboards
/moodboards/A Landscape at evening with travellers and a hunter near classical ruins.jpg
/Nicolas-Jenson
/republished
/republished/affective-key-characteristics
/republished/culture-anesthetic
/republished/free-time
/republished/idletheory
/republished/last-days-of-the-polymath
/republished/of-parts-and-wholes
/republished/overcoming-logos-overcoming-lego
/republished/postmodern-desert-of-cyberspace
/republished/silence
/republished/techniques-in-mass-education
/republished/valedictory-address
/underrated-films-of-the-2010s

Found on 2024-11-22 22:12

Severity: medium
Fingerprint: 5f32cf5d6962f09c740cb6cd740cb6cdadbff3c639890c5ca46d635fa9ec359f

Found 117 files trough .DS_Store spidering:

/.git
/about
/bio
/documents
/documents/certificates
/documents/certificates/Coursera compdata 2013
/documents/certificates/Coursera datamanagement 2013
/documents/certificates/Coursera neuroethics 2013
/documents/fic
/films-by-frequency
/films-by-frequency/Nicolas Jenson
/films-by-frequency/tmdb-posters
/frequently-anticipated-questions
/glossary
/images
/images/tmdb-posters
/images/tmdb-posters/0abb7b3cf794af64d43df5d00b21ef6f.jpg
/images/tmdb-posters/1cdNSyhJ7cpz0n5qd2V6K7icOzZ.jpg
/images/tmdb-posters/1eZEk793evkaIOjBwNO2cFS6h5x.jpg
/images/tmdb-posters/1W8ZeVzUK79YjBuXonWHSps6D7H.jpg
/images/tmdb-posters/2tZN90vb39CBgKjOXAcGmrFFNaS.jpg
/images/tmdb-posters/3AFEVmISqWoVWpeKDkCVM3Jpj7S.jpg
/images/tmdb-posters/3erJD9QQcx4hhLJ4yaAw8SLWnZN.jpg
/images/tmdb-posters/46LmAPu3HjXknRTzfHgVMRgtAwe.jpg
/images/tmdb-posters/4tC7mrHpWpG5AZmQuVS7sCDzPT.jpg
/images/tmdb-posters/4WqxYBY1OvGhtpyAKam7Cs6GkpC.jpg
/images/tmdb-posters/4XAaMo2nBZR3eH8HU6AbPkBKEXI.jpg
/images/tmdb-posters/4YgdRwJ8pANrooetaaEUxKIXykl.jpg
/images/tmdb-posters/5Oz7iIqZjPTBsyTwfpbAwPlIxFP.jpg
/images/tmdb-posters/5zW3sowkXI1DGaD7ngKbfvD4hTI.jpg
/images/tmdb-posters/6QDeHwBXDHbCbuzStgUpuUAqnap.jpg
/images/tmdb-posters/7Kk1ZsrAul2Lg7Pe45XOcUf2ARQ.jpg
/images/tmdb-posters/7m5bkmTsqHVen6L0BkqSd3KoPL1.jpg
/images/tmdb-posters/7XxOj3vQ701L9u0gkZ2TtliLxjN.jpg
/images/tmdb-posters/84HR8v3vtz91vTouBX3H5eEWJvP.jpg
/images/tmdb-posters/8JGmaQSfFVhOpH3NwdHBw9uJvzs.jpg
/images/tmdb-posters/8JOzt7uFZyshcuzCBmYU6CDJL4D.jpg
/images/tmdb-posters/8ZBbMOrFLSuA1Fe1eOrBEAho4Uv.jpg
/images/tmdb-posters/94m7J9YeO0W7IEbfsOtFbweGgcu.jpg
/images/tmdb-posters/9fManbsdRhwW4QLnmBrrajSeBBb.jpg
/images/tmdb-posters/9ggHy0AOzSD5lAf29mAfHLaM5Sa.jpg
/images/tmdb-posters/a0j18XNVhP4RcW3wXwsqT0kVoQm.jpg
/images/tmdb-posters/Aj8TNw2NbINvr7gvc1XKfEtdEbV.jpg
/images/tmdb-posters/avoKZfgBzyBGJsrAr2WQOwZK978.jpg
/images/tmdb-posters/blmXomqwW7qfBFN0KkwN6GpYZGi.jpg
/images/tmdb-posters/bUyjDLzgwlx44aVE8SaC5jRThzT.jpg
/images/tmdb-posters/cp5b54AtG288dvNIpMIjGeCZ0w4.jpg
/images/tmdb-posters/d3HNrLrqXFY90xBiVhsWlumNUaK.jpg
/images/tmdb-posters/Ded5Kl7MDZQTbFpoNI62tLVWUN.jpg
/images/tmdb-posters/dRchzFXWwdhIcWCazREhF8lj1uy.jpg
/images/tmdb-posters/dTU9aSksoDhnjELPCKhpsSpvbbT.jpg
/images/tmdb-posters/eE3GGSkD8ziNOYgnWGoODlpOZPV.jpg
/images/tmdb-posters/eQ5SVeWsl8bIL3K4TPQC4McA9SG.jpg
/images/tmdb-posters/eWEItyc6NvttKTCGOuhHzypHFqa.jpg
/images/tmdb-posters/ewH7inSEI7IUOkFcwFgpbEQHWK1.jpg
/images/tmdb-posters/eyu2MPT9tLoHg1PgSLcvrH0EgDQ.jpg
/images/tmdb-posters/fhm3SFtrcyzA1rGT00OnOeZ4WDF.jpg
/images/tmdb-posters/fkipS6g260yMr7KYphGgVunkSjY.jpg
/images/tmdb-posters/frZj5djlU9hFEjMcL21RJZVuG5O.jpg
/images/tmdb-posters/g3qZofBWiLauJviv27f8zpEFbki.jpg
/images/tmdb-posters/gHm96BRW4GoI339rF1vYoYTB6Qe.jpg
/images/tmdb-posters/gQB8Y5RCMkv2zwzFHbUJX3kAhvA.jpg
/images/tmdb-posters/hyan5Uc0lGpPuad94DM1pLxneiP.jpg
/images/tmdb-posters/iaSTaVaCelkmMMAj846D925QUpo.jpg
/images/tmdb-posters/IwFugPaYFhJOAkPVFG3I3xR6wA.jpg
/images/tmdb-posters/iyTD2QnySNMPUPE3IedZQipSWfz.jpg
/images/tmdb-posters/jwOPAI4bJQzIRPMeNbZ8fg5Of6R.jpg
/images/tmdb-posters/kAq5XH5sNTHmNASzzMO8L0cBAwC.jpg
/images/tmdb-posters/kho48mWJ5xuiLn5bpuIvO6ZP7ep.jpg
/images/tmdb-posters/kPMx2t4S6KuYRKDKwB3xJTzy2y2.jpg
/images/tmdb-posters/lGgIQ10NJ3d0X0uFbbUN4pRrMFZ.jpg
/images/tmdb-posters/lpVzSwNOYUibQV76yUysTze4vHn.jpg
/images/tmdb-posters/mAH0TZmcNQzJKE16HYhWqK8rxUs.jpg
/images/tmdb-posters/mKr2XAwJDLQR3hDFNoyHALMRspv.jpg
/images/tmdb-posters/mOyZ0UAWaOJartFq2G3Cv0soFtQ.jpg
/images/tmdb-posters/nRa2O99lJOoRSPOGJZsp1Ihc952.jpg
/images/tmdb-posters/nRsB8ucAjQQ0rsctlIQ2RwGHoOo.jpg
/images/tmdb-posters/nXjh15UzrvlkVIVUQJWAuKEsP4w.jpg
/images/tmdb-posters/oHMRhVytkVApLyCNML659LQZiQ1.jpg
/images/tmdb-posters/oHT70ef0lutC0SkiXpTKtwr60KS.jpg
/images/tmdb-posters/olwRQIN5QzDbKmtTqGsNbEPYxC4.jpg
/images/tmdb-posters/pV08yva1qMTal07y63HnniC74JN.jpg
/images/tmdb-posters/pZ3qP5v5Jf0LoRqBC-cJlMQ9qDBgPyUK56ujLFmizw8.jpg
/images/tmdb-posters/r5BgizKTAyoOaVy6Evda86TczSZ.jpg
/images/tmdb-posters/rxlrlqTAXIQ2v4GoE9UAxFUaAZw.jpg
/images/tmdb-posters/sBwJXBWVPSn7tkXoSqFVNRFBGeh.jpg
/images/tmdb-posters/srOo0wG8ELmmVtVxYfgkGVOPjCV.jpg
/images/tmdb-posters/szqoRv1gqhbfB46Xs5bv1v2Fq9h.jpg
/images/tmdb-posters/tNxaR9GBrQVBsGVc5CUxXrUWWxd.jpg
/images/tmdb-posters/uQEVm6yyzt9OhZAfSf6Dg4qexcw.jpg
/images/tmdb-posters/vA4iAPU1St7XNip3UeOd9zu5C2u.jpg
/images/tmdb-posters/vAIq1n0LjePYFLwJlHrGih58bVZ.jpg
/images/tmdb-posters/vL7Xw04nFMHwnvXRFCmYYAzMUvY.jpg
/images/tmdb-posters/w0kxhsv0qobU2P7rTe9qfBQsdQJ.jpg
/images/tmdb-posters/WAllsbrook_TheMirror-Reg_Sm_1024x1024.jpg
/images/tmdb-posters/wO8XKAt3JUpdij27gIq6Maq4JMp.jpg
/images/tmdb-posters/xejFBC19Nc7Xi1MiIvcf84ZCy2g.jpg
/images/tmdb-posters/yY4kbIq3s6JFYagzOJhbQv3heus.jpg
/images/tmdb-posters/zhgzjwrsrgp7RVPOOdiJChOJNEe.jpg
/images/tmdb-posters/zT8XclM0tX5nVsnU3Idsn2Nzdo5.jpg
/intro-old
/juvenilia
/juvenilia/analytical-psych-geb
/juvenilia/being-there
/juvenilia/fungi-network
/juvenilia/how-to-avoid-writing
/juvenilia/masscult
/juvenilia/rr5
/juvenilia/rr7
/juvenilia/still-life-narrative
/juvenilia/why-write
/massive-open-online-courses
/moodboards
/Nicolas-Jenson
/republished
/underrated-films-of-the-2010s
/vital-course

Found on 2024-11-22 21:00

Severity: low
Fingerprint: 5f32cf5d6962f09c0f8dcf020f8dcf02a719fba7e36470ed0b428f5a5a967873

Found 24 files trough .DS_Store spidering:

/.git
/about
/bio
/documents
/documents/certificates
/documents/certificates/Coursera compdata 2013
/documents/certificates/Coursera datamanagement 2013
/documents/certificates/Coursera neuroethics 2013
/documents/fic
/films-by-frequency
/films-by-frequency/Nicolas Jenson
/films-by-frequency/tmdb-posters
/frequently-anticipated-questions
/glossary
/images
/images/tmdb-posters
/intro-old
/juvenilia
/massive-open-online-courses
/moodboards
/Nicolas-Jenson
/republished
/underrated-films-of-the-2010s
/vital-course

Found on 2024-11-07 00:46

Severity: low
Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea9026c29ba148d26c0b2988803e63f0ff2

Found 23 files trough .DS_Store spidering:

/.git
/about
/bio
/documents
/documents/certificates
/documents/certificates/Coursera compdata 2013
/documents/certificates/Coursera datamanagement 2013
/documents/certificates/Coursera neuroethics 2013
/documents/fic
/films-by-frequency
/films-by-frequency/Nicolas Jenson
/films-by-frequency/tmdb-posters
/frequently-anticipated-questions
/glossary
/images
/intro-old
/juvenilia
/massive-open-online-courses
/moodboards
/Nicolas-Jenson
/republished
/underrated-films-of-the-2010s
/vital-course

Found on 2024-09-16 19:11

Severity: medium
Fingerprint: 5f32cf5d6962f09c449f2b2d449f2b2de6f92b26206e4c3ce494823fd18b9492

Found 108 files trough .DS_Store spidering:

/.git
/about
/bio
/documents
/documents/certificates
/documents/certificates/Coursera compdata 2013
/documents/certificates/Coursera datamanagement 2013
/documents/certificates/Coursera neuroethics 2013
/documents/fic
/films-by-frequency
/films-by-frequency/Nicolas Jenson
/films-by-frequency/tmdb-posters
/frequently-anticipated-questions
/glossary
/images
/images/tmdb-posters
/images/tmdb-posters/0abb7b3cf794af64d43df5d00b21ef6f.jpg
/images/tmdb-posters/1cdNSyhJ7cpz0n5qd2V6K7icOzZ.jpg
/images/tmdb-posters/1eZEk793evkaIOjBwNO2cFS6h5x.jpg
/images/tmdb-posters/1W8ZeVzUK79YjBuXonWHSps6D7H.jpg
/images/tmdb-posters/2tZN90vb39CBgKjOXAcGmrFFNaS.jpg
/images/tmdb-posters/3AFEVmISqWoVWpeKDkCVM3Jpj7S.jpg
/images/tmdb-posters/3erJD9QQcx4hhLJ4yaAw8SLWnZN.jpg
/images/tmdb-posters/46LmAPu3HjXknRTzfHgVMRgtAwe.jpg
/images/tmdb-posters/4tC7mrHpWpG5AZmQuVS7sCDzPT.jpg
/images/tmdb-posters/4WqxYBY1OvGhtpyAKam7Cs6GkpC.jpg
/images/tmdb-posters/4XAaMo2nBZR3eH8HU6AbPkBKEXI.jpg
/images/tmdb-posters/4YgdRwJ8pANrooetaaEUxKIXykl.jpg
/images/tmdb-posters/5Oz7iIqZjPTBsyTwfpbAwPlIxFP.jpg
/images/tmdb-posters/5zW3sowkXI1DGaD7ngKbfvD4hTI.jpg
/images/tmdb-posters/6QDeHwBXDHbCbuzStgUpuUAqnap.jpg
/images/tmdb-posters/7Kk1ZsrAul2Lg7Pe45XOcUf2ARQ.jpg
/images/tmdb-posters/7m5bkmTsqHVen6L0BkqSd3KoPL1.jpg
/images/tmdb-posters/7XxOj3vQ701L9u0gkZ2TtliLxjN.jpg
/images/tmdb-posters/84HR8v3vtz91vTouBX3H5eEWJvP.jpg
/images/tmdb-posters/8JGmaQSfFVhOpH3NwdHBw9uJvzs.jpg
/images/tmdb-posters/8JOzt7uFZyshcuzCBmYU6CDJL4D.jpg
/images/tmdb-posters/8ZBbMOrFLSuA1Fe1eOrBEAho4Uv.jpg
/images/tmdb-posters/94m7J9YeO0W7IEbfsOtFbweGgcu.jpg
/images/tmdb-posters/9fManbsdRhwW4QLnmBrrajSeBBb.jpg
/images/tmdb-posters/9ggHy0AOzSD5lAf29mAfHLaM5Sa.jpg
/images/tmdb-posters/a0j18XNVhP4RcW3wXwsqT0kVoQm.jpg
/images/tmdb-posters/Aj8TNw2NbINvr7gvc1XKfEtdEbV.jpg
/images/tmdb-posters/avoKZfgBzyBGJsrAr2WQOwZK978.jpg
/images/tmdb-posters/blmXomqwW7qfBFN0KkwN6GpYZGi.jpg
/images/tmdb-posters/bUyjDLzgwlx44aVE8SaC5jRThzT.jpg
/images/tmdb-posters/cp5b54AtG288dvNIpMIjGeCZ0w4.jpg
/images/tmdb-posters/d3HNrLrqXFY90xBiVhsWlumNUaK.jpg
/images/tmdb-posters/Ded5Kl7MDZQTbFpoNI62tLVWUN.jpg
/images/tmdb-posters/dRchzFXWwdhIcWCazREhF8lj1uy.jpg
/images/tmdb-posters/dTU9aSksoDhnjELPCKhpsSpvbbT.jpg
/images/tmdb-posters/eE3GGSkD8ziNOYgnWGoODlpOZPV.jpg
/images/tmdb-posters/eQ5SVeWsl8bIL3K4TPQC4McA9SG.jpg
/images/tmdb-posters/eWEItyc6NvttKTCGOuhHzypHFqa.jpg
/images/tmdb-posters/ewH7inSEI7IUOkFcwFgpbEQHWK1.jpg
/images/tmdb-posters/eyu2MPT9tLoHg1PgSLcvrH0EgDQ.jpg
/images/tmdb-posters/fhm3SFtrcyzA1rGT00OnOeZ4WDF.jpg
/images/tmdb-posters/fkipS6g260yMr7KYphGgVunkSjY.jpg
/images/tmdb-posters/frZj5djlU9hFEjMcL21RJZVuG5O.jpg
/images/tmdb-posters/g3qZofBWiLauJviv27f8zpEFbki.jpg
/images/tmdb-posters/gHm96BRW4GoI339rF1vYoYTB6Qe.jpg
/images/tmdb-posters/gQB8Y5RCMkv2zwzFHbUJX3kAhvA.jpg
/images/tmdb-posters/hyan5Uc0lGpPuad94DM1pLxneiP.jpg
/images/tmdb-posters/iaSTaVaCelkmMMAj846D925QUpo.jpg
/images/tmdb-posters/IwFugPaYFhJOAkPVFG3I3xR6wA.jpg
/images/tmdb-posters/iyTD2QnySNMPUPE3IedZQipSWfz.jpg
/images/tmdb-posters/jwOPAI4bJQzIRPMeNbZ8fg5Of6R.jpg
/images/tmdb-posters/kAq5XH5sNTHmNASzzMO8L0cBAwC.jpg
/images/tmdb-posters/kho48mWJ5xuiLn5bpuIvO6ZP7ep.jpg
/images/tmdb-posters/kPMx2t4S6KuYRKDKwB3xJTzy2y2.jpg
/images/tmdb-posters/lGgIQ10NJ3d0X0uFbbUN4pRrMFZ.jpg
/images/tmdb-posters/lpVzSwNOYUibQV76yUysTze4vHn.jpg
/images/tmdb-posters/mAH0TZmcNQzJKE16HYhWqK8rxUs.jpg
/images/tmdb-posters/mKr2XAwJDLQR3hDFNoyHALMRspv.jpg
/images/tmdb-posters/mOyZ0UAWaOJartFq2G3Cv0soFtQ.jpg
/images/tmdb-posters/nRa2O99lJOoRSPOGJZsp1Ihc952.jpg
/images/tmdb-posters/nRsB8ucAjQQ0rsctlIQ2RwGHoOo.jpg
/images/tmdb-posters/nXjh15UzrvlkVIVUQJWAuKEsP4w.jpg
/images/tmdb-posters/oHMRhVytkVApLyCNML659LQZiQ1.jpg
/images/tmdb-posters/oHT70ef0lutC0SkiXpTKtwr60KS.jpg
/images/tmdb-posters/olwRQIN5QzDbKmtTqGsNbEPYxC4.jpg
/images/tmdb-posters/pV08yva1qMTal07y63HnniC74JN.jpg
/images/tmdb-posters/pZ3qP5v5Jf0LoRqBC-cJlMQ9qDBgPyUK56ujLFmizw8.jpg
/images/tmdb-posters/r5BgizKTAyoOaVy6Evda86TczSZ.jpg
/images/tmdb-posters/rxlrlqTAXIQ2v4GoE9UAxFUaAZw.jpg
/images/tmdb-posters/sBwJXBWVPSn7tkXoSqFVNRFBGeh.jpg
/images/tmdb-posters/srOo0wG8ELmmVtVxYfgkGVOPjCV.jpg
/images/tmdb-posters/szqoRv1gqhbfB46Xs5bv1v2Fq9h.jpg
/images/tmdb-posters/tNxaR9GBrQVBsGVc5CUxXrUWWxd.jpg
/images/tmdb-posters/uQEVm6yyzt9OhZAfSf6Dg4qexcw.jpg
/images/tmdb-posters/vA4iAPU1St7XNip3UeOd9zu5C2u.jpg
/images/tmdb-posters/vAIq1n0LjePYFLwJlHrGih58bVZ.jpg
/images/tmdb-posters/vL7Xw04nFMHwnvXRFCmYYAzMUvY.jpg
/images/tmdb-posters/w0kxhsv0qobU2P7rTe9qfBQsdQJ.jpg
/images/tmdb-posters/WAllsbrook_TheMirror-Reg_Sm_1024x1024.jpg
/images/tmdb-posters/wO8XKAt3JUpdij27gIq6Maq4JMp.jpg
/images/tmdb-posters/xejFBC19Nc7Xi1MiIvcf84ZCy2g.jpg
/images/tmdb-posters/yY4kbIq3s6JFYagzOJhbQv3heus.jpg
/images/tmdb-posters/zhgzjwrsrgp7RVPOOdiJChOJNEe.jpg
/images/tmdb-posters/zT8XclM0tX5nVsnU3Idsn2Nzdo5.jpg
/intro-old
/juvenilia
/massive-open-online-courses
/moodboards
/Nicolas-Jenson
/republished
/underrated-films-of-the-2010s
/vital-course

Found on 2024-07-06 15:44

Severity: low
Fingerprint: 5f32cf5d6962f09cab28146bab28146b48c39a0c76420b5e32aa90750cc91f1a

Found 21 files trough .DS_Store spidering:

/.git
/about
/bio
/documents
/documents/certificates
/documents/certificates/Coursera compdata 2013
/documents/certificates/Coursera datamanagement 2013
/documents/certificates/Coursera neuroethics 2013
/documents/fic
/films-by-frequency
/frequently-anticipated-questions
/glossary
/images
/intro-old
/juvenilia
/massive-open-online-courses
/moodboards
/Nicolas-Jenson
/republished
/underrated-films-of-the-2010s
/vital-course

Found on 2024-06-24 22:40

Severity: medium
Fingerprint: 5f32cf5d6962f09cacbf01a6acbf01a62702bc23a5aece99e23980267402a502

Found 118 files trough .DS_Store spidering:

/.git
/about
/bio
/documents
/documents/certificates
/documents/certificates/Coursera compdata 2013
/documents/certificates/Coursera datamanagement 2013
/documents/certificates/Coursera neuroethics 2013
/documents/fic
/films-by-frequency
/films-by-frequency/Nicolas Jenson
/films-by-frequency/tmdb-posters
/frequently-anticipated-questions
/glossary
/images
/images/tmdb-posters
/images/tmdb-posters/0abb7b3cf794af64d43df5d00b21ef6f.jpg
/images/tmdb-posters/1cdNSyhJ7cpz0n5qd2V6K7icOzZ.jpg
/images/tmdb-posters/1eZEk793evkaIOjBwNO2cFS6h5x.jpg
/images/tmdb-posters/1W8ZeVzUK79YjBuXonWHSps6D7H.jpg
/images/tmdb-posters/2tZN90vb39CBgKjOXAcGmrFFNaS.jpg
/images/tmdb-posters/3AFEVmISqWoVWpeKDkCVM3Jpj7S.jpg
/images/tmdb-posters/3erJD9QQcx4hhLJ4yaAw8SLWnZN.jpg
/images/tmdb-posters/46LmAPu3HjXknRTzfHgVMRgtAwe.jpg
/images/tmdb-posters/4tC7mrHpWpG5AZmQuVS7sCDzPT.jpg
/images/tmdb-posters/4WqxYBY1OvGhtpyAKam7Cs6GkpC.jpg
/images/tmdb-posters/4XAaMo2nBZR3eH8HU6AbPkBKEXI.jpg
/images/tmdb-posters/4YgdRwJ8pANrooetaaEUxKIXykl.jpg
/images/tmdb-posters/5Oz7iIqZjPTBsyTwfpbAwPlIxFP.jpg
/images/tmdb-posters/5zW3sowkXI1DGaD7ngKbfvD4hTI.jpg
/images/tmdb-posters/6QDeHwBXDHbCbuzStgUpuUAqnap.jpg
/images/tmdb-posters/7Kk1ZsrAul2Lg7Pe45XOcUf2ARQ.jpg
/images/tmdb-posters/7m5bkmTsqHVen6L0BkqSd3KoPL1.jpg
/images/tmdb-posters/7XxOj3vQ701L9u0gkZ2TtliLxjN.jpg
/images/tmdb-posters/84HR8v3vtz91vTouBX3H5eEWJvP.jpg
/images/tmdb-posters/8JGmaQSfFVhOpH3NwdHBw9uJvzs.jpg
/images/tmdb-posters/8JOzt7uFZyshcuzCBmYU6CDJL4D.jpg
/images/tmdb-posters/8ZBbMOrFLSuA1Fe1eOrBEAho4Uv.jpg
/images/tmdb-posters/94m7J9YeO0W7IEbfsOtFbweGgcu.jpg
/images/tmdb-posters/9fManbsdRhwW4QLnmBrrajSeBBb.jpg
/images/tmdb-posters/9ggHy0AOzSD5lAf29mAfHLaM5Sa.jpg
/images/tmdb-posters/a0j18XNVhP4RcW3wXwsqT0kVoQm.jpg
/images/tmdb-posters/Aj8TNw2NbINvr7gvc1XKfEtdEbV.jpg
/images/tmdb-posters/avoKZfgBzyBGJsrAr2WQOwZK978.jpg
/images/tmdb-posters/blmXomqwW7qfBFN0KkwN6GpYZGi.jpg
/images/tmdb-posters/bUyjDLzgwlx44aVE8SaC5jRThzT.jpg
/images/tmdb-posters/cp5b54AtG288dvNIpMIjGeCZ0w4.jpg
/images/tmdb-posters/d3HNrLrqXFY90xBiVhsWlumNUaK.jpg
/images/tmdb-posters/Ded5Kl7MDZQTbFpoNI62tLVWUN.jpg
/images/tmdb-posters/dRchzFXWwdhIcWCazREhF8lj1uy.jpg
/images/tmdb-posters/dTU9aSksoDhnjELPCKhpsSpvbbT.jpg
/images/tmdb-posters/eE3GGSkD8ziNOYgnWGoODlpOZPV.jpg
/images/tmdb-posters/eQ5SVeWsl8bIL3K4TPQC4McA9SG.jpg
/images/tmdb-posters/eWEItyc6NvttKTCGOuhHzypHFqa.jpg
/images/tmdb-posters/ewH7inSEI7IUOkFcwFgpbEQHWK1.jpg
/images/tmdb-posters/eyu2MPT9tLoHg1PgSLcvrH0EgDQ.jpg
/images/tmdb-posters/fhm3SFtrcyzA1rGT00OnOeZ4WDF.jpg
/images/tmdb-posters/fkipS6g260yMr7KYphGgVunkSjY.jpg
/images/tmdb-posters/frZj5djlU9hFEjMcL21RJZVuG5O.jpg
/images/tmdb-posters/g3qZofBWiLauJviv27f8zpEFbki.jpg
/images/tmdb-posters/gHm96BRW4GoI339rF1vYoYTB6Qe.jpg
/images/tmdb-posters/gQB8Y5RCMkv2zwzFHbUJX3kAhvA.jpg
/images/tmdb-posters/hyan5Uc0lGpPuad94DM1pLxneiP.jpg
/images/tmdb-posters/iaSTaVaCelkmMMAj846D925QUpo.jpg
/images/tmdb-posters/IwFugPaYFhJOAkPVFG3I3xR6wA.jpg
/images/tmdb-posters/iyTD2QnySNMPUPE3IedZQipSWfz.jpg
/images/tmdb-posters/jwOPAI4bJQzIRPMeNbZ8fg5Of6R.jpg
/images/tmdb-posters/kAq5XH5sNTHmNASzzMO8L0cBAwC.jpg
/images/tmdb-posters/kho48mWJ5xuiLn5bpuIvO6ZP7ep.jpg
/images/tmdb-posters/kPMx2t4S6KuYRKDKwB3xJTzy2y2.jpg
/images/tmdb-posters/lGgIQ10NJ3d0X0uFbbUN4pRrMFZ.jpg
/images/tmdb-posters/lpVzSwNOYUibQV76yUysTze4vHn.jpg
/images/tmdb-posters/mAH0TZmcNQzJKE16HYhWqK8rxUs.jpg
/images/tmdb-posters/mKr2XAwJDLQR3hDFNoyHALMRspv.jpg
/images/tmdb-posters/mOyZ0UAWaOJartFq2G3Cv0soFtQ.jpg
/images/tmdb-posters/nRa2O99lJOoRSPOGJZsp1Ihc952.jpg
/images/tmdb-posters/nRsB8ucAjQQ0rsctlIQ2RwGHoOo.jpg
/images/tmdb-posters/nXjh15UzrvlkVIVUQJWAuKEsP4w.jpg
/images/tmdb-posters/oHMRhVytkVApLyCNML659LQZiQ1.jpg
/images/tmdb-posters/oHT70ef0lutC0SkiXpTKtwr60KS.jpg
/images/tmdb-posters/olwRQIN5QzDbKmtTqGsNbEPYxC4.jpg
/images/tmdb-posters/pV08yva1qMTal07y63HnniC74JN.jpg
/images/tmdb-posters/pZ3qP5v5Jf0LoRqBC-cJlMQ9qDBgPyUK56ujLFmizw8.jpg
/images/tmdb-posters/r5BgizKTAyoOaVy6Evda86TczSZ.jpg
/images/tmdb-posters/rxlrlqTAXIQ2v4GoE9UAxFUaAZw.jpg
/images/tmdb-posters/sBwJXBWVPSn7tkXoSqFVNRFBGeh.jpg
/images/tmdb-posters/srOo0wG8ELmmVtVxYfgkGVOPjCV.jpg
/images/tmdb-posters/szqoRv1gqhbfB46Xs5bv1v2Fq9h.jpg
/images/tmdb-posters/tNxaR9GBrQVBsGVc5CUxXrUWWxd.jpg
/images/tmdb-posters/uQEVm6yyzt9OhZAfSf6Dg4qexcw.jpg
/images/tmdb-posters/vA4iAPU1St7XNip3UeOd9zu5C2u.jpg
/images/tmdb-posters/vAIq1n0LjePYFLwJlHrGih58bVZ.jpg
/images/tmdb-posters/vL7Xw04nFMHwnvXRFCmYYAzMUvY.jpg
/images/tmdb-posters/w0kxhsv0qobU2P7rTe9qfBQsdQJ.jpg
/images/tmdb-posters/WAllsbrook_TheMirror-Reg_Sm_1024x1024.jpg
/images/tmdb-posters/wO8XKAt3JUpdij27gIq6Maq4JMp.jpg
/images/tmdb-posters/xejFBC19Nc7Xi1MiIvcf84ZCy2g.jpg
/images/tmdb-posters/yY4kbIq3s6JFYagzOJhbQv3heus.jpg
/images/tmdb-posters/zhgzjwrsrgp7RVPOOdiJChOJNEe.jpg
/images/tmdb-posters/zT8XclM0tX5nVsnU3Idsn2Nzdo5.jpg
/intro-old
/juvenilia
/juvenilia/analytical-psych-geb
/juvenilia/being-there
/juvenilia/fungi-network
/juvenilia/how-to-avoid-writing
/juvenilia/masscult
/juvenilia/rr5
/juvenilia/rr7
/juvenilia/still-life-narrative
/juvenilia/why-write
/massive-open-online-courses
/moodboards
/moodboards/A Landscape at evening with travellers and a hunter near classical ruins.jpg
/Nicolas-Jenson
/republished
/underrated-films-of-the-2010s
/vital-course

Found on 2024-05-25 20:13

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: c.trevorcarpenter.name
Port: 443
URL: https://c.trevorcarpenter.name

First seen 2023-03-11 19:08
Last seen 2024-11-22 22:12
Open for 622 days
- Severity: high
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65220eb5dabf
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = ssh://root@107.189.8.27/var/www/trevorcarpenter/
	fetch = +refs/heads/*:refs/remotes/origin/*
[receive]
	denyCurrentBranch = updateInstead
```
  Found on 2024-11-22 22:12
  
  301 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: sophia-chiuyu-ng.eu.org
Port: 443
URL: https://sophia-chiuyu-ng.eu.org

First seen 2024-07-19 05:44
Last seen 2024-11-22 21:31
Open for 126 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522fac77fb2
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/WebStackPage/WebStackPage.github.io.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-11-22 21:31
  
  283 Bytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdnimg.magimg.com
Port: 443
URL: https://cdnimg.magimg.com

First seen 2022-12-10 03:58
Last seen 2024-11-22 20:38
Open for 713 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b711329ff4234c0331bac33aee3d476238

Found 128 files trough .DS_Store spidering:

/a.html
/ads.txt
/css.css
/favicon.ico
/files
/index.html
/upload.php
/uploads
/uploads/00210fe7.jpeg
/uploads/00260f6a.jpeg
/uploads/00262.jpeg
/uploads/010-Editor.GIF
/uploads/010-editor.png
/uploads/1349188.jpg
/uploads/1512988469_acrok-video-converter_01.jpg
/uploads/16502.jpg
/uploads/17690.jpg
/uploads/17797.jpeg
/uploads/18-strings.png
/uploads/1click-duplicate-finder.jpeg
/uploads/1password.jpg
/uploads/1password.png
/uploads/2.png
/uploads/2284.jpg
/uploads/24-hour-wallpaper.jpg
/uploads/25631.png
/uploads/27391.jpg
/uploads/2do.jpg
/uploads/32-lives.jpg
/uploads/32318.png
/uploads/36467.png
/uploads/36705.jpg
/uploads/3d-coat.jpg
/uploads/3d-lut-creator.jpg
/uploads/3dimmaker.jpg
/uploads/3dweather.jpg
/uploads/40014.png
/uploads/404bypass.png
/uploads/44972.png
/uploads/464920.jpeg
/uploads/4678.jpg
/uploads/4ddig.jpg
/uploads/4k-slideshow-maker.jpg
/uploads/4k-stogram.jpg
/uploads/4k-video-downloader.jpg
/uploads/4k-youtube-to-mp3.jpg
/uploads/4kstogram.jpg
/uploads/4mekey.jpg
/uploads/4ukey-password-manager.jpg
/uploads/5.png
/uploads/512900.jpg
/uploads/54091.png
/uploads/6e016c.png
/uploads/7-days-to-die.jpg
/uploads/80-days.jpg
/uploads/86687.png
/uploads/87663.png
/uploads/87666.jpg
/uploads/8dio-studio-saxophones.jpg
/uploads/935368.jpg
/uploads/9452.jpg
/uploads/a-better-finder-attributes.png
/uploads/a-better-finder-rename.jpg
/uploads/a-case-of-distrust.jpg
/uploads/a-game-of-thrones.jpg
/uploads/a-monsters-expedition.jpg
/uploads/aad2014 .png
/uploads/abandon-ship.jpg
/uploads/abbyy-lingvo-european.png
/uploads/ABetterFinderAttributes.jpg
/uploads/ableton-live.jpg
/uploads/ableton-live.png
/uploads/accdb-mdb-explorer.jpg
/uploads/acdsee-photo-studio.jpg
/uploads/acdsee-photo-studio.png
/uploads/acdsee-pro-3.jpg
/uploads/acemovi.png
/uploads/acorn.jpg
/uploads/acoustica.jpg
/uploads/acrobat-pro.jpg
/uploads/acrobat-pro.png
/uploads/acrok-hd-video-converter.jpg
/uploads/acrok-mts-converter.jpeg
/uploads/acrok-mxf-converter.jpeg
/uploads/acrok-video-converter-ultimate.jpg
/uploads/acrok-video-converter.jpeg
/uploads/Acronis_True_Image.jpg
/uploads/activedock.png
/uploads/addism.jpg
/uploads/adguard.jpg
/uploads/adjust.jpg
/uploads/adjust.png
/uploads/adobe-acrobat-pro.jpeg
/uploads/adobe-acrobat-pro.jpg
/uploads/adobe-acrobat-pro.png
/uploads/adobe-acrobat-reader.jpg
/uploads/adobe-acrobat-xi.jpeg
/uploads/adobe-after-effects.jpg
/uploads/adobe-animate-cc-2019.jpg
/uploads/adobe-animate-cc.jpeg
/uploads/adobe-audition-cc-2019.jpg
/uploads/adobe-bridge-cc-2018.png
/uploads/adobe-bridge-cc-2019.jpg
/uploads/adobe-bridge.jpg
/uploads/adobe-camera-raw.png
/uploads/Adobe-Captivate.jpg
/uploads/Adobe-Captivate_7.jpg
/uploads/adobe-character-animator.jpg
/uploads/adobe-dimension-cc-2018.jpg
/uploads/adobe-dimension.jpg
/uploads/adobe-dng-converter.jpg
/uploads/adobe-illustrator-cc.jpg
/uploads/adobe-incopy-cc-2019.jpg
/uploads/adobe-indesign-cc.jpg
/uploads/adobe-master-collection.png
/uploads/adobe-muse-cc-2017.jpg
/uploads/adobe-photoshop-cc-2019.jpg
/uploads/adobe-photoshop-elements.jpg
/uploads/adobe-prelude.jpg
/uploads/adobe-premiere-elements-2021.jpg
/uploads/adobe-premiere-elements.jpg
/uploads/adobe-premiere-pro-.jpg
/uploads/adobe-premiere-pro-cc.jpg
/uploads/adobe-premiere-pro.jpg
/uploads/Adobe-SpeedGrade.jpg
/uploads/adobe-zii-2021.jpg
/uploads/adobe-zii-2021.png
/uploads/adobe-zii-patcher.jpg

Found on 2024-11-22 20:38

Severity: low
Fingerprint: 5f32cf5d6962f09c4239b3d84239b3d8dd643d99dbef6ec8bcf316cb34ec718c

Found 8 files trough .DS_Store spidering:

/a.html
/ads.txt
/css.css
/favicon.ico
/files
/index.html
/upload.php
/uploads

Found on 2024-10-26 13:09

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: core.mrprince.tk
Port: 443
URL: https://core.mrprince.tk

First seen 2024-09-19 11:22
Last seen 2024-11-22 20:16
Open for 64 days

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9a59223c8

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "bc63b2e9735eea2e02ca47f3b0b96e400fcca54c8be5d135278a99bda6dbddfbcc0d4ee31011dd5b0866d178f7d9aab4",
        "clientHandshake": "56359c414c3f874dde5cb773960940310e602fc9a228b3c5988e910c3b862fec049fa57f62a1285331d8c6998f4ba662",
        "serverHandshake": "e22bf47989b9fb0e1a917ca0d4968daa843d918e99c4a8c4f9d901f74ac22ac2d144e10b1a8c39fe9e3ed627bdb29e1b",
        "serverFinished": "bd675aaf10ca942d8eacc395cd371a36b87fc530812b196d04210b859c7f4e8a587f256931cde0a6a2470bab92dc3b7b"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "328",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "W5Ft6sdE9eOahj0lIouUuPFfDrZhUFiixTTzytqusEY=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-22 20:16

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9473ef50e

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "cbd5ba69bf9c7a8ef4154044da7f7c876be3eb75dedf55d78f6d45352668fd36e86a0869055e4701d5ef7834a708af4c",
        "clientHandshake": "7e52924f21857909d9db3396a1875f94f87db34a3193d51bf75fd1c4543cd79e39df41b830a9a825ddb8d042fc4dbf14",
        "serverHandshake": "e1d6adebef2cf2f702964485e1097fb8687e24ec2f588d5612e34c897b810f9be4b6776cbaa885fa411653da608823f7",
        "serverFinished": "00c4bcbf389b0dc05b0095a78aafe102a7a14f7d8bcca810a94dffa27c2c2cc43fcc1ab5cb28080d8469059be3f0219d"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "328",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "5LLdaMGPzlSPeH9VIWxZJkqU5Mck9XBmnYcmnwC5I9A=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-20 11:58

Fingerprint: b18befd9dd6536aa30550de50413a8ab679084c468e9f464ba0ce0deef5add50

{
    "clientTcpRtt": 0,
    "longitude": "114.17590",
    "latitude": "22.28420",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "AS",
    "asn": 199524,
    "country": "HK",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "49a74aefb6b45b3db35cbf82283856ff83820817cee8ae4d9a74a19a210252be1b059457f3bd5377240740cb7f45ef9b",
        "clientHandshake": "4b5afd82334a41f925082a7086e8a83ed6ae31f8e4b22fa6b1d813292ae9670564cf7a531e1ef2f14cec6d342d701d51",
        "serverHandshake": "58f66f97414c79bc20707bbe621bb58c1073276df2bccb7cfb7e5547e72d92112d31bbff6c6e64671537e6750797224e",
        "serverFinished": "1ceda719f182282b5ede13db0804a90c8dfa1301868c8097d490c8459cdcc4fd8332f5c17f86c23491fbcde58b534005"
    },
    "tlsVersion": "TLSv1.3",
    "colo": "HKG",
    "timezone": "Asia/Hong_Kong",
    "verifiedBotCategory": "",
    "tlsClientHelloLength": "328",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "city": "Hong Kong",
    "asOrganization": "G-Core Labs SA",
    "tlsClientRandom": "YAmDigve8zMsIHVjQSWRifl8S39uj9wxUWe6+SQ/FuY=",
    "httpProtocol": "HTTP/1.1"
}

Found on 2024-11-18 10:36

Fingerprint: b18befd9dd6536aa30550de50213a54da7be1939dd2c8002ef352a9823f5535a

{
    "clientTcpRtt": 6,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "099ef9cdb374bb2ccfb952d41ef8ed3f0adf89d7da5402e4b8a0b27332875d282c14ba2c52b537294f612e452cef0d2c",
        "clientHandshake": "156f37ca73c5f99185f2c6b2533e5245b0cf60fe53ce0da6dd34058d12a9fc8fbe4545ca0b6e934b73437dea9fa327e4",
        "serverHandshake": "5d7772dd56d0b3f797aa36e4256a5e3da29aa9b4c1621f6e3ad56425432dd179f87089051b21bb1360dbfeba55babe29",
        "serverFinished": "0d0acabac984ce23152d568a2e3b97a939c42eed8a8e4a92386f1f04feeb9113a1f106156aa661a8fc09e4baa10e458d"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "328",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "AVefjsqlOVsIdrpQklUhAWGByrORxhgL5AkTm1Za/hI=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-18 08:23

Fingerprint: b18befd9dd6536aa30550de5ff13a084df8d0bbe47ab65f7b6bc99c5dd084998

{
    "clientTcpRtt": 5,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "62929444fd2c34b54c2f06f65d2dc4d9a15cfa993afbf9269f00edad07ee6860759c66c1a30b0878890e7a31b72408db",
        "clientHandshake": "d93737e31ed36894f17f15674a2f0e2b41bea5ab927abc264449ec7569af5cb70fdd920c32a83f4d325d4d44a5ae3ffd",
        "serverHandshake": "a5e2864467e49901dbaba94b818beb22c20503f04530dd1cd9b77817d7e3d864877c12470bab4a5de77ef23f4a692bd1",
        "serverFinished": "e625f6ef7e10fd116b2c1ad4ad381ee235c4474467849256bcef5693c201af0bedf244a22d7e25f0d765ae5a3eaaebf8"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "328",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "OEmt1C+ZQiRxSnL9brVS8FG3d88a0gIzuesvlM7WAJ4=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-16 11:14

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9d350b089

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "187d92754da13664e3c5f692192bc3daec827bbf9e8d27b0f70aedfbd43da5f044731cbcef0d43abf240d9b4cbe79dc9",
        "clientHandshake": "aaaec0a0b9c4cc9c362f01d12887c7f24f027ef3a1435e3bfd294cd5ef0403436d5e46910f68dd851b54cbbfc15280f1",
        "serverHandshake": "127f5296a6e87169cecebb138732ee5bed9904d1c2da82ae7c5cb69e8b89635d586c831ff6fbca090e54fb0f028cb57d",
        "serverFinished": "1e1a2a58d40542b702e6b9bb5b191e99be09fa92268ed2d99d34a198cd04b7ffff6790600d5a79b9b6f7c45a2a87ffd3"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "328",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "dBhJgAvgeP7RE1oYUi/EzxdmvS7xyhGPbOGZ94d6uoM=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-14 10:07

Fingerprint: b18befd9dd6536aa30550de5a4ef949b4b47b88ed11852a7331c909538e43a84

{
    "clientTcpRtt": 19,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "41d944820c298500ebced2e1c7d590e8a5a6c8d57277cdfeb3d049289c446dc5a1c28d8d6a61712817b6c1b68e74056f",
        "clientHandshake": "41aac1905a2fda3a2b2e9e46fe78dab37bb47a01895519d860abd692803b0db8eb76a0d2890ecc46b6ac543f66d32762",
        "serverHandshake": "35ec5334945e2b72ad559fc930ae213ac378e9455674dbb9f966ec2c2ddfb41c8ba7065a28f08a76a619e872cdae1a00",
        "serverFinished": "a118057fdc2d296a340337ced4db5a5470bdae2d749d0390748b56cf4e03668d5305538a26991416a59ff18ff33ea3ba"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "YYZ",
    "tlsClientHelloLength": "328",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "E7UBMp+3wpjNC1/kHbCrjnFkcT/+e9sq8U9c0DKp83A="
}

Found on 2024-11-12 08:58

Fingerprint: b18befd9dd6536aa30550de50313a6d86b7e92acdad1c281097f6e1bf4af2ebb

{
    "clientTcpRtt": 1,
    "longitude": "-79.38920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "country": "CA",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "288a8a32c9c34dc893f001fa861f1890420080645af855bb364d44ec699923fc5c7824859b2746bae3394bb153474e28",
        "clientHandshake": "5db2e3cbc78ef04407a3f06cf58d7dbf16f140d7fe33570645aa56186d30bde564ea66205e2a6bb651be4c7c2794e195",
        "serverHandshake": "053779ffb6b34c59e7ee16087546736f598747a927e8238c750f809d185a8979abb83d127de8118355db68b5e3cc955f",
        "serverFinished": "11a50737b8e3f783981e04a06c5e787f95076ddd7e77ea3bfb7f48b491c82d26f6e38d2893b250d6220dd81df490508f"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Toronto",
    "timezone": "America/Toronto",
    "colo": "YYZ",
    "tlsClientHelloLength": "328",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "M5J",
    "region": "Ontario",
    "latitude": "43.62270",
    "requestPriority": "",
    "regionCode": "ON",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "WW9KcH9Zj7ebt6Kgiv4+sn4mZ7tUHcJp4aLdocl/cTg="
}

Found on 2024-11-10 05:16

Fingerprint: b18befd9dd6536aa30550de50213a54da7be1939dd2c8002ef352a9804e8f685

{
    "clientTcpRtt": 6,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "27183448ff19d183d5559b41592d5afaf6d469692ae9e8fbe9b4ed2e45b9f92eb70721df76c79044f82b1ea047d4f36d",
        "clientHandshake": "2dffc83d1ba15a3cb0dba4e317f24a0a3ed9feb8756ca09eca5f16adeac461dcdae6b40a0e311763cc2c562a11bbbe29",
        "serverHandshake": "b754232d769d0afb21d9c981c4eaf463429a83467b6ef062b61e5dfa842b230361a9586a0ebaed085963edd1dc2d69ec",
        "serverFinished": "d397c1f4ddea59031fdbc390a27bce0f8ecfa773a074d97ed2230d939010e335f3914b1606827427d2046a4cf8c804ec"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "328",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "aeIMC06/PFtR6/bwzGRK1TbkFZLwzHDwQuuA/nefLrY=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-08 05:19

Fingerprint: b18befd9dd6536aa30550de50313a6d8a41b8e9729045fdc47348726e61e16ac

{
    "clientTcpRtt": 1,
    "longitude": "-87.62880",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "b2b8ccc408cd4d76a0fcca96b1c99911427a32130badee4267b6b1a44e417f505c669f583c43a75fedd12bd437d427fb",
        "clientHandshake": "63d055218c9a574e7349c1c8d3a204519cf97ec610e6b0fe48a211f6faed28fe9660fa298e5548888216d1f0c407457d",
        "serverHandshake": "d6700903efbf6378308a209f0aa7ca5135cb7a86971608e6393cf66ee3236d9f3c0fabcdba51ed40ad3e9e70e0aaad5a",
        "serverFinished": "4e749be75af67d955ce52bd08dfc6595cc13534cb0b5b36c17207b3e95d99973cf166fe8fd1eaed985ae44ef49810e68"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Chicago",
    "timezone": "America/Chicago",
    "colo": "ORD",
    "tlsClientHelloLength": "328",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "60616",
    "region": "Illinois",
    "latitude": "41.84860",
    "requestPriority": "",
    "regionCode": "IL",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "602",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "JV3EBH1h1z21CdqU2iPNARpwVkvx1S9RxQupxOyeWs0="
}

Found on 2024-11-06 04:54

Fingerprint: b18befd9dd6536aa30550de5ff13a084df8d0bbe47ab65f7b6bc99c561b1ec99

{
    "clientTcpRtt": 5,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "a38aa342d46b0682755acc048af8460efed50644c6705f558c6ace7b7ec49ff259331061f0e9252e369c33b024c3b618",
        "clientHandshake": "7a34267f3674e8b4f7f54d2e4b521b9d769c1666e830715797a81bb28385826e57d216304635ecee74700071adb73a4a",
        "serverHandshake": "646fc81315beafd5c2fe554725cd0977ebf6da9f97fd999fc85ef2c1b645da7f50aee5fc6b204253098b8695146902d9",
        "serverFinished": "2e04f362f0f7379c42c090c0b3399b49a0fb60af69748f318ee327b238cd20c2d28de77d5906061328ef28347e4139a3"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "328",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "/D/LZyz5r2f4ZPf2nElUvLg6WMFJbJ3ZGHpHgcwLDTs=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-04 04:43

Fingerprint: b18befd9dd6536aa30550de50513aa36048d1ef9f8d7474255a3c2d87aace81e

{
    "clientTcpRtt": 3,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "21f264d813047297bc28b4b6de420066d592ae4c95d1f63584f1c6b8dc9b18321e434c0164b2d1e6513867c9fda3948a",
        "clientHandshake": "a2f2ef466b4ed9bd19884e13a97fd4d9d1428010de425ea45835bb29da11779f7722631e694924e08328f645ceff790a",
        "serverHandshake": "218d3e1ddb6c3a970dcce081b51630596551fc53b396cd734e5b9797f286194f62c504e1851c36ca19a1f0154596dd4b",
        "serverFinished": "bc1e00506bb286323fe7305fadbae89854e94c5627b097e9de4328c972e627aa37bd84aa6c037c23277a821044d5413b"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "328",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "M6tIJM7Gf6KBKWpxcyZPESwB6wIMWiv/pbiSHPnd67A="
}

Found on 2024-11-02 18:01

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad92a1e6dc3

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "3276a93dc7769c0e6a4eea2e1dd5024d4a2eb2b7584ed1186fc8ef9d49f29df54a6680182a65e158b4077d208fb841cb",
        "clientHandshake": "cc3b34a5934d19cefb64a5b409b6470abd9d6ccbbee21aa3b51db10119176fb39b9055d46b60a17ce6929a9011f3f543",
        "serverHandshake": "e458451170a3c66bbaf1ec47e25adbdefc37bca0a2c4a4249729caf287876646819f5e010ef46c33e636b2ff1bd2fcdc",
        "serverFinished": "8d4dc01eaeacde51e81bfbc88983bfa4991f030b64d33b84bcab77eae875aa653709bd00af5ebcb50c8561b6b4c869b0"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "328",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "r5rLElWQ4v+wwfZLVNJwGUXvx6SWaPWOZLQz030w6T4=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-01 14:36

Fingerprint: b18befd9dd6536aa30550de50213a54da7be1939dd2c8002ef352a98ef697d56

{
    "clientTcpRtt": 6,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "9cb5940994bc2ac84da49bc05e3b1d07f6349ba6dc4a5e889f9667251fd915ae1ad22818fb8fa3bd9a97478eb0c6c06b",
        "clientHandshake": "58f34dc70c24e1bd35d6e90745dc8c1695edb57a779f3b23a0b0fc90adbcb47fe00b61426392b4cb11386e25a82549aa",
        "serverHandshake": "67be27d520827cbac843984588f6be055cde365dcf6315d8544e10d80a41b6416615a115fec8bdf3497371b37b0aece5",
        "serverFinished": "fd7208b5ade908704ca6f6f5b3f836eb93870d4621dfc5c927b0cc1409df61075c59c5db356bf4164975c2b092326383"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "328",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "avOjER8kM8ZhnD74OYFXsmswqgoM8nRMqdgwC9AcpE4=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-30 09:53

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad94397d90a

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "1a56b389b252a915046c9183702554fb00735c364df07b40ca78786a9600447d8b152ef694b7b2ecda023de7c2cdd322",
        "clientHandshake": "da3304028c2ff959d22e964fe7bc1cdd9b2c2943e4fe34add1f2ed1c14af2c988466f8895bfa2428331d22a971ae23a5",
        "serverHandshake": "079d38bed5a49dc4cef242bb5217d0b2913ad5882a1ca66ce5fff1843fe9ea8cbb3ba32cb6eb2c132eb3ee96ba1d5a48",
        "serverFinished": "b7ad720fe6cf5412566238bfa8ffb62e5bffc8b0412c79f1208a089fc13089229b744d678607880cd03ce0db8fe7ffae"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "328",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "4Zu55Ke28KC4mij3ZyZBwPNsHB9F3xcA5W7jiX/QCEQ=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-28 06:03

Fingerprint: b18befd9dd6536aa30550de50213a54da7be1939dd2c8002ef352a9890f1f205

{
    "clientTcpRtt": 6,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "0b67355b90cd12f6a65724a285b764a676a753d39a87386d03cfb00fe43e99c13f4104bac814446e5b802fe0b3f401fc",
        "clientHandshake": "18bddce9e305a058778e9a22faab1f829d7ecd90076e89b126753941e8692bc204032c8ab35c3d892cbb4e4f4de4e506",
        "serverHandshake": "b3a5d3de53a62ae3ee78cf06efe20e5863f538a8e2270f4efc5936394faabe782f604a9221ce32587902b57362317381",
        "serverFinished": "17d718de2418abac82236caf46d0cc33567ba802bc2ae39453b41f03697fb3108550aafe7e7df9728d840a990983e190"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "328",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "QY9bZSTRGANcbUM7Q0OWGCYRMGsgZfcbNneuL8ExLcQ=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-26 05:04

Fingerprint: b18befd9dd6536aa30550de50213a54da7be1939dd2c8002ef352a981a0efa86

{
    "clientTcpRtt": 6,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "d6b7d958367241d86cec6c49f042e974a6cea23cadf6fd50c060d66a6bb37deb418579647e2a2af7a746fd543e7a2f27",
        "clientHandshake": "15d5912b7377739a84cb81aec432c405661236f2c8e067ab09d49940eb63c4637f662ced1b5f22099b962e8682441ad2",
        "serverHandshake": "adcebf671fc99edd98b205514afdce3d41db3ae8f3bffcca3c627a551ae55e2d5c5db8ae0883972eab30ff05938187be",
        "serverFinished": "31851eda7e7f6ee2aa9d63dde017666eb83c57a24cc4fad349b6188b139e705fd2f099413ad3c152843bc47368d84b6d"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "328",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "oKFqodbw/9Xr/CMsSlz1J3sPdJxaREQIRGFb2gYtEQA=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-24 03:42

Fingerprint: b18befd9dd6536aa30550de50413a8ab94c8fa9426c39c39b47e3643ff0cfaee

{
    "clientTcpRtt": 0,
    "longitude": "103.78360",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "AS",
    "asn": 199524,
    "country": "SG",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "verifiedBotCategory": "",
    "tlsExportedAuthenticator": {
        "clientFinished": "8d3234f5def5924cb7457403c54edbd9388a325cc16a6e34905a2fa40301751f218fc61b567ae4d7dc29e29cca0fe03f",
        "clientHandshake": "93d41eebbf8af6fbebbeeaca29363f5d70788820302fbc0c868e972b50c80d24e2ab65082e15d0a694e069744dcd0a6d",
        "serverHandshake": "25aae9fb9cce56adab8f236b1d03ad9519d891f1ca863becbe0439c5b309f2a7162701324ea45f46c180f120e8b6023d",
        "serverFinished": "178969e6863bf40c50e2f91915274a223bc885efd385560524846efbf60213256a4bb15f89f685c59de984381d7375c7"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Singapore",
    "timezone": "Asia/Singapore",
    "colo": "SIN",
    "tlsClientHelloLength": "328",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "13",
    "latitude": "1.29820",
    "requestPriority": "",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "vuWXtZTGdvUtVib2ztTH5eUYzXrUCwuljDk15stDI48="
}

Found on 2024-10-22 03:50

Fingerprint: b18befd9dd6536aa30550de50413a8ab94c8fa9426c39c39b47e3643f7d21b9f

{
    "clientTcpRtt": 0,
    "longitude": "103.78360",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "AS",
    "asn": 199524,
    "country": "SG",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "verifiedBotCategory": "",
    "tlsExportedAuthenticator": {
        "clientFinished": "c6d1ddb0f7ad7875386b772518fb3b85c7fe14e361317c1a4c4d049ffaadf7b4ccad9a69b71674ece0b1c50f69eee0f9",
        "clientHandshake": "686e0bfa9d6487e9cd6e7f0f83f156681aaa76d67936ffe9e0c3aa1c425cea2a5c6ed4f8cf62a03dd80cf5f20045f93c",
        "serverHandshake": "a836b0411b94702c16a862019861a95668897ae51b1ea2a12c924cf62f02f46174c4efde52b32301a491bc3ba71595d5",
        "serverFinished": "21c3e14eb668f9bc93d26bba8baac15456d64c730152f414faa40a8c06434dc14d2e922683bce6da0056b5cc8490402a"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Singapore",
    "timezone": "Asia/Singapore",
    "colo": "SIN",
    "tlsClientHelloLength": "328",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "13",
    "latitude": "1.29820",
    "requestPriority": "",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "uT/vE3zFzvtAygh+E+4BeMU4Ca6LkdqWiMM0JccEmBI="
}

Found on 2024-10-20 04:43

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad950e16870

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "7cd9496deb405d013fde3693e5dd60bd59ebb314e2aedd175b50fe9b9b7644c2bba10837201b0129d28483c85676187a",
        "clientHandshake": "28fe9ddc16e225ae864eb98c7169c964b8db29b885301dba0fee038fe5af8777264a233721ac89036d02572040ae38e3",
        "serverHandshake": "eba395a5c6280a40af6ed5f7e82fc06cae48e3a2399423e10ed89acc8f35aec3882a542ff102de9a18548c745308c971",
        "serverFinished": "3c1dbd795530b37ec02f31ad13b4dac909d49529d05690460a91a93e9193351259dd0e49ae13ce5815723185eb235950"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "328",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "LFY9Wqa9WpAFUUKkPP9AvUYSU/PZCBqG0OS783viUvw=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-18 04:38

Fingerprint: b18befd9dd6536aa30550de5ff13a084df8d0bbe47ab65f7b6bc99c59090e323

{
    "clientTcpRtt": 5,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "6cb0a2f1350e1f700dcf5859ec77b325d1c13491fe3927ef9c6f2ffeffd689a4fde1d1df4992c9216e3285b74c8ac4d4",
        "clientHandshake": "ad04472bef2174fe05cae3e0f89d1ae8d32157152ef537645227f273ba30d97af12ab035a6981ed70c2f8f5639a3478e",
        "serverHandshake": "179cfe96f32491a6a040a7280ae02e8e5f5ded14731d375a5e66d47e511febdf623486ade829d2f75e4bb92f88a8abee",
        "serverFinished": "e1f163ecd6c7632958640e26e95da3cd63546c3a15f3a20600eb9f396858f274ec6762adbbee6044ef3a3bd63da6089b"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "328",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "GoY6FeeaD03WME5D2uPjoDTgkpIhOA2ePPoTkhsnW0c=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-16 03:31

Fingerprint: b18befd9dd6536aa30550de50113a3e282eea2e44517a6691b40c8d34cb926f9

{
    "clientTcpRtt": 7,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "7660e31a91ffdddd0bce6b30586a16ad1f13099c6f175edf17ba60c26f6637e28df99bd286647591dded8473ef9931a8",
        "clientHandshake": "0aca2822867daf98e7ef04517763d2c669e42cf0495292b6d81640a41829122aadc69649345eda733532b954f87d7683",
        "serverHandshake": "4779ff587422b590e8ef6f1055ba0df121d5e072e62fe66a05ae814a4c3ef849d22336b2ce796cdc984666020224a0c8",
        "serverFinished": "b80d81582b0a8e2f15d96996bd9ac0845b7b981ac9536de4ba87dfe739855aed08f5c290b19bfd04302fedeed6e59001"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "328",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "OjqS4ZjbQHkRc2v4Q3ppJg1PLrwOdypCeEnE5wZWRUo=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-14 19:37

Fingerprint: b18befd9dd6536aa30550de50613ab81c4d7262abbf5b58b5f3e6d316660e884

{
    "clientTcpRtt": 2,
    "longitude": "103.78360",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "AS",
    "asn": 199524,
    "country": "SG",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "verifiedBotCategory": "",
    "tlsExportedAuthenticator": {
        "clientFinished": "d4372ae5bbeee6d9edf696bd4b419d2485dd302f18e7d12feb46eeb8e89b972ba81ad196a436098a53da7bb716e0c66b",
        "clientHandshake": "ad71af5156427b45414be3b6258232528672d0b4b532928b26670e06ab601c95410355a179b0653958fb043522893160",
        "serverHandshake": "e2dcdc6190e74d119fddea9f35429ee3a32ca111eb23e1f48086dbccab84e0f256918a534239f9db86bc507b10c74c80",
        "serverFinished": "2c04992dc0e9b84bf414841425cf4cdb5ba5c35beca1aaedd4ba308caf035312ce00d38e48f264d36e90b2d33767b01d"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Singapore",
    "timezone": "Asia/Singapore",
    "colo": "SIN",
    "tlsClientHelloLength": "328",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "13",
    "latitude": "1.29820",
    "requestPriority": "",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "w3Zh0d3BVjvvAhhQq3M1ti680yqtcYKWYQ1abjDkNWw="
}

Found on 2024-10-12 16:30

Fingerprint: b18befd9dd6536aa30550de50613ab817e50c4c48b10a1097f484af3fd5e081c

{
    "clientTcpRtt": 2,
    "longitude": "8.62950",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "74da342ecde760d8ab43d318b69c74dda913539666baa9fb9ea18051cdfa9b36c0aa53a6919b5beaf02fbc25843f93c9",
        "clientHandshake": "586b59029979c22b4f1d8a9cf000794b130a2bd14edf7758f1768ba965bf30c1c936933ca089c211b7d7447cacbe1fbb",
        "serverHandshake": "0086d633ceff2ab099aebc154c1d94850faea79effdc12e9b9d47c8a00e9a08782da51f179efdb2b24a279bf0ba22177",
        "serverFinished": "813f0af295548b853dda3e761f8a7ae073abf01105059b2c36a45dcf4c541a4cdf9fa3a94134ecce537e33ede1e71c7d"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "328",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "nTO7qBbITqWQiAxo3fU68zhhLmk8CoIJXt4MT1ouC78=",
    "region": "Hesse",
    "latitude": "50.10490",
    "postalCode": "60326",
    "regionCode": "HE",
    "asOrganization": "G-Core Labs SA",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-10-10 14:22

Fingerprint: b18befd9dd6536aa30550de50213a54dca0da4bf4def1034ef8c550ec89096d0

{
    "clientTcpRtt": 6,
    "longitude": "-79.38920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "country": "CA",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "3c9e218d6e9a461c9ce8b43d9c45e8fef5913d231ac97b9392d1fd0ce3eaeaae788a007dd0d6c480ea3adfedbe855e09",
        "clientHandshake": "aa947e1944db9cf79bb4d9699131248acd06fce738364e3e917c53eb91b985636eb0ea2d0e769751078333fd5f65cd8e",
        "serverHandshake": "84475192dd1e43df982fd881fa407d428a95427ea6030af2726f7008288b3ca7262539d14abec12ca0cd4107878077e8",
        "serverFinished": "b2bf99c94b6440ba19d2261dddd22da48064ddc4c1eb685e78e7c1e1be8f701cb2f2e919d2bf2a7fdd28d02e18258ac1"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Toronto",
    "timezone": "America/Toronto",
    "colo": "YYZ",
    "tlsClientHelloLength": "328",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "M5J",
    "region": "Ontario",
    "latitude": "43.62270",
    "requestPriority": "",
    "regionCode": "ON",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "slWmJjxydZuwoQl+pkhuqr1lZ5nqTF8XDtz0BbeIjgo="
}

Found on 2024-10-08 17:29

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9937971d2

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "efea5e57419769aa1e71a7a7519604578feefad230336e212b89be077b371c0d186ef25c5d68f0417ae50eda56cd03a6",
        "clientHandshake": "d131899515ab8abd198b6f77fbc6b9556106de7fc9a3df3486db8eba1bac1e89817a0c3beae7270d058fb483e6a6b195",
        "serverHandshake": "85c028963b0998e0937a25593d78d1f471a3e27a26268449bd120255ef9efba33193b4cef797dd13f1dd368c00d67465",
        "serverFinished": "2f9590b40b8620f1598e2abbf8c8b284cc7189a641fd9f0e1b671174c01e1efeb19aedc96be69243a6e10e1c71b8c99a"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "328",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "i58/FToOVPfmf8Q8fmeSbQL3uMeE5msJfYf2+2l69/k=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-06 16:47

Fingerprint: b18befd9dd6536aa30550de50613ab816ba1da0d2ef568aec64ab1bc9571df15

{
    "clientTcpRtt": 2,
    "longitude": "-121.79460",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "aaa6fe56462af667671bd74f961c6dd1d8723fccc66cd77ce43bd9b6363e6b5a5573ce278ed4d375002311d25f7c07a2",
        "clientHandshake": "c65826c6d9927b9a0be41f09716a4ccae3773de9df600b4aa03e4cbb8fd11212c10a5d323fbb4f348b4ce142fb096cab",
        "serverHandshake": "63e1b2c25aeb96b5c9bb45b6171194c99e1b82ffca776976aa827b8e3db0bdab7d5acb66a038ec53f7355e7c929f0143",
        "serverFinished": "09ab800889802ad8f7a3f406196e64f6bc05bcae93a402e59d5b16ede4440d5ec136b89365e67c2d9c7b0ccf374a2f80"
    },
    "tlsVersion": "TLSv1.3",
    "city": "San Jose",
    "timezone": "America/Los_Angeles",
    "colo": "SJC",
    "tlsClientHelloLength": "328",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "95119",
    "region": "California",
    "latitude": "37.23790",
    "requestPriority": "",
    "regionCode": "CA",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "807",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "R8bgsdU8YoTOifTf6OWGJtX3JsnAeN3tkF3KO4xxcFw="
}

Found on 2024-10-04 10:31

Fingerprint: b18befd9dd6536aa30550de50113a3e282eea2e44517a6691b40c8d364268cdc

{
    "clientTcpRtt": 7,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "8cc1fa238cc87df1db6052ee29a35ad12328e9a439c71f9b49e56f2eb590295f375a5be4f9491065d45cafd8cf218002",
        "clientHandshake": "26a92cf8e2b90bf65fc8919cf2904bfa3abefe6d797b123205f4786846deb14aa4bada94319d6cb11d629ed42e76a19d",
        "serverHandshake": "7075490e7a7793d98366f33de701baab8a3ba54c4335c2ed0e7a9bc9c411e9edb5df2a3c5276f2cebe4cc5bb80b280cd",
        "serverFinished": "f9a695915a2f965943021b5c9936d8527fb5da9384f47916859d86f19fae6cf9051285d0b69a53cac6a1b9b03dd840a5"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "328",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "wqmnM0ItP1r+7pwM8fuaYInEwc2qjWEJ2j8TQiyAcWU=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "FRA",
    "country": "NL"
}

Found on 2024-10-02 13:02

Fingerprint: b18befd9dd6536aa30550de50313a6d86b7e92acdad1c281097f6e1b67a3b416

{
    "clientTcpRtt": 1,
    "longitude": "-79.38920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "country": "CA",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "da0dbe1a5deb6be174c7123f365471df94dbd4aaade0bb67af6dfb6ecc6a67ce260729e331a52cde2d61fa8e8462e6bb",
        "clientHandshake": "6b983e18a54629dc7c7ee7e84e4a17022a1dfa96c0dde88a3290520e92e7efa742f3d08bc421f02088c5a61a9e3b8df2",
        "serverHandshake": "6ebffa9bb065323a4d8691e725475241efeb540bda73adc7415a33fdcd0978200eb8c0eec7d2475b0319e66e0eddb67d",
        "serverFinished": "2146edeae0b242b6fe70e6f787545453865fd9e529c7727ed1d04645a66133d3905723eee26752818096d73a3ddd3e8f"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Toronto",
    "timezone": "America/Toronto",
    "colo": "YYZ",
    "tlsClientHelloLength": "328",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "M5J",
    "region": "Ontario",
    "latitude": "43.62270",
    "requestPriority": "",
    "regionCode": "ON",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "IYaLmRqrAbxP9lnE6pgj1wd9rbbYd/8g3Sod2wTUsOc="
}

Found on 2024-09-30 16:47

Fingerprint: b18befd9dd6536aa30550de50513aa36048d1ef9f8d7474255a3c2d87ba18d7b

{
    "clientTcpRtt": 3,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "3b431f2467540a1a414d2d0d5be1dd4a5996de1ed56c7a0f697de97591a0044f7239547c210293708a5ce43963ba4464",
        "clientHandshake": "28c2ad6d3751f4a65faf1945ab7babbb82ff3a86d238d62d77e42782356cce53a27d4d7198ea4064aa3ff8ba6bb58ec2",
        "serverHandshake": "e5d03235195d4902da8380f6ed5b34daec4f69351b0964059d13a6bb7def8bfb23a180c5ddc0168c86ad6baf9d707f06",
        "serverFinished": "6beb02b485bf8be88756beb5ad5c1f094c6685376920ef8eca5b4ca58ed588ec21d1b1632e527a793e3910ee235ffafc"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "328",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "IOS+hgyHF7blfFUZ0PnbXlpmw/V2qOgi9BPZpYNTEUs="
}

Found on 2024-09-28 05:13

Fingerprint: b18befd9dd6536aa30550de50313a6d81d1544c3794af1005be69f32ff0372a0

{
    "clientTcpRtt": 1,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "dafb69115c4e44888bf679b92b996f921996069e8ede830dd79063745b25642d8cf47f9e02d44b384d571fd5c2ea417a",
        "clientHandshake": "43faf44878a5acc7346abb0dfd68c84bf60c8b6018baf05fa9bb649e5adceb06a0375050166d24629427359c0e6f57e2",
        "serverHandshake": "b9c2059a5626985813705728a58a94fd2ddfd9ef9ec68ec81c968b38bfdeff696e56bf04f0750214c5db1f8ffacae916",
        "serverFinished": "f01a3934ee3cc00a367bf4bad0063f74a9c5f09abc7ed22e185b572a6adb283ffd905f3a2174eb2ad478280cc21cc866"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "328",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "CMbAbuwU4Z81tqQ+HOxY0LCEfwptHCWy44F2O9SZV1E="
}

Found on 2024-09-26 04:13

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e2386527c7441bfe4

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "53f77e673be694ff0a4948f93473026f4775f8734cf9855686a11ddad7c5ed0f1fe12abdf2cd82db5c39298a1f72e654",
        "clientHandshake": "0c66f11c8224b08a124f453e958315c38a204fc5c422aa14d132c0daa3115a21c617044fc5d1fa6a4ecddcbbf2de3a0f",
        "serverHandshake": "09f63b32698da8d5b8e7183daaf6dfc2ccbc7fddce58134f0daa8c24b701c1051e046cb30ddd0c3f5a45983fa6cf649e",
        "serverFinished": "0ce688c145e2c7d8f1c631829458f0d71ae9fca6558131dbb2d7502f63278d302c792ed9fb183506a79c5f75f19aca57"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "328",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "/JdsppjoXcP/+ZlX0HWIFlGdzIpxCnz+Y/Dx7H83QNs=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-25 03:54

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad95c0efff3

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "aec2cdfc08c6cc703c6686dc13bba4236ae1ee6414dc97f80ce943696eac0ee3b5ce0bb82bd9a4315dea7bb4bd7e45d0",
        "clientHandshake": "3b6c49040f1681a2be0e327ea25ecc979eaf4b89ddac014f1559167e7b819b6e152c1235655bac914ab97594964fbafa",
        "serverHandshake": "f694443621da9a27553b954a9cf10e614387fad1d6c131c69cb834d78b1abaa9dd6b7fbdb9ede06a23439529e3c5b009",
        "serverFinished": "60f0ff5fe6274c9aa98a2c12fe5846b0ff1927a08136f1bf4fdbf745d23a834e2713a55204a2d1eb1bf3ba67605de799"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "328",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "eIWhPAT4yDZdcdmRRoq8hSgAGxSdCltoOMBroRTyUU8=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-22 21:13

Fingerprint: b18befd9dd6536aa30550de50313a6d81d1544c3794af1005be69f321720db04

{
    "clientTcpRtt": 1,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "47dc85cd65f9f56aaf2c39aadf23b26ec9a6c4c42e337596d07b1b55cb9edf2ffa3f545dda914f22a6b692c66bc1a47d",
        "clientHandshake": "f15be5640f8d378ff739606df18071d0f9eaa9c2a6705770cfd3675cea9d27a32cf61b6f3cec0482340226142abc29ce",
        "serverHandshake": "581340d57e11fdf7bc6c023084ecc07debb6291ff5fba87c7c7d449dba5a6102b799fd6dcf46a9d46479b19c9bcec838",
        "serverFinished": "c443ccc2448aac131f9fb9415603f65f15373ea8f1a7f7f8a69706ea27a2c1e6ef8826f047b0d40e1f194d9f5ab85cea"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "328",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "bVmCUPrY1h+SlMur0RHwmh18nIV3CuSCT0XG7IgNYt8="
}

Found on 2024-09-20 20:05

Fingerprint: b18befd9dd6536aa30550de50613ab817e6134ec6611bd4114eb7fdb54e7b349

{
    "clientTcpRtt": 2,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "05b939d85e8a1e69f6cf0d52569e5b0cc18b5e93eb0866bdde74461aaced1885c9a06f67fafd037c0a44f1ad1ead1e37",
        "clientHandshake": "cfd07c087a1fe23a28bbc48769fc000d05775ba226e9cc92bc0848221eda47c318aad24e9f44de36393e7476098bf5ff",
        "serverHandshake": "ba5724d18bf2e89ca1d0cbfeb337146a68c90d06128cd8c347d7737c5c18a45b8d74dca4eb12c456bba21a5bf27dd1d3",
        "serverFinished": "ab8927f42ae41fba407e52a747da8b07cabf39a2a4bf8ea98dd17305c17c082d34ccfd44e0d36e9b1bbd5f85d9b57c34"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "328",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "Y5xopbMJS//RP9FFSdnFRQ/iQFDOxsNR/2yiu/Cr3UU="
}

Found on 2024-09-19 11:22

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: kiss.zwshiyue.tk
Port: 80
URL: http://kiss.zwshiyue.tk

First seen 2024-09-19 08:51
Last seen 2024-11-22 20:03
Open for 64 days

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e34454804b364f7a66

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-11-22 20:03

Fingerprint: b18befd9dd6536aa30550de50613ab816ba1da0d2ef568aeb0a62efe6c7a7c16

{
    "clientTcpRtt": 2,
    "longitude": "-121.79460",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "San Jose",
    "timezone": "America/Los_Angeles",
    "colo": "SJC",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "95119",
    "region": "California",
    "latitude": "37.23790",
    "requestPriority": "",
    "regionCode": "CA",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "807",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": "",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-11-20 20:36

Fingerprint: b18befd9dd6536aa30550de50313a6d851ffcd24a470f229c385c88952d5e24b

{
    "clientTcpRtt": 1,
    "longitude": "-121.79460",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "San Jose",
    "timezone": "America/Los_Angeles",
    "colo": "SJC",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "95119",
    "region": "California",
    "latitude": "37.23790",
    "requestPriority": "",
    "regionCode": "CA",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "807",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": "",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-11-18 18:27

Fingerprint: b18befd9dd6536aa30550de50313a6d8747af687ed48ccec11b0fab466357021

{
    "clientTcpRtt": 1,
    "longitude": "8.62950",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "Hesse",
    "latitude": "50.10490",
    "postalCode": "60326",
    "regionCode": "HE",
    "asOrganization": "G-Core Labs SA",
    "colo": "FRA",
    "country": "DE",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-11-06 15:10

Fingerprint: b18befd9dd6536aa30550de50313a6d86b7e92acdad1c2816e36a9f1c2f30262

{
    "clientTcpRtt": 1,
    "longitude": "-79.38920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "CA",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Toronto",
    "timezone": "America/Toronto",
    "colo": "YYZ",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "M5J",
    "region": "Ontario",
    "latitude": "43.62270",
    "requestPriority": "",
    "regionCode": "ON",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": "",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-11-01 06:20

Fingerprint: b18befd9dd6536aa30550de50313a6d81d1544c3794af1004edf0b58c182afe8

{
    "clientTcpRtt": 1,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": "",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-10-10 09:48

Fingerprint: b18befd9dd6536aa30550de50513aa364b8758e8907bbbb5deca7a7555532d60

{
    "clientTcpRtt": 3,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-10-08 09:40

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e08110c3e83c997a1

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-10-02 15:24

Fingerprint: b18befd9dd6536aa30550de50613ab817e50c4c48b10a1093eba9aa9b765ab7a

{
    "clientTcpRtt": 2,
    "longitude": "8.62950",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "Hesse",
    "latitude": "50.10490",
    "postalCode": "60326",
    "regionCode": "HE",
    "asOrganization": "G-Core Labs SA",
    "colo": "FRA",
    "country": "DE",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-09-20 22:41

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: music.elysia-root.com
Port: 443
URL: https://music.elysia-root.com

First seen 2024-03-09 11:40
Last seen 2024-11-22 19:51
Open for 258 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbc886f336

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Saturday, 23-Nov-2024 04:47:46 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 292
Parent Server MPM Generation: 291
Server uptime:  286 days 1 hour 29 minutes 59 seconds
Server load: 0.00 0.01 0.00
Total accesses: 325869 - Total Traffic: 10.6 GB - Total Duration: 12667874
CPU Usage: u364.17 s571.7 cu1497.43 cs2209.1 - .0188% CPU load
.0132 requests/sec - 460 B/second - 34.1 kB/request - 38.8741 ms/request
1 requests currently being processed, 5 idle workers
____.._W........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2915600900/70/52199_
0.002119841600.01.022283.69
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

1-2915604540/66/42963_
0.000114804230.04.431684.03
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

2-2915600890/70/53202_
0.0012616917030.01.371657.25
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

3-2915600860/72/53045_
0.000116335140.02.721696.76
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

4-289-0/0/39275.
0.00103631117027800.00.001318.07
136.243.220.210http/1.1fediverse.hanbitgaram.com:7009GET /sitemap.xml HTTP/1.1

5-289-0/0/45999.
0.00103631115739230.00.001300.07
91.107.220.171http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

6-2915600870/71/23102_
0.000110055490.00.68471.75
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

7-2915600880/71/15360W
0.00006286960.02.43142.13
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

8-207-0/0/132.
0.0070988330558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00701563123031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00701563112422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00701563121435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00701563171397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0070156311825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.007098837000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.007098836000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.007098835000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.007098834000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-11-22 19:51

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb793eaf6e

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Thursday, 21-Nov-2024 07:50:42 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 290
Parent Server MPM Generation: 289
Server uptime:  284 days 4 hours 32 minutes 55 seconds
Server load: 0.00 0.00 0.00
Total accesses: 323738 - Total Traffic: 10.6 GB - Total Duration: 12615036
CPU Usage: u361.85 s568.27 cu1489.55 cs2195.43 - .0188% CPU load
.0132 requests/sec - 462 B/second - 34.3 kB/request - 38.9668 ms/request
1 requests currently being processed, 5 idle workers
____..W_........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2895386940/58/51854_
0.004119793920.00.122281.71
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

1-2895423880/6/42631_
0.002114675560.00.011678.67
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

2-2895386920/58/52857_
0.0033216840630.00.111654.65
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

3-2895386890/58/52698_
0.001116218470.00.121693.08
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

4-288-0/0/39229.
0.0028207517021790.00.001317.81
2a01:4f8:231:3eb::2http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

5-275-0/0/45975.
0.00115143894015738280.00.001300.00
159.65.92.208http/1.1nyanachi.com:8001GET /oAuth/signin HTTP/1.1

6-2895386900/58/22756W
0.00009942420.00.12468.07
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

7-2895386910/58/15014_
0.00016248030.00.11137.07
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

8-207-0/0/132.
0.0069370090558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00685380723031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00685380712422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00685380721435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00685380771397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0068538071825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.006937013000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.006937012000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.006937011000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.006937010000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-11-20 22:54

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb6c0b7b8d

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Monday, 18-Nov-2024 19:12:29 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 287
Parent Server MPM Generation: 286
Server uptime:  281 days 15 hours 54 minutes 41 seconds
Server load: 0.00 0.00 0.00
Total accesses: 320880 - Total Traffic: 10.6 GB - Total Duration: 12585685
CPU Usage: u358.72 s563.7 cu1476.92 cs2170.81 - .0188% CPU load
.0132 requests/sec - 466 B/second - 34.5 kB/request - 39.2224 ms/request
1 requests currently being processed, 6 idle workers
_____._W........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2865059840/159/51378_
0.001119746120.00.412279.63
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

1-2865082540/126/42218_
0.000114628960.00.291676.69
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

2-2865059830/158/52381_
0.002116789330.00.411649.02
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

3-2865059780/160/52219_
0.000116185120.00.411690.64
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

4-2865122690/67/39167_
0.0012617017810.00.171317.61
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

5-275-0/0/45975.
0.0093314594015738280.00.001300.00
159.65.92.208http/1.1nyanachi.com:8001GET /oAuth/signin HTTP/1.1

6-2865059800/158/22279_
0.003299906270.00.45464.21
127.0.0.1http/1.1music.elysia-root.com:8001GET /server HTTP/1.1

7-2865059820/158/14539W
0.00006173680.00.37133.47
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

8-207-0/0/132.
0.0067187150558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00663551323031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00663551312422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00663551321435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00663551371397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0066355131825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.006718720000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.006718719000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.006718717000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.006718716000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-11-18 10:16

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbbe021c0b

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Sunday, 17-Nov-2024 01:05:46 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 286
Parent Server MPM Generation: 285
Server uptime:  279 days 21 hours 47 minutes 59 seconds
Server load: 0.06 0.01 0.00
Total accesses: 318954 - Total Traffic: 10.6 GB - Total Duration: 12534378
CPU Usage: u356.64 s560.56 cu1473.38 cs2164.19 - .0188% CPU load
.0132 requests/sec - 468 B/second - 34.7 kB/request - 39.2984 ms/request
1 requests currently being processed, 4 idle workers
_.__.._W........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2854952910/10/51058_
0.001119655170.00.022278.74
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

1-284-0/0/41960.
0.003912114480560.00.001674.40
188.245.228.4http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

2-2854952900/10/52061_
0.0012916666470.00.021648.10
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

3-2854952870/11/51898_
0.000116105090.00.021689.81
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

4-282-0/0/39100.
0.00176737117013740.00.001317.45
91.107.222.245http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

5-275-0/0/45975.
0.0078154394015738280.00.001300.00
159.65.92.208http/1.1nyanachi.com:8001GET /oAuth/signin HTTP/1.1

6-2854952880/11/21960_
0.00019863760.00.02463.16
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

7-2854952890/10/14218W
0.00006149450.00.02132.32
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

8-207-0/0/132.
0.0065671130558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00648391123031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00648391112422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00648391121435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00648391171397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0064839111825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.006567117000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.006567116000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.006567115000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.006567114000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-11-16 16:09

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb3e9db9f6

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Friday, 15-Nov-2024 01:12:37 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 284
Parent Server MPM Generation: 283
Server uptime:  277 days 21 hours 54 minutes 50 seconds
Server load: 0.00 0.00 0.00
Total accesses: 316493 - Total Traffic: 10.5 GB - Total Duration: 12505998
CPU Usage: u354.38 s556.72 cu1464.15 cs2147.49 - .0188% CPU load
.0132 requests/sec - 470 B/second - 34.9 kB/request - 39.5143 ms/request
1 requests currently being processed, 5 idle workers
____..W_........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2834734870/11/50648_
0.001219606750.00.032274.42
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

1-2834737320/5/41563_
0.0022814416020.00.011669.34
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

2-2834734860/11/51648_
0.001116617930.00.021644.70
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

3-2834734810/12/51487_
0.000116075530.00.031685.39
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

4-282-0/0/39100.
0.004349117013740.00.001317.45
91.107.222.245http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

5-275-0/0/45975.
0.0060915494015738280.00.001300.00
159.65.92.208http/1.1nyanachi.com:8001GET /oAuth/signin HTTP/1.1

6-2834734820/11/21544W
0.00009818140.00.03459.08
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

7-2834734840/11/13804_
0.00316102320.00.03125.18
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

8-207-0/0/132.
0.0063947240558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00631152223031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00631152212422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00631152221435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00631152271397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0063115221825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.006394728000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.006394727000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.006394726000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.006394725000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-11-14 16:16

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb8b314e5e

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Tuesday, 12-Nov-2024 22:42:55 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 281
Parent Server MPM Generation: 280
Server uptime:  275 days 19 hours 25 minutes 8 seconds
Server load: 0.00 0.00 0.00
Total accesses: 314015 - Total Traffic: 10.5 GB - Total Duration: 12477811
CPU Usage: u351.84 s552.62 cu1452.09 cs2124.48 - .0188% CPU load
.0132 requests/sec - 473 B/second - 35.1 kB/request - 39.7364 ms/request
1 requests currently being processed, 5 idle workers
___W..__........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2804410170/155/50255_
0.000119558350.01.592272.70
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-2804410440/154/41207_
0.001114373510.00.791667.75
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

2-2804410160/156/51252_
0.0023216567170.00.661642.55
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

3-2804410120/155/51093W
0.000016050920.02.221679.65
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

4-276-0/0/38950.
0.00340941116983180.00.001316.76
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

5-275-0/0/45975.
0.0042737294015738280.00.001300.00
159.65.92.208http/1.1nyanachi.com:8001GET /oAuth/signin HTTP/1.1

6-2804410140/155/21146_
0.00329757970.02.49457.74
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

7-2804410150/154/13413_
0.00116077460.00.70121.58
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

8-207-0/0/132.
0.0062129420558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00612974023031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00612974012422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00612974021435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00612974071397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0061297401825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.006212946000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.006212945000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.006212944000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.006212943000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-11-12 13:46

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb3a15489b

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Sunday, 10-Nov-2024 20:56:14 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 279
Parent Server MPM Generation: 278
Server uptime:  273 days 17 hours 38 minutes 27 seconds
Server load: 0.00 0.00 0.00
Total accesses: 311903 - Total Traffic: 10.5 GB - Total Duration: 12448844
CPU Usage: u349.47 s548.69 cu1444.22 cs2110.16 - .0188% CPU load
.0132 requests/sec - 476 B/second - 35.3 kB/request - 39.9125 ms/request
1 requests currently being processed, 5 idle workers
__W_..__........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2784194980/138/49902_
0.0023319528550.00.712270.53
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

1-2784197480/134/40857_
0.000114345600.01.091665.55
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

2-2784194970/138/50898W
0.000016508230.02.671641.10
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

3-2784194940/139/50742_
0.001115985510.00.681676.78
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

4-276-0/0/38950.
0.00161740116983180.00.001316.76
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

5-275-0/0/45975.
0.0024817194015738280.00.001300.00
159.65.92.208http/1.1nyanachi.com:8001GET /oAuth/signin HTTP/1.1

6-2784194950/141/20794_
0.00319697450.02.39452.99
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

7-2784194960/140/13061_
0.00016030370.00.67120.19
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

8-207-0/0/132.
0.0060337410558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00595053923031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00595053912422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00595053921435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00595053971397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0059505391825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.006033745000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.006033744000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.006033743000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.006033742000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-11-10 12:00

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbf09e1689

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Friday, 08-Nov-2024 23:14:34 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 277
Parent Server MPM Generation: 276
Server uptime:  271 days 19 hours 56 minutes 47 seconds
Server load: 0.00 0.00 0.00
Total accesses: 310258 - Total Traffic: 10.5 GB - Total Duration: 12415912
CPU Usage: u347.29 s545.09 cu1436.85 cs2097.9 - .0188% CPU load
.0132 requests/sec - 479 B/second - 35.4 kB/request - 40.018 ms/request
1 requests currently being processed, 6 idle workers
_____.W_........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2763983400/160/49628_
0.0023019459600.01.062267.70
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

1-2763993370/146/40590_
0.0042914301540.01.031663.97
127.0.0.1http/1.1music.elysia-root.com:8001GET /server HTTP/1.1

2-2763983390/160/50625_
0.001116423420.04.231637.89
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

3-2763983360/161/50467_
0.003115953760.01.541675.55
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

4-2764066520/34/38947_
0.000116983090.00.081316.75
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

5-275-0/0/45975.
0.008367094015738280.00.001300.00
159.65.92.208http/1.1nyanachi.com:8001GET /oAuth/signin HTTP/1.1

6-2763983370/156/20517W
0.00009644820.01.62449.83
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

7-2763983380/161/12785_
0.00215983340.00.88119.04
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

8-207-0/0/132.
0.0058692410558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00578603923031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00578603912422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00578603921435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00578603971397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0057860391825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.005869245000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.005869244000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.005869243000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.005869242000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-11-08 14:18

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb9965777d

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Wednesday, 06-Nov-2024 18:06:51 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 275
Parent Server MPM Generation: 274
Server uptime:  269 days 14 hours 49 minutes 4 seconds
Server load: 0.00 0.00 0.00
Total accesses: 307775 - Total Traffic: 10.5 GB - Total Duration: 12379686
CPU Usage: u344.75 s540.99 cu1427.44 cs2081.93 - .0189% CPU load
.0132 requests/sec - 481 B/second - 35.6 kB/request - 40.2232 ms/request
1 requests currently being processed, 6 idle workers
__W_.___........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2743766750/125/49259_
0.0013319339650.00.782263.24
127.0.0.1http/1.1music.elysia-root.com:8001GET /server HTTP/1.1

1-2743780350/82/40262_
0.001114273130.00.301660.02
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

2-2743765090/128/50244W
0.000016359100.01.101628.80
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

3-2743765040/128/50088_
0.000115921920.01.371672.44
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

4-262-0/0/38902.
0.001015576216979750.00.001316.61
38.175.194.11http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

5-2743765050/129/45753_
0.000115686420.02.841298.05
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

6-2743765070/128/20141_
0.00019612540.01.14446.32
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

7-2743765080/126/12402_
0.001315953080.01.62114.84
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

8-207-0/0/132.
0.0056779780558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00559477623031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00559477612422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00559477621435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00559477671397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0055947761825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.005677982000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.005677981000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.005677980000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.005677979000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-11-06 09:10

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb642984db

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Monday, 04-Nov-2024 20:46:42 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 273
Parent Server MPM Generation: 272
Server uptime:  267 days 17 hours 28 minutes 55 seconds
Server load: 0.00 0.00 0.00
Total accesses: 305739 - Total Traffic: 10.4 GB - Total Duration: 12334886
CPU Usage: u342.48 s537.51 cu1413.67 cs2057.65 - .0188% CPU load
.0132 requests/sec - 484 B/second - 35.8 kB/request - 40.3445 ms/request
1 requests currently being processed, 5 idle workers
_.__._W_........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2723551200/170/48954_
0.000219262920.03.532259.96
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-269-0/0/40168.
0.00247568114264060.00.001659.67
38.175.194.11http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

2-2723549420/171/49917_
0.001116290800.05.721626.47
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

3-2723549370/174/49761_
0.002115833580.02.191669.80
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

4-262-0/0/38902.
0.00852367216979750.00.001316.61
38.175.194.11http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

5-2723549380/170/45423_
0.003115640560.0131.981294.40
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

6-2723549390/174/19814W
0.00009537000.05.60444.29
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

7-2723549400/172/12076_
0.002295868930.01.98112.39
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

8-207-0/0/132.
0.0055147690558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00543156723031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00543156712422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00543156721435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00543156771397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0054315671825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.005514773000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.005514772000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.005514771000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.005514770000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-11-04 11:50

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbabc177d9

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Monday, 04-Nov-2024 19:12:13 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 273
Parent Server MPM Generation: 272
Server uptime:  267 days 15 hours 54 minutes 26 seconds
Server load: 0.00 0.00 0.00
Total accesses: 305616 - Total Traffic: 10.4 GB - Total Duration: 12333185
CPU Usage: u342.42 s537.37 cu1413.67 cs2057.65 - .0188% CPU load
.0132 requests/sec - 484 B/second - 35.8 kB/request - 40.3552 ms/request
1 requests currently being processed, 5 idle workers
_.__._W_........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2723551200/149/48933_
0.002119260290.03.472259.90
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

1-269-0/0/40168.
0.00241898114264060.00.001659.67
38.175.194.11http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

2-2723549420/150/49896_
0.0023716285480.05.611626.37
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

3-2723549370/153/49740_
0.003115831660.02.131669.74
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

4-262-0/0/38902.
0.00846698216979750.00.001316.61
38.175.194.11http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

5-2723549380/151/45404_
0.000115638620.0131.831294.26
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

6-2723549390/153/19793W
0.00009535790.05.55444.24
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

7-2723549400/152/12056_
0.00135864940.01.88112.29
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

8-207-0/0/132.
0.0055091000558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00542589823031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00542589812422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00542589821435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00542589871397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0054258981825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.005509104000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.005509103000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.005509102000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.005509101000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-11-04 10:16

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb84b60435

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Saturday, 02-Nov-2024 14:42:03 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 271
Parent Server MPM Generation: 270
Server uptime:  265 days 11 hours 24 minutes 16 seconds
Server load: 0.00 0.00 0.00
Total accesses: 303519 - Total Traffic: 10.3 GB - Total Duration: 12268816
CPU Usage: u339.84 s533.3 cu1407.81 cs2046.73 - .0189% CPU load
.0132 requests/sec - 481 B/second - 35.5 kB/request - 40.4219 ms/request
1 requests currently being processed, 5 idle workers
_.__.W__........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2703341980/51/48587_
0.001119171000.00.102255.02
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

1-269-0/0/40168.
0.0052888114264060.00.001659.67
38.175.194.11http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

2-2703340460/51/49548_
0.002116256610.00.101618.25
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

3-2703340420/52/49388_
0.0025215783690.00.111666.18
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

4-262-0/0/38902.
0.00657688216979750.00.001316.61
38.175.194.11http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

5-2703340430/52/45053W
0.000015247280.00.111161.58
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

6-2703340440/52/19443_
0.00019499980.00.10435.71
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

7-2703340450/52/11706_
0.00115814530.00.10109.61
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

8-207-0/0/132.
0.0053200900558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00523688823031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00523688812422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00523688821435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00523688871397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0052368881825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.005320094000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.005320093000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.005320092000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.005320091000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-11-02 05:45

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdba2218e88

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Friday, 01-Nov-2024 12:47:49 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 270
Parent Server MPM Generation: 269
Server uptime:  264 days 9 hours 30 minutes 2 seconds
Server load: 0.08 0.02 0.01
Total accesses: 302752 - Total Traffic: 10.3 GB - Total Duration: 12253787
CPU Usage: u338.65 s531.25 cu1404.44 cs2040.75 - .0189% CPU load
.0133 requests/sec - 483 B/second - 35.6 kB/request - 40.4747 ms/request
1 requests currently being processed, 6 idle workers
___W.___........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2693242520/54/48471_
0.000119160670.01.922254.51
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

1-2693263190/32/40103_
0.001114258020.00.121659.41
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

2-2693234180/68/49431_
0.000116238020.00.421617.71
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

3-2693234140/68/49270W
0.000015769580.00.191665.67
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

4-262-0/0/38902.
0.00564434216979750.00.001316.61
38.175.194.11http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

5-2693234150/67/44935_
0.0012915237150.00.491161.23
127.0.0.1http/1.1music.elysia-root.com:8001GET /server HTTP/1.1

6-2693234160/68/19327_
0.001349419590.00.22435.36
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

7-2693234170/69/11589_
0.00015803820.00.58109.15
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

8-207-0/0/132.
0.0052268360558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00514363423031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00514363412422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00514363421435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00514363471397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0051436341825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.005226840000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.005226839000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.005226838000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.005226837000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-11-01 03:51

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb8c97480e

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Wednesday, 30-Oct-2024 14:37:06 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 268
Parent Server MPM Generation: 267
Server uptime:  262 days 11 hours 19 minutes 19 seconds
Server load: 0.00 0.00 0.00
Total accesses: 300472 - Total Traffic: 10.3 GB - Total Duration: 12233629
CPU Usage: u336.53 s527.48 cu1392.64 cs2018.48 - .0189% CPU load
.0132 requests/sec - 485 B/second - 35.8 kB/request - 40.7147 ms/request
1 requests currently being processed, 5 idle workers
_.__._W_........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2673006410/275/48124_
0.001119118860.03.012249.13
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

1-266-0/0/40010.
0.0052592114252680.00.001659.07
49.12.208.31http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

2-2673004290/279/49066_
0.000116209140.02.901615.17
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

3-2673004210/279/48901_
0.000115742470.03.061663.48
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

4-262-0/0/38902.
0.00398191216979750.00.001316.61
38.175.194.11http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

5-2673004220/278/44567_
0.003115207510.02.971158.84
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

6-2673004230/278/18959W
0.00009377890.03.30431.82
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

7-2673004240/279/11219_
0.002285776730.03.01106.42
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

8-207-0/0/132.
0.0050605930558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00497739123031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00497739112422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00497739121435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00497739171397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0049773911825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.005060597000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.005060596000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.005060595000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.005060594000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-10-30 05:40

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb00084708

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Sunday, 27-Oct-2024 06:06:26 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 265
Parent Server MPM Generation: 264
Server uptime:  259 days 2 hours 48 minutes 39 seconds
Server load: 0.00 0.00 0.00
Total accesses: 295699 - Total Traffic: 10.2 GB - Total Duration: 12183900
CPU Usage: u332.51 s521.15 cu1380.23 cs1996.25 - .0189% CPU load
.0132 requests/sec - 489 B/second - 36.2 kB/request - 41.2037 ms/request
1 requests currently being processed, 5 idle workers
W.__.___........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2642688270/19/47399W
0.000019040920.00.042240.45
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

1-263-0/0/39768.
0.0021951114219670.00.001654.81
91.107.220.171http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

2-2642676130/40/48302_
0.001116123100.00.081606.36
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

3-2642676090/41/48139_
0.000115672120.00.091655.39
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

4-262-0/0/38902.
0.00108351216979750.00.001316.61
38.175.194.11http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

5-2642676100/41/43809_
0.001115115910.00.091150.49
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

6-2642676110/40/18196_
0.00219303330.00.10421.00
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

7-2642676120/40/10460_
0.001265712930.00.0998.71
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

8-207-0/0/132.
0.0047707530558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00468755123031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00468755112422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00468755121435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00468755171397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0046875511825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.004770757000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.004770756000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.004770755000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.004770754000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-10-26 21:10

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbd5377a23

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Friday, 25-Oct-2024 05:23:13 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 263
Parent Server MPM Generation: 262
Server uptime:  257 days 2 hours 5 minutes 26 seconds
Server load: 0.00 0.00 0.00
Total accesses: 293570 - Total Traffic: 10.1 GB - Total Duration: 12115887
CPU Usage: u330.02 s517.55 cu1366.95 cs1971.63 - .0188% CPU load
.0132 requests/sec - 486 B/second - 35.9 kB/request - 41.2709 ms/request
1 requests currently being processed, 5 idle workers
_.W_.___........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2622485690/4/47072_
0.000118585460.00.012110.17
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-258-0/0/39745.
0.00278558114218390.00.001654.54
167.235.250.18http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

2-2622461290/30/47945W
0.000016073740.00.071602.96
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

3-2622461250/31/47783_
0.0022715618990.00.071652.78
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

4-211-0/0/38901.
0.004166558116979710.00.001316.61
175.116.114.66http/1.1nyanachi.com:8001GET /assets/images/platform/muon.webp HTTP/1.1

5-2622461260/31/43453_
0.001115078100.00.071146.97
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

6-2622461270/31/17842_
0.00029253330.00.07417.75
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

7-2622461280/30/10105_
0.00215679890.00.0893.31
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

8-207-0/0/132.
0.0045953600558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00451215823031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00451215812422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00451215821435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00451215871397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0045121581825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.004595364000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.004595363000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.004595362000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.004595361000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-10-24 20:26

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb5ba89c11

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Tuesday, 22-Oct-2024 22:47:57 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 260
Parent Server MPM Generation: 259
Server uptime:  254 days 19 hours 30 minutes 10 seconds
Server load: 0.00 0.00 0.00
Total accesses: 291586 - Total Traffic: 10.0 GB - Total Duration: 12078185
CPU Usage: u327.24 s513.32 cu1356.26 cs1952.6 - .0188% CPU load
.0132 requests/sec - 490 B/second - 36.1 kB/request - 41.4224 ms/request
1 requests currently being processed, 5 idle workers
_.__.W__........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2592147800/147/46771_
0.003118501690.00.662107.11
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

1-258-0/0/39745.
0.0082043114218390.00.001654.54
167.235.250.18http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

2-2592144260/155/47611_
0.001116009910.02.441599.60
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

3-2592144210/153/47445_
0.000115566070.00.971651.11
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

4-211-0/0/38901.
0.003970043116979710.00.001316.61
175.116.114.66http/1.1nyanachi.com:8001GET /assets/images/platform/muon.webp HTTP/1.1

5-2592144220/153/43114W
0.000015032610.01.211144.95
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

6-2592144230/154/17506_
0.002299188070.01.15416.06
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

7-2592144250/153/9769_
0.00115614130.02.4691.74
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

8-207-0/0/132.
0.0043988440558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00431564223031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00431564212422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00431564221435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00431564271397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0043156421825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.004398848000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.004398847000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.004398846000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.004398845000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-10-22 13:51

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbc34c297f

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Sunday, 20-Oct-2024 23:55:36 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 258
Parent Server MPM Generation: 257
Server uptime:  252 days 20 hours 37 minutes 49 seconds
Server load: 0.00 0.00 0.00
Total accesses: 289769 - Total Traffic: 10.0 GB - Total Duration: 12064791
CPU Usage: u325.01 s509.57 cu1349.21 cs1941.22 - .0189% CPU load
.0133 requests/sec - 492 B/second - 36.3 kB/request - 41.6359 ms/request
1 requests currently being processed, 5 idle workers
_.__._W_........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2571941100/117/46478_
0.0032718483150.00.262103.81
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

1-254-0/0/39737.
0.00258901114218200.00.001654.48
91.107.220.171http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

2-2571932630/136/47307_
0.002115988940.00.341596.14
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

3-2571932590/137/47143_
0.000115543150.00.341649.05
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

4-211-0/0/38901.
0.003801301116979710.00.001316.61
175.116.114.66http/1.1nyanachi.com:8001GET /assets/images/platform/muon.webp HTTP/1.1

5-2571932600/137/42811_
0.001115007650.00.351141.02
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

6-2571932610/136/17202W
0.00009165280.00.51413.66
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

7-2571932620/136/9466_
0.00415590560.00.3088.27
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

8-207-0/0/132.
0.0042301030558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00414690123031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00414690112422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00414690121435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00414690171397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0041469011825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.004230107000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.004230106000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.004230105000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.004230104000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-10-20 14:59

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbe845b73a

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Friday, 18-Oct-2024 20:57:08 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 256
Parent Server MPM Generation: 255
Server uptime:  250 days 17 hours 39 minutes 21 seconds
Server load: 0.00 0.00 0.00
Total accesses: 288016 - Total Traffic: 10.0 GB - Total Duration: 12029730
CPU Usage: u322.51 s505.63 cu1341.79 cs1928.67 - .0189% CPU load
.0133 requests/sec - 496 B/second - 36.5 kB/request - 41.7676 ms/request
1 requests currently being processed, 5 idle workers
_.__._W_........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2551731830/124/46201_
0.0012918430790.00.392102.96
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

1-254-0/0/39737.
0.0075393114218200.00.001654.48
91.107.220.171http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

2-2551721770/143/47012_
0.000115933020.00.831595.27
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

3-2551721720/143/46849_
0.000115489820.00.631648.19
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

4-211-0/0/38901.
0.003617793116979710.00.001316.61
175.116.114.66http/1.1nyanachi.com:8001GET /assets/images/platform/muon.webp HTTP/1.1

5-2551721730/142/42514_
0.002214950270.00.501139.90
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

6-2551721740/143/16906W
0.00009123650.00.43410.98
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

7-2551721750/142/9172_
0.00015500570.00.5187.43
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

8-207-0/0/132.
0.0040465950558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00396339323031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00396339312422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00396339321435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00396339371397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0039633931825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.004046599000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.004046598000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.004046597000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.004046596000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-10-18 12:00

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdba1fcdfff

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Thursday, 17-Oct-2024 01:23:00 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 255
Parent Server MPM Generation: 254
Server uptime:  248 days 22 hours 5 minutes 13 seconds
Server load: 0.00 0.00 0.00
Total accesses: 285992 - Total Traffic: 10.0 GB - Total Duration: 12013056
CPU Usage: u320.42 s502.25 cu1337.35 cs1920.31 - .019% CPU load
.0133 requests/sec - 499 B/second - 36.7 kB/request - 42.0049 ms/request
1 requests currently being processed, 5 idle workers
_.W_.___........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2541615040/10/45882_
0.010918408310.00.172098.25
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

1-253-0/0/39730.
0.004945114217930.00.001654.47
168.119.176.207http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

2-2541612690/13/46671W
0.000015909300.00.051593.31
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

3-2541612640/14/46512_
0.0111115467750.00.101644.41
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

4-211-0/0/38901.
0.003460945116979710.00.001316.61
175.116.114.66http/1.1nyanachi.com:8001GET /assets/images/platform/muon.webp HTTP/1.1

5-2541612650/15/42175_
0.000114930130.00.261138.06
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

6-2541612670/14/16565_
0.00019085280.00.09408.78
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

7-2541612680/14/8832_
0.001305460880.00.2086.09
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

8-207-0/0/132.
0.0038897470558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00380654423031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00380654412422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00380654421435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00380654471397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0038065441825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.003889751000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.003889750000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.003889749000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.003889748000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-10-16 16:26

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb18514e55

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Monday, 14-Oct-2024 19:13:05 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 252
Parent Server MPM Generation: 251
Server uptime:  246 days 15 hours 55 minutes 18 seconds
Server load: 0.00 0.00 0.00
Total accesses: 284092 - Total Traffic: 10.0 GB - Total Duration: 11994194
CPU Usage: u317.6 s498.05 cu1327.17 cs1900.54 - .019% CPU load
.0133 requests/sec - 503 B/second - 36.9 kB/request - 42.2194 ms/request
1 requests currently being processed, 5 idle workers
_._W.___........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2511298980/140/45600_
0.0013018387760.00.572094.93
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

1-249-0/0/39647.
0.00155550214212300.00.001654.03
38.175.194.11http/1.1fediverse.hanbitgaram.com:7009GET /.well-known/nodeinfo HTTP/1.1

2-2511295040/143/46364_
0.001115887980.00.441591.92
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

3-2511294980/146/46205W
0.000015444090.00.481641.50
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

4-211-0/0/38901.
0.003265950116979710.00.001316.61
175.116.114.66http/1.1nyanachi.com:8001GET /assets/images/platform/muon.webp HTTP/1.1

5-2511295000/147/41868_
0.000114899600.00.551135.78
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

6-2511295020/146/16258_
0.00219042340.00.60407.09
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

7-2511295030/145/8525_
0.00115416890.00.6284.72
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

8-207-0/0/132.
0.0036947520558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00361155023031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00361155012422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00361155021435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00361155071397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0036115501825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.003694756000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.003694755000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.003694754000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.003694753000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-10-14 10:16

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdba9268d36

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Saturday, 12-Oct-2024 18:40:23 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 250
Parent Server MPM Generation: 249
Server uptime:  244 days 15 hours 22 minutes 36 seconds
Server load: 0.00 0.00 0.00
Total accesses: 282274 - Total Traffic: 10.0 GB - Total Duration: 11963423
CPU Usage: u314.8 s494.01 cu1320.93 cs1888.94 - .019% CPU load
.0134 requests/sec - 507 B/second - 37.1 kB/request - 42.3823 ms/request
1 requests currently being processed, 5 idle workers
W.__.___........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2491104750/69/45311W
0.000018364710.00.302091.98
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

1-248-0/0/39618.
0.0067203214192620.00.001653.86
38.175.194.11http/1.1fediverse.hanbitgaram.com:7009GET /.well-known/nodeinfo HTTP/1.1

2-2491085780/93/46067_
0.002115822080.00.331590.95
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

3-2491085730/94/45904_
0.001115385300.00.341640.18
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

4-211-0/0/38901.
0.003091188116979710.00.001316.61
175.116.114.66http/1.1nyanachi.com:8001GET /assets/images/platform/muon.webp HTTP/1.1

5-2491085740/94/41567_
0.000114872680.00.241134.64
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

6-2491085760/93/15956_
0.00428958500.00.18405.69
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

7-2491085770/93/8226_
0.003305387360.00.3683.58
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

8-207-0/0/132.
0.0035199900558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00343678723031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00343678712422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00343678721435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00343678771397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0034367871825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.003519994000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.003519993000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.003519992000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.003519991000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-10-12 09:43

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbd622511c

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Thursday, 10-Oct-2024 20:22:42 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 248
Parent Server MPM Generation: 247
Server uptime:  242 days 17 hours 4 minutes 55 seconds
Server load: 0.00 0.00 0.00
Total accesses: 280828 - Total Traffic: 10.0 GB - Total Duration: 11944017
CPU Usage: u311.99 s490.42 cu1313.28 cs1875.32 - .019% CPU load
.0134 requests/sec - 510 B/second - 37.2 kB/request - 42.5314 ms/request
1 requests currently being processed, 5 idle workers
W.__.___........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-247890290/130/45131W
0.000018350830.00.572089.45
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

1-246-0/0/39596.
0.0073353414191450.00.001653.75
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

2-247874250/145/45818_
0.002115800170.02.181588.47
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

3-247874210/145/45655_
0.0013115345360.00.651638.79
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

4-211-0/0/38901.
0.002924527116979710.00.001316.61
175.116.114.66http/1.1nyanachi.com:8001GET /assets/images/platform/muon.webp HTTP/1.1

5-247874220/145/41318_
0.000114845250.02.661133.20
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

6-247874230/146/15706_
0.00018910450.00.74404.96
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

7-247874240/145/7979_
0.00115345670.00.4982.54
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

8-207-0/0/132.
0.0033533290558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00327012623031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00327012612422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00327012621435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00327012671397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0032701261825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.003353333000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.003353332000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.003353331000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.003353330000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-10-10 11:26

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbfdcf2767

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Wednesday, 09-Oct-2024 07:34:03 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 247
Parent Server MPM Generation: 246
Server uptime:  241 days 4 hours 16 minutes 16 seconds
Server load: 0.00 0.00 0.00
Total accesses: 279496 - Total Traffic: 10.0 GB - Total Duration: 11927436
CPU Usage: u310.03 s487.22 cu1309.67 cs1868.53 - .0191% CPU load
.0134 requests/sec - 513 B/second - 37.4 kB/request - 42.6748 ms/request
1 requests currently being processed, 6 idle workers
___W.___........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-246768910/60/44933_
0.001118335780.00.502088.74
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

1-246786400/12/39528_
0.004114165980.00.031653.61
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

2-246768710/61/45605_
0.002115764780.01.941586.12
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

3-246768670/59/45442W
0.000015325710.00.521637.99
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

4-211-0/0/38901.
0.002792008116979710.00.001316.61
175.116.114.66http/1.1nyanachi.com:8001GET /assets/images/platform/muon.webp HTTP/1.1

5-246768680/60/41105_
0.0032814811940.00.711130.41
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

6-246768690/60/15492_
0.00018891270.00.42404.06
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

7-246768700/59/7766_
0.005335327920.00.5281.92
127.0.0.1http/1.1music.elysia-root.com:8001GET /server HTTP/1.1

8-207-0/0/132.
0.0032208100558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00313760823031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00313760812422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00313760821435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00313760871397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0031376081825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.003220814000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.003220813000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.003220812000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.003220811000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-10-08 22:37

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbdc4ce057

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Sunday, 06-Oct-2024 23:32:57 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 244
Parent Server MPM Generation: 243
Server uptime:  238 days 20 hours 15 minutes 10 seconds
Server load: 0.00 0.01 0.00
Total accesses: 275812 - Total Traffic: 9.9 GB - Total Duration: 11828808
CPU Usage: u306.5 s482.82 cu1291.23 cs1834.44 - .019% CPU load
.0134 requests/sec - 516 B/second - 37.8 kB/request - 42.8872 ms/request
1 requests currently being processed, 6 idle workers
W___.___........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-243492440/139/44353W
0.000018121190.03.412079.61
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

1-243536170/39/39449_
0.0052914130950.00.481653.03
127.0.0.1http/1.1music.elysia-root.com:8001GET /server HTTP/1.1

2-243431930/211/45001_
0.000115572940.03.061581.07
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

3-243431940/213/44839_
0.002115163900.01.671633.17
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

4-211-0/0/38901.
0.002590342116979710.00.001316.61
175.116.114.66http/1.1nyanachi.com:8001GET /assets/images/platform/muon.webp HTTP/1.1

5-243431950/209/40500_
0.0033714653040.01.481124.62
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

6-243431960/210/14885_
0.00168799680.01.20396.93
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

7-243431970/210/7160_
0.00415195390.03.4577.38
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

8-207-0/0/132.
0.0030191440558840.00.00302.69
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

9-207-0/0/124.
0.00293594123031620.00.000.76
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

10-207-0/0/115.
0.00293594112422760.00.001.04
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

11-207-0/0/115.
0.00293594121435140.00.000.88
38.175.200.210http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

12-207-0/0/117.
0.00293594171397030.00.001.30
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

13-207-0/0/117.
0.0029359411825800.00.000.67
128.140.121.34http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

14-207-0/0/1.
0.003019148000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

15-207-0/0/1.
0.003019147000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

16-207-0/0/1.
0.003019146000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0

17-207-0/0/1.
0.003019145000.00.000.00
::1http/1.1music.elysia-root.com:8001OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-10-06 14:36

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb59cffc41

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Friday, 21-Jun-2024 09:37:49 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 135
Parent Server MPM Generation: 134
Server uptime:  131 days 6 hours 20 minutes 1 second
Server load: 0.02 0.01 0.00
Total accesses: 155365 - Total Traffic: 7.4 GB - Total Duration: 4627251
CPU Usage: u166.32 s265.1 cu801.9 cs955.75 - .0193% CPU load
.0137 requests/sec - 698 B/second - 49.8 kB/request - 29.7831 ms/request
1 requests currently being processed, 5 idle workers
W_____..........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-13430526470/87/25349W
0.00008070790.00.841705.21
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

1-13430526480/88/25278_
0.00016621470.00.591282.06
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

2-13430526490/86/25313_
0.00217514500.00.521220.30
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

3-13430526500/85/25192_
0.003336366630.02.081250.17
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

4-13430526510/86/25250_
0.00416785120.00.59897.72
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

5-13430531640/65/22141_
0.00116867950.00.71713.82
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

6-130-0/0/6093.
0.0029383402831610.00.00170.98
167.235.203.42http/1.1nyanachi.com:8001GET /assets/fonts/pretendard/ws2/sdsb91.woff2 HTTP/1.1

7-130-0/0/649.
0.002938342658470.00.0011.70
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

8-120-0/0/94.
0.0011578562555620.00.00302.41
49.12.208.31http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0097978582290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-21 00:39

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb0f720e0c

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Wednesday, 19-Jun-2024 01:24:02 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 133
Parent Server MPM Generation: 132
Server uptime:  128 days 22 hours 6 minutes 15 seconds
Server load: 0.00 0.00 0.00
Total accesses: 153407 - Total Traffic: 7.4 GB - Total Duration: 4606386
CPU Usage: u163.39 s260.44 cu795.95 cs945.08 - .0194% CPU load
.0138 requests/sec - 710 B/second - 50.4 kB/request - 30.0272 ms/request
1 requests currently being processed, 4 idle workers
__W__...........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-13230319550/10/25010_
0.00018032860.00.051703.38
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-13230319560/10/24940_
0.00116595450.00.021280.40
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

2-13230319570/9/24977W
0.00007488630.00.021218.77
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

3-13230319580/9/24857_
0.003276316230.00.011247.07
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

4-13230319610/9/24912_
0.00216759090.00.02896.46
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

5-131-0/0/21869.
0.00503026825560.00.00712.49
49.13.57.93http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

6-130-0/0/6093.
0.009140702831610.00.00170.98
167.235.203.42http/1.1nyanachi.com:8001GET /assets/fonts/pretendard/ws2/sdsb91.woff2 HTTP/1.1

7-130-0/0/649.
0.00914072658470.00.0011.70
128.140.81.52http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

8-120-0/0/94.
0.009554292555620.00.00302.41
49.12.208.31http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0095954312290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-18 16:25

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb25f9f522

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Sunday, 16-Jun-2024 20:39:55 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 130
Parent Server MPM Generation: 129
Server uptime:  126 days 17 hours 22 minutes 8 seconds
Server load: 0.00 0.00 0.00
Total accesses: 150657 - Total Traffic: 7.3 GB - Total Duration: 4573437
CPU Usage: u160.52 s255.93 cu782.49 cs921.84 - .0194% CPU load
.0138 requests/sec - 717 B/second - 50.9 kB/request - 30.3566 ms/request
1 requests currently being processed, 5 idle workers
____W_..........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-12929995110/133/24581_
0.00017977420.00.691695.13
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

1-12929995120/135/24511_
0.00016521670.02.171270.93
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

2-12929995130/136/24550_
0.000297457180.00.761212.55
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

3-12929995140/134/24424_
0.00016265070.00.521239.62
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

4-12929995150/135/24483W
0.00006706370.00.84890.58
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

5-12930035510/96/21499_
0.00016787620.00.73706.01
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

6-128-0/0/5958.
0.007436022810340.00.00166.35
128.140.56.97http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

7-120-0/0/551.
0.007655822652740.00.006.51
49.13.137.65http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

8-120-0/0/94.
0.007655822555620.00.00302.41
49.12.208.31http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0094055842290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-16 11:41

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbb0eaadd6

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Wednesday, 12-Jun-2024 21:42:36 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 126
Parent Server MPM Generation: 125
Server uptime:  122 days 18 hours 24 minutes 49 seconds
Server load: 0.00 0.00 0.00
Total accesses: 147198 - Total Traffic: 7.1 GB - Total Duration: 4533476
CPU Usage: u155.47 s247.87 cu758.63 cs891.4 - .0194% CPU load
.0139 requests/sec - 720 B/second - 50.7 kB/request - 30.7985 ms/request
1 requests currently being processed, 6 idle workers
_W_____.........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-12529572850/172/24001_
0.00017862000.018.111648.32
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-12529572860/167/23932W
0.00006468950.074.641261.36
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

2-12529572870/170/23966_
0.00117392680.0172.111165.89
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

3-12529572890/168/23849_
0.00136213640.018.561192.24
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

4-12529572900/171/23905_
0.00216655530.017.39883.21
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

5-12529575150/168/20969_
0.002296725940.018.64660.44
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

6-12529655920/33/5925_
0.003292807330.00.54166.22
127.0.0.1http/1.1music.elysia-root.com:8001GET /server HTTP/1.1

7-120-0/0/551.
0.004237432652740.00.006.51
49.13.137.65http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

8-120-0/0/94.
0.004237432555620.00.00302.41
49.12.208.31http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0090637462290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-12 12:44

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbe9e8d11a

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Tuesday, 11-Jun-2024 01:57:51 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 125
Parent Server MPM Generation: 124
Server uptime:  120 days 22 hours 40 minutes 4 seconds
Server load: 0.00 0.00 0.00
Total accesses: 145133 - Total Traffic: 6.8 GB - Total Duration: 4440773
CPU Usage: u153.1 s244.1 cu754.83 cs884.32 - .0195% CPU load
.0139 requests/sec - 693 B/second - 48.8 kB/request - 30.598 ms/request
1 requests currently being processed, 4 idle workers
W____...........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-12429465950/10/23655W
0.00007810330.00.021622.69
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

1-12429465960/11/23589_
0.00116283410.00.021178.93
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

2-12429465970/10/23620_
0.00216968320.00.02981.44
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

3-12429465980/10/23507_
0.003296103150.00.021164.08
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

4-12429465990/11/23562_
0.00016544990.00.02857.18
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

5-123-0/0/20657.
0.00704726683540.00.00634.87
38.175.194.11http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

6-122-0/0/5892.
0.009343622805290.00.00165.68
159.69.187.169http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

7-120-0/0/551.
0.002662582652740.00.006.51
49.13.137.65http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

8-120-0/0/94.
0.002662582555620.00.00302.41
49.12.208.31http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0089062612290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-10 16:59

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb4a78fbf2

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Saturday, 08-Jun-2024 22:06:25 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 122
Parent Server MPM Generation: 121
Server uptime:  118 days 18 hours 48 minutes 38 seconds
Server load: 0.00 0.00 0.00
Total accesses: 142950 - Total Traffic: 6.7 GB - Total Duration: 4419306
CPU Usage: u150.3 s239.73 cu742.8 cs863.29 - .0194% CPU load
.0139 requests/sec - 704 B/second - 49.4 kB/request - 30.915 ms/request
1 requests currently being processed, 5 idle workers
____W_..........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-12129146050/170/23297_
0.00417763710.01.551620.82
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

1-12129146060/169/23228_
0.00216249930.01.581173.79
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

2-12129146070/168/23262_
0.00016919320.00.97979.39
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

3-12129146080/165/23151_
0.00116075750.02.671161.49
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

4-12129146090/168/23199W
0.00006518110.01.17853.55
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

5-12129148850/154/20369_
0.003306658600.03.12633.19
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

6-120-0/0/5793.
0.007957322798940.00.00165.21
49.13.213.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

7-120-0/0/551.
0.00795732652740.00.006.51
49.13.137.65http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

8-120-0/0/94.
0.00795732555620.00.00302.41
49.12.208.31http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0087195752290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-08 13:07

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbbf644236

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Friday, 07-Jun-2024 00:53:42 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 121
Parent Server MPM Generation: 120
Server uptime:  116 days 21 hours 35 minutes 55 seconds
Server load: 0.00 0.00 0.00
Total accesses: 140265 - Total Traffic: 6.7 GB - Total Duration: 4367733
CPU Usage: u147.7 s236.18 cu733.87 cs849.5 - .0195% CPU load
.0139 requests/sec - 712 B/second - 50.1 kB/request - 31.1392 ms/request
1 requests currently being processed, 6 idle workers
____W__.........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-12029025700/88/22915_
0.00417724980.01.781617.70
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

1-12029025710/85/22843_
0.005306164720.01.891166.77
127.0.0.1http/1.1music.elysia-root.com:8001GET /server HTTP/1.1

2-12029025720/85/22877_
0.00116888170.05.36973.19
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

3-12029025730/86/22768_
0.00216004900.04.821157.02
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

4-12029025750/86/22813W
0.00006385190.03.21850.39
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

5-12029028280/65/19998_
0.003306607850.01.48627.61
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

6-12029034090/4/5576_
0.00012779170.00.04163.52
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

7-46-0/0/444.
0.0063103882613240.00.005.34
2604:f440:2:5::220http/1.1fediverse.hanbitgaram.com:7009GET /robots.txt HTTP/1.1

8-20-0/0/25.
0.0085568121508780.00.00301.76
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0085568122290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-06 15:55

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb10b5d982

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Wednesday, 05-Jun-2024 00:56:14 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 119
Parent Server MPM Generation: 118
Server uptime:  114 days 21 hours 38 minutes 27 seconds
Server load: 0.00 0.00 0.00
Total accesses: 137975 - Total Traffic: 6.7 GB - Total Duration: 4302955
CPU Usage: u145.17 s232.01 cu726.3 cs836.42 - .0195% CPU load
.0139 requests/sec - 721 B/second - 50.7 kB/request - 31.1865 ms/request
1 requests currently being processed, 4 idle workers
_W___...........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-11828814020/35/22508_
0.002267636140.01.341614.15
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

1-11828814080/35/22436W
0.00006096280.00.431159.59
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

2-11828814090/36/22470_
0.00016775690.00.73965.43
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

3-11828814100/37/22362_
0.00115824400.03.881150.19
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

4-11828814110/34/22407_
0.00116276160.00.63845.47
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

5-117-0/0/19745.
0.00336536520560.00.00623.36
2a03:2880:13ff:16::face:b00chttp/1.1nyanachi.com:8001GET /assets/fonts/pretendard/ws2/elsb6.woff2 HTTP/1.1

6-116-0/0/5572.
0.008973922777970.00.00163.48
91.107.222.245http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

7-46-0/0/444.
0.0061377392613240.00.005.34
2604:f440:2:5::220http/1.1fediverse.hanbitgaram.com:7009GET /robots.txt HTTP/1.1

8-20-0/0/25.
0.0083841641508780.00.00301.76
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0083841642290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-04 15:57

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbae53e4d4

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Monday, 03-Jun-2024 09:29:16 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 117
Parent Server MPM Generation: 116
Server uptime:  113 days 6 hours 11 minutes 29 seconds
Server load: 0.00 0.00 0.00
Total accesses: 136471 - Total Traffic: 6.6 GB - Total Duration: 4286968
CPU Usage: u142.94 s228.77 cu719.06 cs823.75 - .0196% CPU load
.0139 requests/sec - 729 B/second - 51.1 kB/request - 31.413 ms/request
1 requests currently being processed, 6 idle workers
______W.........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-11628602620/92/22255_
0.00117615880.00.661608.23
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

1-11628602640/92/22188_
0.003346077260.00.471155.54
127.0.0.1http/1.1music.elysia-root.com:8001GET /server HTTP/1.1

2-11628602650/92/22218_
0.00016755750.00.78963.29
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

3-11628602670/91/22114_
0.002335784520.00.441144.42
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

4-11628602680/93/22163_
0.00316235080.00.47842.68
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

5-11628605320/77/19551_
0.00116504890.00.32622.23
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

6-11628642910/16/5507W
0.00002773930.00.08163.28
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

7-46-0/0/444.
0.0059957222613240.00.005.34
2604:f440:2:5::220http/1.1fediverse.hanbitgaram.com:7009GET /robots.txt HTTP/1.1

8-20-0/0/25.
0.0082421461508780.00.00301.76
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0082421462290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-03 00:30

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbe2f32781

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Sunday, 02-Jun-2024 02:15:58 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 116
Parent Server MPM Generation: 115
Server uptime:  111 days 22 hours 58 minutes 11 seconds
Server load: 0.00 0.00 0.00
Total accesses: 135212 - Total Traffic: 6.6 GB - Total Duration: 4276282
CPU Usage: u141.2 s226.19 cu715.94 cs817.82 - .0197% CPU load
.014 requests/sec - 737 B/second - 51.5 kB/request - 31.6265 ms/request
1 requests currently being processed, 4 idle workers
____W...........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-11528496990/38/22044_
0.00017601350.00.141606.96
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-11528497000/38/21976_
0.00216062870.00.181154.73
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

2-11528497010/36/22006_
0.003306738150.00.40962.13
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

3-11528497020/38/21902_
0.00115769200.00.271143.59
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

4-11528497030/37/21950W
0.00006204020.00.31841.81
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

5-114-0/0/19368.
0.008123456493010.00.00621.68
66.249.77.3http/1.1nyanachi.com:8001GET / HTTP/1.1

6-112-0/0/5491.
0.0018092322771860.00.00163.20
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

7-46-0/0/444.
0.0058833232613240.00.005.34
2604:f440:2:5::220http/1.1fediverse.hanbitgaram.com:7009GET /robots.txt HTTP/1.1

8-20-0/0/25.
0.0081297471508780.00.00301.76
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0081297472290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-01 17:17

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb8cc6d45e

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Friday, 31-May-2024 00:43:16 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 114
Parent Server MPM Generation: 113
Server uptime:  109 days 21 hours 25 minutes 29 seconds
Server load: 0.00 0.00 0.00
Total accesses: 133058 - Total Traffic: 5.9 GB - Total Duration: 4201296
CPU Usage: u138.51 s222.05 cu706.55 cs801.34 - .0197% CPU load
.014 requests/sec - 672 B/second - 46.9 kB/request - 31.5749 ms/request
1 requests currently being processed, 4 idle workers
W____...........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-11328285010/6/21674W
0.01007445580.00.011551.46
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

1-11328285030/6/21605_
0.00115988710.00.021101.23
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

2-11328285040/6/21639_
0.00216581750.00.04906.43
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

3-11328285050/7/21534_
0.00015660100.00.01707.78
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

4-11328285060/6/21582_
0.003296019920.00.02786.86
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

5-112-0/0/19058.
0.00256126422690.00.00566.83
38.175.194.11http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/instance HTTP/1.1

6-112-0/0/5491.
0.00256122771860.00.00163.20
52.195.120.189http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

7-46-0/0/444.
0.0057049612613240.00.005.34
2604:f440:2:5::220http/1.1fediverse.hanbitgaram.com:7009GET /robots.txt HTTP/1.1

8-20-0/0/25.
0.0079513861508780.00.00301.76
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0079513862290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-30 15:44

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb96f47be2

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Thursday, 30-May-2024 02:27:26 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 113
Parent Server MPM Generation: 112
Server uptime:  108 days 23 hours 9 minutes 39 seconds
Server load: 0.00 0.00 0.00
Total accesses: 132064 - Total Traffic: 5.9 GB - Total Duration: 4190178
CPU Usage: u137.08 s220.4 cu701.89 cs793.87 - .0197% CPU load
.014 requests/sec - 677 B/second - 47.2 kB/request - 31.7284 ms/request
1 requests currently being processed, 5 idle workers
____W_..........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-11228178720/13/21515_
0.004267425620.00.031548.76
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

1-11228178730/13/21446_
0.00315968980.00.031100.36
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

2-11228178790/12/21479_
0.00616563790.00.02905.71
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

3-11228178800/13/21375_
0.00115642920.00.02707.00
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

4-11228178810/12/21421W
0.00006003210.00.02783.77
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

5-11228179010/12/18903_
0.00216405850.00.02565.85
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

6-110-0/0/5450.
0.009524522769070.00.00162.94
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

7-46-0/0/444.
0.0056248112613240.00.005.34
2604:f440:2:5::220http/1.1fediverse.hanbitgaram.com:7009GET /robots.txt HTTP/1.1

8-20-0/0/25.
0.0078712351508780.00.00301.76
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0078712352290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-29 17:28

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb064b8136

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Tuesday, 28-May-2024 21:46:22 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 111
Parent Server MPM Generation: 110
Server uptime:  107 days 18 hours 28 minutes 35 seconds
Server load: 0.00 0.00 0.00
Total accesses: 130115 - Total Traffic: 5.9 GB - Total Duration: 4174925
CPU Usage: u135.5 s217.91 cu687.26 cs774.72 - .0195% CPU load
.014 requests/sec - 681 B/second - 47.6 kB/request - 32.0864 ms/request
1 requests currently being processed, 5 idle workers
_W____..........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-11027957270/169/21192_
0.000277402260.02.801545.37
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

1-11027957290/168/21117W
0.00005944590.02.831097.78
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

2-11027957300/168/21162_
0.00016543780.01.86901.09
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

3-11027957310/172/21053_
0.00015601840.01.33702.63
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

4-11027957320/169/21096_
0.00015981070.058.61775.93
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

5-11027962890/135/18593_
0.00016385530.059.29561.48
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

6-109-0/0/5427.
0.007835522767820.00.00160.21
49.13.95.248http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

7-46-0/0/444.
0.0055215472613240.00.005.34
2604:f440:2:5::220http/1.1fediverse.hanbitgaram.com:7009GET /robots.txt HTTP/1.1

8-20-0/0/25.
0.0077679711508780.00.00301.76
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0077679712290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-28 12:47

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb00755540

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Tuesday, 28-May-2024 00:09:58 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 111
Parent Server MPM Generation: 110
Server uptime:  106 days 20 hours 52 minutes 11 seconds
Server load: 0.00 0.00 0.00
Total accesses: 129158 - Total Traffic: 5.8 GB - Total Duration: 4134227
CPU Usage: u134.34 s216.14 cu687.26 cs774.72 - .0196% CPU load
.014 requests/sec - 672 B/second - 47.0 kB/request - 32.0091 ms/request
1 requests currently being processed, 4 idle workers
___W_...........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-11027957270/5/21028_
0.003307314230.00.011542.58
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

1-11027957290/5/20954_
0.00215863560.00.011094.96
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

2-11027957300/5/20999_
0.00116530110.00.01899.24
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

3-11027957310/4/20885W
0.00005583550.00.01701.30
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

4-11027957320/5/20932_
0.00015885270.00.03717.35
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

5-109-0/0/18458.
0.0057126275380.00.00502.19
162.55.40.80http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

6-109-0/0/5427.
0.0057122767820.00.00160.21
49.13.95.248http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

7-46-0/0/444.
0.0054437632613240.00.005.34
2604:f440:2:5::220http/1.1fediverse.hanbitgaram.com:7009GET /robots.txt HTTP/1.1

8-20-0/0/25.
0.0076901881508780.00.00301.76
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0076901882290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-27 15:11

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb5588ffef

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Sunday, 26-May-2024 22:33:07 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 109
Parent Server MPM Generation: 108
Server uptime:  105 days 19 hours 15 minutes 20 seconds
Server load: 0.00 0.00 0.00
Total accesses: 127941 - Total Traffic: 5.7 GB - Total Duration: 4074711
CPU Usage: u132.88 s213.89 cu676.92 cs752.53 - .0194% CPU load
.014 requests/sec - 664 B/second - 46.4 kB/request - 31.8484 ms/request
1 requests currently being processed, 5 idle workers
____W_..........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-10827713570/183/20825_
0.00417281190.087.171523.33
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

1-10827713580/182/20753_
0.003285813710.0466.951076.11
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

2-10827713590/184/20801_
0.00216501510.086.76881.76
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

3-10827713600/184/20687_
0.00015497920.088.81683.33
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

4-10827713610/182/20733W
0.00005620570.086.79698.05
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

5-10827723620/182/18279_
0.00116223920.085.12482.35
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

6-107-0/0/5388.
0.008115222685950.00.00142.89
109.250.24.184http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

7-46-0/0/444.
0.0053515532613240.00.005.34
2604:f440:2:5::220http/1.1fediverse.hanbitgaram.com:7009GET /robots.txt HTTP/1.1

8-20-0/0/25.
0.0075979771508780.00.00301.76
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0075979772290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-26 13:34

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbb66f1ab3

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Saturday, 25-May-2024 22:34:20 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 108
Parent Server MPM Generation: 107
Server uptime:  104 days 19 hours 16 minutes 33 seconds
Server load: 0.00 0.00 0.00
Total accesses: 126805 - Total Traffic: 4.8 GB - Total Duration: 4041498
CPU Usage: u131.7 s211.76 cu672.77 cs745.56 - .0195% CPU load
.014 requests/sec - 566 B/second - 39.5 kB/request - 31.8718 ms/request
1 requests currently being processed, 6 idle workers
_W_____.........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-10727596100/150/20637_
0.00217235250.09.381436.15
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

1-10727596110/153/20565W
0.00005680970.09.64609.15
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

2-10727596120/149/20611_
0.00416463660.011.96794.99
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

3-10727596130/147/20498_
0.00135462960.015.54594.52
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

4-10727596140/151/20546_
0.00015574030.078.16611.26
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

5-10727607930/132/18091_
0.003296190030.013.13397.22
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

6-10727640510/87/5382_
0.005312685740.011.10142.88
127.0.0.1http/1.1music.elysia-root.com:8001GET /server HTTP/1.1

7-46-0/0/444.
0.0052652252613240.00.005.34
2604:f440:2:5::220http/1.1fediverse.hanbitgaram.com:7009GET /robots.txt HTTP/1.1

8-20-0/0/25.
0.0075116501508780.00.00301.76
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0075116502290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-25 13:35

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb69d576df

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Friday, 24-May-2024 21:14:22 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 107
Parent Server MPM Generation: 106
Server uptime:  103 days 17 hours 56 minutes 35 seconds
Server load: 0.00 0.00 0.00
Total accesses: 125614 - Total Traffic: 4.6 GB - Total Duration: 4026708
CPU Usage: u130.35 s209.64 cu666.36 cs736.39 - .0194% CPU load
.014 requests/sec - 554 B/second - 38.6 kB/request - 32.0562 ms/request
1 requests currently being processed, 5 idle workers
____W_..........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-10627485280/198/20448_
0.00017211200.01.851426.03
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

1-10627485290/197/20376_
0.00015661770.02.96597.12
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

2-10627485300/201/20426_
0.000326437940.01.99782.51
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

3-10627485310/204/20313_
0.00015434780.03.64578.16
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

4-10627485320/203/20359W
0.00005548750.03.04531.08
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

5-10627497420/179/17922_
0.00016173850.01.39383.41
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

6-100-0/0/5295.
0.0050842722676440.00.00131.78
142.93.3.121http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

7-46-0/0/444.
0.0051740272613240.00.005.34
2604:f440:2:5::220http/1.1fediverse.hanbitgaram.com:7009GET /robots.txt HTTP/1.1

8-20-0/0/25.
0.0074204511508780.00.00301.76
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0074204512290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-24 12:15

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbda24c3b9

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Thursday, 23-May-2024 20:16:11 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 106
Parent Server MPM Generation: 105
Server uptime:  102 days 16 hours 58 minutes 24 seconds
Server load: 0.00 0.00 0.00
Total accesses: 124250 - Total Traffic: 4.6 GB - Total Duration: 4013381
CPU Usage: u128.84 s207.66 cu662.13 cs729.51 - .0195% CPU load
.014 requests/sec - 557 B/second - 38.9 kB/request - 32.3009 ms/request
1 requests currently being processed, 5 idle workers
___W__..........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-10527379050/152/20219_
0.00217186200.02.021424.09
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

1-10527379060/154/20150_
0.00115637510.05.54593.94
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

2-10527379070/150/20194_
0.003286415010.07.81780.43
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

3-10527379080/148/20078W
0.00005414240.02.01574.40
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

4-10527379090/152/20126_
0.00015526260.02.45527.89
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

5-10527383390/145/17713_
0.00416155790.03.64381.91
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

6-100-0/0/5295.
0.0041853722676440.00.00131.78
142.93.3.121http/1.1fediverse.hanbitgaram.com:7009GET /nodeinfo/2.0 HTTP/1.1

7-46-0/0/444.
0.0050841372613240.00.005.34
2604:f440:2:5::220http/1.1fediverse.hanbitgaram.com:7009GET /robots.txt HTTP/1.1

8-20-0/0/25.
0.0073305611508780.00.00301.76
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0073305612290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-23 11:17

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbbb4e0c9e

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Monday, 13-May-2024 09:24:20 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 96
Parent Server MPM Generation: 95
Server uptime:  92 days 6 hours 6 minutes 33 seconds
Server load: 0.00 0.00 0.00
Total accesses: 112311 - Total Traffic: 4.5 GB - Total Duration: 3858528
CPU Usage: u115.65 s185.98 cu617.36 cs655.27 - .0198% CPU load
.0141 requests/sec - 600 B/second - 41.6 kB/request - 34.3557 ms/request
1 requests currently being processed, 5 idle workers
__W___..........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-9526302550/69/18241_
0.004306922540.03.701402.65
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

1-9526302560/68/18178_
0.00515392450.00.68565.79
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

2-9526302570/67/18218W
0.00006104490.00.85752.00
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

3-9526302590/67/18113_
0.00315202270.00.51546.25
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

4-9526302610/65/18156_
0.00115277840.01.11505.02
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

5-9526306430/60/15897_
0.00215925050.00.60360.53
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

6-92-0/0/5033.
0.0020663322638300.00.00126.72
91.107.222.245http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

7-46-0/0/444.
0.0041810252613240.00.005.34
2604:f440:2:5::220http/1.1fediverse.hanbitgaram.com:7009GET /robots.txt HTTP/1.1

8-20-0/0/25.
0.0064274491508780.00.00301.76
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0064274492290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-13 00:24

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb45152c44

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Thursday, 09-May-2024 05:37:59 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 92
Parent Server MPM Generation: 91
Server uptime:  88 days 2 hours 20 minutes 12 seconds
Server load: 0.00 0.00 0.00
Total accesses: 107635 - Total Traffic: 4.1 GB - Total Duration: 3650109
CPU Usage: u110.34 s177.38 cu584.82 cs622.54 - .0196% CPU load
.0141 requests/sec - 574 B/second - 39.7 kB/request - 33.9119 ms/request
1 requests currently being processed, 5 idle workers
__W___..........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-9125871410/45/17464_
0.00316758240.00.231369.53
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

1-9125871420/45/17404_
0.00415046600.00.14475.16
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

2-9125871440/46/17445W
0.00005666420.00.12656.41
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

3-9125871450/44/17342_
0.003284885370.00.23450.61
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

4-9125871460/46/17385_
0.00114861440.00.10475.23
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

5-9125883610/18/15216_
0.00115747430.00.03330.02
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

6-88-0/0/4904.
0.0019306332413250.00.00104.76
162.55.40.80http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

7-46-0/0/444.
0.0038218442613240.00.005.34
2604:f440:2:5::220http/1.1fediverse.hanbitgaram.com:7009GET /robots.txt HTTP/1.1

8-20-0/0/25.
0.0060682681508780.00.00301.76
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0060682682290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-08 20:38

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdb0f0e357f

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Wednesday, 08-May-2024 19:54:47 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 91
Parent Server MPM Generation: 90
Server uptime:  87 days 16 hours 37 minutes
Server load: 0.00 0.00 0.00
Total accesses: 107150 - Total Traffic: 4.1 GB - Total Duration: 3643681
CPU Usage: u109.73 s176.63 cu581.46 cs616.34 - .0196% CPU load
.0141 requests/sec - 576 B/second - 39.8 kB/request - 34.0054 ms/request
1 requests currently being processed, 5 idle workers
____W_..........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-9025765820/118/17379_
0.00216747890.00.881368.67
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

1-9025765830/118/17319_
0.00115034320.00.79474.74
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

2-9025765840/120/17360_
0.00015654760.00.54655.92
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

3-9025765850/119/17257_
0.00414875780.00.57448.52
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

4-9025765870/119/17298W
0.00004850000.00.49474.83
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

5-9025777250/106/15158_
0.003305738450.02.02329.79
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

6-88-0/0/4904.
0.0015807132413250.00.00104.76
162.55.40.80http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

7-46-0/0/444.
0.0037868532613240.00.005.34
2604:f440:2:5::220http/1.1fediverse.hanbitgaram.com:7009GET /robots.txt HTTP/1.1

8-20-0/0/25.
0.0060332771508780.00.00301.76
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0060332772290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-08 10:55

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbd0506f8b

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Monday, 29-Apr-2024 04:12:39 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 82
Parent Server MPM Generation: 81
Server uptime:  78 days 54 minutes 52 seconds
Server load: 0.00 0.00 0.00
Total accesses: 97291 - Total Traffic: 4.0 GB - Total Duration: 3542421
CPU Usage: u97.37 s157.03 cu549.13 cs558.31 - .0202% CPU load
.0144 requests/sec - 632 B/second - 42.8 kB/request - 36.4106 ms/request
1 requests currently being processed, 4 idle workers
___W_...........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-8124799790/17/15701_
0.00116600910.00.041355.50
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

1-8124799800/17/15651_
0.00024732310.00.04459.50
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

2-8124799810/16/15683_
0.00115518150.00.03639.83
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

3-8124799820/16/15586W
0.00004703510.00.04431.39
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

4-8124799830/16/15627_
0.002334705380.00.03460.31
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

5-80-0/0/13750.
0.001512425632710.00.00310.50
49.13.137.65http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

6-79-0/0/4818.
0.0010152422408890.00.00104.14
49.13.95.248http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

7-46-0/0/444.
0.0029527242613240.00.005.34
2604:f440:2:5::220http/1.1fediverse.hanbitgaram.com:7009GET /robots.txt HTTP/1.1

8-20-0/0/25.
0.0051991491508780.00.00301.76
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0051991492290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-04-28 19:13

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbfff23463

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Friday, 19-Apr-2024 06:26:56 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 72
Parent Server MPM Generation: 71
Server uptime:  68 days 3 hours 9 minutes 9 seconds
Server load: 0.00 0.00 0.00
Total accesses: 86111 - Total Traffic: 3.2 GB - Total Duration: 3238039
CPU Usage: u84.7 s136.71 cu485.99 cs476.09 - .0201% CPU load
.0146 requests/sec - 581 B/second - 38.8 kB/request - 37.6031 ms/request
1 requests currently being processed, 5 idle workers
W_____..........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-7123712120/80/13896W
0.00006092700.00.331182.20
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

1-7123712130/78/13853_
0.00214256600.00.33286.82
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

2-7123712140/79/13883_
0.00125195640.00.36588.14
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

3-7123712150/80/13789_
0.00014130880.00.20279.90
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

4-7123712160/79/13828_
0.00114254120.00.24282.66
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

5-7123714420/63/12082_
0.002295206720.00.16267.38
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

6-70-0/0/4305.
0.002318122121380.00.0070.06
38.175.194.11http/1.1fediverse.hanbitgaram.com:7009GET /.well-known/nodeinfo HTTP/1.1

7-46-0/0/444.
0.0020967812613240.00.005.34
2604:f440:2:5::220http/1.1fediverse.hanbitgaram.com:7009GET /robots.txt HTTP/1.1

8-20-0/0/25.
0.0043432061508780.00.00301.76
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0043432062290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-04-18 21:27

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbd1a1b3f6

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Friday, 22-Mar-2024 01:21:21 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 44
Parent Server MPM Generation: 43
Server uptime:  39 days 22 hours 3 minutes 34 seconds
Server load: 0.00 0.00 0.00
Total accesses: 55488 - Total Traffic: 2.9 GB - Total Duration: 2902265
CPU Usage: u49.63 s80.62 cu386.88 cs311.75 - .024% CPU load
.0161 requests/sec - 887 B/second - 53.9 kB/request - 52.3044 ms/request
1 requests currently being processed, 5 idle workers
W_____..........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-4320709670/8/8871W
0.00005670380.00.011126.94
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

1-4320709690/9/8846_
0.00013796060.00.02229.62
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

2-4320709720/8/8865_
0.00214631380.00.02529.93
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

3-4320709730/8/8796_
0.00113458940.00.01225.06
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

4-4320709740/8/8818_
0.002303658150.00.02228.61
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

5-4320711760/5/7749_
0.00114709330.00.01215.79
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

6-42-0/0/3127.
0.00484621982170.00.0056.00
54.150.180.39http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

7-27-0/0/385.
0.0013008712607120.00.005.01
138.201.156.213http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

8-20-0/0/25.
0.0019056711508780.00.00301.76
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.0019056712290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-03-21 16:21

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310cbdccdb0cbdccdbe09f9017

Apache Status

Apache Server Status for music.elysia-root.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu) mpm-itk/2.4.7-04 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-10-26T13:54:09

Current Time: Saturday, 09-Mar-2024 20:40:53 KST
Restart Time: Sunday, 11-Feb-2024 03:17:47 KST
Parent Server Config. Generation: 31
Parent Server MPM Generation: 30
Server uptime:  27 days 17 hours 23 minutes 6 seconds
Server load: 0.00 0.00 0.00
Total accesses: 39305 - Total Traffic: 1.8 GB - Total Duration: 2315148
CPU Usage: u34.85 s55.8 cu255.8 cs211.04 - .0233% CPU load
.0164 requests/sec - 803 B/second - 47.8 kB/request - 58.9021 ms/request
1 requests currently being processed, 6 idle workers
_____W_.........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-3019280540/184/6210_
0.00113823580.00.55498.36
127.0.0.1http/1.1music.elysia-root.com:8001GET /v2/_catalog HTTP/1.1

1-3019280560/176/6187_
0.004292770890.00.56197.26
127.0.0.1http/1.1music.elysia-root.com:8001GET /server HTTP/1.1

2-3019280570/184/6196_
0.003303712720.01.02198.41
127.0.0.1http/1.1music.elysia-root.com:8001GET /about HTTP/1.1

3-3019280590/183/6153_
0.00213008590.00.62195.23
127.0.0.1http/1.1music.elysia-root.com:8001GET /debug/default/view?panel=config HTTP/1.1

4-3019280600/178/6167_
0.00413359030.00.45196.32
127.0.0.1http/1.1music.elysia-root.com:8001GET /.vscode/sftp.json HTTP/1.1

5-3019285870/179/5490W
0.00003528090.00.58193.18
127.0.0.1http/1.1music.elysia-root.com:8001GET /server-status HTTP/1.1

6-3019315280/102/2486_
0.00011832350.00.3748.88
127.0.0.1http/1.1music.elysia-root.com:8001GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

7-27-0/0/385.
0.002472442607120.00.005.01
138.201.156.213http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

8-20-0/0/25.
0.008520431508780.00.00301.76
54.249.151.125http/1.1fediverse.hanbitgaram.com:7009POST /inbox HTTP/1.1

9-20-0/0/6.
0.008520432290.00.000.01
114.34.80.40http/1.1fediverse.hanbitgaram.com:7009GET /api/v1/directory?limit=1 HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-03-09 11:40

Create report

Laravel development panel enabled
The application has Laravel development panel enabled.

It enables an attacker to access the following sensitive content :

System configuration

Request log, including POST request with credentials and/or api keys
IP: 81.28.12.12
Domain: blog.homaaa.ir
Port: 80
URL: http://blog.homaaa.ir

First seen 2024-10-09 02:31
Last seen 2024-11-22 19:20
Open for 44 days
- Fingerprint: 3ae8115d762f12d0e7725577e7725577e7725577e7725577e7725577e7725577
```
Laravel Telescope enabled at http://blog.homaaa.ir
```
  Found on 2024-11-22 19:20
Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: gs.top05flare.site
Port: 443
URL: https://gs.top05flare.site

First seen 2024-08-29 17:22
Last seen 2024-11-22 19:19
Open for 85 days

Fingerprint: b18befd9dd653682686ab1ac686ab1ac686ab1ac686ab1ac686ab1ac686ab1ac

{"details":{"group_id":7902350,"avatars":{"64":null,"128":null,"256":null,"512":null},"type":"channel","user":null,"hash":"Heihihmoqs1IZcIDtZvfOWqn53iVHpC4plpGhdi6ngy","identifier":"config","id":7902350,"title":"config","description":"","is_official":false,"member_count":1,"access":"public","show_posts":true,"posts":[],"pin":"","show_comments":true,"is_subscribe":false,"web_url":"","mobile_url":"","register_url":"","gallery":[],"single_post":false,"service_id":0,"service_type":"","subscriptions":false},"user":0}

Found on 2024-11-22 19:19

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: www.arhi.tk
Port: 80
URL: http://www.arhi.tk

First seen 2023-04-09 06:29
Last seen 2024-11-22 19:09
Open for 593 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-11-22 19:09
  
  265 Bytes
Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 92.223.84.84
Domain: schildichat.pkuanvil.com
Port: 80
URL: http://schildichat.pkuanvil.com

First seen 2023-02-24 20:35
Last seen 2024-11-22 19:03
Open for 636 days

Fingerprint: b18befd9dd6536aa30550de524e56a847e3f380cfcac35d6d81b3762ab601e4c

{
    "default_server_config": {
        "m.homeserver": {
            "base_url": "https://matrix.pkuanvil.com",
            "server_name": "pkuanvil.com"
        },
        "m.identity_server": {
            "base_url": "https://vector.im"
        }
    },
    "disable_custom_urls": false,
    "disable_guests": false,
    "disable_login_language_selector": false,
    "disable_3pid_login": false,
    "brand": "SchildiChat",
    "integrations_ui_url": "https://scalar.vector.im/",
    "integrations_rest_url": "https://scalar.vector.im/api",
    "integrations_widgets_urls": [
        "https://scalar.vector.im/_matrix/integrations/v1",
        "https://scalar.vector.im/api",
        "https://scalar-staging.vector.im/_matrix/integrations/v1",
        "https://scalar-staging.vector.im/api",
        "https://scalar-staging.riot.im/scalar/api"
    ],
    "default_country_code": "GB",
    "show_labs_settings": true,
    "features": {},
    "default_federate": false,
    "default_theme": "system",
    "permalink_prefix": "https://schildichat.pkuanvil.com",
    "room_directory": {
        "servers": ["matrix.org"]
    },
    "enable_presence_by_hs_url": {
        "https://matrix.org": false,
        "https://matrix-client.matrix.org": false
    },
    "setting_defaults": {
        "breadcrumbs": true
    },
    "jitsi": {
        "preferred_domain": "meet.jit.si"
    },
    "element_call": {
        "url": "https://call.element.io",
        "participant_limit": 8,
        "brand": "Element Call"
    },
    "map_style_url": "https://api.maptiler.com/maps/streets/style.json?key=fU3vlMsMn4Jb6dnEIFsx"
}

Found on 2024-11-22 19:03

Fingerprint: b18befd9dd6536aa30550de524e56a847e3f380cfcac35d6d81b37623197b405

{
    "default_server_config": {
        "m.homeserver": {
            "base_url": "https://matrix.pkuanvil.com",
            "server_name": "pkuanvil.com"
        },
        "m.identity_server": {
            "base_url": "https://vector.im"
        }
    },
    "disable_custom_urls": false,
    "disable_guests": false,
    "disable_login_language_selector": false,
    "disable_3pid_login": false,
    "brand": "SchildiChat",
    "integrations_ui_url": "https://scalar.vector.im/",
    "integrations_rest_url": "https://scalar.vector.im/api",
    "integrations_widgets_urls": [
        "https://scalar.vector.im/_matrix/integrations/v1",
        "https://scalar.vector.im/api",
        "https://scalar-staging.vector.im/_matrix/integrations/v1",
        "https://scalar-staging.vector.im/api",
        "https://scalar-staging.riot.im/scalar/api"
    ],
    "default_country_code": "GB",
    "show_labs_settings": true,
    "features": {},
    "default_federate": false,
    "default_theme": "light",
    "room_directory": {
        "servers": ["matrix.org"]
    },
    "enable_presence_by_hs_url": {
        "https://matrix.org": false,
        "https://matrix-client.matrix.org": false
    },
    "setting_defaults": {
        "breadcrumbs": true
    },
    "jitsi": {
        "preferred_domain": "meet.jit.si"
    },
    "element_call": {
        "url": "https://call.element.io",
        "participant_limit": 8,
        "brand": "Element Call"
    },
    "map_style_url": "https://api.maptiler.com/maps/streets/style.json?key=fU3vlMsMn4Jb6dnEIFsx"
}

Found on 2023-02-24 20:35

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: cdn.ccs.byinter.net
Port: 443
URL: https://cdn.ccs.byinter.net

First seen 2024-10-16 14:12
Last seen 2024-11-22 18:01
Open for 37 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31665845446658454454f1dc1e

Apache Status

Apache Server Status for ccs.byinter.net (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Friday, 22-Nov-2024 18:01:16 UTC
Restart Time: Monday, 18-Nov-2024 15:06:55 UTC
Parent Server Config. Generation: 5
Parent Server MPM Generation: 4
Server uptime:  4 days 2 hours 54 minutes 21 seconds
Server load: 0.00 0.00 0.00
Total accesses: 7836 - Total Traffic: 3.0 GB - Total Duration: 318916218
CPU Usage: u8.93 s15.49 cu15.13 cs38.86 - .022% CPU load
.022 requests/sec - 9.0 kB/second - 407.6 kB/request - 40698.9 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
160216no1yes1024000
260217no0yes0025000
Sum201 1049000

........................._________W_____________________________
___________.....................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0-0/0/10.
0.00315006242079206145430.00.000.11
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-0-0/0/28.
0.00315006019980410.00.000.12
127.0.0.1http/1.1ccs.byinter.net:8443GET /stage/.env HTTP/1.1

0-0-0/0/30.
0.00315006012121250.00.000.07
127.0.0.1http/1.1ccs.byinter.net:8443GET /tool/view/phpinfo.view.php HTTP/1.1

0-0-0/0/36.
0.0031500604960820.00.00290.93
127.0.0.1http/1.1

0-0-0/0/36.
0.0031500624209611769780.00.000.12
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-0-0/0/35.
0.00315006010735460.00.006.62
127.0.0.1http/1.1

0-0-0/0/40.
0.00315006010200500.00.000.85
127.0.0.1http/1.1

0-0-0/0/32.
0.00315006010559120.00.001.12
194.50.16.198http/1.1

0-0-0/0/32.
0.00315006018453160.00.000.08
194.50.16.198http/1.1localhost:80POST /boaform/admin/formLogin HTTP/1.1

0-0-0/0/33.
0.00315006012430720.00.000.10
127.0.0.1http/1.1ccs.byinter.net:8443GET /staging/.env HTTP/1.1

0-0-0/0/38.
0.0031500609493800.00.003.11
127.0.0.1http/1.1

0-0-0/0/31.
0.00315006014035620.00.000.16
127.0.0.1http/1.1

0-0-0/0/32.
0.0031500607135010.00.000.95
127.0.0.1http/1.1ccs.byinter.net:8443GET /vendor/.env HTTP/1.1

0-0-0/0/38.
0.00315006010061760.00.000.08
127.0.0.1http/1.1

0-0-0/0/25.
0.0031500620625437217464660.00.000.15
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-0-0/0/31.
0.00315006012868800.00.000.07
127.0.0.1http/1.1

0-0-0/0/30.
0.00315006015260700.00.000.10
127.0.0.1http/1.1

0-0-0/0/32.
0.003150063455067810.00.000.07
127.0.0.1http/1.1

0-0-0/0/29.
0.00315006170616619300.00.000.08
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-0-0/0/44.
0.0031500606118700.00.000.16
127.0.0.1http/1.1ccs.byinter.net:8443GET /web/debug/default/view HTTP/1.1

0-0-0/0/33.
0.00315006012266730.00.000.20
127.0.0.1http/1.1

0-0-0/0/33.
0.0031500607565580.00.000.07
127.0.0.1http/1.1ccs.byinter.net:8443GET /site/.env HTTP/1.1

0-0-0/0/35.
0.00315006019345750.00.000.11
127.0.0.1http/1.1ccs.byinter.net:8443GET /upload/.env HTTP/1.1

0-0-0/0/32.
0.00315006915686253700.00.000.06
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-0-0/0/31.
0.00315006011331470.00.000.09
127.0.0.1http/1.1ccs.byinter.net:8443GET /web/.env HTTP/1.1

1-4602160/54/110_
2.03943015170680.00.110.29
147.45.112.177http/1.1localhost:80\x03

1-4602160/59/115_
2.07470014672810.00.140.24
127.0.0.1http/1.1

1-4602160/49/98_
2.029108978520.00.074.85
49.51.72.76http/1.1localhost:80GET / HTTP/1.1

1-4602160/51/118_
2.102010916870.00.090.23
127.0.0.1http/1.1ccs.byinter.net:8443GET /server HTTP/1.1

1-4602160/57/132_
2.0934908005220.00.090.19
217.76.50.24http/1.1localhost:80CONNECT vf555.id:443 HTTP/1.1

1-4602160/55/106_
2.103013233840.00.090.16
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-4602160/46/116_
1.99349176012711980.00.060.13
217.76.50.24http/1.1

1-4602160/68/120_
2.0884717188325110.00.110.18
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-4602160/58/125_
2.09487114410502060.00.110.18
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-4602161/52/109W
2.080010161380.00.080.17
127.0.0.1http/1.1ccs.byinter.net:8443GET /server-status HTTP/1.1

1-4602160/55/118_
2.08948011199510.00.080.17
95.214.55.43http/1.1localhost:80GET / HTTP/1.1

1-4602160/59/116_
2.10247168210983130.00.110.20
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-4602160/52/120_
2.0947912146380230.00.120.23
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-4602160/51/104_
2.11109384510.00.100.18
127.0.0.1http/1.1ccs.byinter.net:8443GET /v2/_catalog HTTP/1.1

1-4602160/59/124_
2.103139510822410980.00.120.18
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-4602160/60/115_
2.10139504216611890.00.150.23
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-4602160/59/119_
2.11109592560.00.130.22
127.0.0.1http/1.1ccs.byinter.net:8443GET /about HTTP/1.1

1-4602160/56/125_
2.109609300920.00.070.14
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-4602160/44/116_
2.11108580690.00.080.20
127.0.0.1http/1.1ccs.byinter.net:8443GET /debug/default/view?panel=config HTTP/1.1

1-4602160/48/104_
2.06943011428500.00.070.13
154.213.184.43http/1.1localhost:80GET / HTTP/1.1

1-4602160/58/113_
2.110013017630.00.110.19
127.0.0.1http/1.1ccs.byinter.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-4602160/51/109_
2.09538170514574170.00.120.21
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-4602160/47/113_
2.0791013237540.00.060.13
2607:ff10:c8:594::dhttp/1.1localhost:8443GET / HTTP/1.1

1-4602160/55/118_
2.10207170513717180.041.2141.28
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-4602160/61/126_
2.102010734250.00.120.22
127.0.0.1http/1.1ccs.byinter.net:8443GET /.vscode/sftp.json HTTP/1.1

2-4602170/6/94_
0.10675609810530.00.000.16
127.0.0.1http/1.1ccs.byinter.net:8443GET /api/uploads/apimap HTTP/1.1

2-4602170/2/89_
0.04675507473240.00.000.12
127.0.0.1h2cccs.byinter.net:8443[0/0] init

2-4602170/4/96_
0.11675509899150.00.000.64
127.0.0.1http/1.1ccs.byinter.net:8443GET /Public/H5/js/h5.js HTTP/1.1

2-4

Found on 2024-11-22 18:01

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316658454466584544a977c442

Apache Status

Apache Server Status for ccs.byinter.net (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Wednesday, 20-Nov-2024 21:36:09 UTC
Restart Time: Monday, 18-Nov-2024 15:06:55 UTC
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  2 days 6 hours 29 minutes 14 seconds
Server load: 0.00 0.00 0.00
Total accesses: 4732 - Total Traffic: 3.0 GB - Total Duration: 291543153
CPU Usage: u5.18 s8.23 cu13.25 cs36.88 - .0324% CPU load
.0241 requests/sec - 16.0 kB/second - 0.6 MB/request - 61611 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
135233no0yes0025000
235234no0yes1024000
Sum200 1049000

.........................______________________________________W
___________.....................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0-0/0/10.
0.00155099242079206145430.00.000.11
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-0-0/0/28.
0.00155099019980410.00.000.12
127.0.0.1http/1.1ccs.byinter.net:8443GET /stage/.env HTTP/1.1

0-0-0/0/30.
0.00155099012121250.00.000.07
127.0.0.1http/1.1ccs.byinter.net:8443GET /tool/view/phpinfo.view.php HTTP/1.1

0-0-0/0/36.
0.0015509904960820.00.00290.93
127.0.0.1http/1.1

0-0-0/0/36.
0.0015509924209611769780.00.000.12
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-0-0/0/35.
0.00155099010735460.00.006.62
127.0.0.1http/1.1

0-0-0/0/40.
0.00155099010200500.00.000.85
127.0.0.1http/1.1

0-0-0/0/32.
0.00155099010559120.00.001.12
194.50.16.198http/1.1

0-0-0/0/32.
0.00155099018453160.00.000.08
194.50.16.198http/1.1localhost:80POST /boaform/admin/formLogin HTTP/1.1

0-0-0/0/33.
0.00155099012430720.00.000.10
127.0.0.1http/1.1ccs.byinter.net:8443GET /staging/.env HTTP/1.1

0-0-0/0/38.
0.0015509909493800.00.003.11
127.0.0.1http/1.1

0-0-0/0/31.
0.00155099014035620.00.000.16
127.0.0.1http/1.1

0-0-0/0/32.
0.0015509907135010.00.000.95
127.0.0.1http/1.1ccs.byinter.net:8443GET /vendor/.env HTTP/1.1

0-0-0/0/38.
0.00155099010061760.00.000.08
127.0.0.1http/1.1

0-0-0/0/25.
0.0015509920625437217464660.00.000.15
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-0-0/0/31.
0.00155099012868800.00.000.07
127.0.0.1http/1.1

0-0-0/0/30.
0.00155099015260700.00.000.10
127.0.0.1http/1.1

0-0-0/0/32.
0.001550993455067810.00.000.07
127.0.0.1http/1.1

0-0-0/0/29.
0.00155099170616619300.00.000.08
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-0-0/0/44.
0.0015509906118700.00.000.16
127.0.0.1http/1.1ccs.byinter.net:8443GET /web/debug/default/view HTTP/1.1

0-0-0/0/33.
0.00155099012266730.00.000.20
127.0.0.1http/1.1

0-0-0/0/33.
0.0015509907565580.00.000.07
127.0.0.1http/1.1ccs.byinter.net:8443GET /site/.env HTTP/1.1

0-0-0/0/35.
0.00155099019345750.00.000.11
127.0.0.1http/1.1ccs.byinter.net:8443GET /upload/.env HTTP/1.1

0-0-0/0/32.
0.00155099915686253700.00.000.06
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-0-0/0/31.
0.00155099011331470.00.000.09
127.0.0.1http/1.1ccs.byinter.net:8443GET /web/.env HTTP/1.1

1-2352330/7/14_
0.12004100000.00.000.13
127.0.0.1http/1.1ccs.byinter.net:8443GET /debug/default/view?panel=config HTTP/1.1

1-2352330/3/9_
0.111787903082520.00.000.03
183.191.123.172http/1.1ccs.byinter.net:80GET / HTTP/1.1

1-2352330/4/9_
0.091790004355240.00.000.02
127.0.0.1http/1.1ccs.byinter.net:8443GET /favicon.ico HTTP/1.1

1-2352330/4/10_
0.11178480234330.00.000.07
220.167.233.75http/1.1ccs.byinter.net:80GET / HTTP/1.1

1-2352330/5/11_
0.10178480620670.00.000.03
127.0.0.1http/1.1ccs.byinter.net:8443GET /favicon.ico HTTP/1.1

1-2352330/4/9_
0.111778606150.00.000.01
127.0.0.1http/1.1ccs.byinter.net:8443GET /favicon.ico HTTP/1.1

1-2352330/5/11_
0.1017878013030.00.000.01
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2352330/4/8_
0.1017786010.00.000.01
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2352330/5/9_
0.111575802414310.00.000.01
2a0e:7b85:a8a8:44d9:eb54:9fb1:fe38:ac86http/1.1localhost:80GET /favicon.ico HTTP/1.1

1-2352330/5/13_
0.101575802434580.00.000.02
43.248.108.202http/1.1ccs.byinter.net:80GET / HTTP/1.1

1-2352330/4/8_
0.0964440212930.00.000.01
42.92.120.12http/1.1ccs.byinter.net:80GET / HTTP/1.1

1-2352330/5/14_
0.11644502831430.00.000.05
167.94.138.52http/1.1localhost:8443GET /favicon.ico HTTP/1.1

1-2352330/6/12_
0.1113058170717090.00.010.01
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2352330/3/10_
0.101519702173120.00.000.01
167.94.146.54http/1.1

1-2352330/3/7_
0.1015756010.00.000.00
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2352330/6/11_
0.11157570864600.00.000.03
2a0e:7b85:e0a8:45dd:eb74:1fb1:ee38:becehttp/1.1localhost:80GET /favicon.ico HTTP/1.1

1-2352330/6/13_
0.1115197021710.00.000.01
167.94.146.54http/1.1localhost:8443GET /version HTTP/1.1

1-2352330/5/11_
0.103690021770.00.000.02
127.0.0.1http/1.1

1-2352330/5/8_
0.113691026750.00.000.02
157.230.12.164http/1.1localhost:80GET /favicon.ico HTTP/1.1

1-2352330/6/12_
0.115148000.00.000.01
54.88.179.33http/1.1ccs.byinter.net:80GET / HTTP/1.1

1-2352330/3/9_
0.09514702424700.00.000.01
54.88.179.33http/1.1

1-2352330/5/8_
0.10414604320.00.000.01
127.0.0.1http/1.1

1-2352330/5/8_
0.10369103770.00.000.01
157.230.12.164http/1.1

1-2352330/5/10_
0.093690010.00.000.01
127.0.0.1http/1.1

1-2352330/5/6_
0.092157000.00.000.00
127.0.0.1http/1.1

2-2352340/65/73_
1.5143719810500.00.090.15
127.0.0.1http/1.1ccs.byinter.net:8443GET /server-status HTTP/1.1

2-2352340/59/70_
1.5143907473210.00.070.11
127.0.0.1http/1.1ccs.byinter.net:8443GET /debug/default/view?panel=config HTTP/1.1

2-2352340/65/74_
1.52008894220.00.060.62
127.0.0.1http/1.1ccs.byinter.net:8443GET /about HTTP/1.1

2-2352340/57/65_
1.504328168012944710.00.080.12
127.0.0.1http/1.1ccs.byinte

Found on 2024-11-20 21:36

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3166584544665845444a3cd70e

Apache Status

Apache Server Status for ccs.byinter.net (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Monday, 18-Nov-2024 23:26:05 UTC
Restart Time: Monday, 18-Nov-2024 15:06:55 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  8 hours 19 minutes 9 seconds
Server load: 0.00 0.00 0.00
Total accesses: 744 - Total Traffic: 305.3 MB - Total Duration: 46620438
CPU Usage: u1.18 s2.03 cu0 cs0 - .0107% CPU load
.0248 requests/sec - 10.4 kB/second - 420.2 kB/request - 62661.9 ms/request
2 requests currently being processed, 0 workers gracefully restarting, 48 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
0526no2yes2023000
1527no0yes0025000
Sum202 2048000

___________W__W___________________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-05260/8/8_
1.4400203724640.00.100.10
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-05260/25/25_
1.427679194419759200.00.080.08
127.0.0.1http/1.1

0-05260/27/27_
1.44406134012117750.00.070.07
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-05260/33/33_
1.444001221234957300.0290.93290.93
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-05260/34/34_
1.44009348820.00.110.11
127.0.0.1http/1.1ccs.byinter.net:8443GET /.vscode/sftp.json HTTP/1.1

0-05260/31/31_
1.4445022748321120.06.626.62
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-05260/35/35_
1.42100724140810189720.00.840.84
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-05260/31/31_
1.440010559120.01.121.12
127.0.0.1http/1.1ccs.byinter.net:8443GET /about HTTP/1.1

0-05260/28/28_
1.4410624141816326980.00.080.08
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-05260/28/28_
1.43849168412204780.00.080.08
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-05260/33/33_
1.44335596669470260.03.103.10
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-05262/27/27W
1.410013804130.00.140.14
127.0.0.1http/1.1ccs.byinter.net:8443GET /server-status HTTP/1.1

0-05260/27/27_
1.4418507100520.00.940.94
127.0.0.1http/1.1ccs.byinter.net:8443GET /.git/config HTTP/1.1

0-05260/34/34_
1.4274870910045270.00.080.08
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-05261/24/24W
0.729521011210280.00.050.05
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-05260/29/29_
1.440012861470.00.070.07
127.0.0.1http/1.1ccs.byinter.net:8443GET /server HTTP/1.1

0-05260/28/28_
1.450015260700.00.100.10
127.0.0.1http/1.1ccs.byinter.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-05260/30/30_
1.391853455067810.00.070.07
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-05260/24/24_
1.440016602230.00.070.07
127.0.0.1http/1.1ccs.byinter.net:8443GET /debug/default/view?panel=config HTTP/1.1

0-05260/37/37_
1.4354916583700050.00.150.15
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-05260/30/30_
1.44300932868935550.00.200.20
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-05260/31/31_
1.437482414147565580.00.070.07
80.82.77.202http/1.1localhost:80\x16\x03\x02\x01o\x01

0-05260/31/31_
1.4370012299016924560.00.100.10
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-05260/29/29_
1.45005338010.00.060.06
127.0.0.1http/1.1ccs.byinter.net:8443GET /v2/_catalog HTTP/1.1

0-05260/27/27_
1.444801103239398710.00.080.08
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-05270/2/2_
0.043818000.00.000.00
185.100.87.136http/1.1localhost:80POST /FD873AC4-CF86-4FED-84EC-4BD59C6F17A7 HTTP/1.1

1-05270/2/2_
0.035535000.00.000.00
127.0.0.1http/1.1

1-05270/1/1_
0.036169000.00.000.00
141.98.7.248http/1.1localhost:8443\x16\x03\x01\x02

1-05270/1/1_
0.033818000.00.000.00
185.100.87.136http/1.1

1-05270/2/2_
0.0533460998609980.00.010.01
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-05270/1/1_
0.027086000.00.000.00
127.0.0.1h2cccs.byinter.net:8443[0/0] init

1-05270/2/2_
0.037100000.00.000.00
68.183.71.155http/1.1localhost:8443GET / HTTP/1.1

1-05270/3/3_
0.046169000.00.000.00
2602:80d:1000::14http/1.1localhost:80GET /favicon.ico HTTP/1.1

1-05270/2/2_
0.037084000.00.000.00
127.0.0.1h2cccs.byinter.net:8443GET /config.json HTTP/2.0

1-05270/1/1_
0.0270842173112173110.00.010.01
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-05270/1/1_
0.02708421270212700.00.010.01
127.0.0.1h2cccs.byinter.net:8443[0/0] init

1-05270/1/1_
0.037086000.00.000.00
127.0.0.1h2cccs.byinter.net:8443GET /.DS_Store HTTP/2.0

1-05270/1/1_
0.027086000.00.000.00
141.98.7.248http/1.1localhost:8443\x16\x03\x01\x02

1-05270/1/1_
0.027081000.00.000.00
135.181.213.219http/1.1localhost:80GET /robots.txt HTTP/1.1

1-05270/1/1_
0.0359882413872413870.00.010.01
127.0.0.1http/1.1

1-05270/1/1_
0.037078000.00.000.00
127.0.0.1http/1.1ccs.byinter.net:8443GET /index.php/tag/%EC%9D%B8%EC%A0%9C%EC%9D%B8%ED%84%B0%EB%84%B


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-11-18 23:26

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316658454466584544062afe9b

Apache Status

Apache Server Status for ccs.byinter.net (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Sunday, 17-Nov-2024 01:00:13 UTC
Restart Time: Sunday, 10-Nov-2024 05:25:49 UTC
Parent Server Config. Generation: 7
Parent Server MPM Generation: 6
Server uptime:  6 days 19 hours 34 minutes 23 seconds
Server load: 0.00 0.00 0.00
Total accesses: 36073 - Total Traffic: 12.8 GB - Total Duration: 1816987176
CPU Usage: u13.95 s23.35 cu68.66 cs142.68 - .0422% CPU load
.0613 requests/sec - 22.9 kB/second - 373.5 kB/request - 50369.7 ms/request
4 requests currently being processed, 0 workers gracefully restarting, 46 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
0142821no1yes4021000
2142820no0yes0025000
Sum201 4046000

__W___________W_W___W____.........................______________
___________.....................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-61428210/4/367_
0.2897127440129659890.00.05190.37
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-61428210/8/393_
0.2844818133997800.00.0285.92
127.0.0.1h2cccs.byinter.net:8443GET /dns-query?dns=Mo8BAAABAAAAAAAAAnIzAW8FbGVuY3IDb3JnAAABAAE 

0-61428211/5/384W
0.191180139577490.00.0195.98
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-61428210/5/410_
0.26421898171394430.00.01189.38
127.0.0.1h2cccs.byinter.net:8443[1/1] done

0-61428210/7/333_
0.24430258044180.00.012304.30
127.0.0.1h2cccs.byinter.net:8443[1/1] done

0-61428210/7/397_
0.24431203124655090.00.01262.96
127.0.0.1h2cccs.byinter.net:8443[0/0] init

0-61428210/7/398_
0.27420163842370.00.0186.68
127.0.0.1h2cccs.byinter.net:8443GET /dns-query?dns=JPoBAAABAAAAAAAABXN3aWZ0A29yZwAAAQAB HTTP/2.

0-61428210/5/382_
0.16441259136883990.00.00111.80
127.0.0.1h2cccs.byinter.net:8443[1/1] done

0-61428210/6/400_
0.28431929138608170.00.02176.25
127.0.0.1h2cccs.byinter.net:8443POST /dns-query HTTP/2.0

0-61428210/9/338_
0.2810348664760.00.0175.88
127.0.0.1http/1.1ccs.byinter.net:8443GET /server HTTP/1.1

0-61428210/9/394_
0.27431239139413870.00.01116.53
127.0.0.1h2cccs.byinter.net:8443[0/0] init

0-61428210/6/360_
0.18122837127487540.00.01118.57
127.0.0.1h2cccs.byinter.net:8443[1/1] done

0-61428210/8/384_
0.2800118422000.00.0140.85
127.0.0.1http/1.1ccs.byinter.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-61428210/7/396_
0.2800159177380.00.01282.83
127.0.0.1http/1.1ccs.byinter.net:8443GET /about HTTP/1.1

0-61428211/8/397W
0.21350140621590.00.02193.44
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-61428210/9/374_
0.2800325574470.00.03294.00
127.0.0.1http/1.1ccs.byinter.net:8443GET /debug/default/view?panel=config HTTP/1.1

0-61428212/8/395W
0.2800133884490.00.0399.61
127.0.0.1http/1.1ccs.byinter.net:8443GET /server-status HTTP/1.1

0-61428210/6/367_
0.274369687147445930.00.02120.81
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-61428210/4/374_
0.27441114138764650.00.01161.96
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-61428210/10/376_
0.27431898145623740.00.03266.79
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-61428211/5/370W
0.26370167734140.00.00344.33
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-61428210/8/390_
0.2544872151507770.00.01170.43
127.0.0.1h2cccs.byinter.net:8443[0/0] init

0-61428210/7/371_
0.2800131060690.00.0155.94
127.0.0.1http/1.1ccs.byinter.net:8443GET /v2/_catalog HTTP/1.1

0-61428210/6/383_
0.28841685132914420.00.01174.87
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-61428210/7/473_
0.2810171969820.00.05160.25
127.0.0.1http/1.1ccs.byinter.net:8443GET /.vscode/sftp.json HTTP/1.1

1-5-0/0/582.
0.0036080305159770.00.0060.01
127.0.0.1h2cccs.byinter.net:8443[1/1] done: stream 1, POST /dns-query

1-5-0/0/601.
0.0036080295095460.00.00103.27
127.0.0.1h2cccs.byinter.net:8443[1/1] done

1-5-0/0/573.
0.0036080454860740.00.0065.18
127.0.0.1h2cccs.byinter.net:8443[1/1] done

1-5-0/0/567.
0.0036081670358656720.00.00139.28
127.0.0.1h2cccs.byinter.net:8443[0/0] init

1-5-0/0/643.
0.0036080334533660.00.00141.21
127.0.0.1h2cccs.byinter.net:8443[0/0] init

1-5-0/0/592.
0.00360854501390880960.00.00274.99
127.0.0.1h2cccs.byinter.net:8443[1/1] done: stream 1, POST /dns-query

1-5-0/0/643.
0.0036080312634640.00.00211.77
127.0.0.1h2cccs.byinter.net:8443[0/0] init

1-5-0/0/609.
0.00360814061322101140.00.00109.55
127.0.0.1h2cccs.byinter.net:8443[1/1] done: stream 1, POST /dns-query

1-5-0/0/610.
0.0036082393341495870.00.00191.29
127.0.0.1h2cccs.byinter.net:8443[0/0] init

1-5-0/0/579.
0.00360861419375240850.00.0066.26
127.0.0.1h2cccs.byinter.net:8443[1/1] done

1-5-0/0/632.
0.003608241909335432090.00.00103.20
127.0.0.1h2cccs.byinter.net:8443[1/1] done: stream 1, POST /dns-query

1-5-0/0/589.
0.00360881568378866750.00.0097.19
127.0.0.1h2cccs.byinter.net:8443[1/1] done: stream 1, POST /dns-query

1-5-0/0/624.
0.00360816753371545250.00.0067.06
127.0.0.1h2cccs.byinter.net:8443[0/0] init

1-5-0/0/611.
0.003608905321350570.00.00124.99
127.0.0.1h2cccs.byinter.net:8443[1/1] done

1-5-0/0/635.
0.0036081685270984120.00.0087.56
127.0.0.1h2cccs.byinter.net:8443[0/0] init

1-5-0/0/608.
0.0036081859312466250.00.0026.84
127.0.0.1h2cccs.byinter.net:8443GET /dns-query?dns=zv8BAAABAAAAAAAAAnFxA2NvbQAAAQAB HTTP/2.0

1-5-0/0/576.
0.0036080322595930.00.0078.01
127.0.0.1h2cccs.byinter.net:8443[1/1] done: stream 1, POST /dns-query

1-5-0/0/569.
0.0036080506940660.00.00102.79
127.0.0.1h2cccs.byinter.net:8443[1/1] done

1-5-0/0/624.
0.0036083786276177920.00.0046.66
127.0.0.1h2cccs.byinter.net:8443[1/1] done

1-5-0/0/578.
0.0036084232372847980.00.00145.39
127.0.0.1h2cccs.byinter.net:8443[0/0] init

1-5-0/0/595.
0.00360823037396832490.00.00155.41
127.0.0.1h2cccs.byinter.net:8443POST /dns-query HTTP/2.0

1-5-0/0/601.
0.0036080376335710.00.0056.71
127.0.0.1h2cccs.byinter.net:8443[1/1] done: stream 1, POST /dns-query

1-5-0/0/666.
0.00360866038252247590.00.00183.64
127.0.0.1h2cccs.byinter.net:8443[1/1] done: stream 1, POST /dns-query

1-5-0/0/640.
0.0036082341280086890.00.0070.80
127.0.0.1h2cccs.byinter.net:8443[1/1] done

1-5-0/0/617.
0.0036088521317366170.00.0078.63
127.0.0.1h2cccs.byinter.net:8443[0/0] init

2-61428200/1/239_
0.011884076883200.00.0033.58
127.0.0.1http/1.1ccs.byinter.net:8443

Found on 2024-11-17 01:00

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3166584544665845443a523b31

Apache Status

Apache Server Status for ccs.byinter.net (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Thursday, 14-Nov-2024 22:01:00 UTC
Restart Time: Sunday, 10-Nov-2024 05:25:49 UTC
Parent Server Config. Generation: 4
Parent Server MPM Generation: 3
Server uptime:  4 days 16 hours 35 minutes 10 seconds
Server load: 0.00 0.00 0.00
Total accesses: 24296 - Total Traffic: 11.5 GB - Total Duration: 1367294761
CPU Usage: u17.8 s32.92 cu40.82 cs98.34 - .0468% CPU load
.0599 requests/sec - 29.7 kB/second - 494.7 kB/request - 56276.5 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
083187no0yes0025000
183243no0yes1024000
483304no0yes0025000
Sum300 1074000

______________________________________W___________..............
...................................._________________________...
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-3831870/61/272_
3.9812850112978880.01.26139.79
127.0.0.1http/1.1ccs.byinter.net:8443GET /api/vue/transaction/config HTTP/1.1

0-3831870/56/299_
3.9447470123433520.00.0985.66
127.0.0.1h2cccs.byinter.net:8443[1/1] done: stream 1, POST /dns-query

0-3831870/56/276_
3.9421980129804890.00.1295.49
127.0.0.1h2cccs.byinter.net:8443[1/1] done

0-3831870/73/317_
4.0021980159136470.00.30187.11
127.0.0.1h2cccs.byinter.net:8443[1/1] done

0-3831870/26/235_
4.0047470240958970.04.332304.05
127.0.0.1http/1.1ccs.byinter.net:8443GET /pages/console/js/common.js HTTP/1.1

0-3831870/63/305_
4.0047470116766780.00.11260.69
127.0.0.1h2cccs.byinter.net:8443[1/1] done: stream 1, POST /dns-query

0-3831870/65/294_
3.9812860152936280.00.0985.91
127.0.0.1h2cccs.byinter.net:8443[1/1] done: stream 1, POST /dns-query

0-3831870/43/282_
3.9959690128914450.00.11109.22
127.0.0.1http/1.1ccs.byinter.net:8443GET /js/index.js HTTP/1.1

0-3831870/58/295_
3.9412860127005840.00.21158.21
127.0.0.1h2cccs.byinter.net:8443[1/1] done: stream 1, POST /dns-query

0-3831870/33/232_
4.0059680337054220.00.7471.02
127.0.0.1h2cccs.byinter.net:8443[1/1] done

0-3831870/59/280_
3.9559690129448950.00.10107.27
127.0.0.1h2cccs.byinter.net:8443[1/1] done: stream 1, POST /dns-query

0-3831870/53/269_
3.9562970116826860.00.1279.30
127.0.0.1h2cccs.byinter.net:8443[1/1] done

0-3831870/68/288_
3.9812860105998480.00.1039.85
127.0.0.1h2cccs.byinter.net:8443[0/0] init

0-3831870/70/297_
4.0321990134815310.00.17213.39
127.0.0.1h2cccs.byinter.net:8443GET /dns-query?dns=hx8BAAABAAAAAAAAA3d3dwhjc2VpbmRpYQNvcmcAAAEA

0-3831870/57/281_
3.9447460113446550.00.22151.42
127.0.0.1h2cccs.byinter.net:8443[1/1] done

0-3831870/55/276_
4.00219981906313465710.018.98292.57
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-3831870/55/299_
4.0021990115735190.026.2399.08
127.0.0.1h2cccs.byinter.net:8443[0/0] init

0-3831870/67/294_
3.9959690138520440.046.65120.60
127.0.0.1h2cccs.byinter.net:8443[1/1] done: stream 1, POST /dns-query

0-3831870/56/284_
3.9447470121333250.022.90152.07
127.0.0.1h2cccs.byinter.net:8443[0/0] init

0-3831870/64/272_
3.9912850137247990.023.80238.68
127.0.0.1h2cccs.byinter.net:8443[1/1] done

0-3831870/55/270_
3.9459680158241990.016.60337.36
127.0.0.1h2cccs.byinter.net:8443[1/1] done

0-3831870/63/306_
4.0047460120444700.03.49170.02
127.0.0.1h2cccs.byinter.net:8443[1/1] done

0-3831870/54/275_
3.9812860117550080.05.2455.11
127.0.0.1h2cccs.byinter.net:8443[0/0] init

0-3831870/45/274_
3.9821990120836640.010.73139.68
127.0.0.1h2cccs.byinter.net:8443[1/1] done: stream 1, POST /dns-query

0-3831870/67/363_
3.9959690160883800.00.22147.09
127.0.0.1h2cccs.byinter.net:8443[0/0] init

1-3832430/132/298_
20.721241634183239500.034.3653.04
127.0.0.1h2cccs.byinter.net:8443[1/1] done

1-3832430/158/316_
20.551260185743980.065.3780.03
127.0.0.1h2cccs.byinter.net:8443[0/0] init

1-3832430/150/344_
20.7112560357256377170.00.7928.19
127.0.0.1h2cccs.byinter.net:8443[1/1] done

1-3832430/125/298_
20.7600221194810.034.44106.88
127.0.0.1http/1.1ccs.byinter.net:8443GET /v2/_catalog HTTP/1.1

1-3832430/177/338_
20.711251715193883910.025.1564.16
127.0.0.1h2cccs.byinter.net:8443[0/0] init

1-3832430/156/328_
20.7610222005710.030.8870.99
127.0.0.1http/1.1ccs.byinter.net:8443GET /.vscode/sftp.json HTTP/1.1

1-3832430/148/295_
20.7615560363213207720.0188.14205.78
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-3832430/153/321_
20.7600191790350.065.8171.06
127.0.0.1http/1.1ccs.byinter.net:8443GET /debug/default/view?panel=config HTTP/1.1

1-3832430/176/360_
20.752050200693090.0119.98186.57
127.0.0.1h2cccs.byinter.net:8443[1/1] done

1-3832430/156/302_
20.7630261247830.026.0732.20
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-3832430/179/348_
20.751250201646670.01.0978.90
127.0.0.1h2cccs.byinter.net:8443[1/1] done

1-3832430/173/369_
20.752051614179320510.031.7351.81
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-3832430/177/344_
20.7320581569248160190.025.3260.25
127.0.0.1h2cccs.byinter.net:8443[1/1] done

1-3832432/162/342W
20.7000184402520.00.7544.07
127.0.0.1http/1.1ccs.byinter.net:8443GET /server-status HTTP/1.1

1-3832430/176/326_
20.751260180047240.073.7577.80
127.0.0.1h2cccs.byinter.net:8443POST /dns-query HTTP/2.0

1-3832430/177/353_
20.7610149786030.03.1816.35
127.0.0.1http/1.1ccs.byinter.net:8443GET /about HTTP/1.1

1-3832430/158/325_
20.731240166434810.01.5433.38
127.0.0.1http/1.1

1-3832430/157/264_
20.701260394856030.076.1680.48
127.0.0.1h2cccs.byinter.net:8443[0/0] init

1-3832430/179/341_
20.7620172437800.00.7838.27
127.0.0.1http/1.1ccs.byinter.net:8443GET /server HTTP/1.1

1-3832430/177/344_
20.731260202739220.069.59114.92
127.0.0.1h2cccs.byinter.net:8443[0/0] init

1-3832430/168/360_
20.701260217920320.071.5588.06
127.0.0.1h2cccs.byinter.net:8443[1/1] done

1-3832430/179/356_
20.7600188673450.022.0950.76
127.0.0.1http/1.1ccs.byinter.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-3832430/171/345_
20.732050161953390.071.75128.93
127.0.0.1h2cccs.byinter.net:8443GET /dns-query?dns=c8UBAAABAAAAAAAAAmRsB2JpbnRyYXkDY29tAAABAAE 

1-3832430/168/328_
20.7612660362187708340.020.8564.88
127.0.0.1h2cccs.byinter.net:8443POST /dns-query HTTP/2.0

1-3832430/179/357_
20.761260200264780.00.8733.84
127.0.0.1h2cccs.byinter.net:8443GET /dns-query?dns=W7QBAAABAAAAAAAACndoaXRlaG91c2UDZ292AAABAAE </

Found on 2024-11-14 22:00

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31665845446658454472ac32e1

Apache Status

Apache Server Status for ccs.byinter.net (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Tuesday, 12-Nov-2024 20:46:44 UTC
Restart Time: Sunday, 10-Nov-2024 05:25:49 UTC
Parent Server Config. Generation: 2
Parent Server MPM Generation: 1
Server uptime:  2 days 15 hours 20 minutes 54 seconds
Server load: 0.00 0.00 0.00
Total accesses: 15310 - Total Traffic: 6.9 GB - Total Duration: 853038920
CPU Usage: u12.22 s21.33 cu17.58 cs42.36 - .041% CPU load
.0671 requests/sec - 31.8 kB/second - 474.0 kB/request - 55717.8 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
133858no0yes0025000
227795no0yes0025000
330675no4yes1024040
Sum304 1074040

........................._______________________________________
___________W________________________............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1-0/0/115.
0.00422444150618758960.00.0015.91
127.0.0.1http/1.1

0-1-0/0/124.
0.0042244230823680950.00.005.39
80.75.212.9http/1.1

0-1-0/0/125.
0.0042244271628392970.00.001.46
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/140.
0.00422441404269601910.00.0024.31
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/119.
0.00422446638236460990.00.002153.78
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/144.
0.0042244117529237450.00.0012.44
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/125.
0.0042244219224614820.00.005.79
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/131.
0.00422441216125840470.00.001.12
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/131.
0.00422443085225106220.00.002.74
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/132.
0.0042244118931551790.00.007.07
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/117.
0.0042244218720750180.00.000.82
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/121.
0.004224411067927341970.00.0016.34
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/121.
0.0042244139420284040.00.002.13
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/126.
0.00422443249640477680.00.0058.52
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/133.
0.004224433327827550.00.0018.73
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/112.
0.004224418566197859680.00.002.77
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/126.
0.004224424182522109400.00.003.01
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/116.
0.004224417732641945440.00.0044.05
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/129.
0.00422446208518942180.00.002.55
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/118.
0.0042244339319687930.00.0016.62
80.75.212.9http/1.1

0-1-0/0/116.
0.0042244293245358550.00.0022.44
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/136.
0.004224423228613580.00.0021.77
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/126.
0.0042244180733182240.00.003.79
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/137.
0.0042244150720699970.00.0028.78
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/125.
0.0042244123722416190.00.0033.97
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1338580/9/166_
0.3683690128747280.00.0318.68
127.0.0.1http/1.1ccs.byinter.net:8443GET /img/banner.png HTTP/1.1

1-1338580/6/158_
0.3648310123013810.00.0314.66
2602:80d:1000::47h2clocalhost:80[0/0] init

1-1338580/7/194_
0.3683610108787180.00.0127.40
127.0.0.1http/1.1ccs.byinter.net:8443GET /iexchange/webtrader/ HTTP/1.1

1-1338580/9/173_
0.3683660126630560.00.1072.45
127.0.0.1http/1.1ccs.byinter.net:8443GET /login.html HTTP/1.1

1-1338580/11/160_
0.3683760142220780.00.0339.00
127.0.0.1http/1.1ccs.byinter.net:8443GET /qs/ HTTP/1.1

1-1338580/11/172_
0.35615710159558500.00.0340.11
127.0.0.1http/1.1

1-1338580/8/147_
0.3683760154352390.00.6817.64
127.0.0.1http/1.1ccs.byinter.net:8443GET /api HTTP/1.1

1-1338580/10/168_
0.3683710127408190.00.125.24
127.0.0.1http/1.1ccs.byinter.net:8443GET /my/zijin.png HTTP/1.1

1-1338580/7/184_
0.3648310134110900.00.0566.60
127.0.0.1http/1.1ccs.byinter.net:8443GET /wap/api/exchangerateuserconfig!get.action HTTP/1.1

1-1338580/9/146_
0.3648310199626650.00.116.13
2602:80d:1000::47h2clocalhost:80[0/0] done

1-1338580/7/169_
0.3683730155532430.00.0477.82
127.0.0.1http/1.1ccs.byinter.net:8443GET /home/help HTTP/1.1

1-1338580/7/195_
0.3683880125714120.00.1120.09
127.0.0.1http/1.1ccs.byinter.net:8443GET /Res/font/font.css HTTP/1.1

1-1338580/6/167_
0.29178122516169384350.00.0234.93
206.168.34.38h2clocalhost:80[0/0] done

1-1338580/8/180_
0.371790136680190.00.0843.32
213.176.67.43http/1.1localhost:80\x16\x03\x01

1-1338580/7/150_
0.3683620133757350.00.054.05
127.0.0.1http/1.1ccs.byinter.net:8443GET /Home/Get/getJnd28 HTTP/1.1

1-1338580/8/176_
0.3583710108319710.00.0213.17
127.0.0.1http/1.1ccs.byinter.net:8443GET /img/banner.png HTTP/1.1

1-1338580/8/167_
0.3583690110188390.00.0231.84
127.0.0.1http/1.1ccs.byinter.net:8443GET /api/Event/basic HTTP/1.1

1-1338580/7/106_
0.3683750297070670.00.284.32
127.0.0.1http/1.1ccs.byinter.net:8443GET /mobile/ HTTP/1.1

1-1338580/8/162_
0.3683650124707530.00.0137.49
127.0.0.1http/1.1ccs.byinter.net:8443GET /api/config/getkefu HTTP/1.1

1-1338580/8/167_
0.3683720143794920.00.0645.34
127.0.0.1http/1.1ccs.byinter.net:8443GET /static/wap/css/trade-history.css HTTP/1.1

1-1338580/8/192_
0.298372309639126417080.00.0416.51
127.0.0.1http/1.1

1-1338580/8/177_
0.3183881667126752060.01.0228.66
127.0.0.1h2cccs.byinter.net:8443GET /source/20220119/static/wap/js/order.js HTTP/2.0

1-1338580/9/174_
0.3683600111899950.00.0157.18
127.0.0.1http/1.1ccs.byinter.net:8443GET /Public/css/errorCss.css HTTP/1.1

1-1338580/9/160_
0.3683600127415800.00.0144.03
127.0.0.1http/1.1ccs.byinter.net:8443GET /Public/Home/js/cls.js HTTP/1.1

1-1338580/11/178_
0.3683750134848970.00.0232.97
127.0.0.1http/1.1ccs.byinter.net:8443GET /mobile HTTP/1.1

2-1277950/99/145_
5.668409058956840.01.1621.46
127.0.0.1http/1.1ccs.byinter.net:8443GET /api/uploads/ap

Found on 2024-11-12 20:46

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316658454466584544f54b722f

Apache Status

Apache Server Status for ccs.byinter.net (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Sunday, 10-Nov-2024 15:33:23 UTC
Restart Time: Sunday, 10-Nov-2024 05:25:49 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  10 hours 7 minutes 33 seconds
Server load: 0.07 0.02 0.00
Total accesses: 1068 - Total Traffic: 99.8 MB - Total Duration: 12893216
CPU Usage: u1.65 s2.68 cu0 cs0 - .0119% CPU load
.0293 requests/sec - 2870 B/second - 95.7 kB/request - 12072.3 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
0523no0yes1024000
1524no0yes0025000
2710no0yes0025000
Sum300 1074000

____W___________________________________________________________
___________.....................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-05230/34/34_
1.6128203548130.03.373.37
47.237.133.252http/1.1localhost:80GET /public/index.php?s=/index/\\think\\app/invokefunction&functi

0-05230/29/29_
1.6128205616300.00.080.08
47.237.133.252http/1.1localhost:80GET /public/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php 

0-05230/33/33_
1.6128201977590.00.180.18
47.237.133.252http/1.1localhost:80GET /index.php?s=/index/\\think\\app/invokefunction&function=call

0-05230/33/33_
1.61104779380.06.776.77
127.0.0.1http/1.1ccs.byinter.net:8443GET /about HTTP/1.1

0-05231/30/30W
1.60006136920.00.450.45
127.0.0.1http/1.1ccs.byinter.net:8443GET /server-status HTTP/1.1

0-05230/39/39_
1.6028305836510.00.080.08
47.237.133.252http/1.1localhost:80GET /blog/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HT

0-05230/29/29_
1.6028309005790.00.480.48
47.237.133.252http/1.1localhost:80GET /workspace/drupal/vendor/phpunit/phpunit/src/Util/PHP/eval-

0-05230/34/34_
1.6028404047910.00.090.09
47.237.133.252http/1.1localhost:80GET /crm/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTT

0-05230/40/40_
1.607003646520.01.361.36
47.237.133.252http/1.1localhost:80GET /ws/ec/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php H

0-05230/35/35_
1.6128106295510.00.200.20
47.237.133.252http/1.1localhost:80GET /index.php?lang=../../../../../../../../tmp/index1 HTTP/1.1

0-05230/25/25_
1.6128104146820.00.430.43
47.237.133.252http/1.1localhost:80GET /containers/json HTTP/1.1

0-05230/34/34_
1.61003103070.01.661.66
127.0.0.1http/1.1ccs.byinter.net:8443GET /v2/_catalog HTTP/1.1

0-05230/32/32_
1.6128302461060.00.090.09
47.237.133.252http/1.1localhost:80GET /panel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php H

0-05230/35/35_
1.61204245580.011.8311.83
127.0.0.1http/1.1ccs.byinter.net:8443GET /server HTTP/1.1

0-05230/44/44_
1.61207670950.01.701.70
127.0.0.1http/1.1ccs.byinter.net:8443GET /.vscode/sftp.json HTTP/1.1

0-05230/29/29_
1.6028404580490.00.090.09
47.237.133.252http/1.1localhost:80GET /backup/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php 

0-05230/33/33_
1.617503344230.00.090.09
179.43.191.98http/1.1localhost:80GET / HTTP/1.1

0-05230/28/28_
1.61006822380.00.630.63
127.0.0.1http/1.1ccs.byinter.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-05230/31/31_
1.6128205122750.00.100.10
47.237.133.252http/1.1localhost:80GET /app/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTT

0-05230/20/20_
1.607005990310.010.1010.10
47.237.133.252http/1.1localhost:80GET /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HT

0-05230/30/30_
1.6128203640440.00.080.08
47.237.133.252http/1.1localhost:80GET /apps/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HT

0-05230/39/39_
1.6028403870950.03.613.61
47.237.133.252http/1.1localhost:80GET /admin/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php H

0-05230/28/28_
1.6028103514350.00.250.25
47.237.133.252http/1.1

0-05230/33/33_
1.6128106358890.025.7225.72
47.237.133.252http/1.1localhost:80GET /index.php?lang=../../../../../../../../usr/local/lib/php/p

0-05230/29/29_
1.61104872630.017.7317.73
127.0.0.1http/1.1ccs.byinter.net:8443GET /debug/default/view?panel=config HTTP/1.1

1-05240/3/3_
0.08276301140990.00.040.04
64.227.150.18http/1.1

1-05240/4/4_
0.09274401199870.00.090.09
64.227.150.18http/1.1localhost:80GET /systembc/password.php HTTP/1.1

1-05240/5/5_
0.102754022790.00.010.01
120.48.5.78http/1.1localhost:80GET /sql/phpmyadmin3/index.php?lang=en HTTP/1.1

1-05240/5/5_
0.112757024200.00.010.01
120.48.5.78http/1.1localhost:80GET /phpMyAdmin-4.9.7/index.php?lang=en HTTP/1.1

1-05240/5/5_
0.112754012960.00.000.00
120.48.5.78http/1.1localhost:80GET /sql/phpmyadmin5/index.php?lang=en HTTP/1.1

1-05240/7/7_
0.102754017900.00.000.00
120.48.5.78http/1.1localhost:80GET /sql/phpMyAdmin2/index.php?lang=en HTTP/1.1

1-05240/3/3_
0.102755017680.00.000.00
120.48.5.78http/1.1localhost:80GET /db/dbadmin/index.php?lang=en HTTP/1.1

1-05240/6/6_
0.112762022340.00.010.01
120.48.5.78http/1.1localhost:80GET /pma/index.php?lang=en HTTP/1.1

1-05240/4/4_
0.112745000.00.000.00
120.48.5.78http/1.1localhost:80GET /phpmyadmin2/index.php?lang=en HTTP/1.1

1-05240/2/2_
0.082746000.00.000.00
64.227.150.18http/1.1

1-05240/4/4_
0.122749000.00.000.00
120.48.5.78http/1.1localhost:80GET /mysql/mysqlmanager/index.php?lang=en HTTP/1.1

1-05240/6/6_
0.122751010.00.000.00
120.48.5.78http/1.1localhost:80GET /phpMyAdmin-5.2.1-all-languages/index.php?lang=en HTTP/1.1

1-05240/5/5_
0.112744018910.00.000.00
120.48.5.78http/1.1localhost:80GET /phpMyAdmin-5/index.php?lang=en HTTP/1.1

1-05240/5/5_
0.1027600341060.00.010.01
120.48.5.78http/1.1localhost:80GET /admin/index.php?lang=en HTTP/1.1

1-05240/3/3_
0.1127590309760.00.060.06
120.48.5.78http/1.1localhost:80GET /db/db-admin/index.php?lang=en HTTP/1.1

1-05240/7/7_
0.1027600307660.00.010.01
120.48.5.78http/1.1localhost:80GET /phppma/index.php?lang=en HTTP/1.1

1-05240/6/6_
0.1127600280320.00.010.01
120.48.5.78http/1.1localhost:80GET /db/webadmin/index.php?lang=en HTTP/1.1

1-05240/5/5_
0.112759028330.00.010.01
120.48.5.78http/1.1localhost:80GET /sql/myadmin/index.php?lang=en HTTP/1.1

1-05240/3/3_
0.082759010.00.000.00
178.128.96.94http/1.1localhost:80GET /wp-admin/plugins.php HTTP/1.1

1-05240/2/2_
0.072758000.00.000.00
178.128.96.94http/1.1

1-05240/4/4_
0.102758000.00.000.00
129.226.93.214http/1.1localhost:80GET / HTTP/1.1

1-05240/3/3_
0.0827540906960.00.050.05
178.128.96.94http/1.1localhost:80GET /wp-content/index.php?x=ooo HTTP/1.1

1-05240/4/4_
0.102757025670.00.010.01
120.48.5.78http/1.1localhost:80GET /phpmyadmin6/index.php?lang=en HTTP/1.1

1-05240/7/7_
0.092759022460.0

Found on 2024-11-10 15:33

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316658454466584544f398b93a

Apache Status

Apache Server Status for ccs.byinter.net (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Friday, 08-Nov-2024 18:22:51 UTC
Restart Time: Monday, 04-Nov-2024 13:32:51 UTC
Parent Server Config. Generation: 5
Parent Server MPM Generation: 4
Server uptime:  4 days 4 hours 50 minutes
Server load: 0.00 0.00 0.00
Total accesses: 12530 - Total Traffic: 4.2 GB - Total Duration: 391313281
CPU Usage: u10.26 s16.09 cu17.58 cs35.91 - .022% CPU load
.0345 requests/sec - 12.2 kB/second - 352.7 kB/request - 31230.1 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
055535no0yes1024000
155536no0yes0025000
263709no0yes0025000
Sum300 1074000

____W___________________________________________________________
___________.....................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-4555350/28/223_
2.10222034015720.00.047.25
127.0.0.1http/1.1ccs.byinter.net:8443GET /public/.env HTTP/1.1

0-4555350/95/297_
2.10230034671810.00.093.14
127.0.0.1http/1.1ccs.byinter.net:8443GET /newsite/.env HTTP/1.1

0-4555350/93/290_
2.08210039095560.00.0913.45
127.0.0.1http/1.1

0-4555350/83/284_
2.10226043276820.00.084.10
127.0.0.1http/1.1ccs.byinter.net:8443GET /sites/all/libraries/mailchimp/.env HTTP/1.1

0-4555351/25/235W
2.010058346690.00.0512.67
127.0.0.1http/1.1ccs.byinter.net:8443GET /server-status HTTP/1.1

0-4555350/48/244_
2.10228039328660.00.051.24
127.0.0.1http/1.1ccs.byinter.net:8443GET /www/.env HTTP/1.1

0-4555350/95/274_
2.10217084573140.00.1019.62
127.0.0.1http/1.1ccs.byinter.net:8443GET /192-227-237-26-host.colocrossing.com/.env HTTP/1.1

0-4555350/26/232_
2.05223040748470.00.045.51
127.0.0.1http/1.1

0-4555350/38/260_
2.07225050825640.00.055.05
127.0.0.1http/1.1

0-4555350/63/257_
2.01226070468050.00.062.41
127.0.0.1http/1.1

0-4555350/65/259_
2.05232051263280.00.0631.86
127.0.0.1http/1.1

0-4555350/31/216_
2.07228071051510.00.094.91
127.0.0.1http/1.1

0-4555350/30/221_
2.102048575800.00.050.76
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4555350/92/280_
2.110043569710.00.081.04
127.0.0.1http/1.1ccs.byinter.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-4555350/93/296_
2.1021436630793110.00.0620.45
127.0.0.1http/1.1ccs.byinter.net:8443POST / HTTP/1.1

0-4555350/90/285_
2.07220048826000.00.071.25
127.0.0.1http/1.1

0-4555350/25/217_
2.07216043932960.00.0656.04
127.0.0.1http/1.1

0-4555350/29/237_
2.101075740640.00.082.07
127.0.0.1http/1.1ccs.byinter.net:8443GET /about HTTP/1.1

0-4555350/88/286_
2.10233041172750.00.384.73
127.0.0.1http/1.1ccs.byinter.net:8443GET /protected/.env HTTP/1.1

0-4555350/27/205_
2.100068155610.00.1032.08
127.0.0.1http/1.1ccs.byinter.net:8443GET /v2/_catalog HTTP/1.1

0-4555350/22/221_
2.102080515910.00.043.23
127.0.0.1http/1.1ccs.byinter.net:8443GET /server HTTP/1.1

0-4555350/88/282_
2.101041496040.00.0511.61
127.0.0.1http/1.1ccs.byinter.net:8443GET /.vscode/sftp.json HTTP/1.1

0-4555350/24/221_
2.02213030571100.00.0323.37
127.0.0.1http/1.1

0-4555350/95/286_
2.101053086490.00.1310.51
127.0.0.1http/1.1ccs.byinter.net:8443GET /debug/default/view?panel=config HTTP/1.1

0-4555350/49/241_
2.10224058584320.00.4895.83
127.0.0.1http/1.1ccs.byinter.net:8443GET /database/.env HTTP/1.1

1-4555360/5/200_
0.1217077066818340.00.014.77
127.0.0.1http/1.1

1-4555360/8/181_
0.1517048068398730.00.012.64
127.0.0.1http/1.1

1-4555360/5/189_
0.1317076076157610.00.013.45
127.0.0.1http/1.1

1-4555360/7/204_
0.1417078075800660.00.0112.17
127.0.0.1http/1.1

1-4555360/6/202_
0.1217079071738710.00.0117.72
127.0.0.1http/1.1

1-4555360/7/142_
0.14170790141558010.00.012.26
127.0.0.1http/1.1

1-4555360/7/193_
0.1417076076225190.00.013.69
127.0.0.1http/1.1

1-4555360/7/186_
0.1617082078914500.00.014.09
127.0.0.1http/1.1

1-4555360/6/200_
0.1417048068278310.00.013692.06
127.0.0.1http/1.1

1-4555360/5/205_
0.1317079086399400.00.016.59
127.0.0.1http/1.1

1-4555360/7/201_
0.1317051099905630.00.006.03
127.0.0.1http/1.1

1-4555360/5/188_
0.15170660116947330.00.007.58
127.0.0.1http/1.1

1-4555360/6/196_
0.1317069078489900.00.008.29
127.0.0.1http/1.1

1-4555360/4/167_
0.1517069085105960.00.002.07
127.0.0.1http/1.1

1-4555360/6/169_
0.13170690122569550.00.0014.92
127.0.0.1http/1.1

1-4555360/5/191_
0.1517072072910800.00.003.85
127.0.0.1http/1.1

1-4555360/6/180_
0.1317072087993890.00.005.74
127.0.0.1http/1.1

1-4555360/7/209_
0.1317048064801100.00.012.95
127.0.0.1http/1.1

1-4555360/5/150_
0.14170780103016210.00.0111.49
127.0.0.1http/1.1

1-4555360/6/213_
0.1417048088335610.00.014.84
127.0.0.1http/1.1

1-4555360/8/157_
0.2443640125765950.00.0124.21
111.7.100.24http/1.1ccs.byinter.net:80GET / HTTP/1.1

1-4555360/5/214_
0.134364085354420.00.0119.85
127.0.0.1http/1.1

1-4555360/5/171_
0.133495081576450.00.0111.27
127.0.0.1http/1.1

1-4555360/9/176_
0.2434950101227340.00.015.37
185.147.125.150http/1.1localhost:8443\x16\x03\x01\x02

1-4555360/6/173_
0.1517048064994890.00.013.51
127.0.0.1http/1.1

2-4637090/7/35_
0.141473108193570.00.013.47
127.0.0.1http/1.1

2-4637090/7/38_
0.1414728013769180.00.010.22
127.0.0.1http/1.1

2-4637090/7/40_
0.141472802881560.00.020.13
127.0.0.1http/1.1

2-4637090/6/40_
0.131473101694530.00.010.21
127.0.0.1http/1.1

2-4637090/7/42_
0.1517076113575540.00.030.27
127.0.0.1http/1.1

2-4637090/5/35_
0.1125301196967

Found on 2024-11-08 18:22

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3166584544665845444797bf01

Apache Status

Apache Server Status for ccs.byinter.net (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Wednesday, 06-Nov-2024 19:19:19 UTC
Restart Time: Monday, 04-Nov-2024 13:32:51 UTC
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  2 days 5 hours 46 minutes 28 seconds
Server load: 0.00 0.00 0.00
Total accesses: 8423 - Total Traffic: 4.1 GB - Total Duration: 364418431
CPU Usage: u8.11 s12.12 cu12.92 cs29.56 - .0324% CPU load
.0435 requests/sec - 22.0 kB/second - 505.3 kB/request - 43264.7 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
021979no0yes0025000
122039no0yes1024000
222281no0yes0025000
Sum300 1074000

__________________________________W_____________________________
___________.....................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2219790/18/123_
0.842653030007830.00.296.99
127.0.0.1http/1.1

0-2219790/17/129_
0.852635024676660.00.102.74
127.0.0.1http/1.1

0-2219790/14/125_
0.842657028029420.00.1613.11
127.0.0.1http/1.1

0-2219790/16/123_
0.782659026273480.00.173.69
127.0.0.1http/1.1

0-2219790/23/131_
0.842649044778930.00.2212.09
127.0.0.1http/1.1

0-2219790/19/123_
0.842652033154610.00.210.99
127.0.0.1http/1.1

0-2219790/19/111_
0.842656078211460.00.7119.30
127.0.0.1http/1.1

0-2219790/18/129_
0.852657029384220.00.165.21
127.0.0.1http/1.1

0-2219790/19/144_
0.812657043136110.01.174.07
127.0.0.1http/1.1

0-2219790/14/119_
0.822659061323630.00.282.02
127.0.0.1http/1.1

0-2219790/16/122_
0.802653034737290.01.0531.58
127.0.0.1http/1.1

0-2219790/16/123_
0.772649062842160.00.204.69
127.0.0.1http/1.1

0-2219790/17/121_
0.852658038991780.00.160.58
127.0.0.1http/1.1

0-2219790/19/120_
0.842649037075970.00.240.78
127.0.0.1http/1.1

0-2219790/18/127_
0.852659022571880.00.1920.09
127.0.0.1http/1.1

0-2219790/15/125_
0.822646039811040.00.230.95
127.0.0.1http/1.1

0-2219790/14/126_
0.792635037655800.00.3155.85
127.0.0.1http/1.1

0-2219790/16/128_
0.772659064814450.00.121.67
127.0.0.1http/1.1

0-2219790/13/133_
0.842652035268630.00.084.00
127.0.0.1http/1.1

0-2219790/17/111_
0.852658054827150.00.091.01
127.0.0.1http/1.1

0-2219790/18/129_
0.852659059271940.00.602.78
127.0.0.1http/1.1

0-2219790/18/128_
0.782649032182810.00.253.20
127.0.0.1http/1.1

0-2219790/12/129_
0.782649022805080.00.4123.18
127.0.0.1http/1.1

0-2219790/16/118_
0.842656036922260.00.3410.13
127.0.0.1http/1.1

0-2219790/20/124_
0.842638053841550.00.260.66
127.0.0.1http/1.1

1-2220390/118/183_
6.20549066687790.03.484.74
168.76.20.229http/1.1localhost:80GET / HTTP/1.1

1-2220390/100/158_
5.68548068362650.00.852.61
127.0.0.1http/1.1

1-2220390/110/175_
6.20548075933340.01.773.43
168.76.20.229http/1.1localhost:80GET /favicon.ico HTTP/1.1

1-2220390/112/177_
6.211075585940.010.1412.14
127.0.0.1http/1.1ccs.byinter.net:8443GET /debug/default/view?panel=config HTTP/1.1

1-2220390/104/183_
6.20549071693060.01.6217.69
168.76.20.229http/1.1localhost:80GET / HTTP/1.1

1-2220390/66/122_
6.2110141512310.00.972.23
127.0.0.1http/1.1ccs.byinter.net:8443GET /about HTTP/1.1

1-2220390/101/169_
5.69732075998060.01.323.66
127.0.0.1http/1.1

1-2220390/104/167_
6.2099078251830.02.863.97
80.94.92.116http/1.1localhost:80POST / HTTP/1.1

1-2220390/101/174_
5.69548068021390.01.123692.02
127.0.0.1http/1.1

1-2220391/110/185W
6.200085685200.03.895.82
127.0.0.1http/1.1ccs.byinter.net:8443GET /server-status HTTP/1.1

1-2220390/97/178_
6.212099266570.01.725.19
127.0.0.1http/1.1ccs.byinter.net:8443GET /.vscode/sftp.json HTTP/1.1

1-2220390/104/171_
6.20990116912070.03.887.57
80.94.92.116http/1.1localhost:80GET /.env HTTP/1.1

1-2220390/106/175_
5.6899077850900.04.858.23
80.94.92.116http/1.1

1-2220390/89/149_
6.2099084467180.00.892.05
80.94.92.116http/1.1

1-2220390/81/152_
6.2020122554590.00.8114.90
127.0.0.1http/1.1ccs.byinter.net:8443GET /server HTTP/1.1

1-2220390/103/166_
6.210070250730.02.253.82
127.0.0.1http/1.1ccs.byinter.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-2220390/101/161_
5.69549087355460.00.865.69
168.76.20.229http/1.1

1-2220390/115/188_
5.70941064139830.01.342.92
127.0.0.1http/1.1

1-2220390/80/128_
6.2030102346320.07.1711.45
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2220390/107/189_
6.20548087673230.03.464.79
168.76.20.229http/1.1localhost:80GET /robots.txt HTTP/1.1

1-2220390/76/130_
5.699500125713090.09.4424.18
207.90.244.4http/1.1

1-2220390/111/192_
5.68548084569050.016.6619.81
127.0.0.1http/1.1

1-2220390/94/155_
6.210081208720.08.5911.24
127.0.0.1http/1.1ccs.byinter.net:8443GET /v2/_catalog HTTP/1.1

1-2220390/102/152_
6.207330100865000.02.205.33
61.222.173.188http/1.1localhost:80GET / HTTP/1.0

1-2220390/86/151_
6.20950064860520.00.683.46
207.90.244.4http/1.1localhost:8443GET / HTTP/1.1

2-2222810/6/18_
0.21265907088680.00.053.45
127.0.0.1http/1.1

2-2222810/7/24_
0.202648013629010.00.090.20
127.0.0.1http/1.1

2-2222810/4/24_
0.19265702723190.00.020.10
127.0.0.1http/1.1

2-2222810/5/27_
0.21265701583780.00.010.15
127.0.0.1http/1.1

2-2222810/6/24_
0.192657013351840.00.140.23
127.0.0.1http/1.1

2-2222810/9/22_
0.212657011732210.00.141.62
127.0.0.1http/1.1

2-2222810/6/29_

Found on 2024-11-06 19:19

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31665845446658454495af0139

Apache Status

Apache Server Status for ccs.byinter.net (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Monday, 04-Nov-2024 17:51:26 UTC
Restart Time: Monday, 04-Nov-2024 13:32:51 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 hours 18 minutes 34 seconds
Server load: 0.00 0.00 0.00
Total accesses: 136 - Total Traffic: 3.5 MB - Total Duration: 2041041
CPU Usage: u.92 s1.41 cu0 cs0 - .015% CPU load
.00877 requests/sec - 234 B/second - 26.1 kB/request - 15007.7 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
0530no0yes1024000
1531no0yes0025000
Sum200 1049000

___________________W______________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-05300/6/6_
1.07376032970.00.000.00
199.45.154.140http/1.1localhost:80GET /favicon.ico HTTP/1.1

0-05300/5/5_
1.05166001052810.00.000.00
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.0

0-05300/3/3_
1.0437501276390.01.351.35
122.116.81.92http/1.1localhost:80GET / HTTP/1.0

0-05300/4/4_
1.04374069350.00.010.01
127.0.0.1http/1.1

0-05300/2/2_
0.2915931801241801240.00.000.00
127.0.0.1http/1.1

0-05300/5/5_
1.08101929890.00.030.03
127.0.0.1http/1.1ccs.byinter.net:8443GET /about HTTP/1.1

0-05300/3/3_
0.30381020930.00.010.01
127.0.0.1http/1.1

0-05300/7/7_
1.073770142350.00.010.01
199.45.154.140http/1.1localhost:80GET / HTTP/1.1

0-05300/9/9_
0.328870191380.00.020.02
127.0.0.1http/1.1

0-05300/6/6_
1.0820675330.00.010.01
127.0.0.1http/1.1ccs.byinter.net:8443GET /server HTTP/1.1

0-05300/6/6_
0.283750336730.01.401.40
199.45.154.140h2clocalhost:80[0/0] init

0-05300/4/4_
1.08002084500.00.150.15
127.0.0.1http/1.1ccs.byinter.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-05300/4/4_
0.311602140480.00.010.01
127.0.0.1http/1.1

0-05300/2/2_
1.0810905160.00.010.01
127.0.0.1http/1.1ccs.byinter.net:8443GET /.vscode/sftp.json HTTP/1.1

0-05300/3/3_
0.311467166570.00.010.01
80.66.83.49http/1.1

0-05300/6/6_
0.3314091106120.00.010.01
127.0.0.1http/1.1

0-05300/5/5_
1.07386090820.00.010.01
199.45.154.140http/1.1localhost:80GET / HTTP/1.1

0-05300/7/7_
1.08001773420.00.010.01
127.0.0.1http/1.1ccs.byinter.net:8443GET /debug/default/view?panel=config HTTP/1.1

0-05300/6/6_
1.043760129980.00.010.01
199.45.154.140http/1.1

0-05302/5/5W
1.06001742090.00.010.01
127.0.0.1http/1.1ccs.byinter.net:8443GET /server-status HTTP/1.1

0-05300/8/8_
1.08001848880.00.020.02
127.0.0.1http/1.1ccs.byinter.net:8443GET /v2/_catalog HTTP/1.1

0-05300/5/5_
1.0714670101450.00.010.01
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.0

0-05300/3/3_
0.28381133981040.00.010.01
127.0.0.1http/1.1

0-05300/7/7_
1.063741124080.00.010.01
199.45.154.140h2clocalhost:80[0/0] done

0-05300/6/6_
1.0513960106150.00.010.01
127.0.0.1http/1.1

1-05310/1/1_
0.026416246524650.00.000.00
127.0.0.1http/1.1

1-05310/1/1_
0.0464161755051755050.00.030.03
127.0.0.1http/1.1

1-05310/1/1_
0.196411000.00.000.00
162.216.149.179http/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

1-05310/2/2_
0.0464151803301803300.00.300.30
127.0.0.1http/1.1

1-05310/1/1_
0.025369306730670.00.000.00
127.0.0.1h2cccs.byinter.net:8443[1/1] done: stream 1, POST /dns-query

1-05310/1/1_
0.055367000.00.000.00
127.0.0.1http/1.1

1-05310/1/1_
0.046432238823880.00.010.01
127.0.0.1http/1.1

1-05310/1/1_
0.016429425942590.00.000.00
127.0.0.1http/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 40total entries replaced since starting: 0total entries expired since starting: 40total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 2 miss

Found on 2024-11-04 17:51

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316658454466584544d36a17dd

Apache Status

Apache Server Status for ccs.byinter.net (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Saturday, 02-Nov-2024 15:28:59 UTC
Restart Time: Friday, 01-Nov-2024 00:00:21 UTC
Parent Server Config. Generation: 2
Parent Server MPM Generation: 1
Server uptime:  1 day 15 hours 28 minutes 37 seconds
Server load: 0.00 0.00 0.00
Total accesses: 5297 - Total Traffic: 15.8 GB - Total Duration: 221084759
CPU Usage: u3.64 s6.4 cu74.05 cs227.6 - .219% CPU load
.0373 requests/sec - 116.5 kB/second - 3.1 MB/request - 41737.7 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
07782no0yes0025000
17781no0yes1024000
Sum200 1049000

_____________________________________W____________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-177820/5/70_
0.124554127727885210.00.02924.42
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-177820/2/55_
0.0954181629918130.00.01332.56
127.0.0.1http/1.1

0-177820/1/56_
0.117138051732510.00.00422.73
127.0.0.1http/1.1

0-177820/3/67_
0.1054143228079740.00.01390.47
127.0.0.1http/1.1

0-177820/3/54_
0.12541043866070.00.017.48
127.0.0.1http/1.1

0-177820/1/71_
0.107151029443590.00.001094.11
159.65.142.96http/1.1

0-177820/3/58_
0.12230025987390.00.00466.80
127.0.0.1http/1.1

0-177820/2/55_
0.127143028666020.00.00404.18
159.65.142.96http/1.1localhost:80GET /wp-admin/includes/mari.php HTTP/1.1

0-177820/2/69_
0.14231024674750.00.00511.65
127.0.0.1http/1.1ccs.byinter.net:8443GET /favicon.ico HTTP/1.1

0-177820/3/40_
0.115410150346440.00.00311.67
127.0.0.1http/1.1

0-177820/2/65_
0.11542024826380.00.001110.58
127.0.0.1http/1.1

0-177820/3/70_
0.12541030045680.00.00653.84
127.0.0.1http/1.1

0-177820/2/71_
0.12574085322934090.00.00520.93
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-177820/2/58_
0.121554194854222090.00.01603.84
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-177820/3/43_
0.127144038591950.00.01130.00
159.65.142.96http/1.1localhost:80GET /wp-admin/css/maro.php HTTP/1.1

0-177820/2/65_
0.107143028492020.00.00479.53
159.65.142.96http/1.1

0-177820/3/69_
0.117142027495140.00.00781.14
159.65.142.96http/1.1

0-177820/2/64_
0.127141022575830.00.00707.30
159.65.142.96http/1.1localhost:80GET /wp-admin/mari.php HTTP/1.1

0-177820/2/63_
0.127140026295970.00.00249.92
127.0.0.1http/1.1ccs.byinter.net:8443GET /wp-admin/mari.php HTTP/1.1

0-177820/2/59_
0.1071401912554426710.00.00561.47
159.65.142.96http/1.1

0-177820/2/60_
0.117135026814770.00.01460.69
159.65.142.96http/1.1

0-177820/4/68_
0.127136034056370.00.00892.91
159.65.142.96http/1.1localhost:80GET /wp-content/plugins/owfsmac/maro.php HTTP/1.1

0-177820/3/65_
0.107137021788450.00.00523.90
159.65.142.96http/1.1

0-177820/3/70_
0.127139025278000.00.00778.03
159.65.142.96http/1.1localhost:80GET /wp-content/plugins/aryabot/mari.php HTTP/1.1

0-177820/3/67_
0.105412253027870270.00.13724.73
127.0.0.1http/1.1

1-177810/28/133_
1.080039525100.00.03131.62
127.0.0.1http/1.1ccs.byinter.net:8443GET /v2/_catalog HTTP/1.1

1-177810/25/131_
1.00230195532705630.00.030.92
127.0.0.1http/1.1

1-177810/30/138_
1.0422583432103060.00.060.91
127.0.0.1http/1.1

1-177810/20/118_
1.03227241633278380.00.122.22
127.0.0.1http/1.1

1-177810/29/139_
1.080028179860.00.112.56
127.0.0.1http/1.1ccs.byinter.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-177810/29/130_
1.03229186825908880.00.055.22
127.0.0.1http/1.1

1-177810/23/133_
1.00231169632097780.00.056.98
127.0.0.1http/1.1

1-177810/28/138_
1.0851236654798970.00.471.19
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-177810/33/127_
1.081017556270.00.051.21
127.0.0.1http/1.1ccs.byinter.net:8443GET /server HTTP/1.1

1-177810/29/139_
1.05224226424856220.00.050.87
127.0.0.1http/1.1

1-177810/22/127_
1.01229218438117590.00.020.68
127.0.0.1http/1.1

1-177810/26/118_
1.0851407132405490.00.031.21
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-177811/21/127W
1.070057632430.00.0313.46
127.0.0.1http/1.1ccs.byinter.net:8443GET /server-status HTTP/1.1

1-177810/23/122_
1.04226032463710.00.0411.67
127.0.0.1http/1.1

1-177810/34/97_
1.081077240700.00.040.76
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-177810/27/141_
1.00230166227513100.00.042.49
127.0.0.1http/1.1

1-177810/28/125_
1.05225154826671490.00.040.56
127.0.0.1http/1.1

1-177810/26/129_
0.98226028977710.00.3615.89
127.0.0.1http/1.1

1-177810/26/136_
1.01229119439864720.00.057.48
127.0.0.1http/1.1

1-177810/27/124_
1.080040198690.00.040.63
127.0.0.1http/1.1ccs.byinter.net:8443GET /.vscode/sftp.json HTTP/1.1

1-177810/23/137_
1.01229162634254030.02.983.57
127.0.0.1http/1.1

1-177810/27/121_
1.080053971300.00.041.86
127.0.0.1http/1.1ccs.byinter.net:8443GET /debug/default/view?panel=config HTTP/1.1

1-177810/19/113_
1.08231030234210.00.021.12
127.0.0.1http/1.1ccs.byinter.net:8443GET /robots.txt HTTP/1.1

1-177810/26/126_
1.02227336144216990.00.0529.16
127.0.0.1http/1.1

1-177810/23/123_
1.080035251020.00.040.67
127.0.0.1http/1.1ccs.byinter.net:8443GET /about HTTP/1.1

2-0-0/0/15.
0.0012169122651881000.00.000.36
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

2-0-0/0/12.
0.00121691105932303040.00.00129.84
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

2-0-0/0/9.
0.001216911009266451510.00.0014.41
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

2-0-0/0/15.
0.00121691266775281960.00.00192.12
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

2-0-0/0/14.
0.001216911821315324960.00.001.54
127.0.0.1http/1.1

Found on 2024-11-02 15:28

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3166584544665845442e6845ef

Apache Status

Apache Server Status for ccs.byinter.net (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Friday, 01-Nov-2024 11:58:41 UTC
Restart Time: Friday, 01-Nov-2024 00:00:21 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  11 hours 58 minutes 19 seconds
Server load: 0.00 0.00 0.00
Total accesses: 4158 - Total Traffic: 15.8 GB - Total Duration: 216909849
CPU Usage: u2.48 s4.2 cu72.18 cs224.77 - .704% CPU load
.0965 requests/sec - 384.2 kB/second - 3.9 MB/request - 52166.9 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
03545no0yes0025000
13399no0yes1024000
43599no0yes0025000
Sum300 1074000

_________________________________________________W..............
...................................._________________________...
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-035450/1/64_
0.0313098218427832530.00.01924.41
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-035450/3/53_
0.1313104029870160.00.02332.55
159.65.142.96http/1.1localhost:80POST /assets/upload/alfacgiapi/py.alfa HTTP/1.1

0-035450/2/55_
0.1313105051732510.00.01422.73
159.65.142.96http/1.1localhost:80POST /assets/upload/alfacgiapi/bash.alfa HTTP/1.1

0-035450/1/64_
0.111128033425328056670.00.11390.46
36.99.136.134http/1.1

0-035450/3/51_
0.1313104043508550.00.027.47
159.65.142.96http/1.1localhost:80GET /assets/upload/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1

0-035450/3/70_
0.1642155967829443590.00.021094.11
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-035450/3/55_
0.164216639225987380.00.02466.79
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-035450/1/53_
0.111309930676328648400.00.17404.17
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-035450/2/67_
0.1342162121624674750.00.01511.65
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-035450/2/36_
0.14112810150341730.00.01311.67
36.99.136.134http/1.1ccs.byinter.net:80GET / HTTP/1.1

0-035450/3/63_
0.16422956624822470.00.011110.57
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-035450/2/66_
0.1411643208429741900.00.37653.83
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-035450/2/68_
0.1313105022921050.00.01520.93
159.65.142.96http/1.1localhost:80POST /assets/upload/alfacgiapi/bash.alfa HTTP/1.1

0-035450/3/56_
0.15849011000754087840.00.01603.83
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-035450/2/39_
0.1413104038573030.00.01129.99
159.65.142.96http/1.1localhost:80GET /assets/upload/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1

0-035450/3/62_
0.151013412143228492010.00.45479.52
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-035450/2/66_
0.158586754627495130.02.15781.14
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-035450/2/62_
0.1313105022575830.00.04707.29
159.65.142.96http/1.1localhost:80POST /assets/upload/alfacgiapi/perl.alfa HTTP/1.1

0-035450/2/61_
0.1313105026295970.00.01249.92
159.65.142.96http/1.1localhost:80POST /assets/upload/alfacgiapi/py.alfa HTTP/1.1

0-035450/3/56_
0.1676761912554426710.01.71561.47
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-035450/2/57_
0.1313106026804870.00.01460.69
159.65.142.96http/1.1localhost:80POST /assets/upload/alfacgiapi/perl.alfa HTTP/1.1

0-035450/2/64_
0.1313104034046220.00.01892.91
159.65.142.96http/1.1localhost:80GET /assets/upload/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1

0-035450/2/62_
0.1410961904021779720.00.07523.90
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-035450/3/66_
0.1585792124525277990.00.08778.03
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-035450/2/64_
0.1411976915527633550.00.05724.61
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-033990/87/88_
3.742038456360.02.03131.57
127.0.0.1http/1.1ccs.byinter.net:8443GET /.vscode/sftp.json HTTP/1.1

1-033990/86/87_
3.6526274630195060.00.870.88
203.55.131.4h2ipv6.ccs.byinter.net:1000[1/1] done

1-033990/92/94_
3.72288031674000.00.820.84
203.55.131.4http/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

1-033990/83/85_
3.71262030143630.02.072.09
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-033990/93/95_
3.731026676426874220.02.432.43
213.168.249.93http/1.1localhost:80\x16\x03\x01

1-033990/83/84_
3.740024564140.05.165.16
127.0.0.1http/1.1ccs.byinter.net:8443GET /v2/_catalog HTTP/1.1

1-033990/90/92_
3.72262128529491850.06.896.92
203.55.131.4h2ipv6.ccs.byinter.net:1000GET /favicon.ico HTTP/2.0

1-033990/90/91_
3.70262275554437110.00.690.71
127.0.0.1http/1.1

1-033990/81/83_
3.6910311812217380830.01.131.15
127.0.0.1http/1.1

1-033990/91/93_
3.741024238030.00.750.80
127.0.0.1http/1.1ccs.byinter.net:8443GET /debug/default/view?panel=config HTTP/1.1

1-033990/88/90_
3.741035034830.00.630.64
127.0.0.1http/1.1ccs.byinter.net:8443GET /about HTTP/1.1

1-033990/75/77_
3.7028720042431771830.01.151.17
203.55.131.4http/1.1

1-033990/81/83_
3.7210342756240450.07.2113.42
213.168.249.93http/1.1localhost:80\x16\x03\x01

1-033990/81/83_
3.711382032050600.011.6011.61
127.0.0.1http/1.1

1-033990/52/54_
3.6910210676777086490.00.690.72
127.0.0.1http/1.1

1-033990/98/99_
3.70113024648300.02.442.44
213.168.249.93http/1.1

1-033990/83/83_
3.72103026066760.00.510.51
213.168.249.93http/1.1localhost:80\x16\x03\x01

1-033990/85/86_
3.69108330927602630.015.5215.52
2001:470:1:fb5::120http/1.1

1-033990/94/95_
3.691026685337241140.07.417.42
127.0.0.1http/1.1

1-033990/80/81_
3.72108034608170.00.480.58
2001:470:1:fb5::120http/1.1localhost:80GET / HTTP/1.1

1-033990/95/96_
3.742031136510.00.570.57
127.0.0.1http/1.1ccs.byinter.net:8443GET /server HTTP/1.1

1-033990/76/77_
3.70138220197252635030.01.821.82
127.0.0.1http/1.1

1-033990/81/82_
3.72113028330790.01.091.09
213.168.249.93http/1.1localhost:80GET / HTTP/1.1

1-033990/86/87_
3.740043750070.029.1029.10
127.0.0.1http/1.1ccs.byinter.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-033991/79/80W
3.710033858390.00.600.60
127.0.0.1http/1.1ccs.byinter.net:8443GET /server-status HTTP/1.1

2-0-0/0/15.
0.002267322651881000.00.000.36
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

Found on 2024-11-01 11:58

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316658454466584544280a9ec5

Apache Status

Apache Server Status for ccs.byinter.net (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Wednesday, 30-Oct-2024 06:25:34 UTC
Restart Time: Tuesday, 22-Oct-2024 16:06:07 UTC
Parent Server Config. Generation: 9
Parent Server MPM Generation: 8
Server uptime:  7 days 14 hours 19 minutes 26 seconds
Server load: 0.00 0.00 0.00
Total accesses: 101155 - Total Traffic: 247.3 GB - Total Duration: 4988085221
CPU Usage: u31.66 s72.33 cu746.37 cs2080.8 - .447% CPU load
.154 requests/sec - 395.0 kB/second - 2.5 MB/request - 49311.3 ms/request
10 requests currently being processed, 0 workers gracefully restarting, 65 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
098302no1yes1024000
197509no8yes7018000
2100387no1yes2023000
Sum3010 10065000

___________W__________________W_W___W_______WWW__W_________W____
_________W_.....................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-8983020/18/964_
1.57774128053730181300.00.823978.79
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983020/15/1020_
1.548251192580969740.00.754231.31
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983020/15/996_
1.593612450621695580.05.513932.36
147.185.132.219http/1.1localhost:80\x16\x03\x01

0-8983020/16/957_
1.568544527557780910.00.174322.28
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983020/16/937_
1.533611175600104960.020.604569.15
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983020/18/886_
1.596182688621112200.00.954138.34
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983020/19/957_
1.576211193606670090.00.284338.06
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983020/18/922_
1.594961185617883990.00.143910.79
185.147.124.101http/1.1localhost:8443\x16\x03\x03

0-8983020/16/931_
1.5639808611105230.00.723881.96
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983020/14/965_
1.57788122161590857850.00.224265.84
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983020/15/936_
1.596183534587738410.00.194437.08
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983021/18/1004W
1.552960575652380.040.603312.86
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983020/15/982_
1.544962183625123100.00.164669.16
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983020/18/899_
1.623963474639881960.00.394776.15
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983020/16/957_
1.543612446597767320.00.264517.74
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983020/17/903_
1.57626393640540510.00.303604.00
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983020/17/920_
1.57771135593616695150.01.124946.52
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983020/15/928_
1.5682531865574130830.00.213378.60
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983020/16/986_
1.62101114892605113720.00.743855.10
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983020/19/930_
1.62971184620165730.01.294265.11
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983020/17/882_
1.57771137196721436730.00.243937.94
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983020/17/993_
1.5928511381570627300.00.274411.52
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983020/14/885_
1.56829126486647823120.00.473160.76
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983020/12/1004_
1.57771139040603119190.079.003311.86
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-8983020/16/1022_
1.57783128666617801080.05.204160.78
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-8975090/125/871_
61.42391942361815910.0193.981462.04
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-8975090/123/818_
61.4310354612090.0259.201283.25
127.0.0.1http/1.1ccs.byinter.net:8443GET /debug/default/view?panel=config HTTP/1.1

1-8975090/123/837_
61.4320341551410.059.651291.08
127.0.0.1http/1.1ccs.byinter.net:8443GET /.vscode/sftp.json HTTP/1.1

1-8975090/132/866_
61.4400336437400.0141.971576.43
127.0.0.1http/1.1ccs.byinter.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-8975090/113/821_
61.4329757348583270.012.141163.58
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-8975091/141/846W
61.072950320363860.0148.351411.67
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-8975090/113/806_
61.4410320158550.0111.281159.57
127.0.0.1http/1.1ccs.byinter.net:8443GET /v2/_catalog HTTP/1.1

1-8975091/121/850W
61.072920338322370.0173.821219.43
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-8975090/143/840_
61.433963440337274700.039.59926.53
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-8975090/145/917_
61.4330764303444660.0188.941268.44
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-8975090/111/849_
61.4321242638302696320.0201.111568.85
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-8975091/123/784W
61.072940356912620.0152.741354.49
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-8975090/103/834_
61.433963500326635790.045.541257.06
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-8975090/83/772_
61.4330364497700.0119.881643.46
127.0.0.1http/1.1ccs.byinter.net:8443GET /server HTTP/1.1

1-8975090/124/831_
61.43261215317572650.0237.181221.18
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-8975090/121/911_
61.42531364302185420.0135.861226.20
127.0.0.1http/1.1

1-8975090/125/841_
61.42391198302555630.021.631350.65
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-8975090/141/876_
61.4350325332080.0178.711438.20
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-8975090/141/886_
61.4320308956470.0117.071479.26
127.0.0.1http/1.1ccs.byinter.net:8443GET /about HTTP/1.1

1-8975091/122/856W
61.112410322254300.0137.951243.55
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-8975091/136/914W
61.40420336458040.0239.511565.67
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-8975091/118/831W
61.082710292276610.0299.831479.13
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-8975090/142/814_
61.42530285386238680.0253.261560.73
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-8975090/102/825_
61.4330324107510.041.581223.54
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-8975091/155/830W
61.4300346886150.07.711221.41
127.0.0.1http/1.1

Found on 2024-10-30 06:25

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3166584544665845446d65bbb3

Apache Status

Apache Server Status for ccs.byinter.net (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Monday, 28-Oct-2024 05:49:16 UTC
Restart Time: Tuesday, 22-Oct-2024 16:06:07 UTC
Parent Server Config. Generation: 7
Parent Server MPM Generation: 6
Server uptime:  5 days 13 hours 43 minutes 8 seconds
Server load: 0.00 0.00 0.00
Total accesses: 73275 - Total Traffic: 154.8 GB - Total Duration: 2967070748
CPU Usage: u40.34 s107.01 cu433.72 cs1197.93 - .37% CPU load
.152 requests/sec - 337.2 kB/second - 2.2 MB/request - 40492.3 ms/request
8 requests currently being processed, 0 workers gracefully restarting, 67 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
073282no5yes5020000
472904no1yes1024000
572959no2yes2023000
Sum308 8067000

_______W____W_W_W______W_.......................................
....................................________W___________________
__________________WW__
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-6732820/52/777_
102.4415331093542893790.0381.863302.13
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-6732820/49/829_
102.61734168489557430.0420.533479.66
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-6732820/52/831_
102.44109242219516708100.0376.723112.07
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-6732820/57/804_
102.5538622465034390.0391.093678.75
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-6732820/63/781_
102.6120502291250.0452.693768.61
127.0.0.1http/1.1ccs.byinter.net:8443GET /server HTTP/1.1

0-6732820/62/769_
102.6100495929210.0328.693815.02
127.0.0.1http/1.1ccs.byinter.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-6732820/67/793_
102.6100510920170.0295.603763.34
127.0.0.1http/1.1ccs.byinter.net:8443GET /v2/_catalog HTTP/1.1

0-6732821/61/767W
102.221320507484760.0420.453306.29
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-6732820/58/785_
102.441900475074280.0356.923279.91
64.62.197.122http/1.1localhost:80GET / HTTP/1.1

0-6732820/56/770_
102.47680489746740.0569.473451.40
128.204.192.7http/1.1localhost:80GET /?act=op&pid=1 HTTP/1.1

0-6732820/53/802_
102.592336332492456020.0467.323815.39
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-6732820/63/839_
102.6110472482600.0368.332612.82
127.0.0.1http/1.1ccs.byinter.net:8443GET /about HTTP/1.1

0-6732821/54/812W
102.4400521473020.0604.194069.20
127.0.0.1http/1.1ccs.byinter.net:8443GET /server-status HTTP/1.1

0-6732820/63/679_
102.36280521885070.0490.353812.96
64.62.197.126http/1.1

0-6732821/55/779W
102.36300499730370.0499.734055.06
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-6732820/51/709_
102.611384520537418600.0491.672845.72
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-6732821/66/737W
102.26420507545260.0321.144050.90
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-6732820/45/819_
102.256830893455034960.0512.283093.57
128.204.192.7http/1.1

0-6732820/55/819_
102.5534242387499067430.0256.243043.85
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-6732820/48/743_
102.44132272001518510210.0397.393589.01
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-6732820/52/709_
102.56280521306460.0223.363276.91
64.62.197.126http/1.1localhost:80GET /favicon.ico HTTP/1.1

0-6732820/65/821_
102.6120472620340.0492.923362.92
127.0.0.1http/1.1ccs.byinter.net:8443GET /.vscode/sftp.json HTTP/1.1

0-6732820/53/703_
102.6110500588340.0538.022431.23
127.0.0.1http/1.1ccs.byinter.net:8443GET /debug/default/view?panel=config HTTP/1.1

0-6732821/64/807W
102.04210498440930.0402.642617.54
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-6732820/55/826_
102.20190625507616280.0379.453290.87
64.62.197.122http/1.1

1-6-0/0/727.
0.0013958242173283592860.00.001247.65
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/675.
0.0013958288293262503600.00.00917.34
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/693.
0.0013958108752257076820.00.001198.18
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/712.
0.0013958571060272787940.00.001317.16
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/689.
0.0013958242080274880910.00.001093.28
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/685.
0.0013958242033243656070.00.001214.72
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/669.
0.0013958297152241134430.00.00967.28
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/712.
0.00139581797767266364650.00.001013.08
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/676.
0.0013958107288251290540.00.00886.40
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/754.
0.0013958242238236617290.00.001070.44
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/718.
0.0013958242161246002020.00.001359.52
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/638.
0.001395893696284570770.00.001044.01
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/708.
0.0013958343830261711930.00.001113.92
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/672.
0.0013958242646254199360.00.001416.79
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/689.
0.0013958486831253587030.00.00951.49
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/770.
0.0013958125573235072510.00.001077.73
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/699.
0.0013958813512241575520.00.001254.32
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/715.
0.0013958242191261299340.00.001101.64
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/725.
0.0013958242194256427140.00.001327.98
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/715.
0.0013958478749243652420.00.00986.86
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/760.
0.0013958588756259403790.00.001204.84
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/696.
0.0013958158452230943330.00.001130.63
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/654.
0.001395839097321286590.00.001239.35
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/707.
0.00139581074648263027940.00.001048.35
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-6-0/0/657.
0.001395873446279133930.00.001076.23
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

Found on 2024-10-28 05:49

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31665845446658454438e4c15c

Apache Status

Apache Server Status for ccs.byinter.net (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Saturday, 26-Oct-2024 05:25:03 UTC
Restart Time: Tuesday, 22-Oct-2024 16:06:07 UTC
Parent Server Config. Generation: 5
Parent Server MPM Generation: 4
Server uptime:  3 days 13 hours 18 minutes 55 seconds
Server load: 0.00 0.00 0.00
Total accesses: 55622 - Total Traffic: 134.7 GB - Total Duration: 2416818948
CPU Usage: u9.49 s18.06 cu390.75 cs1100.83 - .495% CPU load
.181 requests/sec - 459.7 kB/second - 2.5 MB/request - 43450.8 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
153190no0yes1024000
453336no7yes0025000
553682no0yes0025000
Sum307 1074000

........................._________________W_______..............
....................................____________________________
______________________
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-4-0/0/690.
0.00108204939377482859260.00.002919.61
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/742.
0.0010820250722424196840.00.003054.64
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/746.
0.00108204944115441140590.00.002729.87
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/715.
0.001082060669410213170.00.003286.02
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/678.
0.0010820126091442573420.00.003313.59
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/673.
0.001082060709438296700.00.003482.62
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/686.
0.0010820301211455715400.00.003466.55
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/670.
0.00108201182705446616340.00.002884.70
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/695.
0.00108201424046425444910.00.002921.57
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/677.
0.001082060635431067060.00.002880.35
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/711.
0.001082060694429750480.00.003339.94
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/735.
0.001082060691412360960.00.002241.94
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/725.
0.00108205353111465858070.00.003464.75
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/579.
0.001082061503465265350.00.003318.35
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/692.
0.0010820242294435488350.00.003538.66
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/619.
0.001082061813472581380.00.002353.95
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/638.
0.001082060707458804650.00.003727.28
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/735.
0.001082069620396343320.00.002580.40
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/726.
0.00108202782870436291620.00.002787.46
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/657.
0.001082077737458700640.00.003175.35
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/624.
0.0010820222662466125680.00.003049.41
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/719.
0.001082060667419366420.00.002842.88
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/610.
0.001082060649440484940.00.001893.06
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/707.
0.00108204970625448859110.00.002206.59
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/737.
0.00108204346322440533060.00.002910.05
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-4531900/62/595_
7.9520193671390.00.99978.26
127.0.0.1http/1.1ccs.byinter.net:8443GET /.vscode/sftp.json HTTP/1.1

1-4531900/45/563_
7.9520207810700.079.55820.46
127.0.0.1http/1.1ccs.byinter.net:8443GET /about HTTP/1.1

1-4531900/46/603_
7.938567248194860130.00.461087.97
127.0.0.1http/1.1

1-4531900/45/583_
7.92129830216598780.0142.54964.72
127.0.0.1http/1.1

1-4531900/50/562_
7.9510210099350.01.75969.97
127.0.0.1http/1.1ccs.byinter.net:8443GET /debug/default/view?panel=config HTTP/1.1

1-4531900/54/558_
7.9500190973050.01.671042.95
127.0.0.1http/1.1ccs.byinter.net:8443GET /v2/_catalog HTTP/1.1

1-4531900/52/563_
7.9530174795530.01.04613.46
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-4531900/56/614_
7.9500209182970.028.12862.11
127.0.0.1http/1.1ccs.byinter.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-4531900/51/575_
7.931271171189326910.00.83735.31
127.0.0.1http/1.1

1-4531900/56/613_
7.9520180880570.01.87822.03
127.0.0.1http/1.1ccs.byinter.net:8443GET /server HTTP/1.1

1-4531900/53/576_
7.931211401192362680.00.491148.55
127.0.0.1http/1.1

1-4531900/19/523_
7.931182872226702120.0125.79719.03
127.0.0.1http/1.1

1-4531900/49/593_
7.90711523205299120.00.91757.38
127.0.0.1http/1.1

1-4531900/58/536_
7.92142247173205503960.01.761085.08
127.0.0.1http/1.1

1-4531900/47/571_
7.91192247114193687360.00.82695.70
127.0.0.1http/1.1

1-4531900/60/649_
7.92133247111182516530.038.18826.39
127.0.0.1http/1.1

1-4531900/50/605_
7.93835990169777410.00.74880.05
127.0.0.1http/1.1

1-4531901/56/604W
7.9100206982800.00.41746.53
127.0.0.1http/1.1ccs.byinter.net:8443GET /server-status HTTP/1.1

1-4531900/49/626_
7.93481662194952460.01.33947.79
127.0.0.1http/1.1

1-4531900/54/587_
7.91198244174187268600.00.76816.63
127.0.0.1http/1.1

1-4531900/58/635_
7.93112324640178243750.014.00860.03
127.0.0.1http/1.1

1-4531900/52/570_
7.9335133434178293180.00.66855.31
127.0.0.1http/1.1

1-4531900/53/539_
7.90573103245277500.00.94971.25
127.0.0.1http/1.1

1-4531900/41/608_
7.93230199070710.01.97932.28
127.0.0.1http/1.1

1-4531900/23/564_
7.93117321202217400460.02.26709.68
127.0.0.1http/1.1

2-4-0/0/623.
0.001159760645174995730.00.00954.46
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

2-4-0/0/646.
0.001159764540187892750.00.00672.35
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

2-4-0/0/642.
0.0011597

Found on 2024-10-26 05:24

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3166584544665845444630f132

Apache Status

Apache Server Status for ccs.byinter.net (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Thursday, 24-Oct-2024 03:18:01 UTC
Restart Time: Tuesday, 22-Oct-2024 16:06:07 UTC
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  1 day 11 hours 11 minutes 53 seconds
Server load: 0.00 0.00 0.01
Total accesses: 17884 - Total Traffic: 23.8 GB - Total Duration: 475661556
CPU Usage: u23.63 s63.42 cu48.19 cs122.96 - .204% CPU load
.141 requests/sec - 196.5 kB/second - 1.4 MB/request - 26597 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
017935no2yes0025000
118731no4yes0025000
217868no0yes1024000
Sum306 1074000

________________________________________________________________
____W______.....................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2179350/1/107_
1.28205611798342768860.016.16253.62
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/2/111_
5.657291136447685700.0129.44298.72
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/2/109_
5.649153255533778860.032.32144.81
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/2/115_
4.56200018397340216420.036.91167.21
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/2/95_
5.649121077752979550.048.49317.97
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/1/97_
1.56182716400133285000.020.72244.45
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/3/99_
5.67578112840322840.00.08180.91
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/2/116_
4.8618271264139722930.012.15272.91
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/2/86_
5.61140977514447452550.0129.47325.06
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/1/87_
1.8018273179644900160.00.00388.81
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/2/119_
5.657821374837926630.00.45104.64
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/2/95_
4.8618271057342443980.016.25184.88
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/2/118_
5.66631116829899070.012.13230.92
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/2/96_
5.6663438531937520.00.01226.92
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/2/115_
5.66659117133281880.00.01205.76
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/2/134_
5.666095438128527920.00.0368.45
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/2/116_
5.65738216844698630.00.01250.80
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/2/104_
5.6661112995328449190.00.01149.45
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/2/100_
5.6661212895645415830.00.13110.16
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/1/118_
5.64854133200149647750.00.94243.39
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/2/109_
5.6749410841948335100.00.06290.42
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/2/95_
5.6749410842737868440.00.02124.81
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/2/97_
5.66630116533077510.00.01181.86
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/1/100_
4.38205630062136294040.00.01151.23
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-2179350/2/93_
5.6760073339414130.080.77303.13
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/2/284_
0.62911132644462520.00.01466.83
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/2/288_
0.698596635040124820.00.02339.00
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/2/293_
0.698548582643788110.020.22499.48
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/3/295_
0.713010219548138740.00.03293.20
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/3/275_
0.7049410842644354590.012.18370.27
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/2/272_
0.629122966347047930.00.01521.24
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/3/276_
0.70631130343952880.00.05142.65
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/4/318_
0.70627290242351890.00.08366.97
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/3/276_
0.7049410739245976020.00.04428.36
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/5/311_
0.706097912038414610.04.10397.72
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/3/273_
0.697291134543454010.020.23536.21
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/2/293_
0.629122597145082680.00.04389.08
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/2/311_
0.629122513046721530.00.1889.28
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/3/263_
0.70630134547007410.00.08434.70
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/3/285_
0.70627454041431220.00.03407.86
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/2/322_
0.629121183042201380.00.06313.13
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/3/302_
0.698545887541968860.00.06384.05
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/1/316_
0.619123429437228170.00.00248.86
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/2/332_
0.720041264690.00.02425.37
127.0.0.1http/1.1ccs.byinter.net:8443GET /v2/_catalog HTTP/1.1

1-2187310/2/300_
0.7049410835539665730.00.02274.68
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/1/320_
0.629123373245119400.00.01478.16
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/2/282_
0.698575547739374330.00.04381.31
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/2/263_
0.69659117552729840.00.36576.81
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/2/315_
0.70631276850562450.00.03408.22
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-2187310/1/305_
0.629123069337691710.00.02314.68
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

2-2178680/61/251_
72.8612734381894620.0254.07262.42
127.0.0.1http/1.1

Found on 2024-10-24 03:17

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31665845446658454467ff32a3

Apache Status

Apache Server Status for ccs.byinter.net (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Tuesday, 22-Oct-2024 20:49:22 UTC
Restart Time: Tuesday, 22-Oct-2024 16:06:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 hours 43 minutes 14 seconds
Server load: 0.12 0.03 0.01
Total accesses: 2529 - Total Traffic: 73.4 MB - Total Duration: 95043741
CPU Usage: u3.7 s4.36 cu0 cs0 - .0474% CPU load
.149 requests/sec - 4530 B/second - 29.7 kB/request - 37581.6 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
0528no0yes0025000
1529no0yes0025000
2728no0yes1024000
Sum300 1074000

_____________________________________________________W__________
___________.....................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-05280/16/16_
1.80725018135720.00.410.41
78.153.140.218http/1.1localhost:80GET /www/.env HTTP/1.1

0-05280/20/20_
1.79727259215624230.00.330.33
78.153.140.218http/1.1

0-05280/26/26_
1.7972821095561800.00.100.10
78.153.140.218http/1.1

0-05280/20/20_
1.8072230202915759410.01.631.63
78.153.140.218http/1.1

0-05280/18/18_
1.757297639517261230.04.814.81
78.153.140.218http/1.1

0-05280/25/25_
1.8072702868040.00.070.07
78.153.140.218http/1.1localhost:80GET /backend/.env HTTP/1.1

0-05280/16/16_
1.81723013538540.02.232.23
78.153.140.218http/1.1localhost:80GET /test/.env HTTP/1.1

0-05280/23/23_
1.8172207866740.00.120.12
78.153.140.218http/1.1localhost:80GET /app_dev.php/_profiler/phpinfo HTTP/1.1

0-05280/16/16_
1.80723296415697140.01.321.32
78.153.140.218http/1.1

0-05280/21/21_
1.79727421613888170.00.070.07
78.153.140.218http/1.1

0-05280/20/20_
1.80729010924820.00.070.07
78.153.140.218http/1.1localhost:80GET /laravel/.env HTTP/1.1

0-05280/22/22_
1.80728014987790.00.280.28
78.153.140.218http/1.1localhost:80GET /admin/.env HTTP/1.1

0-05280/21/21_
1.8172102790380.00.080.08
127.0.0.1http/1.1ccs.byinter.net:8443GET /dev/.env HTTP/1.1

0-05280/16/16_
1.757243011088582260.00.060.06
78.153.140.218http/1.1

0-05280/25/25_
1.7073016213656070.00.150.15
78.153.140.218http/1.1

0-05280/27/27_
1.8073005955370.00.070.07
78.153.140.218http/1.1localhost:80GET /.env HTTP/1.1

0-05280/24/24_
1.80726010205270.00.100.10
78.153.140.218http/1.1localhost:80GET /app/.env HTTP/1.1

0-05280/28/28_
1.8072503461110.00.060.06
127.0.0.1http/1.1ccs.byinter.net:8443GET /admin/.env HTTP/1.1

0-05280/25/25_
1.8072808375880.00.280.28
78.153.140.218http/1.1localhost:80GET /web/.env HTTP/1.1

0-05280/26/26_
1.8072307191080.00.070.07
78.153.140.218http/1.1localhost:80GET /staging/.env HTTP/1.1

0-05280/27/27_
1.7972665136211047050.00.600.60
78.153.140.218http/1.1

0-05280/17/17_
1.7972430119913892550.06.996.99
127.0.0.1http/1.1

0-05280/23/23_
1.8072213155463220.00.070.07
78.153.140.218http/1.1

0-05280/28/28_
1.8072007164590.00.440.44
127.0.0.1http/1.1

0-05280/25/25_
1.78546327594584520.00.110.11
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-05290/7/7_
0.507273115903150240.00.050.05
78.153.140.218http/1.1

1-05290/6/6_
0.54727060230.00.010.01
78.153.140.218http/1.1localhost:80GET /backend/.env HTTP/1.1

1-05290/8/8_
0.5485960496320.00.020.02
5.135.238.144http/1.1localhost:80GET /favicon.ico HTTP/1.1

1-05290/4/4_
0.5461738142908922770.00.210.21
209.38.136.82http/1.1localhost:8443\x16\x03\x01\x01\xa9\x01

1-05290/6/6_
0.547250651770.00.020.02
78.153.140.218http/1.1localhost:80GET /dev/.env HTTP/1.1

1-05290/5/5_
0.487261184251040.00.030.03
78.153.140.218http/1.1

1-05290/6/6_
0.5472501834840.00.620.62
78.153.140.218http/1.1localhost:80GET /www/.env HTTP/1.1

1-05290/5/5_
0.4761733968504787020.01.911.91
127.0.0.1http/1.1

1-05290/9/9_
0.517151273444040.00.060.06
127.0.0.1http/1.1

1-05290/7/7_
0.547160326890.00.010.01
127.0.0.1http/1.1ccs.byinter.net:8443GET /app_dev.php/_profiler/phpinfo HTTP/1.1

1-05290/6/6_
0.525448129612960.00.010.01
80.75.212.9http/1.1

1-05290/8/8_
0.496173888521768760.00.030.03
240e:47d:1af8:eb40:6d87:36f:311c:86c6http/1.1

1-05290/6/6_
0.5472301096980.00.020.02
127.0.0.1http/1.1ccs.byinter.net:8443GET /app/.env HTTP/1.1

1-05290/8/8_
0.4828761411735560.00.020.02
127.0.0.1http/1.1

1-05290/6/6_
0.5461731830821600.00.030.03
209.38.136.82http/1.1localhost:8443\x16\x03\x03\x01\xa7\x01

1-05290/8/8_
0.5372515842828330.00.050.05
78.153.140.218http/1.1

1-05290/8/8_
0.5461737242107820.00.060.06
209.38.136.82http/1.1localhost:8443\x16\x03\x01\x01\x9f\x01

1-05290/2/2_
0.30722167316730.00.000.00
78.153.140.218http/1.1

1-05290/4/4_
0.33722138027540.00.010.01
127.0.0.1http/1.1

1-05290/7/7_
0.441133017761256620.00.020.02
240e:47d:1af8:eb40:6d87:36f:311c:86c6http/1.1

1-05290/8/8_
0.5472601146820.00.020.02
78.153.140.218http/1.1localhost:80GET /api/.env HTTP/1.1

1-05290/7/7_
0.52617372353000.00.020.02
240e:47d:1af8:eb40:6d87:36f:311c:86c6http/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

1-05290/7/7_
0.547230307820.00.020.02
78.153.140.218http/1.1localhost:80GET /test/.env HTTP/1.1

1-05290/6/6_
0.51859619324015040.00.040.04
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-05290/6/6_
0.447241021851021850.00.010.01
78.153.140.218http/1.1

2-07280/57/57_
4.67716029659030.00.860.86
127.0.0.1http/1.1

2-07280/93/93_
4.67717019628390.00.680.68
127.0.0.1http/1.1ccs.byinter.net:8443GET /test/.env HTTP/1.1

2-07280/68/68_
4.66718029532820.08.258.25
127.0.0.1http/1.1

2-07281/79/79W
4.660026747420.02.762.76
127.0.0.1http/1.1ccs.byinter.net:8443GET /server-status HTTP/1.1

2-07280/64/64_
4.667

Found on 2024-10-22 20:49

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316658454466584544c9f48aec

Apache Status

Apache Server Status for ccs.byinter.net (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Sunday, 20-Oct-2024 18:34:32 UTC
Restart Time: Tuesday, 15-Oct-2024 16:05:34 UTC
Parent Server Config. Generation: 5
Parent Server MPM Generation: 4
Server uptime:  5 days 2 hours 28 minutes 58 seconds
Server load: 0.00 0.00 0.00
Total accesses: 28970 - Total Traffic: 5.3 GB - Total Duration: 950242368
CPU Usage: u24.79 s44.17 cu27.29 cs43.2 - .0316% CPU load
.0657 requests/sec - 12.5 kB/second - 190.4 kB/request - 32800.9 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
138607no0yes0025000
243292no0yes1024000
338151no0yes0025000
Sum300 1074000

.........................__________________________W____________
____________________________________............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-4-0/0/449.
0.002175558276878180.00.0059.94
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/462.
0.00217557454783351950.00.0026.96
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/445.
0.0021755179278787700.00.0025.46
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/455.
0.0021755277470810880.00.0022.47
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/426.
0.0021755360981569150.00.0084.94
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/458.
0.00217552633110500280.00.0027.13
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/428.
0.00217558383584155680.00.003.15
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/449.
0.00217552918102496830.00.0026.83
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/458.
0.00217556523787553890.00.0024.79
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/428.
0.00217558275882281150.00.0023.84
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/459.
0.0021755536576079580.00.0041.26
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/434.
0.0021755070636640.00.0010.69
138.199.19.178http/1.1localhost:80GET /include/bussubmit.php HTTP/1.1

0-4-0/0/422.
0.0021755460270650060.00.003.45
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/418.
0.0021755094322220.00.00113.28
138.199.19.178http/1.1localhost:80GET /media.php HTTP/1.1

0-4-0/0/444.
0.00217557673880669610.00.00102.81
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/430.
0.0021755188280106300.00.0049.22
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/443.
0.00217553636879731220.00.00154.20
127.0.0.1http/1.1

0-4-0/0/449.
0.0021755743287481100.00.0014.93
127.0.0.1http/1.1

0-4-0/0/428.
0.00217556978793194200.00.00153.12
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/436.
0.002175548650100447990.00.0074.38
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/450.
0.0021755098208000.00.0094.63
174.135.196.34http/1.1localhost:80GET / HTTP/1.0

0-4-0/0/424.
0.0021755962183659880.00.0035.68
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-4-0/0/423.
0.0021755274395176800.00.0056.35
127.0.0.1http/1.1

0-4-0/0/418.
0.00217556198787463270.00.00114.48
127.0.0.1http/1.1

0-4-0/0/445.
0.002175576499649510.00.0033.92
127.0.0.1http/1.1

1-4386070/102/138_
12.15145972361100477200.010.1115.98
127.0.0.1http/1.1

1-4386070/135/167_
12.209044080978600.021.7930.76
127.0.0.1http/1.1ccs.byinter.net:8443GET /.git/config HTTP/1.1

1-4386070/132/175_
12.1214587235779036890.019.3220.18
2409:895a:3283:9c26:1df:7f7:9f3b:ee29http/1.1

1-4386070/142/183_
12.1914593419072935230.026.1983.05
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-4386070/147/180_
12.1614091474877657620.045.0977.78
127.0.0.1http/1.1

1-4386070/108/148_
12.1614095221990300810.022.6823.88
127.0.0.1http/1.1

1-4386070/135/166_
12.1914591195985344700.023.8452.44
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-4386070/121/158_
12.1712834216978730970.036.89101.34
127.0.0.1http/1.1

1-4386070/136/163_
12.184028460188746880.06.286.73
127.0.0.1http/1.1

1-4386070/105/137_
12.19145971567105194560.030.9150.02
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-4386070/130/170_
12.1814598465685119010.02.1432.25
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-4386070/129/165_
12.1614092470685465700.010.8495.88
127.0.0.1http/1.1

1-4386070/129/162_
12.18904456899058830.010.1411.42
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-4386070/153/184_
12.15128961557887589770.018.7819.01
2409:895a:3283:9c26:1df:7f7:9f3b:ee29http/1.1

1-4386070/139/174_
12.1914594351972801460.012.68123.71
2409:895a:3283:9c26:1df:7f7:9f3b:ee29http/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

1-4386070/126/154_
12.161409829882377170.014.7020.40
127.0.0.1http/1.1

1-4386070/122/157_
12.1814598432079315800.09.3118.43
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-4386070/122/154_
12.0714592225984017610.017.4817.86
127.0.0.1http/1.1

1-4386070/143/179_
12.1712896190590646510.037.9347.49
2409:895a:3283:9c26:1df:7f7:9f3b:ee29http/1.1

1-4386070/117/160_
12.204029077888370.026.0227.55
127.0.0.1http/1.1ccs.byinter.net:8443GET /agc/vicidial.php HTTP/1.1

1-4386070/126/170_
12.20128985902985186960.039.8942.72
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-4386070/108/142_
12.00145861147992920940.013.1315.31
2409:895a:3283:9c26:1df:7f7:9f3b:ee29http/1.1

1-4386070/126/160_
12.1914586690104066110.08.3228.03
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-4386070/110/143_
12.1712896235899612470.072.8274.91
127.0.0.1http/1.1

1-4386070/133/169_
12.1614094221387919690.012.0512.67
127.0.0.1http/1.1

2-4432920/61/169_
4.680039893550.00.4710.75
127.0.0.1http/1.1ccs.byinter.net:8443GET /v2/_catalog HTTP/1.1

2-4432922/49/163W
4.670043016080.04.1295.01
127.0.0.1http/1.1ccs.byinter.net:8443GET /server-status HTTP/1.1

2-4432920/58/159_
4.6798604903869

Found on 2024-10-20 18:34

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316658454466584544d82a3cc6

Apache Status

Apache Server Status for ccs.byinter.net (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Thursday, 17-Oct-2024 10:22:21 UTC
Restart Time: Tuesday, 15-Oct-2024 16:05:34 UTC
Parent Server Config. Generation: 2
Parent Server MPM Generation: 1
Server uptime:  1 day 18 hours 16 minutes 47 seconds
Server load: 0.00 0.00 0.00
Total accesses: 15062 - Total Traffic: 1.9 GB - Total Duration: 327264290
CPU Usage: u5.26 s8.4 cu13.36 cs17.15 - .029% CPU load
.099 requests/sec - 13.4 kB/second - 135.3 kB/request - 21727.8 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
213338no0yes1024000
313219no13yes0025000
413276no1yes0025000
Sum3014 1074000

..................................................______________
________W____________________________________________________...
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1-0/0/288.
0.0011519917565789790.00.0010.74
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/286.
0.001151934355211402930.00.007.55
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/282.
0.00115193289127916630.00.0010.23
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/282.
0.00115191354925051840.00.002.64
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/281.
0.00115191250716760990.00.000.19
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/292.
0.00115196063343909610.00.002.98
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/283.
0.00115193006996154970.00.000.19
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/277.
0.00115191213524976340.00.002.24
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/288.
0.00115196073612690120.00.000.31
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/283.
0.0011519606297801810.00.004.93
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/286.
0.0011519606904869530.00.008.52
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/278.
0.00115191227517660110.00.001.47
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/275.
0.00115193038967280800.00.000.22
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/284.
0.0011519181217875610.00.0020.49
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/282.
0.0011519788825817040.00.0030.50
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/281.
0.0011519852945563600.00.0037.11
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/287.
0.00115193188889575710.00.002.24
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/281.
0.001151935791810711670.00.000.73
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/284.
0.00115192623888524850.00.001.27
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/290.
0.0011519642943447620.00.0011.47
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/289.
0.0011519606775108780.00.007.04
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/287.
0.00115192421624613210.00.002.66
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/287.
0.00115191374468977140.00.001.30
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/280.
0.00115191330239144810.00.0040.30
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

0-1-0/0/285.
0.00115195546576802080.00.000.26
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/34.
0.001151924249012491710.00.005.85
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/28.
0.001151918278716079610.00.008.92
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/41.
0.00115191898912441470.00.000.85
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/39.
0.001151911051110224550.00.0056.85
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/31.
0.001151914326317427290.00.0032.68
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/37.
0.001151910308013988270.00.000.61
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/30.
0.00115192937417859020.00.0026.87
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/35.
0.00115196067219822260.00.0064.43
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/25.
0.00115196154829010760.00.000.45
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/30.
0.00115197600314614690.00.0019.10
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/36.
0.00115193252713674970.00.0030.10
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/34.
0.0011519147224297610.00.0085.03
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/30.
0.001151924226721633630.00.001.27
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/27.
0.00115196071816520230.00.000.22
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/32.
0.00115196065415284580.00.00111.02
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/24.
0.001151952279223306330.00.005.68
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/29.
0.001151924262819381810.00.009.09
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/29.
0.00115196176016173790.00.000.35
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/32.
0.001151942973321080470.00.009.55
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/39.
0.00115198006716879270.00.001.51
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/40.
0.00115192122719824990.00.002.78
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/32.
0.0011519205411544190.00.002.17
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/32.
0.001151931634723298840.00.0019.69
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/31.
0.001151918290616463480.00.002.01
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

1-1-0/0/34.
0.00115196068016801890.00.000.36
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

2-1133380/14/95_
0.917356065223176100.00.0410.23
127.0.0.1http/1.1ccs.byinter.net:8443GET / HTTP/1.1

2-1133380/14/103_
0.910025552820.00.0590.85

Found on 2024-10-18 21:46

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316658454466584544c3631c4e

Apache Status

Apache Server Status for ccs.byinter.net (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Wednesday, 16-Oct-2024 14:12:08 UTC
Restart Time: Tuesday, 15-Oct-2024 16:05:34 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  22 hours 6 minutes 34 seconds
Server load: 0.00 0.00 0.00
Total accesses: 2780 - Total Traffic: 1.0 GB - Total Duration: 122222679
CPU Usage: u4.23 s4.73 cu5.19 cs6.33 - .0257% CPU load
.0349 requests/sec - 13.6 kB/second - 389.2 kB/request - 43965 ms/request
8 requests currently being processed, 0 workers gracefully restarting, 67 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
17017no8yes1024000
27173no6yes6019000
46817yes5no000000
66927no2yes1024000
Sum4121 8067000

.........................____________________W________W______W__
_____W_WW_W..............................G......................
......................_____________________W___
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0-0/0/8.
0.00111247022059620.00.0010.28
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

0-0-0/0/12.
0.0011801254001820.00.007.05
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

0-0-0/0/3.
0.001121806240780.00.000.01
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

0-0-0/0/7.
0.0011614711565270.00.000.02
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1

0-0-0/0/4.
0.0011663572968030.00.000.01
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1

0-0-0/0/7.
0.0011364047738890500.00.000.38
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

0-0-0/0/7.
0.001121743231750.00.000.01
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

0-0-0/0/9.
0.0011217981523570.00.001.13
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

0-0-0/0/6.
0.0011220782848610.00.000.04
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

0-0-0/0/4.
0.001134283369500.00.000.13
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

0-0-0/0/8.
0.0011285931588470.00.007.33
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1

0-0-0/0/4.
0.0011217932652510.00.000.04
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

0-0-0/0/3.
0.00111557341605980.00.000.02
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

0-0-0/0/6.
0.0011990263906760.00.0019.78
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1

0-0-0/0/4.
0.0011128194830.00.000.02
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1

0-0-0/0/6.
0.0011252232630010.00.0034.44
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1

0-0-0/0/5.
0.0011215713005880.00.001.57
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

0-0-0/0/7.
0.00113010883991330.00.000.04
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

0-0-0/0/5.
0.0011915693673690.00.001.03
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

0-0-0/0/9.
0.0011220181301090.00.0011.14
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

0-0-0/0/6.
0.001121849407700.00.000.03
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

0-0-0/0/7.
0.001121689975560.00.000.03
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

0-0-0/0/7.
0.0011218763094370.00.001.04
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

0-0-0/0/5.
0.0011220792657450.00.0028.14
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

0-0-0/0/3.
0.0011188233890.00.000.01
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1

1-070170/5/21_
0.822606477663690.00.075.79
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1

1-070170/3/19_
0.97159908710276160.00.468.87
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1

1-070170/7/24_
1.08139310784893310.00.060.15
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

1-070170/9/24_
1.062597995423560.00.141.95
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

1-070170/4/17_
1.062737832711086730.00.0414.18
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

1-070170/7/24_
1.062161010418765640.00.060.49
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

1-070170/8/22_
0.91276217311048720.00.1226.59
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1

1-070170/7/25_
1.081581173613663670.00.1263.64
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

1-070170/4/15_
1.08121145486719559640.00.320.38
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

1-070170/9/20_
1.062311162998781020.00.081.31
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

1-070170/8/21_
1.081356632210521530.00.1230.03
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

1-070170/7/21_
1.106787112217645480.00.430.50
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

1-070170/6/20_
1.0718017186013644440.00.111.22
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

1-070170/5/14_
1.013253799499020.00.060.12
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1

1-070170/8/18_
1.0416224275710608270.00.22110.92
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1

1-070170/6/16_
0.87601992813349030.00.304.38
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1

1-070170/6/20_
1.106127411213057060.00.088.89
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

1-070170/7/20_
1.10170810188950.00.060.23
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

1-070170/8/24_
1.1082118719465880.00.210.29
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

1-070170/10/27_
1.100012034150.00.261.35
93.123.17.151http/1.1ccs.byinter.net:80GET /server HTTP/1.1

1-070171/7/22W
1.04133013929010.00.120.20
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1ipv6.ccs.byinter.net:1000GET / HTTP/1.1

1-070170/7/19_
0.7927684797267880.00.742.08
2409:8d5a:128:4392:c08a:2108:e1cd:a2ebhttp/1.1

1-070170/8/22_
1.103824510514827760.00.282.89
2409:8d5a:128:4392:c08a:2108:e1cd:a2eb</

Found on 2024-10-16 14:12

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdn.sigacondominio.com.br
Port: 443
URL: https://cdn.sigacondominio.com.br

First seen 2024-01-20 22:34
Last seen 2024-11-22 17:27
Open for 306 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0fb246cfc71fb171f1c657f02dc657f02d
```
Found 3 files trough .DS_Store spidering:

/img
/img/icon
/index.html
```
  Found on 2024-11-22 17:27
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf176421954ce76382870143828701438287014
```
Found 2 files trough .DS_Store spidering:

/img
/index.html
```
  Found on 2024-07-10 15:15
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdn.longridge.net.nz
Port: 443
URL: https://cdn.longridge.net.nz

First seen 2024-03-05 19:18
Last seen 2024-11-22 17:24
Open for 261 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c026392ab026392abdb042548b35626567883aeb248363655
```
Found 7 files trough .DS_Store spidering:

/_resources
/_resources/themes
/_resources/themes/longridge
/_resources/themes/longridge/includes
/_resources/themes/simple
/_resources/vendor
/assets
```
  Found on 2024-11-22 17:24
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf176429a9bf173bf4d4045bf4d4045bf4d4045
```
Found 2 files trough .DS_Store spidering:

/_resources
/assets
```
  Found on 2024-10-16 12:59
- Severity: low
  Fingerprint: 5f32cf5d6962f09c2eda814e2eda814e963aeb07b963b435146aa8457b04f0f6
```
Found 6 files trough .DS_Store spidering:

/_resources
/_resources/themes
/_resources/themes/longridge
/_resources/themes/simple
/_resources/vendor
/assets
```
  Found on 2024-04-10 19:55
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: wbswj-cdn2.ggspe.top
Port: 80
URL: http://wbswj-cdn2.ggspe.top

First seen 2023-08-11 17:53
Last seen 2024-11-22 17:13
Open for 468 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-11-22 17:13
  
  265 Bytes
Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: 10010.7city.cloudns.be
Port: 443
URL: https://10010.7city.cloudns.be

First seen 2024-10-12 04:09
Last seen 2024-11-22 16:36
Open for 41 days

Fingerprint: b18befd9dd6536aa30550de50113a3e282eea2e44517a6691b40c8d3dafa52b3

{
    "clientTcpRtt": 7,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "NL",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsExportedAuthenticator": {
        "clientFinished": "9d8b566774cd0f3554f9b2f07dfdaebcc9e8b0ae6ee5a2935d901cf35dd6041c25b7cb28146162aec1fa0fa25b5f7b49",
        "clientHandshake": "9092a8383e2bc9fc1852493394cdeaf406a5c1519a20bb0f82c917eaf5ae8470390cfa227bb8152544661d2858f84df0",
        "serverHandshake": "bdeb96a0d7dfefe93fa48eaf54f3cdd7736c0111c0a22769960ac81ef9796f0f5a2efce933ba418b18a3cf1be9e30341",
        "serverFinished": "036922284a8e302eb4642a8dea4ecfa51a93b4d79676f3794b474b4c7f5f1b2396f3f83d9ad203a52697a3154fc6a51b"
    },
    "tlsVersion": "TLSv1.3",
    "colo": "AMS",
    "timezone": "Europe/Amsterdam",
    "tlsClientRandom": "gFxo9fakuASgBTzjPu3pu1hgkpikOvBA5dEim6c/RDI=",
    "region": "North Holland",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "52.35200",
    "postalCode": "1098",
    "city": "Amsterdam",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "tlsClientHelloLength": "334",
    "pagesHostName": "10010-le3.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-11-22 16:36

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9c3bc84dd

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "NL",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsExportedAuthenticator": {
        "clientFinished": "94258c0d5cd7ece4749c193af521bd3ebd03889acbff5b9066eb4e68f25264e83addaa7c116eaea61ad0474f913f684b",
        "clientHandshake": "3d6324d02a860f71fc03494ccef21424fdb93ab2a719a8973635b5f42da659eaaa3ea214ee1e2926a5888fc99febb856",
        "serverHandshake": "175b206b411e926c37b26e37e4cdd5c9e69cefbb45a5c03a903d351040a4a6a42d3cf588fe1f24339d2e3e5eb171c21d",
        "serverFinished": "c29a8b3648364def6c29c302671e393b2d30d30ac93a2aa06cae99cdb5431e0149b928317ee6a5dcbc10e32444dedb25"
    },
    "tlsVersion": "TLSv1.3",
    "colo": "AMS",
    "timezone": "Europe/Amsterdam",
    "tlsClientRandom": "IiR+XFvTLMMBeIHmT7SVE69qHGBpTMM1Yu3QFn4CHzI=",
    "region": "North Holland",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "52.35200",
    "postalCode": "1098",
    "city": "Amsterdam",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "tlsClientHelloLength": "334",
    "pagesHostName": "10010-le3.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-11-20 15:49

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad960cff45e

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "NL",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsExportedAuthenticator": {
        "clientFinished": "b5b6baa70a1e763a9c0eb46e06f1a5f81c04ea0a504bc7489b7fbc431457a8776ed8fac2924667fcb4766b95f8913ad3",
        "clientHandshake": "c81c9e192db1e5ea1ca1bf32d637ba01673875c3193e6aa385a23e7984c1fd3ac5cca6ff57442d9912eadfe8f2785beb",
        "serverHandshake": "4bb8e1f8e6732b0a2f68e74f1d5ca2640594d85fc4b7e556128fd446a99ded444ba8229bd49c3046ee2dc3fd6df83c1b",
        "serverFinished": "d932338678ccffca8a5f8ae6258059b54d1a283d804aaf260322cf7dfafbb8aa9853d6028d57da92e33272b9cfb3f3d5"
    },
    "tlsVersion": "TLSv1.3",
    "colo": "AMS",
    "timezone": "Europe/Amsterdam",
    "tlsClientRandom": "JdP6FSnu+PTkvhdtBV023D+8+pGTcsN6N93mCkwtEMU=",
    "region": "North Holland",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "52.35200",
    "postalCode": "1098",
    "city": "Amsterdam",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "tlsClientHelloLength": "334",
    "pagesHostName": "10010-le3.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-11-18 13:38

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9577d9101

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "NL",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsExportedAuthenticator": {
        "clientFinished": "cca6ba84a54b7821000f95338e393a653e53b72b9dd780774bbd1df10d78459815d8c9f34514a45d9743834169856639",
        "clientHandshake": "d9afc39ec07464459d03a3d5c644d6049e9e47f19aacbe1f477328b641e3e5360ab452a5cd88991c2fb8fe45d4a1914c",
        "serverHandshake": "1599ebd20fb8a7eb56233537a79a22a11eeb9982a3dcf7d51cae1b66f1b43ad3b0f6393868a2c19e92ece2d78bcdd222",
        "serverFinished": "1b5e041076c22968d2ffb13fc5c556f28b228feb3621e102082d1c774c109cba755eeef81e4527744dc42ebd2d8085ac"
    },
    "tlsVersion": "TLSv1.3",
    "colo": "AMS",
    "timezone": "Europe/Amsterdam",
    "tlsClientRandom": "VdW/gTqBGMBij7xDf4CES3hCnZSXuQcQ7LgL9Y0OV5c=",
    "region": "North Holland",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "52.35200",
    "postalCode": "1098",
    "city": "Amsterdam",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "tlsClientHelloLength": "334",
    "pagesHostName": "10010-le3.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-11-16 16:27

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9ebe8d3a5

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "NL",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsExportedAuthenticator": {
        "clientFinished": "dcedf1ad207eb7eacb6e5b482564e14532aa0c1a13ff6dd85ec7ec69a46eab4035febff651ced003de80f930d875b23f",
        "clientHandshake": "959a3abd55a499814e1ab9181080a2ba9dab0865eb5cd4cf4446a5e68e9295019917217fc2204101a639e45f0583cc6a",
        "serverHandshake": "d4d32c86e3a94384c845e6480cbcafa5cfcd23a54f0ee309c99cf1a03796227e5ba22777d6569841afdd90aa3ab565b7",
        "serverFinished": "2bc9ab0168005051f67804097526599059a78bd4569db66dc3b9ee0ef2b90e470c58c9a9bac4814aa289fb62ab4bf124"
    },
    "tlsVersion": "TLSv1.3",
    "colo": "AMS",
    "timezone": "Europe/Amsterdam",
    "tlsClientRandom": "vQMiZ+imRZpXKnaqJ8vE6YzF54JepccB3WcBwi7jpB4=",
    "region": "North Holland",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "52.35200",
    "postalCode": "1098",
    "city": "Amsterdam",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "tlsClientHelloLength": "334",
    "pagesHostName": "10010-le3.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-11-15 00:13

Fingerprint: b18befd9dd6536aa30550de50313a6d86b7e92acdad1c281097f6e1b671a0086

{
    "clientTcpRtt": 1,
    "longitude": "-79.38920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "CA",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientHelloLength": "334",
    "tlsExportedAuthenticator": {
        "clientFinished": "b3e641d6635ee565638a3fd28aa536f889b9a31b276e0a2768e6422898416aa575d5467366a8fef6e9be751d4d3e0469",
        "clientHandshake": "3f8831c6f45511857a99289c12edc1e9f59a038e63b9ea60a345373d592d6843be1caf90ebde86764608c2dbbd2adf0b",
        "serverHandshake": "a29182e9e3bf1f71cac7df3775c1982bf31f122b66eab93d6cd5df07ae9b7a2b908dd0d42a3f1d4cba566ffc44df0961",
        "serverFinished": "19862154b368a6dbeb338434f82adc04846efe36e7ea9b171fa656b8c6aead3ceec6df9955f321c135659a145bcd6e64"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Toronto",
    "timezone": "America/Toronto",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "region": "Ontario",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "43.62270",
    "postalCode": "M5J",
    "tlsClientRandom": "KZ2aqZNzFz2rUSX4LkujlM0L70iXCW1PAzYglt9/0SE=",
    "regionCode": "ON",
    "asOrganization": "G-Core Labs SA",
    "colo": "YYZ",
    "pagesHostName": "10010-le3.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-11-12 22:35

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad92cfd452b

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "NL",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsExportedAuthenticator": {
        "clientFinished": "dd011c00880441159fb6e7039add197b40cbe7fda336291a27883fcb68f58c03ac6ea6eb50f8edb11120a16392225164",
        "clientHandshake": "a4b8cd6aa0332e119292fb6d7ea6d00e17b5fa33572ba61b67b10dc92ca1b9e3d987b9dcfa60d25c874a2676ed3fb7a3",
        "serverHandshake": "323dc14482686d482f1b1f9d5af3aae45a6f7b3198324f1f2e51f0eff8e6d07a1a52dbac30fe624b3332e85f9794c89a",
        "serverFinished": "000bb82f8ce6204fdb071be9a28d86c9e9d7fea450da6adc8a17e43394107c53228f6f56256656aa8fd3abd11719651a"
    },
    "tlsVersion": "TLSv1.3",
    "colo": "AMS",
    "timezone": "Europe/Amsterdam",
    "tlsClientRandom": "h/b6OHhWFcwvvY0/rqMuPuj8VCfOfbkVDRiWJe1ZuD0=",
    "region": "North Holland",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "52.35200",
    "postalCode": "1098",
    "city": "Amsterdam",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "tlsClientHelloLength": "334",
    "pagesHostName": "10010-le3.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-11-10 14:01

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad962be20ed

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "NL",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsExportedAuthenticator": {
        "clientFinished": "2a7b027829a343ceb8b882c807c5f6393daaa4269a715ac6d9e8ba70c4f6e5b30731ae5bd85ee1815a20ec14f3c94036",
        "clientHandshake": "02675650964b3c338d5ef2db7e96072351dd7d5fe340e76e74997c8c1ace0ce072bcbaefbd2a8d77288e3d1618918693",
        "serverHandshake": "6d4736fd69108d5144d1425a88d478f81c32a1e34165cfec9d249705e65c401b4d1bcaa8b2c7a12e4e6830d00332547d",
        "serverFinished": "bdefd1ed660123e6c2ce78b3fb5740a230e294b8412260ce6bd9fc1352103ab5d747e39d19f1ca6c3cdb5950dbfc44fd"
    },
    "tlsVersion": "TLSv1.3",
    "colo": "AMS",
    "timezone": "Europe/Amsterdam",
    "tlsClientRandom": "+ZEH7739nnHyBoSY/NBRJyh2q/1L1n7h5n7QF5T50Co=",
    "region": "North Holland",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "52.35200",
    "postalCode": "1098",
    "city": "Amsterdam",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "tlsClientHelloLength": "334",
    "pagesHostName": "10010-le3.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-11-08 12:17

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9b7cd5179

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "NL",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsExportedAuthenticator": {
        "clientFinished": "0eb4f3ec8691d9eba09d76c7756a591a6243d309d3b0f0247b712842d696a21cf6da7428e3728caf2cd02029912fd98c",
        "clientHandshake": "60b6016e30950d1d91116d1e8d29f54ad7298d241db603b195602ec14129a868dd4b0b46cf1e22a9da668ca503408f8c",
        "serverHandshake": "21cd49a2fc0b21ffc7bf4affb6bb61401c37414cd965bfbc441fd0c8329b6c87eb977bed3ce28a5c1b95934869e0573d",
        "serverFinished": "5d2ca42ae0133c6a3a93e05e8dd9f4cc2ea161ba625945daf21e0f458fda5c15c899337c08f9e3275acb82508ab4c55f"
    },
    "tlsVersion": "TLSv1.3",
    "colo": "AMS",
    "timezone": "Europe/Amsterdam",
    "tlsClientRandom": "cUF9LwgXGJDtLRCKyN5UHI/WbGbrFZKwy9qkqEJIzLI=",
    "region": "North Holland",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "52.35200",
    "postalCode": "1098",
    "city": "Amsterdam",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "tlsClientHelloLength": "334",
    "pagesHostName": "10010-le3.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-11-06 10:34

Fingerprint: b18befd9dd6536aa30550de50313a6d81f867ea979bcfcd2f43b91484d7d147a

{
    "clientTcpRtt": 1,
    "longitude": "103.78360",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "AS",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "SG",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientHelloLength": "334",
    "tlsExportedAuthenticator": {
        "clientFinished": "86a738d46166e710871df28fc44dac20c5359deef31d0a15dc657d96fc677f9e60d1f9626f31ab3f7faf062bd01310d6",
        "clientHandshake": "de93621630e233e4dd5d35b395e012c301b2a35da42b2b8cc24b6d316dab887b62ef6d8c9995846b988b3f6e7ce770be",
        "serverHandshake": "ef530f5d3ac3d67d64d866a5d2d2e44f55fde745b84fa9865c08330faeeb46817c360f21b8fe3b05e18517afd3162d6d",
        "serverFinished": "f8f8a3f53f950dd1a25f628d1946bc739f1b04e9df77b1f98e3b47b591b200839da0ad20111182e21c26deb3ceef72d2"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Singapore",
    "timezone": "Asia/Singapore",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "1.29820",
    "postalCode": "13",
    "tlsClientRandom": "6r8eutcntbs9mbzuW3yAjWi6M8bzowtbp+vnoc6RSnI=",
    "asOrganization": "G-Core Labs SA",
    "colo": "SIN",
    "pagesHostName": "10010-le3.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-11-04 13:08

Fingerprint: b18befd9dd6536aa30550de50513aa36048d1ef9f8d7474255a3c2d8631e5acc

{
    "clientTcpRtt": 3,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientHelloLength": "334",
    "tlsExportedAuthenticator": {
        "clientFinished": "e19c8d4d86b81eeb7f9b6d8d9c575add20cefc00aff921aa608c63a9179dc98eb5512582389bcd42d1d2c00e08475700",
        "clientHandshake": "249072e6060c5f1540a1e3ebe68a6a21fa0c7df4feec1282b415cda7a6be46fdbeb8be8708504c077c90031de6ab26ff",
        "serverHandshake": "9ec0f1ef8b77b959e99b2ae82415fc5d2d1b225a90bcaed25d9c423dd4f5087968dae0d2a315db31ebc0ba5acbbb9b37",
        "serverFinished": "809a0f365a074dd27a169f9d6a9ad20343129d48db8116e6d79fdc62bc4445525cdc2448d659facef3ea13ec4166d17f"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "region": "New Jersey",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "40.78760",
    "postalCode": "07094",
    "tlsClientRandom": "gyQRVMtWJTt1RfpLp0EhXHZCEbq74ZlJ7Cww4DUeZqs=",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "colo": "EWR",
    "pagesHostName": "10010-le3.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-11-02 10:18

Fingerprint: b18befd9dd6536aa30550de50213a54da7be1939dd2c8002ef352a9812ccb322

{
    "clientTcpRtt": 6,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "NL",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsExportedAuthenticator": {
        "clientFinished": "87be2ed06c1867beb0b94c6d4b479e4ad26624552454dc6c43f0fee2432672de0222b229a078e0e9cbf30fb4dc0125fa",
        "clientHandshake": "c1d29cae1b7a69c9dd7864c9b2a405580ebefd3f0864ade94fe436c66fbb60a7458b830490380210db6e9b6b4c0ca4e6",
        "serverHandshake": "9925f2e0fa5b5c34ff0911dcce07fc8db721f3a35f00caa86bf4c0342080c7753dc7af60efdebad60c4d9a191976d964",
        "serverFinished": "29e3de4925f47df0286994c7d42ad1dffd0e7c40cc18577e719c76f18a9c652df128516ea98498253a5dea1746fbe2f8"
    },
    "tlsVersion": "TLSv1.3",
    "colo": "AMS",
    "timezone": "Europe/Amsterdam",
    "tlsClientRandom": "REyE6v87eJPS/u+RLyd4I19J/Tov6fS7x4zNVBU1Oe4=",
    "region": "North Holland",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "52.35200",
    "postalCode": "1098",
    "city": "Amsterdam",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "tlsClientHelloLength": "334",
    "pagesHostName": "10010-le3.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-11-01 09:07

Fingerprint: b18befd9dd6536aa30550de50313a6d86b7e92acdad1c281097f6e1bfe67c9e9

{
    "clientTcpRtt": 1,
    "longitude": "-79.38920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "CA",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientHelloLength": "334",
    "tlsExportedAuthenticator": {
        "clientFinished": "70f5130ebed6df8355b4e7340606d1a5fb6e9eb208f4392ef569a1bd8dd1128eb5363c003d975affbf2ed6e2def0ac45",
        "clientHandshake": "fc6931a462662b3dc160c8a4a0bd5e7259a192efe656cb6211fafc8b08bf5e5904d3345610ec20dd77c0589805cd41ad",
        "serverHandshake": "7e2fc1efe951d1b3847ded8b77100fef5ad6ae4785a2173078b95c9d1daabe85341accb70d719feb34ea9bddccd60d25",
        "serverFinished": "eb2ab082c57418044946b9d9d940d0482fe33758ad4269ae18c6f1e7049d01570cc8dc02ad532862c297ba3e537f8a14"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Toronto",
    "timezone": "America/Toronto",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "region": "Ontario",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "43.62270",
    "postalCode": "M5J",
    "tlsClientRandom": "1AfhX0O+xVDi8oIO9irbATHAmt6zHWqvi/heK/GxjTU=",
    "regionCode": "ON",
    "asOrganization": "G-Core Labs SA",
    "colo": "YYZ",
    "pagesHostName": "10010-le3.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-10-30 08:59

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9ff6a2cd9

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "NL",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsExportedAuthenticator": {
        "clientFinished": "c5dfe7532249fb14116fa97bfec38a87f71c26f86934988def35556f3676963b0ac27b70370e6dc25300b0ca840a0c49",
        "clientHandshake": "f2c64d58dcc8b2882add9a68ff94ca363f410fe4f2f5fb13751bb6798e1f4b72c79e08052b63ff42fe9c1a824c10c0e0",
        "serverHandshake": "802e3df246045b67a20cf4bc419c06db4fbd65791cf4da442e70362bc2c491f519a3be2a0267c7aa98774356846756ab",
        "serverFinished": "0380f5baf42c27b0febe8f80647d06be98a75f0e19dbe834ebb8bc2901d7fb961d215120fea62c61bbc697edddaeb4bb"
    },
    "tlsVersion": "TLSv1.3",
    "colo": "AMS",
    "timezone": "Europe/Amsterdam",
    "tlsClientRandom": "GLpxe1zcFxVmX3rY/BKS4616Vg12KUKixeOCnOWjnJs=",
    "region": "North Holland",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "52.35200",
    "postalCode": "1098",
    "city": "Amsterdam",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "tlsClientHelloLength": "334",
    "pagesHostName": "10010-le3.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-10-26 22:01

Fingerprint: b18befd9dd6536aa30550de50213a54da7be1939dd2c8002ef352a9845328ad9

{
    "clientTcpRtt": 6,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "NL",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsExportedAuthenticator": {
        "clientFinished": "66a62d45243ac82011ffb3c8fdabfe74f62a21a3b24b3b92598c5b9c512ffca9ce1885e681bd17df4c5bfedfa74c3c5c",
        "clientHandshake": "2983e1973df94e69e3f6aa63f7ce07cd8504e938a20a95fa70d94ac003a5ddd5a7f4d6fb61736606b51e7b3adc3d37e2",
        "serverHandshake": "49ef318af37bc5e5f58ebe0541b78960461737a412048502d88cae516cec7b42d3858d6d37dc978bf36c91d804a9656e",
        "serverFinished": "fd19962b89c614d8708bdd505c4dd4185416414485e12598e9c0ed5b912ea9ef869a1732b472bce4944967d1594e0b34"
    },
    "tlsVersion": "TLSv1.3",
    "colo": "AMS",
    "timezone": "Europe/Amsterdam",
    "tlsClientRandom": "N/AYkX1AgOMzPU3xE4xwAY0ViiQDF9er/wzOr5MiiJY=",
    "region": "North Holland",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "52.35200",
    "postalCode": "1098",
    "city": "Amsterdam",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "tlsClientHelloLength": "334",
    "pagesHostName": "10010-le3.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-10-24 18:22

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9f1f6c917

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "NL",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsExportedAuthenticator": {
        "clientFinished": "42d176dc22ea477cb6aff644c37c3a867566bd6c07cc13ceeccb3a64adcb582c1bd7bab63a0350c57df817e1bb09690d",
        "clientHandshake": "ab99d58cbee1ededde3f079ed49c29252151ca4be624aa4dd18003faf06977f3f39057c1a8b7fca087247619cf6d52af",
        "serverHandshake": "4b3223947a7a752adb6e418f497d1e867618291fdcb5f33699053b6628c9c22291dab5f4a56aed63f10803b3ba71ccd7",
        "serverFinished": "e31978051f69b3907c63aa247d5e1875ed1ae5afa1f2bbbbe387447a8f8b3ac1f80c6500f643170e2601e54264e46b7a"
    },
    "tlsVersion": "TLSv1.3",
    "colo": "AMS",
    "timezone": "Europe/Amsterdam",
    "tlsClientRandom": "XhLvYEZ5zY3erpSY7F9ymmF7u/wDtCxj2iedsawRioU=",
    "region": "North Holland",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "52.35200",
    "postalCode": "1098",
    "city": "Amsterdam",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "tlsClientHelloLength": "334",
    "pagesHostName": "10010-le3.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-10-22 15:20

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9d0128b4c

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "NL",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsExportedAuthenticator": {
        "clientFinished": "6cfcc4418c21da95637310864d2c216044b2530b102ce8b77e14b17b9fb665d52e49e35cf1289a7c8d4a919a88ad1943",
        "clientHandshake": "897d2c566e17bdab4cb5156d270c1d630260cdfd2e952d76029d5d12f2198e7f964a8ce77dfa9b3c929838c75aafc5f5",
        "serverHandshake": "24b564a9cb18db5816637cd30f81ac49f916208e4ce4aeac5e6bea309a6e0e8247146297a5a531c6ba52658058db0872",
        "serverFinished": "5cae0de8a0dacf79d304ccc5e3a706536e1159081009e33e26e4c71c08ff95f696d0bcc9b335e49181807e1bc56372dc"
    },
    "tlsVersion": "TLSv1.3",
    "colo": "AMS",
    "timezone": "Europe/Amsterdam",
    "tlsClientRandom": "zujBt1M6pX4s37uqxvTSdFKKXU4z8xC3dxJD8iuKJNs=",
    "region": "North Holland",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "52.35200",
    "postalCode": "1098",
    "city": "Amsterdam",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "tlsClientHelloLength": "334",
    "pagesHostName": "10010-le3.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-10-20 12:54

Fingerprint: b18befd9dd6536aa30550de5ff13a084df8d0bbe47ab65f7b6bc99c53fdb189f

{
    "clientTcpRtt": 5,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "NL",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsExportedAuthenticator": {
        "clientFinished": "70b7df7de339eecbff378099e8b51ec7a9bb6335f8bdc3d12bf18e1e4095a778ada6d95701f8701e399f3f5f214e877c",
        "clientHandshake": "65d15eebf3f1bafa27777a2b33a168053a3e0dd91e4d3490f846689bc527ca7ef966b43d540f0ce09fa5feb16ad40fc8",
        "serverHandshake": "421ea509e9634c215bf57bfc6238e0b41f1c5d63b566d4c910a38710f7fffde1903a5ac8a9573564470aae59d7777d61",
        "serverFinished": "efa5590407c4388186411f8b5391879773fb93d8a652b3f7a304537b98c1f414b2bf9d91433da77af10cf6a4d03b5860"
    },
    "tlsVersion": "TLSv1.3",
    "colo": "AMS",
    "timezone": "Europe/Amsterdam",
    "tlsClientRandom": "GFQYZjQPrPICeAb5QC4KZZXLkjE6vC6ZOCJoUymndE8=",
    "region": "North Holland",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "52.35200",
    "postalCode": "1098",
    "city": "Amsterdam",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "tlsClientHelloLength": "334",
    "pagesHostName": "10010-le3.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-10-18 09:39

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9ec635b15

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "NL",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsExportedAuthenticator": {
        "clientFinished": "086343b78b599049a849b78d876943b20b6b720225745ecb322b903bafd44083918462b7bce083a0fca7f8f95caaaf66",
        "clientHandshake": "81fe1b9f407dd6d4240a923bf159916b6ab184b5240e3eee199689f2ca16dc7f1bf1df3cb4ad5c387487851f7e66dbac",
        "serverHandshake": "0ff3efb3262d6d7c52666eaa91331c54de2ed54ff78330f12fe04522e214f23d37ef82ed09fb9cbad6412de22a4aeabf",
        "serverFinished": "89d9ca80671a496d6127f7736e2846592e840e99cc9d23bcebbfeac697fd5a0a0a5f60ddb22b8624065fb484ed77275d"
    },
    "tlsVersion": "TLSv1.3",
    "colo": "AMS",
    "timezone": "Europe/Amsterdam",
    "tlsClientRandom": "gKpQVWoen7LmFEIpH7enC33hYEg18ju5N2TVzdUzens=",
    "region": "North Holland",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "52.35200",
    "postalCode": "1098",
    "city": "Amsterdam",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "tlsClientHelloLength": "334",
    "pagesHostName": "10010-le3.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-10-16 11:24

Fingerprint: b18befd9dd6536aa30550de50613ab817e6134ec6611bd4114eb7fdb1dcb6957

{
    "clientTcpRtt": 2,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientHelloLength": "334",
    "tlsExportedAuthenticator": {
        "clientFinished": "bf8200fa63d3455db8fd7b505dbfac321eb963e07eecedb0662bf13e33fbbbd89cca253b1d7c7952cab0be898cb3a040",
        "clientHandshake": "e3f7b535f3283b5826523ad6b88608020b34fe0048056ce7dea67cf59b55189d936a02d7ef0e8a86a841c583fde5124c",
        "serverHandshake": "0f8e322d8e34f2b73aec152913c45cf036aac6b143db24bdca6568d076706974827301fe5613bb618909aff707f75c63",
        "serverFinished": "05a8a18726609b91d3dda85a3501869fb2cf29fbc25974924ac5b0d13543ba4300685d248ce8ca0265f3c7b3fa4d5ff1"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "region": "New Jersey",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "40.78760",
    "postalCode": "07094",
    "tlsClientRandom": "pu+hMEtD8bI4zebJ5DvytYf/2EZTFGG/bAKkeqV67h4=",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "colo": "EWR",
    "pagesHostName": "10010-le3.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-10-14 09:28

Fingerprint: b18befd9dd6536aa30550de50513aa364b8758e8907bbbb5eec79d57b46c2151

{
    "clientTcpRtt": 3,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "NL",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsExportedAuthenticator": {
        "clientFinished": "821531772c326bd6738f2a186cc3313adadcd95b35e0c23ab190702fc420374be1dd9df6ccc4b031ee455a1b2d4a8e31",
        "clientHandshake": "4db6f08c546b4fa1343d91fbec18d93ad9f1f9d5bcced2d0aa7de39ab54924dcfebba9d776d53a767279fb9bcf96e139",
        "serverHandshake": "146c45cf72e9eeb682966a6742631c921d429956c285c7724e381a9ecae61276535e73a2180de280205220b566117e22",
        "serverFinished": "63bdb57a440b45aa02627744072683101f53f152b590f16f8baf31eafb6058a93c98d8cec3f8a55dd4b32e6a62dae747"
    },
    "tlsVersion": "TLSv1.3",
    "colo": "AMS",
    "timezone": "Europe/Amsterdam",
    "tlsClientRandom": "DrJ2R35QlDheet6VB0xzAAn1IBCF1FPhVTZ+DQr9ZC4=",
    "region": "North Holland",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "52.35200",
    "postalCode": "1098",
    "city": "Amsterdam",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "tlsClientHelloLength": "334",
    "pagesHostName": "10010-le3.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-10-12 04:09

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: www.arhi.cf
Port: 80
URL: http://www.arhi.cf

First seen 2023-02-08 10:55
Last seen 2024-11-22 15:24
Open for 653 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-11-22 15:24
  
  265 Bytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: www.speedtest.net.soft98.ir.email.forward.dashboard.webdoty.ir
Port: 443
URL: https://www.speedtest.net.soft98.ir.email.forward.dashboard.webdoty.ir

First seen 2024-10-10 11:02
Last seen 2024-11-22 14:07
Open for 43 days

Severity: high
Fingerprint: 5f32cf5d6962f09ca629b8b1a629b8b178995bdfc9176e72f5b7fb377ad96d1f

Found 34 files trough .DS_Store spidering:

/assets
/assets/images
/assets/user_profile_images
/assets/videos
/audio7_html5.css
/db
/db/bigdump.php
/db/laughfactory2.sql
/db/laughfactory_missing.sql
/favicon.ico
/index.php
/js
/logs
/mob
/new-assets
/new-assets_bu
/phpinfo.php
/pre_new-assets
/pre_new-assets/audio
/pre_new-assets/audio-player
/pre_new-assets/css
/pre_new-assets/fonts
/pre_new-assets/images
/pre_new-assets/js
/pre_new-assets/mobile
/pre_new-assets/newsletter
/pre_new-assets/pdf-files
/pre_new-assets/top-comedians
/pre_new-assets/top-comedians.zip
/pre_new-assets/videos
/robots.txt
/style.css
/supervisor.conf
/uploads

Found on 2024-11-22 14:07

Severity: high
Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bcad0419cc47d354e5d90e9ff27bac23f8

Found 22 files trough .DS_Store spidering:

/assets
/assets/images
/assets/user_profile_images
/assets/videos
/audio7_html5.css
/db
/db/bigdump.php
/db/laughfactory2.sql
/db/laughfactory_missing.sql
/favicon.ico
/index.php
/js
/logs
/mob
/new-assets
/new-assets_bu
/phpinfo.php
/pre_new-assets
/robots.txt
/style.css
/supervisor.conf
/uploads

Found on 2024-11-20 15:34

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: mc.try2runit.eu.org
Port: 443
URL: https://mc.try2runit.eu.org

First seen 2023-08-03 02:59
Last seen 2024-11-22 13:09
Open for 477 days

Fingerprint: b18befd9dd6536aa30550de56d5f0da4b62aa5f0fe2f7af93afa888ef7c58764

{
    "api": {
        "id": null,
        "worker-id": null
    },
    "http": {
        "enabled": false,
        "host": "127.0.0.1",
        "port": 0,
        "access-token": null,
        "restricted": true
    },
    "autosave": true,
    "background": true,
    "colors": true,
    "title": true,
    "randomx": {
        "init": -1,
        "init-avx2": 0,
        "mode": "auto",
        "1gb-pages": false,
        "rdmsr": true,
        "wrmsr": true,
        "cache_qos": false,
        "numa": true,
        "scratchpad_prefetch_mode": 1
    },
    "cpu": {
        "enabled": true,
        "huge-pages": true,
        "huge-pages-jit": false,
        "hw-aes": null,
        "priority": null,
        "memory-pool": true,
        "yield": true,
        "max-threads-hint": 100,
        "asm": true,
        "argon2-impl": null,
        "astrobwt-max-size": 550,
        "astrobwt-avx2": false,
        "cn/0": false,
        "cn-lite/0": false
    },
    "opencl": {
        "enabled": false,
        "cache": true,
        "loader": null,
        "platform": "AMD",
        "adl": true,
        "cn/0": false,
        "cn-lite/0": false,
        "panthera": false
    },
    "cuda": {
        "enabled": false,
        "loader": null,
        "nvml": true,
        "cn/0": false,
        "cn-lite/0": false,
        "panthera": false,
        "astrobwt": false
    },
    "donate-level": 1,
    "donate-over-proxy": 1,
    "log-file": null,
    "pools": [
        {
            "algo": null,
            "coin": null,
            "url": "auto.c3pool.org:19999",
            "user": "45p2voRaswNADCGCY4pUMEUSfuB6KcjbAcCrhMQQfyCTCmcnBew89nqXcKkAGoMqujTTapzkVCYXGa7sVCEJTgNiAGnyrBo",
            "pass": "x",
            "rig-id": null,
            "nicehash": false,
            "keepalive": true,
            "enabled": true,
            "tls": false,
            "tls-fingerprint": null,
            "daemon": false,
            "socks5": null,
            "self-select": null,
            "submit-to-origin": false
        },
        {
            "algo": null,
            "coin": null,
            "url": "auto.c3pool.org:19999",
            "user": "45p2voRaswNADCGCY4pUMEUSfuB6KcjbAcCrhMQQfyCTCmcnBew89nqXcKkAGoMqujTTapzkVCYXGa7sVCEJTgNiAGnyrBo",
            "pass": "x",
            "rig-id": null,
            "nicehash": false,
            "keepalive": true,
            "enabled": true,
            "tls": false,
            "tls-fingerprint": null,
            "daemon": false,
            "socks5": null,
            "self-select": null,
            "submit-to-origin": false
        }
    ],
    "print-time": 30,
    "health-print-time": 120,
    "dmi": true,
    "retries": 60,
    "retry-pause": 30,
    "syslog": false,
    "tls": {
        "enabled": false,
        "protocols": null,
        "cert": null,
        "cert_key": null,
        "ciphers": null,
        "ciphersuites": null,
        "dhparam": null
    },
    "user-agent": "AGAgent/6.6.6",
    "verbose": 0,
    "watch": true,
    "rebench-algo": false,
    "bench-algo-time": 20,
    "pause-on-battery": false,
    "pause-on-active": false
}

Found on 2024-11-22 13:09

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: www.arhi.tk
Port: 443
URL: https://www.arhi.tk

First seen 2023-04-09 06:29
Last seen 2024-11-22 12:32
Open for 593 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-11-22 12:32
  
  265 Bytes
Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: yn.hkent.monster
Port: 80
URL: http://yn.hkent.monster

First seen 2024-09-19 07:00
Last seen 2024-11-22 12:29
Open for 64 days

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e34454804b15babaef

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-22 12:29

Fingerprint: b18befd9dd6536aa30550de50513aa36f736f6e26e4583b322e4727b875386ac

{
    "clientTcpRtt": 3,
    "longitude": "-121.79460",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "San Jose",
    "timezone": "America/Los_Angeles",
    "colo": "SJC",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "95119",
    "region": "California",
    "latitude": "37.23790",
    "requestPriority": "",
    "regionCode": "CA",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "807",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": ""
}

Found on 2024-11-20 11:28

Fingerprint: b18befd9dd6536aa30550de50613ab816ba1da0d2ef568aeb0a62efe24136bbf

{
    "clientTcpRtt": 2,
    "longitude": "-121.79460",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "San Jose",
    "timezone": "America/Los_Angeles",
    "colo": "SJC",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "95119",
    "region": "California",
    "latitude": "37.23790",
    "requestPriority": "",
    "regionCode": "CA",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "807",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": ""
}

Found on 2024-11-18 06:53

Fingerprint: b18befd9dd6536aa30550de57116578a0bb4edb95ba3e9827c3cd1b2b212242d

{
    "clientTcpRtt": 238,
    "longitude": "8.62950",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "Hesse",
    "latitude": "50.10490",
    "postalCode": "60326",
    "regionCode": "HE",
    "asOrganization": "G-Core Labs SA",
    "colo": "HKG",
    "country": "DE"
}

Found on 2024-11-14 17:31

Fingerprint: b18befd9dd6536aa30550de50313a6d81d1544c3794af1004edf0b5879deaa59

{
    "clientTcpRtt": 1,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": ""
}

Found on 2024-11-05 02:13

Fingerprint: b18befd9dd6536aa30550de50413a8ab94c8fa9426c39c397aba18b9a2ceb408

{
    "clientTcpRtt": 0,
    "longitude": "103.78360",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "AS",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "SG",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "verifiedBotCategory": "",
    "tlsVersion": "",
    "city": "Singapore",
    "timezone": "Asia/Singapore",
    "colo": "SIN",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "13",
    "latitude": "1.29820",
    "requestPriority": "",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": ""
}

Found on 2024-10-14 02:41

Fingerprint: b18befd9dd6536aa30550de50113a3e282eea2e44517a6698a791149d5bca645

{
    "clientTcpRtt": 7,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "FRA",
    "country": "NL"
}

Found on 2024-10-09 00:18

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e08110c3e6aadba58

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-04 20:24

Fingerprint: b18befd9dd6536aa30550de50513aa364b8758e8907bbbb5deca7a75f1aeb031

{
    "clientTcpRtt": 3,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-02 18:35

Fingerprint: b18befd9dd6536aa30550de50613ab817e50c4c48b10a1093eba9aa93b5a1f13

{
    "clientTcpRtt": 2,
    "longitude": "8.62950",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "Hesse",
    "latitude": "50.10490",
    "postalCode": "60326",
    "regionCode": "HE",
    "asOrganization": "G-Core Labs SA",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-09-30 11:07

Fingerprint: b18befd9dd6536aa30550de50613ab817e6134ec6611bd41fa352d3122468ac0

{
    "clientTcpRtt": 2,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": ""
}

Found on 2024-09-28 13:24

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: wbswj-cdn2.ggspe.top
Port: 443
URL: https://wbswj-cdn2.ggspe.top

First seen 2023-08-11 17:53
Last seen 2024-11-22 12:19
Open for 468 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-11-22 12:19
  
  265 Bytes
Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 92.223.84.84
Domain: schildichat.pkuanvil.com
Port: 443
URL: https://schildichat.pkuanvil.com

First seen 2023-02-24 20:35
Last seen 2024-11-22 10:50
Open for 636 days

Fingerprint: b18befd9dd6536aa30550de524e56a847e3f380cfcac35d6d81b3762ab601e4c

{
    "default_server_config": {
        "m.homeserver": {
            "base_url": "https://matrix.pkuanvil.com",
            "server_name": "pkuanvil.com"
        },
        "m.identity_server": {
            "base_url": "https://vector.im"
        }
    },
    "disable_custom_urls": false,
    "disable_guests": false,
    "disable_login_language_selector": false,
    "disable_3pid_login": false,
    "brand": "SchildiChat",
    "integrations_ui_url": "https://scalar.vector.im/",
    "integrations_rest_url": "https://scalar.vector.im/api",
    "integrations_widgets_urls": [
        "https://scalar.vector.im/_matrix/integrations/v1",
        "https://scalar.vector.im/api",
        "https://scalar-staging.vector.im/_matrix/integrations/v1",
        "https://scalar-staging.vector.im/api",
        "https://scalar-staging.riot.im/scalar/api"
    ],
    "default_country_code": "GB",
    "show_labs_settings": true,
    "features": {},
    "default_federate": false,
    "default_theme": "system",
    "permalink_prefix": "https://schildichat.pkuanvil.com",
    "room_directory": {
        "servers": ["matrix.org"]
    },
    "enable_presence_by_hs_url": {
        "https://matrix.org": false,
        "https://matrix-client.matrix.org": false
    },
    "setting_defaults": {
        "breadcrumbs": true
    },
    "jitsi": {
        "preferred_domain": "meet.jit.si"
    },
    "element_call": {
        "url": "https://call.element.io",
        "participant_limit": 8,
        "brand": "Element Call"
    },
    "map_style_url": "https://api.maptiler.com/maps/streets/style.json?key=fU3vlMsMn4Jb6dnEIFsx"
}

Found on 2024-11-22 10:50

Fingerprint: b18befd9dd6536aa30550de524e56a847e3f380cfcac35d6d81b37623197b405

{
    "default_server_config": {
        "m.homeserver": {
            "base_url": "https://matrix.pkuanvil.com",
            "server_name": "pkuanvil.com"
        },
        "m.identity_server": {
            "base_url": "https://vector.im"
        }
    },
    "disable_custom_urls": false,
    "disable_guests": false,
    "disable_login_language_selector": false,
    "disable_3pid_login": false,
    "brand": "SchildiChat",
    "integrations_ui_url": "https://scalar.vector.im/",
    "integrations_rest_url": "https://scalar.vector.im/api",
    "integrations_widgets_urls": [
        "https://scalar.vector.im/_matrix/integrations/v1",
        "https://scalar.vector.im/api",
        "https://scalar-staging.vector.im/_matrix/integrations/v1",
        "https://scalar-staging.vector.im/api",
        "https://scalar-staging.riot.im/scalar/api"
    ],
    "default_country_code": "GB",
    "show_labs_settings": true,
    "features": {},
    "default_federate": false,
    "default_theme": "light",
    "room_directory": {
        "servers": ["matrix.org"]
    },
    "enable_presence_by_hs_url": {
        "https://matrix.org": false,
        "https://matrix-client.matrix.org": false
    },
    "setting_defaults": {
        "breadcrumbs": true
    },
    "jitsi": {
        "preferred_domain": "meet.jit.si"
    },
    "element_call": {
        "url": "https://call.element.io",
        "participant_limit": 8,
        "brand": "Element Call"
    },
    "map_style_url": "https://api.maptiler.com/maps/streets/style.json?key=fU3vlMsMn4Jb6dnEIFsx"
}

Found on 2023-02-24 20:35

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: intel.coloringco.com.au
Port: 443
URL: https://intel.coloringco.com.au

First seen 2024-06-12 14:14
Last seen 2024-11-22 10:33
Open for 162 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbf3e43805

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://gitlab.websiteserverhost.net/lopadas/croftech.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[branch "design_changes"]
	remote = origin
	merge = refs/heads/design_changes
[branch "development"]
	remote = origin
	merge = refs/heads/development

Found on 2024-11-22 10:33

466 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb097dba6d

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://gitlab.websiteserverhost.net/lopadas/croftech.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main

Found on 2024-09-04 01:43

316 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb86ce23ce

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://gitlab.websiteserverhost.net/lopadas/croftech.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[branch "design_changes"]
	remote = origin
	merge = refs/heads/design_changes

Found on 2024-09-02 12:44

394 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: pjp.qqnews.us.kg
Port: 80
URL: http://pjp.qqnews.us.kg

First seen 2024-10-14 17:09
Last seen 2024-11-22 09:53
Open for 38 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522d0e51ab3
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/grahamnscp/tetris-web.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-11-22 09:53
  
  314 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: note.duckrun.de
Port: 443
URL: https://note.duckrun.de

First seen 2024-08-08 05:07
Last seen 2024-11-22 09:27
Open for 106 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522192cbed6
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/pereorga/minimalist-web-notepad.git
	fetch = +refs/heads/master:refs/remotes/origin/master
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-11-22 09:27
  
  289 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: pjp.qqnews.link
Port: 443
URL: https://pjp.qqnews.link

First seen 2023-12-01 08:59
Last seen 2024-11-22 08:58
Open for 356 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522d0e51ab3
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/grahamnscp/tetris-web.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-11-22 08:58
  
  314 Bytes
Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: ygvl.gyty.us.kg
Port: 443
URL: https://ygvl.gyty.us.kg

First seen 2024-09-07 07:29
Last seen 2024-11-22 08:53
Open for 76 days

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad907805783

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "4cecc3212b9f280a8494dad51f001da32ce20f4360f8f38fbbd9d9ddeb5d7c57677f6b75ab92ccde0491e1e564a29ba4",
        "clientHandshake": "cde3f60b869c63b1a47d31c26ac973e0c88bb4cc4384a531a52aeae3d86d955b15c52919c97d0c7f0cb6d7b96364d7e3",
        "serverHandshake": "2c8c3d2068b47ea951cd52f63e093a67f1cd3855f7c09ff3c63ec890b9e3387bffbdd7f1a5d016fd5bc4709c5248182e",
        "serverFinished": "dd37332cb3f2bfb3549e8a1514333b85607f6a343487279127a863699c75af4ce161b89ff629dace5d636a941614fa8a"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "327",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "3PtTKFWLDMrcintCewj65u/QdadfkRIWYFbtRi433oY=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-22 08:53

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad950c0c773

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "b36a5c04e2ec86759e0e277a44acd5db3f7abf581d519fbb44a9ea371d12eb2d7b01f728d566abd021617df6683721a3",
        "clientHandshake": "6e4ea78e8bac06faa5c40d4962453e7460e76d6af9b21bcaf6da21a9166d80c797dd4367c936736aecfef0aee7b556db",
        "serverHandshake": "5d4714b66bc2dafef9f6d4d15b96ba23a1628bc8af33bcdce9fc3c73eb4648b79183ba301c4ed03965c1fe5f117d191c",
        "serverFinished": "373d66e53a5d6f3de5ad254c163f99770d9fd5dcab0b15e16041b40797998ead48ba09f0c051cca2654d960d43638ef8"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "327",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "3OJYlqVvz4J2zvwR2jy3y6/H+QbtRE1oNS26rehiMPU=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-21 01:28

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad94bfce233

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "ec15886c0f744a322c17ee9b1407757992eecc04c8cf76a5fea2eeb01cc4704c474a06405ff0a54ce15f9f1a0711dbea",
        "clientHandshake": "86c57913fe09137eab7f269632c078307075c1781a8d18f3f01162b81fa5d36c649fd72cf1d90adbedfefae479971456",
        "serverHandshake": "c273932fa85b62b2809086b8d666fec9ffd1778d58fd500425a24d95c1607a634a9e07cd6017be8a4e851d6bc0ec42da",
        "serverFinished": "3063b87ccd6b7139e308ba5a7cf09d1324ab58b333caedef80a562257b372199570726a1ba266c05b980fb2ff9df8e04"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "327",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "hjPOV1nJoqjwyf1TbuLoKlH37jLrqt8wyPx1OjpHXcw=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-18 22:53

Fingerprint: b18befd9dd6536aa30550de50213a54dc0984f894e7cc172c75329e8f37a6d6b

{
    "clientTcpRtt": 6,
    "longitude": "-121.79460",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "8f9a82b16ac5a59d0d3c216fe050cfc1879716bdc21752b6b72cb997172822bb1e70c66052028d8ff9951d093743a643",
        "clientHandshake": "ca1a9c1c77872b8795b1c8dc1e5f966398468f61f6892d4e9c433ef19ac87abfd2c621b8c5324a8adc2ebdee6432e8db",
        "serverHandshake": "64f7b2cefaa833ce1ab9ecc7a08f015fdfb4eac31842d46a061a7a8197f7148f8b8b565f1589600f3e1ffa083b9d43ee",
        "serverFinished": "a93a11c02f07ffee72999a65f1d81c5789d23119c5ea0a20c8e95b232d25cf36c6faefdb919c7d283c2d27d7a02efa58"
    },
    "tlsVersion": "TLSv1.3",
    "city": "San Jose",
    "timezone": "America/Los_Angeles",
    "colo": "SJC",
    "tlsClientHelloLength": "327",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "95119",
    "region": "California",
    "latitude": "37.23790",
    "requestPriority": "",
    "regionCode": "CA",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "807",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "5pl9HHYuzzAzdBTMuoOC6r5+rB5OS6lNoXoyDnLgoiI="
}

Found on 2024-11-17 14:11

Fingerprint: b18befd9dd6536aa30550de50313a6d815da8ac1f37c263a865f2a3066461772

{
    "clientTcpRtt": 1,
    "longitude": "8.68420",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "f2ff8cc5c17167d905dc6398a3976364f01277dc389c498e01e19d88fe45637a",
        "clientHandshake": "9d808b81d7ae417a6a74681841024e3ac7aa8454dbc4979c15a28bdb64a0fefb",
        "serverHandshake": "25ce027f8bdcb6fc1ddc0cd835d46975656cebf9e08bd5cad584f0cebc9eda4f",
        "serverFinished": "48967380a2955de531965433fc296795978cdee937f0866ed87b31e66c7a7807"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "487",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "ntlrGd2gwuZzIH4SEH7Veha3PzQGKQV79ksaPYeNPMY=",
    "region": "Hesse",
    "latitude": "50.11870",
    "postalCode": "60313",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-11-16 15:31

Fingerprint: b18befd9dd6536aa30550de50313a6d83eeff30667f41b8f599a007d46c37e70

{
    "clientTcpRtt": 1,
    "longitude": "-79.36230",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "NA",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "CA",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "363d3de723dea3703d34dcaa9c2d371f996696c6a4b7e5cef4acb5b9f044c5bb",
        "clientHandshake": "7e928ca8fece11051a7dcd1292828c1141d8b00a7ff0a76bfbf510b032064e9f",
        "serverHandshake": "f52f3d36f78887a911f9a196a0804f6575924083d7b58ac6c8ccf75ce7a22a87",
        "serverFinished": "29cb344e7e41a40f4830fd921a7495509f71e26edb3fd6df849fd59d4a211618"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Toronto",
    "timezone": "America/Toronto",
    "colo": "YYZ",
    "tlsClientHelloLength": "487",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "M5A",
    "region": "Ontario",
    "latitude": "43.65470",
    "requestPriority": "",
    "regionCode": "ON",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "HIT4jTPIR0RyQRifu0O5Exe2n1py1dh4V3SvI4u8eeY="
}

Found on 2024-11-14 19:13

Fingerprint: b18befd9dd6536aa30550de50313a6d815da8ac1f37c263a865f2a30c338a6bb

{
    "clientTcpRtt": 1,
    "longitude": "8.68420",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "7875fd27c748253bb6a6800c99ec961917cd97e92e7019878c070cf720bc86e0",
        "clientHandshake": "9e5c424e58947b9a005fea1ce58051841b79033e77a4ab9cedf78ae1a5bba42c",
        "serverHandshake": "a973a4394319cede3fc22bc48141dbe45204ef2e601d6df42695ebc66fbeeac6",
        "serverFinished": "5fd912c7ea818208af24b6761629e808d8f9f7fd5bdd66f6c1db184682bf890b"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "487",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "j3TYKOM0Ieiuryf0ygQHuy57i8m8keg/AHdwQJ982FY=",
    "region": "Hesse",
    "latitude": "50.11870",
    "postalCode": "60313",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-11-12 16:51

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e38775b5f10495d029

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "af098fdbd0555fd97f8af94fde5174efc55fe8c9d8d485a21ad7110a5b84cf7f",
        "clientHandshake": "079926bd5682d3e2a6ed272e19c8e4b017af6f09d306bdbfb2ebcbd19d5e56b7",
        "serverHandshake": "765917f164177ffd2619ebfc0b27c49f4ac19238bf2ce51febed31c58e872311",
        "serverFinished": "3c7041e6a1ac88f85ae176f3e0338b5f4fe196e1a0a200a2afa5d7ccfcc21e79"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "487",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "6WbemPsdivTPLWG3Zo16AzbeT8BOiwt2PZpsHmGEeA4=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "Digital Ocean",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-10 18:25

Fingerprint: b18befd9dd6536aa30550de50313a6d83023b620e06d8dddc32776bfdb046f8c

{
    "clientTcpRtt": 1,
    "longitude": "8.68270",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "d408733473e5a0889936547bb099c4ef39f272bd21e40ecc5acc8458ef595f38",
        "clientHandshake": "340bb29e17f3b75a8f101f39e67cba86d40717b069d22c57ac19f8b6ad396c17",
        "serverHandshake": "0166c00bc5da0dad148f0df5aac927c28df5c382f4878286fc5b3c73fe5cf798",
        "serverFinished": "6678ea25ed64386d0a87c5ac3c6bca2b0ad4e0884a169e8df8612e93fe676fae"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "487",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "i/WZjM81BG6Ius9cvP5X21sr+guC1bj/hmqtfJPdQzU=",
    "region": "Hesse",
    "latitude": "50.11840",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-11-08 20:56

Fingerprint: b18befd9dd6536aa30550de50513aa3676a95b785c092b25b4696057e477ca78

{
    "clientTcpRtt": 3,
    "longitude": "-0.67180",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "GB",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "27338d630b907f4c82fa8062f3dacb0ebdd3bb82fa50c4d082fe705440661d66",
        "clientHandshake": "2aa520ea9a4998eb8dee5f59c617aa20624559cf461bfe52e154f898d30dc46a",
        "serverHandshake": "178ccd30cb64dfb01f1555a20002faa5f1c616e7e1fda66f9b9835723480a1d7",
        "serverFinished": "959ef85f00f98992d532907a3ceca1762ba0402d794e5f1e5aca98ffa8392deb"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Slough",
    "timezone": "Europe/London",
    "colo": "LHR",
    "tlsClientHelloLength": "487",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "SL1",
    "region": "England",
    "latitude": "51.53680",
    "requestPriority": "",
    "regionCode": "ENG",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "DLiUDPkT53hyt2a0YbFpJMNnPAq6pn0ujyx2RosKd8w="
}

Found on 2024-11-06 23:04

Fingerprint: b18befd9dd6536aa30550de50313a6d83023b620e06d8dddc32776bffccff5bb

{
    "clientTcpRtt": 1,
    "longitude": "8.68270",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "763c5a80d4ac6051ce55bf03208d8fbcf1061567d04bce31252162329cb4a667",
        "clientHandshake": "01392dc199bdb02ebb6f6a18b7436475305741b63a0a8a83b905bd0c8e284fed",
        "serverHandshake": "d2d9231a1e5196a5cf847c5de5d516dd62b80f026172fc3919318d81041b2f96",
        "serverFinished": "6e2a044650b2d1f7bcef5d0db2a00a9ff8985891bed9fe718167f1748aeb719b"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "487",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "JBTLe74WdHLNKo7pFA5wM8tVgq+Tq3FViN6SeVOruzw=",
    "region": "Hesse",
    "latitude": "50.11840",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-11-04 18:30

Fingerprint: b18befd9dd6536aa30550de50313a6d83023b620e06d8dddc32776bf2f8007e1

{
    "clientTcpRtt": 1,
    "longitude": "8.68270",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "bef25bd4e7880b46e8897cc709596fbf129236804bb6cf5594661ec75c956725",
        "clientHandshake": "32452ac25c12feb689474401e84ecb6b0a9e78a8f4566618c473b099d0cf7e3a",
        "serverHandshake": "d68ad81a948cf58d19095c1f1b9697033b4d97d841654eaa9d9daf2452b244ff",
        "serverFinished": "e39d309a5e4d977db89f89e0d3c22e77d45e542d26648c4db0ae38671fe4a796"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "487",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "bMZC8tFtWGySC3s9SZ5YgfbJDU54Mpe/OeOj4jkrdaM=",
    "region": "Hesse",
    "latitude": "50.11840",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-11-02 20:59

Fingerprint: b18befd9dd6536aa30550de50313a6d8a399d2e8555a99b5126a89872633505e

{
    "clientTcpRtt": 1,
    "longitude": "103.68180",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "AS",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "SG",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "verifiedBotCategory": "",
    "tlsExportedAuthenticator": {
        "clientFinished": "f2fbe1eeb52d805b9c60196c5b1f5bea4ffc1aa48a5ce5bdf4e6587aa1db17b1",
        "clientHandshake": "aec504c107edbfc71b238cbef9e073c738b94cab427e9911ad37d6e00074dfa0",
        "serverHandshake": "1e91fedfd489438cd4a5ceb8f636d99a9d32270510b608429f725fd3dc4c1240",
        "serverFinished": "0f26cc6e4e333ed8d7ebf5758e86a69c4d15b1d049531d3af05d274a736ab207"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Singapore",
    "timezone": "Asia/Singapore",
    "colo": "SIN",
    "tlsClientHelloLength": "487",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "62",
    "latitude": "1.30780",
    "requestPriority": "",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "ah0CDGZclYXE5tLR/EEDZJrMx3H1ClMRLBYGtit7kuY="
}

Found on 2024-11-01 19:40

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e38775b5f13f7b362e

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "644acf876af4acbb86402c5cfcd7a54a23518dd4297aa3cec66a769ce38aa74d",
        "clientHandshake": "9985e3d0f6b6074ac368c028ec097fc3164a7ddd87263784ad09653a2b1bc816",
        "serverHandshake": "f3402956172d178499d9221513197636d646ba70c023494216c2e317273c2009",
        "serverFinished": "74a15621121dfa6ed9bc8b9537744ee619bde074c108ea7c6c4fb31c3af52478"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "487",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "7+zPUCgIZkiJxxIcqz/6YZY72bst5yvnjTNk4EkjDTY=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "Digital Ocean",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-31 00:49

Fingerprint: b18befd9dd6536aa30550de50313a6d8889491d2e8551243bea009511d8a78ef

{
    "clientTcpRtt": 1,
    "longitude": "-74.00960",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "NA",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "5482ad09bf937fdac49ee41cec4a800bd6481df1e1d034f8eb200c8620a31ef1",
        "clientHandshake": "2f12c17bcc8960c1a6300490a0e5e679eb653a38b9b9d43adffd042dda5bc481",
        "serverHandshake": "5c0984110a6f7ba9b7c39f39a5c0a1586397ed1fd1abc1be6664736541e334ff",
        "serverFinished": "1383f38abd33b7a2275943365f2b096aaae8d2dada97b92d325a7dc13015bd7e"
    },
    "tlsVersion": "TLSv1.3",
    "city": "North Bergen",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "487",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07047",
    "region": "New Jersey",
    "latitude": "40.79240",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "Digital Ocean",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "GwKlW1GVD0bkYsKR/GdbwmZYQFTUveGwEMeXjuTYMGI="
}

Found on 2024-10-26 19:28

Fingerprint: b18befd9dd6536aa30550de50313a6d83023b620e06d8dddc32776bf347acd40

{
    "clientTcpRtt": 1,
    "longitude": "8.68270",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "c42b12c3907cea615504ae504aaafa3d17036b5a600b48d4303e3bfbe099e055",
        "clientHandshake": "cb2703a60b489139b60f498e6070ba87b43b6d7d44ab9ef03d13931901c5cb0d",
        "serverHandshake": "a8e6be29808e23e4e7e93ebc8b60d9abe8243fc2ab0dc686ace080d1c43fdcd7",
        "serverFinished": "6c4a88e68f9d753719f6b946861d17043bdd50b3364d287d52cf250672e88cc9"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "487",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "tM9zl4yd6oymftDZE1qmZnYFOII5G6xLGuahS2u2l8k=",
    "region": "Hesse",
    "latitude": "50.11840",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-10-24 22:06

Fingerprint: b18befd9dd6536aa30550de50313a6d8a399d2e8555a99b5126a8987f76e44e8

{
    "clientTcpRtt": 1,
    "longitude": "103.68180",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "AS",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "SG",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "verifiedBotCategory": "",
    "tlsExportedAuthenticator": {
        "clientFinished": "09614f789db3f63294ea9c00c1bc4e648d8e1551ff51ad5d79e2fb4f99fbfc0a",
        "clientHandshake": "df77f9563dc4d196d309a8aeb1b0d20b88acb38a36e8ecf7f891502212d4543c",
        "serverHandshake": "14464881b05a74572797521860e24b05ac43ad19a4437103c5bfb57f435cd5b3",
        "serverFinished": "475988bac543f532570606b1712f1e3360611b2c8f49a7fe46923b5d42bf0c6e"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Singapore",
    "timezone": "Asia/Singapore",
    "colo": "SIN",
    "tlsClientHelloLength": "487",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "62",
    "latitude": "1.30780",
    "requestPriority": "",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "RS16WIqlECkvaE6bfhUEkeb9wMTPt6Lys9ddkVTrcSo="
}

Found on 2024-10-22 15:21

Fingerprint: b18befd9dd6536aa30550de50613ab81e9d909fb35a76bc8401906ca15da08ba

{
    "clientTcpRtt": 2,
    "longitude": "-0.67180",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "GB",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "cecd18c530734553af575863f9685ffc405ab7d3eca482e802cf799ce77a41eb",
        "clientHandshake": "16e1582e8a0cbfd7c89df47f1e900832fbbbb03bbfe9ba78a1ea94c932a78f89",
        "serverHandshake": "35c2e215299df02ac65d3a074476eac93baff9b3a66193a0d2d152abee91a218",
        "serverFinished": "344da6d950189d5023587978e122c8d78be4e36b966749efa26edcc763ca707d"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Slough",
    "timezone": "Europe/London",
    "colo": "LHR",
    "tlsClientHelloLength": "487",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "SL1",
    "region": "England",
    "latitude": "51.53680",
    "requestPriority": "",
    "regionCode": "ENG",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "yLUvuuM+plUUi/sGaa2ZXstznKkyt24/FlfveljieB0="
}

Found on 2024-10-20 16:55

Fingerprint: b18befd9dd6536aa30550de50513aa3676a95b785c092b25b4696057f6700eeb

{
    "clientTcpRtt": 3,
    "longitude": "-0.67180",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "GB",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "9614710265631e964fe1de704825d2e696b5190f00b500d3c9d3ada544edb68a",
        "clientHandshake": "8168a51c4b61ceb0fc818d848f320c3e2dfc0ff03842f66b489d1cd55474c5fe",
        "serverHandshake": "c864b2fcef8940ad80e1f22497813c369629626a0a67082f62186bd42aa00489",
        "serverFinished": "94056c63aa0f7e301e6856fb429e1f37c9830da9d925cbc58cde57db3fdb8c8f"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Slough",
    "timezone": "Europe/London",
    "colo": "LHR",
    "tlsClientHelloLength": "487",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "SL1",
    "region": "England",
    "latitude": "51.53680",
    "requestPriority": "",
    "regionCode": "ENG",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "1k8A5zLWCoL6WHWqEXgBUUgcn0yLdm5auONxlbrLgN0="
}

Found on 2024-10-18 20:39

Fingerprint: b18befd9dd6536aa30550de5232483ef9e1526d524d01d263ffe060cb272b872

{
    "clientTcpRtt": 185,
    "longitude": "8.68270",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "264e9e5a2146c4e09e8fddc8d8355675032e53a7d540c361ed75093173f15f23",
        "clientHandshake": "e036eeee6584c04366270af5441f8b8fcbc16ee868f36a1d056350fb053858d7",
        "serverHandshake": "19ad0d721a5aacbfe93b01dc3ad4c1f0416ca028c7a3acced473b02e56fc7504",
        "serverFinished": "8b958c8a1a07566515a3e4fa536ec62c58973ad0629e77b05678f1b90cfa56c3"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "487",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "baAUx4Q28u191JOAqawaoQmyvlXuT2g8bKtGQOCYUxg=",
    "region": "Hesse",
    "latitude": "50.11840",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "SIN",
    "country": "DE"
}

Found on 2024-10-17 00:57

Fingerprint: b18befd9dd6536aa30550de50313a6d83023b620e06d8dddc32776bf413d7688

{
    "clientTcpRtt": 1,
    "longitude": "8.68270",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "ce62cac80b66c6d442a4c7e5f9e2eb902aea0b544d0aa047ecb7767e6c24ffd9",
        "clientHandshake": "ac3b49610a87e9c1da6a5dd1e8c59baeef985985574a5f84c94f7298bcf4bc49",
        "serverHandshake": "beb848d126536ed7bfdc8416ccad0eae69b1d1d776b816ca6742d7513b8f1fbc",
        "serverFinished": "c109f46448c4439ca42da094ca6728ed70cdb0c7520b94febfed9bf560cf5bbf"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "487",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "/QMKNZ7hJQoiP3hktVLNjD8kY0kxNiRLrmBLTBGNJiQ=",
    "region": "Hesse",
    "latitude": "50.11840",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-10-14 20:46

Fingerprint: b18befd9dd6536aa30550de50313a6d83023b620e06d8dddc32776bf96b6e640

{
    "clientTcpRtt": 1,
    "longitude": "8.68270",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "31ff97558a2fe16d85ff6b9efe48dfc3b48653f35f00a6cb63739f634f1a0b88",
        "clientHandshake": "8240c67a246007961671856780612f24b1816d442cf10869fef54e13a7c56b9d",
        "serverHandshake": "49123e165020efb34a67229354910235f9c92664e0fa183efc1e96b22c39dd60",
        "serverFinished": "57f92222f9d4f4e32fd1a2f038741ade2e66e79796187bde82c7ff471dfefb4e"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "487",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "cWRJJUqgfkEyhCpIWkR5DoJKNCce1J7P0TKEaWTOA3U=",
    "region": "Hesse",
    "latitude": "50.11840",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-10-12 22:22

Fingerprint: b18befd9dd6536aa30550de599ef834a7f944d1c4d0fcc519eb079b33d6ac707

{
    "clientTcpRtt": 16,
    "longitude": "77.58550",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "AS",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "IN",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "30279a7af70925180c3bceaab2da09a0c5bc5761f47e6b343370a63698a1f7ca",
        "clientHandshake": "a0501f649e9bad7ba4f2d0747db39e474dc7b6be482c40e19387544f019004dc",
        "serverHandshake": "2ec253555c483bf77a092fd50a8f48b1d268c768390a74aeaa2fda0a266b85ee",
        "serverFinished": "e5f44c1a5f74e849b1616e168927f65ddea40a9ce13bf33fdd8cc44613b6bf18"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Bengaluru",
    "timezone": "Asia/Kolkata",
    "colo": "BOM",
    "tlsClientHelloLength": "487",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "560100",
    "region": "Karnataka",
    "latitude": "12.96340",
    "requestPriority": "",
    "regionCode": "KA",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "M5hdFSWsqeTxtwhANBK6VGx4LhzOqnroM2Cw1cSYmU4="
}

Found on 2024-10-10 23:55

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e38775b5f1f7a682a7

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "e643b463b66dfae524c5c9e91b7878197f556bdabd16da1c8f45a7c01426a172",
        "clientHandshake": "3b35f9cabcfd9ca1b71f7cba4dd52797903a727c34891d66ad9e79535912836f",
        "serverHandshake": "b37c11003ce81c1619cbbc7bf827929df1db41a500240eae7a70d9ce150cc8cc",
        "serverFinished": "a5fb380d5494ac457b1287e38d51694a3ee1f4d621a03f9a7c6175ed58f7ebef"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "487",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "5+QPM7pTx8UJedsg6yBSxQilRPJO88NRn+BgzZAG3io=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "Digital Ocean",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-09 01:50

Fingerprint: b18befd9dd6536aa30550de50313a6d8698f36555a38bfa629553c8c4e3b5823

{
    "clientTcpRtt": 1,
    "longitude": "8.68370",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "667b1ea0a5117da7dccc97dda0c653dc708d28c25e0932fd54ccdccfafdaaa32",
        "clientHandshake": "2bfcf51ed39c5b6501d3f79e62d47762c5de6ba60c547d17b1eb1a491bd393fc",
        "serverHandshake": "e4e0d27b1575e6242327553e6ba264d532facbe786d74360643c09999466ce92",
        "serverFinished": "53608e1011306214d792386efce5003670b6712aa56e0f8f1a28423e9e1c160e"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "487",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "oFmO1nUDF8yO4UK2Cgz9E2TnvuIWj7J2DvpqDjcERos=",
    "region": "Hesse",
    "latitude": "50.11690",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-10-06 20:52

Fingerprint: b18befd9dd6536aa30550de50313a6d8b3a6b275d49ca986418a7fec77a81cf1

{
    "clientTcpRtt": 1,
    "longitude": "-74.14030",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "NA",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "03e08a2ba52c17955a39b516172082df01673978811f70bfa0793704297eed3e",
        "clientHandshake": "77496747589996db3ef7263698a38eedd303a00571a39817feaa01328f2ff597",
        "serverHandshake": "84a8e26918105b397db45dee48c59da621bb68a8388722e978ac8116fa0b4a9e",
        "serverFinished": "a13ea73f54d67a7467029e629e2fbb52aa93b52c9082c755ac03d86ddeeb5f4a"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Clifton",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "487",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07014",
    "region": "New Jersey",
    "latitude": "40.83640",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "Digital Ocean",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "Q3KHVmJNr7n/+75um48jaLFkqZjz6A+XUSRCYZhidBU="
}

Found on 2024-10-04 18:22

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e38775b5f1e3163b9f

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "28ea0fa48455375a485f467e77ecb53f1febdbb4c85fa4193244729781501a0f",
        "clientHandshake": "4ace0c7aca45cd571c158a9cfc65433cb59ab77e30a1091e77962039a1e46bb7",
        "serverHandshake": "e9e6b7259e8fcff839144eed76a52f8bea54591b941b3408ae16d0af04b8f3a5",
        "serverFinished": "91dd15a7b5112e513cff410102f0ea4789f10ad554fb5f75f11d5e504b704b31"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "487",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "hGk4q8AusQVqXQuUZndqt7AiQTE+4wDOeP38bDMQP0c=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "Digital Ocean",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-02 10:02

Fingerprint: b18befd9dd6536aa30550de50013a217d85f0c6df9b8924e3d2c0b8498e46d01

{
    "clientTcpRtt": 4,
    "longitude": "-0.67180",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "GB",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "40a80d166f27a2de2915fe03ad338e16358e4fdb25ceccc1797353a72f51715b",
        "clientHandshake": "9756a164f59648abca3c76f2a2d105e063a394880ed60e04f621e6d797fcbefb",
        "serverHandshake": "cddd0803e43cac532d710a2be2b578afca574cb9801c469c42e73113bda02422",
        "serverFinished": "a193bf66ab56617f6219c2d697b0d497cf47655b8b8d1035ff51f008335f83c7"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Slough",
    "timezone": "Europe/London",
    "colo": "LHR",
    "tlsClientHelloLength": "487",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "SL1",
    "region": "England",
    "latitude": "51.53680",
    "requestPriority": "",
    "regionCode": "ENG",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "ZxR/RP7A179eYMPXu+otqx1FIoKF9JkrTaW+fwLYL/g="
}

Found on 2024-09-30 07:30

Fingerprint: b18befd9dd6536aa30550de50613ab81e9d909fb35a76bc8401906ca9006c5fe

{
    "clientTcpRtt": 2,
    "longitude": "-0.67180",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "GB",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "ef762fa9d16da08ee670b91274324b1ade850c91e7eaaa1392f96ccad071082c",
        "clientHandshake": "67b30ed1bfcf86f84eb5eac15c7968bb448b93f65a15b72f1fbb96eafe063b96",
        "serverHandshake": "a7100e43b14812846a3e1d8ae4a0a1894f292cb433379021cecb9963183e43bb",
        "serverFinished": "b5b9b6f6ab8d1e2dd502537ea0723fa0bac7e99464f85b68db7f06b0e1dc8484"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Slough",
    "timezone": "Europe/London",
    "colo": "LHR",
    "tlsClientHelloLength": "487",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "SL1",
    "region": "England",
    "latitude": "51.53680",
    "requestPriority": "",
    "regionCode": "ENG",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "hqd7JA80pHW5fN09Adm2vAYp9Ho6mOFo9Nl9RV04Kw8="
}

Found on 2024-09-28 06:51

Fingerprint: b18befd9dd6536aa30550de50313a6d8698f36555a38bfa629553c8c2af8171a

{
    "clientTcpRtt": 1,
    "longitude": "8.68370",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "38338cd386b25e3fd6331b2c7a34a9638ed58570b5a33975f0140a260da26bea",
        "clientHandshake": "3eba8613b0c0575eb225e53779d0f6c472307c996e64004ab404e2741cc72974",
        "serverHandshake": "a4b54a1b3701ab62d2eab2cfd30c4f82e6bc42c37c5070a2f2a7d737c7b6939f",
        "serverFinished": "637ac81273e7d3cc30362a2335ef29fc732d84f419f4d93519692b119277d759"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "487",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "Ox+oeHPv3Q9BKvuAgyZxByAYssUIbdjTWpNSBKTFpA0=",
    "region": "Hesse",
    "latitude": "50.11690",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-09-26 23:01

Fingerprint: b18befd9dd6536aa30550de50313a6d83eeff30667f41b8f599a007d1f8b66fe

{
    "clientTcpRtt": 1,
    "longitude": "-79.36230",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "NA",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "CA",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "91125c9ac16c44e58b916bf75f5bd04684965f3a64286f92699fcfdbdf588dcf",
        "clientHandshake": "86fc7a7704bea97dd5a85b9bdea98ed8adce8589c9c7832b079a295f051adc02",
        "serverHandshake": "a55f73a93ffd74690bbf5a3b74ed26df35b3d87f1a6eb33a9903a6b48c275792",
        "serverFinished": "a1de07150710bd5b127c6aa5adefd46f1ca9a024cceffbbcad28964e73d56879"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Toronto",
    "timezone": "America/Toronto",
    "colo": "YYZ",
    "tlsClientHelloLength": "487",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "M5A",
    "region": "Ontario",
    "latitude": "43.65470",
    "requestPriority": "",
    "regionCode": "ON",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "ifMHtBgcpoyWmlywMqpewKugkIyWORyLqouepcoqSnI="
}

Found on 2024-09-25 00:37

Fingerprint: b18befd9dd6536aa30550de50313a6d8b3a6b275d49ca986418a7fec5e042ef1

{
    "clientTcpRtt": 1,
    "longitude": "-74.14030",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "NA",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "0e40eb3837948c43bd2e7c17e88a766f0690b4a6c387a84fe915dc84c920b041",
        "clientHandshake": "bb0634d9f16cbe792f79794e64debd592bfd2ad4289fe745530bcec65d412bcf",
        "serverHandshake": "5c0b50e96dcebd62da11cf6194122155bfdccdeb8c3c0d1b030b9dd290728730",
        "serverFinished": "70573748b089456056c2ab2b23fe7ebaa0307260357f229e6c029460195eca93"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Clifton",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "487",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07014",
    "region": "New Jersey",
    "latitude": "40.83640",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "Digital Ocean",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "JoN0j07mE1GtFQWNAf3mYbVsH5qoRJj5Gx8CFBD9J98="
}

Found on 2024-09-22 20:34

Fingerprint: b18befd9dd6536aa30550de50313a6d8698f36555a38bfa629553c8c3333e164

{
    "clientTcpRtt": 1,
    "longitude": "8.68370",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "ec9279a32bebe7086f0b1ccbd78bdf5698df31b34d4dc3bb5a245f618c52f176",
        "clientHandshake": "b2261e9e35efdd6ed2f2e0484e0e5377d6d02a882d8c322b32d80ddfbf87b458",
        "serverHandshake": "0edaaa40ee0ffd2599c82620aea6af527d0be9a9449a12cb625e949beb2f38e0",
        "serverFinished": "f8231d5e245108cc67a244aa5db758fe0c0118c7a4329f762253880b0e9a7654"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "487",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "uzkKzsBOUcflLTO00FvVplxpspaMqqrfyqE3gVRnHM8=",
    "region": "Hesse",
    "latitude": "50.11690",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-09-20 19:02

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e38775b5f14eb34cc5

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "26fc195988fa42ba370c9b77e9c40be2f5d0ef29e956237beb8bf585260ec5ae",
        "clientHandshake": "39606134c6235bb8c5c4eb8a101cf4523ac1347913237aa2a1159533a484c0e9",
        "serverHandshake": "53361c86290d7b419830d181a8c5b81bef9382923915be6df3b6add5638d6f8f",
        "serverFinished": "754dcf0c993aa6b7d1946cef5675868e398aa741d47a902697033b1652b4d5e7"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "487",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "CaRuTm4wfCQqGMBiMTV8eTs0tSsdSFozJkbaesCGD8c=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "Digital Ocean",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-18 04:28

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e38775b5f17a331ec9

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "5f8abf49b54f0c6b5f4f70e7d96f59cfc94ee7a26e0418b37ede9f4605eeef3b",
        "clientHandshake": "42c3680def61fce0ee03cb05da15fc70a04e6e351d5d3b71ef2fb88bff535208",
        "serverHandshake": "a11b0ad6e0b45be06069fe0756941d86437758a64193956be932b498cf952ef0",
        "serverFinished": "6d8815fbe58552bf1eb4b3bc78ba680096cc713b309fa0188266ed98b37a2d00"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "487",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "gpn4a2Bpac0CaMA5KeyCCsdDiVTEPINef+VIJ/R0gQU=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "Digital Ocean",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-16 22:44

Fingerprint: b18befd9dd6536aa30550de50313a6d8698f36555a38bfa629553c8c7fb6c9e7

{
    "clientTcpRtt": 1,
    "longitude": "8.68370",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "d38360c98c6ca9df0a556f58ad1289bd024878f44b945508552e9c09fc0b5e10",
        "clientHandshake": "163a53191fe14ec9b456ea0dc0d5d633552af6e1512dc366022041488ea3635a",
        "serverHandshake": "5d51c708c48881b2a4d93e481670bee33d98ff18053694e3a55762cde50ca1da",
        "serverFinished": "0a498796623736667c1da1b43b1b96a71c3b81753625430cff18bca997c191f4"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "487",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "IrUHK1Z1N4YNVufFdun+HcmyzWWwqI5FFIe181CR/1M=",
    "region": "Hesse",
    "latitude": "50.11690",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-09-14 21:34

Fingerprint: b18befd9dd6536aa30550de50313a6d8698f36555a38bfa629553c8cae75bc94

{
    "clientTcpRtt": 1,
    "longitude": "8.68370",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "5740b52f9f4fec1319b7dd39ae0bc0b1e7fe8ce8f81bc8d78885b6a4551c9ab3",
        "clientHandshake": "f4bedbb4182f0a193b6f8911486a9251333cea6e67e31a929fe589384a6bcf96",
        "serverHandshake": "5f55978d030fff4423f556c6d2d5c8c0aeec761f5c6eefc8714798199fd3e95e",
        "serverFinished": "ca28368ac3dc36b0c8522b1d376b659ed97b6664b8b597a58501a41e59676b08"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "487",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "7VexSGrCNu97EIaACJb8BTeQJyQ6967qOX8zeVEjt+E=",
    "region": "Hesse",
    "latitude": "50.11690",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-09-12 23:59

Fingerprint: b18befd9dd6536aa30550de50313a6d8698f36555a38bfa629553c8ccb370d4c

{
    "clientTcpRtt": 1,
    "longitude": "8.68370",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "8549477bdbafcab950f1cafc42ee951034af57188e5bc2f00f6f87f104c4b23c",
        "clientHandshake": "c54127bb13b33bc9ba86a8c353ae4db55c371bc0f863efe199beef47dc5467d8",
        "serverHandshake": "c433867dc511c6e8146c19c398df330cecf4d1ecafa22d259f03593621d84cc9",
        "serverFinished": "5a3938fdaa92e47eec8a2a3ff527bf9f370a25c0a664ace861e761d6506a77e4"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "487",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "HSINMKCzUun8H5DgFUQxd8k+cW+KBwW4UZODZSvqP2s=",
    "region": "Hesse",
    "latitude": "50.11690",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-09-11 03:14

Fingerprint: b18befd9dd6536aa30550de50613ab81aa8fde659788b69606b969dc7bc49b29

{
    "clientTcpRtt": 2,
    "longitude": "-79.36230",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "NA",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "CA",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "584b08c0d0eb2480702c56e9d870ce32ab291d063ada686c9a264489ef9ebcef",
        "clientHandshake": "9dfeb8ed881ae90f98f46062acffdc2178cf3df760eeb0b0c7527ef323c52bec",
        "serverHandshake": "f5b8e57df8256525c6732d4573a1888a9e2c9d9b8e0009ce110f20b76c8495d8",
        "serverFinished": "cfd2e53778deac6bdad926f74e80341870952ae1646bff51fe16a9180d7226ac"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Toronto",
    "timezone": "America/Toronto",
    "colo": "YYZ",
    "tlsClientHelloLength": "487",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "M5A",
    "region": "Ontario",
    "latitude": "43.65470",
    "requestPriority": "",
    "regionCode": "ON",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "MBTkJZVjuZGz+08UX2pszWOamdqUGuM5cXoC0elZd/E="
}

Found on 2024-09-09 00:19

Fingerprint: b18befd9dd6536aa30550de50613ab81817eb751511f382a05d24bc02ee6507a

{
    "clientTcpRtt": 2,
    "longitude": "-74.02470",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "NA",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "2eca03bde2552cbfb9a4f383d414aba8a09c992fc95825459501f35739a495b3",
        "clientHandshake": "cb958e5cfdc63ae79741ada74f83fb089eccee1583c3eb21bedd0b50423a0aaa",
        "serverHandshake": "65b8f55f04a4148640cc5fef6732549626fad2c639b9fd16c3e6f24f3bf3d7b4",
        "serverFinished": "9028ac54af47be8c1104a58fe5c83eea92f3df0cf62808a7798d1b2103149fdd"
    },
    "tlsVersion": "TLSv1.3",
    "city": "North Bergen",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "487",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07047",
    "region": "New Jersey",
    "latitude": "40.79300",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "Digital Ocean",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "biYufNYib9worRwpHhq4vO1BzmkNlvyPb8ajtPes+EI="
}

Found on 2024-09-07 07:29

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: go.us.gcore.34353637.xyz
Port: 443
URL: https://go.us.gcore.34353637.xyz

First seen 2024-09-23 08:49
Last seen 2024-11-22 08:13
Open for 59 days
- Fingerprint: b18befd9dd6536aa30550de5c96eae6f883c98c0883c98c0883c98c0883c98c0
```
{
  "list": []
}
```
  Found on 2024-11-22 08:13
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: cdn.self.ge
Port: 443
URL: https://cdn.self.ge

First seen 2024-05-06 14:38
Last seen 2024-11-22 07:26
Open for 199 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc525503431e

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Friday, 22-Nov-2024 11:26:31 +04
Restart Time: Monday, 18-Nov-2024 21:11:05 +04
Parent Server Config. Generation: 162
Parent Server MPM Generation: 161
Server uptime:  3 days 14 hours 15 minutes 26 seconds
Server load: 15.83 13.86 13.79
Total accesses: 34681678 - Total Traffic: 355.1 GB
CPU Usage: u4055.44 s2667.68 cu0 cs0 - 2.17% CPU load
112 requests/sec - 1.2 MB/second - 10.7 kB/request
218 requests currently being processed, 604 idle workers
K._KK___K________R____._CKR_K____C___.K___.__________C_K________
________K__C________KRK_R_______________K_C_______C_C___C___W_K_
________K__K____K___R_K_C_C_____K_K____CRRC_K_K__K_______K______
_KW___K__K____R_______C____R_______C________K_C___K__W_______K__
___C_______K_C__W.R____K__K_K______KC_____C________K_K_______K__
___C_KC_K___._KC____R____CKK__C_____K__.CKC___CK___R__C_KKK__C__
_____KR__W_K____K__KC_______R__W__C_K.__K__K_K__.KKR____C_R____C
_K__._______C____.R_..CKK_C_K____K____C...C..___RC__R_K_RK__W_CR
___.__R_CK__C___K_._..________K______R__.____KC__.____K___..K._K
__.____._____R.CC_.K__K__K_____._C_KC__K_____._....K_.KC_._..__.
.K_....K_.W_....K__...___...__._._K_._____._._._.K___K_K_.__K.__
.....__......_..._.K._K___..._._R_C_...K__..K..R__.___._K.._.._.
_..._._.__K._._...._..K_K_.______.._R..K__K._C_R__.._...__R____.
.._C__.K__.____.._KC..__..CC.._K_K_.__.__._K....__K_.R___._K__._
_.KCK_._._KKK_.._..W.......C._._....K.K...._...__.K.._..K.....__
._.__C.K.K..__.__._........_K.__...._.....__._._R..._._C.K._.._.
..._..___..K........___.._._.R......._..__._..R..._.._....._....
..........................................._.........._.........
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-161129751/8/42781K
0.150314.10.03463.02
5.152.102.201leadercredit.self.ge:443GET /status/i.tsutskiridze/?t=1732260391775 HTTP/1.1

1-161-0/0/42281.
1.206320.00.00406.94
92.241.77.162billing.self.com.ge:443NULL

2-161203250/64/42249_
1.543530.00.48401.63
109.238.228.178family.self.ge:443POST /api/Device/InsertDeviceData/ff92d4e4d0ef255c HTTP/1.1

3-161270431/114/41986K
2.592162.71.64419.27
92.51.71.38leadercredit.self.ge:443GET /status/n.naphishvili/?t=1732260395892 HTTP/1.1

4-161135681/214/42194K
6.031103.92.65418.05
217.147.236.164grandinternational.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

5-16163170/150/42420_
4.535910.01.65436.93
80.241.251.210testing.self.ge:443POST /api/Chat/PoolMessages/MTAyNjcwOTQyNg==/fe697bd0-b4e3-49bf

6-16147560/24/42616_
0.610170.00.18439.00
109.238.227.29billing.self.com.ge:443NULL

7-161173530/191/42266_
5.1761440.01.68434.47
217.147.236.164vakomotors.self.ge:443GET /cron/sms.php?s=vakomotors&t=1732260361 HTTP/1.1

8-16139441/95/41893K
1.882164.20.96397.62
62.168.165.226citycom.self.ge:443GET /status/62002000297/?t=1732260389205 HTTP/1.1

9-16194220/83/42359_
1.581600.01.19435.84
109.238.228.178family.self.ge:443POST /api/Device/InsertDeviceData/ff92d4e4d0ef255c HTTP/1.1

10-16112960/331/42167_
8.45380.03.60414.20
94.43.70.88billing.self.com.ge:443NULL

11-161294470/41/41730_
1.615500.00.17424.69
37.232.46.122billing.self.com.ge:443NULL

12-161132010/8/41972_
0.161120.00.24396.10
193.176.212.86billing.self.com.ge:443NULL

13-161268240/194/41656_
5.921560.03.64435.03
80.241.251.210

14-16123880/166/42004_
4.222150.02.07405.30
109.238.230.214billing.self.com.ge:443NULL

15-16112530/33/41790_
0.511890.01.29417.51
94.43.99.254spar.self.ge:443POST /api/Device/InsertDeviceData/1e3830204cc82beb HTTP/1.1

16-16148870/27/42347_
0.4961470.00.11405.16
217.147.236.164billing.self.com.ge:443NULL

17-161146400/5/41668R
0.14070.00.24400.18
187.251.143.76

18-16189370/14/41597_
0.290110.00.42425.25
5.152.102.201billing.self.com.ge:443NULL

19-161175510/381/41976_
10.595780.05.81423.77
2.57.219.138

20-161259060/67/41513_
2.453620.00.93413.15
94.43.90.166craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/f22b41145c116695 HTTP/1.1

21-161130310/72/41864_
1.523130.00.31429.22
109.172.176.90billing.self.com.ge:443NULL

22-161-0/0/41776.
1.79800.00.00407.63
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

23-161108110/438/42113_
16.4432220.05.57435.94
217.147.236.164billing.self.com.ge:443NULL

24-161130321/72/41770C
1.29035312.50.96436.96
37.110.177.203billing.self.com.ge:443NULL

25-161185671/266/41926K
5.172104.22.39416.73
37.232.45.18novotel.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

26-16113060/34/41418R
0.580530.00.20422.78
109.238.228.178

27-161178980/261/41848_
8.3162060.03.19420.23
217.147.236.164tsurgroup.self.ge:443GET /cron/sms.php?s=tsurgroup&t=1732260361 HTTP/1.1

28-16190321/14/41627K
0.360454196.50.25403.57
185.134.174.138family.self.ge:443GET /buffer/tmp/family/RenderPhoto/61-user_photo_163_5faacda718

29-161125430/362/41705_
9.3462110.03.89427.65
217.147.236.164total100.self.ge:443GET /cron/sms.php?s=total100&t=1732260361 HTTP/1.1

30-161205770/59/41664_
0.933520.00.55412.76
109.238.228.178family.self.ge:443POST /api/Device/InsertDeviceData/ff92d4e4d0ef255c HTTP/1.1

31-16123900/177/41777_
4.5762030.01.97426.11
217.147.236.164zodi.self.ge:443GET /cron/sms.php?s=zodi&t=1732260361 HTTP/1.1

32-161215120/253/41749_
5.344850.02.92419.01
109.238.228.178family.self.ge:443POST /api/Device/InsertDeviceData/ff92d4e4d0ef255c HTTP/1.1

33-161130771/77/41743C
2.160124.01.15407.54
178.134.216.70billing.self.com.ge:443NULL

34-16148880/25/41365_
0.3861480.00.17402.17
217.147.236.164billing.self.com.ge:443NULL

35-161237040/120/41464_
4.1161250.01.86403.61
217.147.236.164billing.self.com.ge:443NULL

36-161195080/128/41649_
3.584660.01.00390.61
94.43.99.254spar.self.ge:443POST /api/Device/InsertDeviceData/1e3830204cc82beb HTTP/1.1

37-161-0/0/41488.
4.96700.00.00446.42
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

38-16190343/14/41550K
0.78212315.40.06408.21
185.115.5.118kanti.self.ge:443GET /status/33001068424/?t=1732260388912 HTTP/1.1

39-16124390/184/41710_
3.950660.01.57422.33
213.131.47.90family.self.ge:443POST /api/Device/InsertDeviceData/7c4f25aa57656ca8 HTTP/1.1

40-16113070/29/41355_
0.462620.00.24408.78
109.238.228.178family.self.ge:443POST /api/Device/InsertDeviceData/ff92d4e4d0ef255c HTTP/1.1

41-161259070/55/42390_
1.994590.00.81439.77
94.43.85.222spar.self.ge:443POST /api/Device/InsertDeviceData/5112aaedcf9e7819 HTTP/1.1

42-161-0/0/41902.
2.411570.00.00438.48
178.134.23.230spar.self.ge:443POST /api/Device/InsertDeviceData/53f9a799d58fdfdf HTTP/1.1

43-16186530/125/41934_
3.2065120.01.69434.54
217.147.236.164billing.self.com.ge:443NULL

44-16149230/21/41808_
0.49180.00.09418.63
80.241.243.66enterprise.self.ge:443GET /api/cards/?R=II-3-d1-r1_in HTTP/1.1

45-161130790/80/42121_
3.9525450.00.43418.49
213.217.16.4nikora.self.ge:443POST /api/Transactions/Register HTTP/1.1

46-161314430/105/41893_
3.093150.01.36412.67
91.151.136.160billing.self.com.ge:443NULL

47-161259720/188/41335_
5.730190.00.91420.10
212.72.147.242billing.self.com.ge:443NULL

48-161287550/587/42057_
13.83160.07.16419.26
217.147.236.164billing.self.com.ge:443NULL

49-16190900/15/41288_
0.530610.00.

Found on 2024-11-22 07:26

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc524e81d0a8

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Wednesday, 20-Nov-2024 13:34:19 +04
Restart Time: Monday, 18-Nov-2024 21:11:05 +04
Parent Server Config. Generation: 65
Parent Server MPM Generation: 64
Server uptime:  1 day 16 hours 23 minutes 14 seconds
Server load: 2.88 3.39 3.81
Total accesses: 15889814 - Total Traffic: 157.7 GB
CPU Usage: u3096.56 s1808.87 cu0 cs0 - 3.37% CPU load
109 requests/sec - 1.1 MB/second - 10.4 kB/request
623 requests currently being processed, 279 idle workers
R_C_KC_KC____KKK_KKK__RRKKKK.KCKCCCR_KK_K_KKC_KC_RKKKRC___CK_CKK
_C_RK_C_C__CKKC__C_C___WKK_RRK_CCCC_KKCK____CC_K__K__CCKKKCK__C_
CKK_R_KRKCCR_K_K_KK_C_K__CKCC_CKCK_R_RCC_K_KKK___WKCC_KW.CKKK_CK
CW__KRCKC_KC_.KKWCK.__C_.C.RKKCK__C__KCW___K_.K.CCR_K_K.CKKCCRC_
KCKKKK._KC___KKK._.CKCC_KCK_C.KKK__KCCK_CCC___C..KC.____.KKCC.C_
C_K_K_KCR_CCK.RK_CC_K_.C_C.K._RCRCKCK_._CKK._K__CKRCK_KKKKKCKK_C
.R.K._KR.C.KKK__KKKK._KKKCC.C_C_.K__KK_KKR_...K.K_.CCK.CCKCC.R_K
.KCK.KCKKRRRCK.KCK.CK__.KCCCKC_CKCK_C_R_KK._KKC_K.KK_._RKC.___.K
C__KK_CKKKC___K__._KC_KK_KKKK_CKK___KKC.KK._C.KK_.C.___K__K__CKK
KK__WC.KKK.__C__C_CCRC.__.._KC_C.R._CC_KKWC.C__WC_W_.K_.KK.CKR._
_KCCCCCK._RC_C..RCK.WK_K__.CKRKCCCCKC___.K__C_KKK_C.R.C_KC_KCKCC
._C.K_.._KRK.R___K.C..CK_CRCCKK..KK.CK_CCKK_CC_KC.C..CCC____C.KK
__CKC_..RCCCKK.C__C_K.._R..KKCK_KKC__.KC.KKCCCKKK.K_.CCK_CC.CKKK
__.._..CKWCK_KC.K.KK_KKK.C_CK.W.WC_..C_KKKKC___CC__.R.C_.KC_K..C
._.KKCK._.KKC_C.___CC_.R__.KCCC_K.C_W.CC_C_C..K.C_.__CKK.__R..CC
K.KKCK.KC.KKC.KK_CC___W__C..C.C.KRK_C._CKCKKK..C_K_.KCC....R.KCK
.__.K.K.C_KRK.__C__C..KC.._CC.._.K.R....C.....C.....K.C.........
.........K.........._...........................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-64247540/56/19626R
0.7141090.00.92200.93
5.152.102.201

1-64117950/3/19473_
0.05190.00.01183.47
212.72.154.62zoommer.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

2-6497151/82/19395C
1.30173.90.35179.01
217.147.236.164billing.self.com.ge:443NULL

3-6440690/32/19228_
0.590650.01.33192.83
188.169.40.246family.self.ge:443POST /api/Device/InsertDeviceData/98a2e097235cacf5 HTTP/1.1

4-6481851/10/19340K
0.150333.90.04188.98
217.147.236.164scroll.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

5-64129961/148/19516C
3.67164.01.09203.55
217.147.236.164billing.self.com.ge:443NULL

6-6497520/84/19369_
1.440550.00.84187.00
91.151.137.42navne.self.ge:443POST /api/App/GetWorkingStatus/7f83e7dc-790a-4259-8e29-26327799

7-64131091/157/19517K
6.942154.13.29188.01
92.51.127.138kanti.self.ge:443GET /status/01009015057/?t=1732095257169 HTTP/1.1

8-6442081/18/19282C
0.30164.00.08176.22
217.147.236.164billing.self.com.ge:443NULL

9-64278770/443/19401_
11.240660.04.32185.37
109.172.174.222billing.self.com.ge:443NULL

10-64323080/173/19029_
4.220510.02.50185.95
188.169.40.246family.self.ge:443POST /api/Device/InsertDeviceData/98a2e097235cacf5 HTTP/1.1

11-6483890/10/19225_
0.12060.00.04182.27
217.147.236.164billing.self.com.ge:443NULL

12-6447270/228/19514_
3.9001150.02.83179.89
80.241.251.210staff.self.ge:443POST /api/Chat/PoolMessages/MjE2MDQ1MTEwNw==/927fdaed-e030-4c1e

13-6483901/10/19085K
0.17064.00.04190.58
217.147.236.164swisscapital.self.ge:443GET /cron/sms.php?s=swisscapital&t=1732095241 HTTP/1.1

14-648732/89/19050K
2.79095423.51.48175.43
212.72.132.162tserti.self.ge:443GET /buffer/tmp/tserti/RenderPhoto/4761-user_photo_1616_922f567

15-64118411/4/19195K
0.06064.00.02181.48
217.147.236.164unimedi.self.ge:443GET /cron/sms.php?s=unimedi&t=1732095241 HTTP/1.1

16-64138040/276/19578_
5.431740.02.75183.67
109.238.230.214billing.self.com.ge:443NULL

17-64120061/204/19100K
3.60164.01.23173.65
217.147.236.164ollivandergroup.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

18-64137501/135/18965K
2.67193.91.16187.50
217.147.236.164noste.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

19-64103161/290/19364K
7.160152.72.55192.28
212.72.147.242geocredit.self.ge:443GET /status/25001049805/?t=1732095258333 HTTP/1.1

20-64221360/37/18907_
5.09180.00.18184.93
87.253.46.230billing.self.com.ge:443NULL

21-6484790/12/19101_
0.170760.00.05185.18
92.241.75.34family.self.ge:443POST /api/Device/InsertDeviceData/eba0e85629a87981 HTTP/1.1

22-648770/92/19079R
1.876230.01.27178.83
193.138.97.50

23-64237970/536/19290R
18.144440.09.55186.17
146.255.232.134

24-64273651/194/19198K
4.23153.92.73187.73
217.147.236.164practice.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

25-64249721/41/19435K
0.611104.30.17184.40
94.240.253.37bttg.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

26-64249751/50/18979K
0.842133.90.73201.57
95.104.118.142arkan.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

27-6442491/17/18955K
0.23163.90.07183.48
217.147.236.164nagemo.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

28-64-0/0/19136.
4.931710.00.00185.66
92.241.75.34family.self.ge:443POST /api/Device/InsertDeviceData/eba0e85629a87981 HTTP/1.1

29-64138381/58/19175K
0.91283.90.24195.88
217.147.236.164mermisi.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

30-64195301/172/19268C
8.4311157.21.32197.11
37.232.43.150billing.self.com.ge:443NULL

31-64250061/31/19288K
0.52184.00.13194.12
217.147.236.164stadiumhotel.self.ge:443GET /cron/sms.php?s=stadiumhotel&t=1732095241 HTTP/1.1

32-6450971/85/19136C
1.97053.91.35191.65
217.147.236.164billing.self.com.ge:443NULL

33-6484801/10/19134C
0.161184.30.04178.10
94.137.163.216billing.self.com.ge:443NULL

34-6484810/7/18913C
0.121470.00.03177.57
92.51.112.90billing.self.com.ge:443NULL

35-6450980/76/19221R
2.7461030.00.42196.46
92.241.76.62

36-64323090/176/19137_
3.0801130.01.51170.08
178.134.88.110spar.self.ge:443POST /api/Device/InsertDeviceData/b70564b9c9bd5aab HTTP/1.1

37-64139401/61/19287K
0.792286.50.35200.05
5.152.102.201leadercredit.self.ge:443GET /?ref=Logo HTTP/1.1

38-64165131/475/19071K
9.622363.95.05183.64
185.154.188.150oc.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

39-64192990/525/18934_
22.630560.04.95192.56
212.72.131.254ici-paris.self.ge:443POST /api/App/Initialization/a0e2bd80-7a8f-45c8-b756-dc148b4bda

40-64213581/50/19068K
1.64163.90.22184.29
217.147.236.164niks.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

41-6482210/572/19747_
16.670890.07.29195.97
188.169.40.246family.self.ge:443POST /api/Device/InsertDeviceData/98a2e097235cacf5 HTTP/1.1

42-64221661/128/19310K
2.16273.91.36194.05
217.147.236.164mozaika.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

43-64219681/355/19027K
8.320364.14.29193.13
212.72.132.162tserti.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

44-64139411/69/19245C
0.88153.90.43203.52
217.147.236.164billing.self.com.ge:443NULL

45-6498660/323/19344_
6.11180.03.05185.65
31.146.20.170navne.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

46-64118421/5/19358K
0.070183.90.02177.45
217.147.236.164spar.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

47-64250071/37/19049C
0.70174.00.47184.34
217.147.236.164billing.self.com.ge:443NULL

48-64214710/46/19575_
0.700710.00.24199.20
217.147.236.164bil

Found on 2024-11-20 09:34

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52cafe8bf2

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Monday, 18-Nov-2024 10:43:06 +04
Restart Time: Friday, 15-Nov-2024 16:09:05 +04
Parent Server Config. Generation: 72
Parent Server MPM Generation: 71
Server uptime:  2 days 18 hours 34 minutes
Server load: 13.65 10.36 11.24
Total accesses: 22629134 - Total Traffic: 186.8 GB
CPU Usage: u2546.92 s1737.83 cu0 cs0 - 1.79% CPU load
94.4 requests/sec - 0.8 MB/second - 8.7 kB/request
1033 requests currently being processed, 0 idle workers
KKKKKCKKKKCKKKCKKRKKKKC.K.C.KKCKCKCC.RKKCKCKCKKKKKKK.CKKCKKKKCKK
K.CCKCCKCKKKCKCKKCCKKCKCKKKKKCKCK.CCCKKKKKCCK.KKCKKCCCKKCKKKKCKK
CKCCKKWKKKCKKKCKCCKCCKK.KKKKCKCKCKK.KKCCCKCKKKKCKKKWKCKCKCRKKKCC
KC..KKKKKCCCKKCCWCK.CKKKKCKKCKKKCKCC.CCCCCKCKCKKKKCCCKCCCCCCKK.K
KCKKKKC.KK..KCCKKKC.CCCCCCKKKKCKC.KKKC.CKCKCCKWKK.KKCKKKKCKKKKKC
KRKKCK.KC.KKCWKKCKK..K.CC.KKKKCC.KKR.KKKCKKKKRKKC..KRKR..CCKK.C.
R.CK.CR.CKKCKKCCKK.KKKCKKC.KCKKKCKKKKCKCKCKKCCCKKKKCKCKCC...CKKC
RCK..KKCCKKCCK.CKCCKKKKCCCKCCKCKCCKK.KKC..KK...CCKKKCCKKKRRKK.KK
WKCCKK.CCK.KKK.KCK.KKKKCCCCCKKKKCKCC.K.KKCKKKCCCKWKKKCKKK.KCC.KK
KCCC.CKC.KCKC.RCCKRCKKKCCK.KC.C..K..KCKR.KCKKRKC....KCCCC.KKCKCK
C.KRCKKCC.CKKKKC.C.CC.KKWCK.KKCKCKRCKKRCK...CC.KKKCC.CCCKCCK.KRW
CKCKKKCKKCCK.K.CKCRRKCCKCKRCC.CRC.KKKKKKKKKKKCKCKKKKCKRCK.KKKKCC
KKCK.C.C.KCKCK.CCKCKCCKKKCC.CWKCCCRKKKKKCCK.KKKKKKKKKCKCCCRCKK.K
.WKCCCCKKCC.RKCCCKKC.KCKKKK.KKKKK..KKK.CCKCKCCKRKC.C.KCKCKCR.K..
CKCKKCCKKKCKCKCKCKKKK.CKKCKK...KR.KKCCK.CCCCKCCCKKKCKKKCR.CCKKKK
CKKKKKKRCKKCK...KKRKKKKCKKKKKKCKKKKK.RK.KC.C.KKKK.CKKCKCCKCKKKCK
KC..CK.KK.CKKKKKK.CK.KKKKK.KKKK.K.K.KC.CC.KCKCCCKKCCCKKWKCCCKKKC
CK..CKKCCKKCKCCKC.KKCCK.KKKKCKCKKKCCK.KCKCCKKKCC..KKCKCKKKKKKCK.
C.CKCKKCKCKKKCKKW.CC.KCWKKKCCK.K................................
...K............................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-71246581/183/29880K
3.88293.91.20231.86
217.147.236.164globalerty.self.ge:443GET /cron/pool.php HTTP/1.1

1-71234891/45/29391K
1.442353.90.79254.14
217.147.236.164gnsc.self.ge:443GET /cron/pool.php HTTP/1.1

2-7119944/343/29573K
8.010688.83.94241.20
92.241.76.10lazikacapital.self.ge:443POST /?option=s&service=reloadweeksum&t=1731912185243 HTTP/1.1

3-71210111/203/29728K
3.691283.92.56250.36
217.147.236.164livingpixels.self.ge:443GET /cron/pool.php HTTP/1.1

4-71308241/106/29856K
3.1915443.81.22243.62
217.147.236.164dwc.self.ge:443GET /cron/controllers_data.php HTTP/1.1

5-7113063/359/29397C
7.4401119.04.83260.51
92.51.95.114billing.self.com.ge:443NULL

6-71321091/412/29632K
8.572713.95.21252.19
217.147.236.164georgianproducts.self.ge:443GET /cron/controllers_data.php HTTP/1.1

7-71108271/75/29716K
1.190254.10.73252.94
146.255.232.134gsn.self.ge:443GET /status/ngeguchadze31/?t=1731912184830 HTTP/1.1

8-71119431/7/29619K
0.11283.90.03242.40
217.147.236.164barambo.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

9-7178201/260/29579K
6.751223.94.00242.07
217.147.236.164letre.self.ge:443GET /cron/pool.php HTTP/1.1

10-7126311/22/29457C
0.461134.10.30229.62
188.169.83.111billing.self.com.ge:443NULL

11-71108781/69/29471K
1.602284.01.55226.47
5.152.14.2dhl.self.ge:443GET /status/568656124/?t=1731912181358 HTTP/1.1

12-71261241/263/29414K
5.98083.93.09236.17
217.147.236.164mideacaucasus.self.ge:443GET /cron/pool.php HTTP/1.1

13-71272871/35/29286K
0.57293.90.15253.23
217.147.236.164gth.self.ge:443GET /cron/pool.php HTTP/1.1

14-7130431/90/29471C
1.610663.81.12232.55
217.147.236.164billing.self.com.ge:443NULL

15-71149831/68/29380K
1.3611173.91.08238.89
217.147.236.164meama.self.ge:443GET /cron/pool.php HTTP/1.1

16-71308801/104/29380K
2.7512373.80.85241.89
217.147.236.164hpm.self.ge:443GET /cron/controllers_data.php HTTP/1.1

17-71235670/41/29448R
0.580140.00.82245.36
217.147.236.164

18-71116721/228/29264K
3.961373.93.16232.08
217.147.236.164kingsolomon.self.ge:443GET /cron/pool.php HTTP/1.1

19-71158861/2/29516K
0.030115.30.02226.43
146.255.253.238tskaltuboplaza.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

20-71309211/97/29537K
1.821363.90.74254.27
217.147.236.164marjan.self.ge:443GET /cron/pool.php HTTP/1.1

21-7126781/19/29125K
0.3123603.80.45232.62
217.147.236.164cmg.self.ge:443GET /cron/controllers_data.php HTTP/1.1

22-71193581/55/30010C
0.931893.80.53259.34
217.147.236.164billing.self.com.ge:443NULL

23-71-0/0/29446.
0.414700.00.00245.24
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

24-7131531/84/29364K
1.53283.91.14238.35
217.147.236.164hit.self.ge:443GET /cron/pool.php HTTP/1.1

25-71-0/0/29559.
1.211300.00.00235.24
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

26-71309221/106/29585C
1.700723.80.95235.70
217.147.236.164billing.self.com.ge:443NULL

27-71-0/0/29194.
0.513100.00.00243.35
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

28-71109191/73/29493K
1.411254.20.58251.33
31.146.44.35dio.self.ge:443GET /status/01021007168/?t=1731912185347 HTTP/1.1

29-7183201/21/29384K
0.231233.90.35233.56
217.147.236.164kvarelilake.self.ge:443GET /cron/pool.php HTTP/1.1

30-71152331/222/29423C
4.35073.92.72251.51
217.147.236.164billing.self.com.ge:443NULL

31-7190981/148/29681K
7.9923673.81.81225.74
217.147.236.164dio.self.ge:443GET /cron/controllers_data.php HTTP/1.1

32-7183701/12/29228C
0.191304.10.06234.25
178.134.71.218billing.self.com.ge:443NULL

33-71273441/49/28757K
0.9011603.80.17232.61
217.147.236.164ic.self.ge:443GET /cron/controllers_data.php HTTP/1.1

34-71255461/368/29049C
6.900953.86.72230.42
217.147.236.164billing.self.com.ge:443NULL

35-7138031/175/29313C
3.760603.91.65245.63
217.147.236.164billing.self.com.ge:443NULL

36-71-0/0/29541.
0.4145140.00.00246.08
178.134.79.174billing.self.com.ge:443NULL

37-7127260/27/29235R
0.262150.00.31244.39
188.169.13.34

38-71120011/7/29397K
0.110723.90.03257.33
217.147.236.164kreston.self.ge:443GET /cron/controllers_data.php HTTP/1.1

39-71194481/56/29384K
1.321133.90.58270.25
217.147.236.164letsgo.self.ge:443GET /cron/pool.php HTTP/1.1

40-7183711/14/29296C
0.26073.90.06226.22
217.147.236.164billing.self.com.ge:443NULL

41-71211351/201/29540K
4.181483.91.93268.02
217.147.236.164binyamin.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

42-71195041/50/29634C
0.77053.90.81230.10
217.147.236.164billing.self.com.ge:443NULL

43-71273731/48/29423K
0.602532.70.43279.41
92.51.105.122zoommer.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

44-7114071/335/29544C
7.490773.87.11252.36
217.147.236.164billing.self.com.ge:443NULL

45-71235791/112/29420K
1.80263.90.85252.52
217.147.236.164hashbank.self.ge:443GET /cron/pool.php HTTP/1.1

46-71169081/372/29438K
7.7024103.85.62256.81
217.147.236.164dhm.self.ge:443GET /cron/controllers_data.php HTTP/1.1

47-71322231/423/29320K
9.0321243.85.56247.03
217.147.236.164gtc.self.ge:443GET /cron/controllers_data.php HTTP/1.1

48-71273741/32/29255K
0.44163.90.13232.34
217.147.236.164mercurydelivery.self.ge:443GET /cron/pool.php HTTP/1.1

49-71195051/59/29264K
0.832943.90.24231.00
217.14

Found on 2024-11-18 06:43

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52e8c33245

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Saturday, 16-Nov-2024 06:17:58 +04
Restart Time: Friday, 15-Nov-2024 16:09:05 +04
Parent Server Config. Generation: 25
Parent Server MPM Generation: 24
Server uptime:  14 hours 8 minutes 53 seconds
Server load: 0.73 1.51 1.64
Total accesses: 4905664 - Total Traffic: 41.7 GB
CPU Usage: u1866.94 s985.42 cu0 cs0 - 5.6% CPU load
96.3 requests/sec - 0.8 MB/second - 8.9 kB/request
17 requests currently being processed, 653 idle workers
____._________..__._____________K_._____.._____________.____.___
___.__________C_______.__..________.____.______.________________
_______.______._________________.__________C_.___._____________.
______.__.___________.___._K.__._______________.______W__.______
_________________.____.R_K______W___._______._______._________._
____________._.__________________C._______.__.____________._K___
___________.___.__._______.________._.___W_________________.____
.._________.____._.___._.__..._._.________________________._____
.________.K____._______________._____.___.__._______._K_____..._
____________K___._.__._____..___.___.______________.K._.________
____________._________..C............_.._.._._........___......_
._._..W.__......___....._._.._......_.._._..__.._....._._.......
_._._._.._.........__._.._..........__...._.._........_.._....._
__..___._........._......_._._._._.._._....__._._...._._...._...
....__..___..._......_.__....___.._.._...___.._......._...._....
__..__._...._....._.............................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-24103530/71/6384_
0.8519570.00.2856.03
141.8.208.32spar.self.ge:443POST /api/Device/InsertDeviceData/b4ec81a124267321 HTTP/1.1

1-24162300/11/6135_
0.181500.00.0459.12
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

2-2497900/111/6113_
1.6410520.00.4653.56
213.131.55.110spar.self.ge:443POST /api/Device/InsertDeviceData/60ebb8e7e630ea80 HTTP/1.1

3-24267750/132/6187_
2.75121340.00.5252.58
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

4-24-0/0/6199.
3.82700.00.0049.27
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

5-24267550/325/6190_
4.93101210.01.3055.16
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

6-2419240/84/6333_
1.232060.00.3355.26
217.147.236.164yorkholding.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

7-24268960/102/6309_
1.4715550.00.8354.23
5.152.119.230spar.self.ge:443POST /api/Device/InsertDeviceData/c5b70d177488fac9 HTTP/1.1

8-24147520/60/6162_
0.767150.00.2650.90
92.241.76.10billing.self.com.ge:443NULL

9-24164940/12/6211_
0.2415530.00.0557.09
193.228.126.87foodservice.self.ge:443POST /api/Device/InsertDeviceData HTTP/1.1

10-24106900/20/6169_
0.270540.00.0850.35
193.176.213.235bolero.self.ge:443GET /api/cards/ HTTP/1.1

11-24184240/90/6069_
1.5010530.00.3551.60
213.131.55.110spar.self.ge:443POST /api/Device/InsertDeviceData/60ebb8e7e630ea80 HTTP/1.1

12-24207060/5/6008_
0.0914510.00.0242.67
91.151.136.185mgroup.self.ge:443POST /api/Device/InsertDeviceData/c2e2f74c2cc5f267 HTTP/1.1

13-2463050/118/6200_
2.5916500.00.4858.16
185.229.111.246jibe.self.ge:443POST /api/Device/InsertDeviceData/c1020d8475c0d257 HTTP/1.1

14-24-0/0/6275.
1.644100.00.0053.04
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

15-24-0/0/6192.
1.611000.00.0053.68
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

16-24310430/38/6176_
0.532060.00.1548.61
217.147.236.164billing.self.com.ge:443NULL

17-24164960/12/6108_
0.214300.00.0646.95
93.123.17.151billing.self.com.ge:443NULL

18-24-0/0/6062.
2.403800.00.0046.56
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

19-24207970/6/6216_
0.1019540.00.0246.27
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

20-24207980/7/6216_
0.1115570.00.0356.15
91.151.137.49mgroup.self.ge:443POST /api/Device/InsertDeviceData/729760a62cf41cd8 HTTP/1.1

21-24165260/16/6053_
0.224630.00.0746.44
178.134.43.30spar.self.ge:443POST /api/Device/InsertDeviceData/0120dc6c3249e6eb HTTP/1.1

22-24305090/86/6249_
1.283530.00.3359.27
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

23-2429780/30/6262_
0.3813280.00.1650.82
212.58.102.201billing.self.com.ge:443NULL

24-24270950/68/6065_
6.09201566840.00.2942.74
217.147.236.164sss.self.ge:443GET /cronjob/RunDBJob.php HTTP/1.1

25-24305100/88/6324_
1.3020730.00.3650.85
217.147.236.164velistore.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

26-2417820/259/6186_
4.92171350.01.0353.87
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

27-2467020/24/6086_
0.2981260.00.1048.01
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

28-24149530/62/6172_
0.8212530.00.6363.40
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

29-2419600/70/6149_
3.4114540.00.3050.93
95.104.113.146spar.self.ge:443POST /api/Device/InsertDeviceData/1d88e73a86c503ad HTTP/1.1

30-24165270/10/6180_
0.1820580.00.0462.64
188.169.87.130spar.self.ge:443POST /api/Device/InsertDeviceData/6ea71f47c29346a4 HTTP/1.1

31-24106350/72/6152_
0.9316520.00.3050.54
178.134.59.34spar.self.ge:443POST /api/Device/InsertDeviceData/95ea252b0d7bf788 HTTP/1.1

32-24270961/94/6095K
1.59066.00.3946.89
92.241.80.30medi.self.ge:443GET /api/cards/ HTTP/1.1

33-24312510/346/6044_
7.0120500.01.3748.58
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

34-24-0/0/6018.
7.202200.00.0052.09
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

35-2461980/81/6047_
1.5511140.00.3249.20
92.241.76.10billing.self.com.ge:443NULL

36-24165280/9/6232_
0.1315130.00.0458.79
5.152.14.254

37-24224220/47/6076_
5.15101080.00.2251.76
94.43.90.166craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/f22b41145c116695 HTTP/1.1

38-24271890/63/6099_
12.0591240.00.4054.97
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

39-24269600/135/6193_
1.9611580.00.6061.97
31.146.131.226spar.self.ge:443POST /api/Device/InsertDeviceData/0cdddd9f89abc38f HTTP/1.1

40-24-0/0/6205.
10.531700.00.0050.95
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

41-24-0/0/6200.
0.842700.00.0046.95
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

42-24312460/46/6165_
0.6101190.00.1845.83
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

43-24114480/139/6217_
4.986530.00.5653.89
176.221.225.66spar.self.ge:443POST /api/Device/InsertDeviceData/ea5696c87e784c27 HTTP/1.1

44-24229230/101/6172_
1.4222570.00.4054.38
94.43.90.166craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/f22b41145c116695 HTTP/1.1

45-24165290/11/6144_
0.1512140.00.0456.12
146.255.238.38billing.self.com.ge:443NULL

46-24270630/135/6298_
2.99191150.00.5668.12
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

47-24275690/46/6210_
0.7518470.00.3957.62
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

48-2462920/203/6097_
3.49180.01.5449.00
31.146.174.22medi.self.ge:443GET /api/cards/ HTTP/1.1

49-2419039

Found on 2024-11-16 02:17

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52f2f190da

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Thursday, 14-Nov-2024 08:27:33 +04
Restart Time: Monday, 11-Nov-2024 10:32:17 +04
Parent Server Config. Generation: 124
Parent Server MPM Generation: 123
Server uptime:  2 days 21 hours 55 minutes 16 seconds
Server load: 6.23 8.10 7.80
Total accesses: 27118818 - Total Traffic: 269.8 GB
CPU Usage: u1852.15 s1025.94 cu0 cs0 - 1.14% CPU load
108 requests/sec - 1.1 MB/second - 10.4 kB/request
75 requests currently being processed, 623 idle workers
_________K____________________K_______K___C____________K__R_.CK_
____C___.K___._________KKKK_K___.____C_____KK______.__K___C_____
_____G______.___R__________K___________.____K___________.___.___
_______K_____C.__K___.KC___..____.K__KK.____K_________________K_
_________.______C.__W______._____________________.______________
.____________.______.K..._...___..___._._._______._........__K..
__._..._______K_.__...____._._._.____K_.__R__._.__.___...._...K_
._K_._..__...__C.__.____.__._._.C.._.__.._.._._._._.C.__.__.C_..
____._...._.._...___.__..._.._____....__.___...___.___..._.__W__
.___.______._.___..___K__....___K..____.W_____.____..K__..C_....
..._.W_K.___KR.___K.._.___...__._.._____.___.___.._._._____.K._.
__._.__KK___.____...____....__.K__.___K.K..__.__._._..__._..__._
___C___...._._._.____...____________..R.__._.._.._.__..______.__
_._____._..._._______._.___.__K_K____.._..__.__KK_._K_______.___
_.__..__K..__.___._.__._...__........_......._..._.R.._..._._...
....R.._....._.....................__.._._............_.......__
................................................................
................................................................
................................................................
................................................................
................................................................
..............................................................G.
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-12364870/15/33261_
0.270520.00.06317.33
92.241.75.34family.self.ge:443POST /api/Device/InsertDeviceData/eba0e85629a87981 HTTP/1.1

1-12388490/262/32853_
5.17460.01.70328.83
217.147.236.164billing.self.com.ge:443NULL

2-123209020/123/32995_
2.092500.00.74306.55
109.238.229.230family.self.ge:443POST /api/Device/InsertDeviceData/10684e5603e97cd8 HTTP/1.1

3-123231030/44/32889_
0.585130.00.42347.49
188.169.80.125nq.self.ge:443POST /api/App/GetWorkingStatus/b505d75d-16d8-4685-9d03-6f399d4c

4-12324010/87/32971_
1.423900.00.58335.25
176.221.166.30spar.self.ge:443POST /api/Device/InsertDeviceData/0617c24d3f6604b4 HTTP/1.1

5-123165050/195/33057_
3.26280.01.77333.31
217.147.236.164billing.self.com.ge:443NULL

6-123246540/175/32932_
2.38760.00.92316.13
217.147.236.164billing.self.com.ge:443NULL

7-123106010/7/32588_
0.622100.00.03314.09
5.152.92.230billing.self.com.ge:443NULL

8-123304920/43/32414_
0.650640.00.43293.53
109.238.228.178family.self.ge:443POST /api/Device/InsertDeviceData/ff92d4e4d0ef255c HTTP/1.1

9-123129031/399/32553K
17.040162.43.85307.49
95.104.114.74magniti.self.ge:443GET /status/01024059012/?t=1731558374748 HTTP/1.1

10-123205880/187/32737_
5.070910.01.59315.86
217.147.236.164billing.self.com.ge:443NULL

11-123138090/66/32908_
0.863510.00.27338.04
109.238.229.230family.self.ge:443POST /api/Device/InsertDeviceData/10684e5603e97cd8 HTTP/1.1

12-123167370/258/32507_
3.93460.04.01333.41
217.147.236.164billing.self.com.ge:443NULL

13-123246630/166/33220_
7.388550.01.35324.36
92.51.122.174family.self.ge:443POST /api/Device/InsertDeviceData/e113a89e0c8b811f HTTP/1.1

14-12324140/85/32982_
1.725580.00.36318.89
146.255.228.46family.self.ge:443POST /api/Device/InsertDeviceData/15caaa6238da6c96 HTTP/1.1

15-123139150/64/32866_
1.050540.01.21302.49
92.241.75.34family.self.ge:443POST /api/Device/InsertDeviceData/eba0e85629a87981 HTTP/1.1

16-123105460/75/32817_
1.082610.00.52326.62
109.238.228.178family.self.ge:443POST /api/Device/InsertDeviceData/ff92d4e4d0ef255c HTTP/1.1

17-12323030/23/32605_
0.353550.00.09301.14
92.241.70.190family.self.ge:443POST /api/Device/InsertDeviceData/5333f3805fe37c20 HTTP/1.1

18-123205870/397/32538_
5.9611570.02.90324.35
92.241.73.186spar.self.ge:443POST /api/Device/InsertDeviceData/0401082c7e436bf0 HTTP/1.1

19-12399600/138/32427_
2.095690.00.95308.06
146.255.228.46family.self.ge:443POST /api/Device/InsertDeviceData/15caaa6238da6c96 HTTP/1.1

20-123254770/180/32876_
2.361140.01.02300.96
212.58.121.184vakomotors.self.ge:443POST /api/App/GetUserApplications/e37cd959-7d3b-4920-aaa4-1c8c5

21-123106490/5/32612_
0.093940.00.02321.91
217.147.236.164billing.self.com.ge:443NULL

22-123106500/6/32501_
0.117880.00.04304.37
217.147.236.164billing.self.com.ge:443NULL

23-123272170/35/32476_
0.564560.00.15317.05
109.238.228.178family.self.ge:443POST /api/Device/InsertDeviceData/ff92d4e4d0ef255c HTTP/1.1

24-12324250/90/32314_
2.002470.01.80318.48
146.255.228.46family.self.ge:443POST /api/Device/InsertDeviceData/15caaa6238da6c96 HTTP/1.1

25-123279070/390/32637_
8.7681480.03.21305.53
188.169.40.246family.self.ge:443POST /api/Device/InsertDeviceData/98a2e097235cacf5 HTTP/1.1

26-123299970/95/32633_
1.330130.00.47331.32
172.21.24.38aversiclinic.self.ge:443POST /api/App/Initialization/7bb13cbf-942e-4a09-827a-a7ef59f094

27-123195310/55/32581_
0.861510.01.35337.54
185.229.111.246jibe.self.ge:443POST /api/Device/InsertDeviceData/290135d696a4ad01 HTTP/1.1

28-123139160/51/32651_
0.85370.00.21315.03
217.147.236.164billing.self.com.ge:443NULL

29-123231420/45/32409_
0.71460.00.57309.62
217.147.236.164billing.self.com.ge:443NULL

30-12374711/522/32775K
10.19004.65.45325.65
93.123.17.151td.self.ge:443GET /debug/default/view?panel=config HTTP/1.1

31-123245210/456/32330_
12.435140.04.58334.17
178.134.55.54billing.self.com.ge:443NULL

32-12323190/21/32505_
0.281150.00.10318.38
187.251.143.76billing.self.com.ge:443NULL

33-123305890/30/32501_
0.463530.00.20306.63
37.232.45.26spar.self.ge:443POST /api/Device/InsertDeviceData/33c2136e34c03522 HTTP/1.1

34-12373820/72/32488_
1.3142530.00.63321.05
212.72.135.245billing.self.com.ge:443NULL

35-12312540/988/32285_
26.456720.08.50331.28
92.241.70.190family.self.ge:443POST /api/Device/InsertDeviceData/5333f3805fe37c20 HTTP/1.1

36-12323200/24/32365_
0.324540.00.10324.14
213.131.47.90family.self.ge:443POST /api/Device/InsertDeviceData/7c4f25aa57656ca8 HTTP/1.1

37-12324270/92/32621_
1.972120.00.99315.39
212.58.103.243billing.self.com.ge:443NULL

38-12365051/15/32621K
0.24163.80.41313.94
217.147.236.164terminal.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

39-123106620/5/32676_
0.113570.00.02314.23
109.238.229.230family.self.ge:443POST /api/Device/InsertDeviceData/10684e5603e97cd8 HTTP/1.1

40-123299990/101/32406_
1.582590.01.25323.87
109.238.229.230family.self.ge:443POST /api/Device/InsertDeviceData/10684e5603e97cd8 HTTP/1.1

41-12324280/92/32371_
5.487140.00.84299.00
212.58.103.81agro.self.ge:443POST /api/App/GetWorkingStatus/90c7ef3a-a793-4373-a388-2bf1e81d

42-123175491/125/32444C
2.280144.11.67322.82
188.169.215.119billing.self.com.ge:443NULL

43-123106630/5/32580_
0.152140.00.02323.04
212.58.103.81agro.self.ge:443POST /api/App/GetWorkingStatus/90c7ef3a-a793-4373-a388-2bf1e81d

44-123231430/59/32347_
0.780770.00.53283.46
109.238.228.178family.self.ge:443POST /api/Device/InsertDeviceData/ff92d4e4d0ef255c HTTP/1.1

45-123300190/107/32265_
2.091490.02.36330.45
92.241.75.34family.self.ge:443POST /api/Device/InsertDeviceData/eba0e85629a87981 HTTP/1.1

46-123167500/248/32282_
4.2131050.01.52323.59
94.43.90.166craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/f22b41145c116695 HTTP/1.1

47-123206950/250/32341_
3.847150.01.66

Found on 2024-11-14 04:27

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52e0105f11

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Wednesday, 13-Nov-2024 04:25:23 +04
Restart Time: Monday, 11-Nov-2024 10:32:17 +04
Parent Server Config. Generation: 107
Parent Server MPM Generation: 106
Server uptime:  1 day 17 hours 53 minutes 5 seconds
Server load: 5.40 5.51 6.08
Total accesses: 16452660 - Total Traffic: 168.1 GB
CPU Usage: u1719.01 s921.16 cu0 cs0 - 1.75% CPU load
109 requests/sec - 1.1 MB/second - 10.7 kB/request
68 requests currently being processed, 662 idle workers
_______K___KK______K____________K__________________________._K__
_.___K_____________________R_____K________________________WW_K__
_____C_____________K__K____________K___________________K________
KK______K__C____K__.________K_K___K__________K___________......_
_.__._._._..__....____________._._C___C__..___.__C..____.___.___
__.___._.___..__.W_K_.___.___._______.......R___.__C.._C_.__._..
.__________.___._K._R__._.______________...________..____.._.___
CK______.._.__._K___.____.__._...K.._____.____C___.._.____..__C_
____________..K._.____.._____.._______..K_____C_.__...__._.__.__
__.._____.___._C.__..___.__._..__.___K._...._._..___..__.___C___
____..K______C__._.________.__K_____________________..___....KC_
.__C.____.____C_..____K.________..___._____K_...____.__C..___._.
___.____.___C_.____K___K__.__.__.__.___._____.._.._.____.____.__
K_.KK.._.__.._____K_____.____.________._____K____.___._____.____
_.__.___._...................._.K_......_.K.....................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-106238900/4/20280_
0.07470.00.02188.27
217.147.236.164staff.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

1-106232210/243/19933_
8.833500.01.02202.11
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

2-106165490/13/19938_
0.19460.00.05188.13
217.147.236.164billing.self.com.ge:443NULL

3-106318210/82/19822_
1.35060.00.32218.76
217.147.236.164billing.self.com.ge:443NULL

4-106225600/110/20071_
1.92360.00.45214.31
217.147.236.164billing.self.com.ge:443NULL

5-10624920/323/20014_
9.07560.01.33205.88
217.147.236.164billing.self.com.ge:443NULL

6-10630400/85/20106_
1.823540.00.34197.49
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

7-106282521/40/19838K
0.62273.80.16199.76
217.147.236.164cci.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

8-10626890/230/19744_
3.731530.00.96188.86
31.146.171.178spar.self.ge:443POST /api/Device/InsertDeviceData/09740776f05b1c44 HTTP/1.1

9-106199060/9/19769_
0.133140.00.04187.38
31.146.81.94billing.self.com.ge:443NULL

10-106253800/49/19804_
0.61460.00.19188.15
217.147.236.164sonniva.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

11-10663571/176/19969K
3.01173.80.73207.59
217.147.236.164citycom.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

12-106103331/70/19618K
1.2801173.80.28208.31
217.147.236.164cpborjomi.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

13-10633170/30/19993_
0.44470.00.12200.87
217.147.236.164billing.self.com.ge:443NULL

14-106225710/102/19994_
1.85470.00.43195.66
217.147.236.164ronnys.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

15-106239760/3/19721_
0.05460.00.01184.10
217.147.236.164billing.self.com.ge:443NULL

16-106260320/91/19801_
5.00460.00.39196.04
217.147.236.164billing.self.com.ge:443NULL

17-10669450/82/19645_
1.081530.00.34178.19
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

18-106103430/67/19781_
0.80460.00.26199.41
217.147.236.164billing.self.com.ge:443NULL

19-106177531/250/19560K
3.950623.91.01188.24
217.147.236.164collectivedv.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

20-10630480/80/19667_
1.41470.00.33184.88
217.147.236.164billing.self.com.ge:443NULL

21-106103440/71/19665_
1.40470.00.28200.51
217.147.236.164stepsbatumi.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

22-106321460/36/19702_
0.45460.00.14191.67
217.147.236.164nutsinc.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

23-10691890/25/19712_
0.32160.00.10193.00
217.147.236.164billing.self.com.ge:443NULL

24-106165580/13/19485_
0.25470.00.05196.15
217.147.236.164nexus.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

25-106239770/3/19780_
0.0731000.00.01194.44
217.147.236.164billing.self.com.ge:443NULL

26-10669540/70/19703_
1.84570.00.28208.12
31.146.172.182medi.self.ge:443GET /api/cards/ HTTP/1.1

27-106235690/101/19675_
2.612540.00.40214.08
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

28-106126310/19/19765_
0.244130.00.08195.44
217.147.236.164mpbiograpi.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

29-10621450/126/19727_
1.9321190.00.55193.18
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

30-106199320/9/19666_
0.143720.00.04199.16
217.147.236.164billing.self.com.ge:443NULL

31-106225720/99/19484_
1.533490.00.39207.25
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

32-106126401/19/19582K
0.33163.80.07187.83
217.147.236.164citybus.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

33-10630490/78/19550_
1.2831240.00.32183.15
217.147.236.164sulakauri.self.ge:443GET /cron/sms.php?s=sulakauri&t=1731457501 HTTP/1.1

34-106186530/103/19615_
6.9451340.00.45198.25
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

35-10692120/25/19549_
0.562580.00.10192.38
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

36-10692130/25/19612_
0.332560.00.10202.90
149.3.18.18spar.self.ge:443POST /api/Device/InsertDeviceData/07d8a052f44704dc HTTP/1.1

37-106195730/53/19642_
0.85460.00.21190.84
217.147.236.164supta.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

38-106282530/43/19597_
0.575600.00.17195.09
31.146.61.58spar.self.ge:443POST /api/Device/InsertDeviceData/f49ab8d2b745eb9f HTTP/1.1

39-106297390/261/19628_
10.55440.01.05195.43
217.147.236.164zgvaludi.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

40-106282640/38/19498_
0.493670.00.15192.33
217.147.236.164billing.self.com.ge:443NULL

41-10633370/35/19621_
0.442960.00.14181.87
217.147.236.164billing.self.com.ge:443NULL

42-106225870/105/19400_
4.3142190.00.45196.49
217.147.236.164planometric.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

43-106260870/104/19647_
1.493820.00.58204.67
217.147.236.164billing.self.com.ge:443NULL

44-106196040/55/19462_
0.66450.00.22175.12
217.147.236.164tiflispalace.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

45-106103550/65/19616_
0.78460.00.26210.14
217.147.236.164techzy.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

46-10692350/29/19585_
0.43450.00.12203.94
217.147.236.164serpens.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

47-106242280/46/19394_
0.56360.00.18194.00
217.147.236.164billing.self.com.ge:443NULL

48-106199330/8/19327_
0.11460.00.03191.69
217.147.236.164billing.self.com.ge:443NULL

49-106183060/296/19475_
6.08370.01.19191.57
217.147.236.164billing.self.com.ge:443NULL

50-106<

Found on 2024-11-13 00:25

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc5256da3ce3

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Monday, 11-Nov-2024 00:42:39 +04
Restart Time: Monday, 14-Oct-2024 18:55:11 +04
Parent Server Config. Generation: 824
Parent Server MPM Generation: 823
Server uptime:  27 days 5 hours 47 minutes 27 seconds
Server load: 1.39 1.65 1.85
Total accesses: 254152110 - Total Traffic: 2518.9 GB
CPU Usage: u2348.85 s1368.06 cu0 cs0 - .158% CPU load
108 requests/sec - 1.1 MB/second - 10.4 kB/request
32 requests currently being processed, 654 idle workers
___._________________________.____________________________._____
_________________________________________________W__.___.______.
_C__________________K____________________________C______C______.
______KR____________._______________________K___________________
_K______CK__________________K____K____________.____.____________
_____________.___K_______.____________.C____.___._.______.._____
.______..______._.__...___.___._.._.____K__._____.__.________.__
_._C_..___....__.__.______.__.__.._._.____._...._____._____.____
_._....__._R_.____________._._.____.__._K._.._.__._..___.___._..
._.____.___.R...._._.__.___..____...__.___.____R__.___.__.._.K._
_.._..____.___.._....__.___.C.__.__._._.______..__.K.._.____.___
._.__...__._....K..__...._......__.K.._____....___..____.___....
_._.._K.._......_._._____.._.....C___...__...____..._...........
.__._...__._..._..._....__.._...._...______..___.W._..__.___....
..C..C......_......___...__.._.._._..._.._._....._...____..___..
_.._K..___.._.................._.._.............................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-82341190/18/313226_
0.2219130.00.073016.82
212.72.146.106billing.self.com.ge:443NULL

1-823202320/46/313267_
0.7319770.00.183058.95
178.134.61.114spar.self.ge:443POST /api/Device/InsertDeviceData/386995873ac45fae HTTP/1.1

2-823326520/497/312986_
9.0315550.05.733073.57
141.8.208.21foodservice.self.ge:443POST /api/Device/InsertDeviceData HTTP/1.1

3-823-0/0/311390.
0.622500.00.003047.85
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

4-823165170/4/311846_
0.0711600.00.023070.69
213.131.59.234spar.self.ge:443POST /api/Device/InsertDeviceData/9a1f2e60661bef9a HTTP/1.1

5-823324260/182/310540_
11.8318150.01.243036.90
5.152.50.9magniti.self.ge:443POST /api/App/GetUserApplications/3b173c13-a4ad-4e05-97bf-c00b8

6-82317770/124/310679_
2.6812150.00.522985.52
91.184.101.1billing.self.com.ge:443NULL

7-82317780/143/311618_
2.051570.01.883066.09
109.238.229.230family.self.ge:443POST /api/Device/InsertDeviceData/10684e5603e97cd8 HTTP/1.1

8-823177770/181/310538_
3.42400.00.933026.26
92.223.116.244billing.self.com.ge:443NULL

9-823245860/39/311375_
0.4518540.00.153070.36
187.251.143.76

10-823163190/47/311202_
0.804570.00.583032.44
31.146.211.218spar.self.ge:443POST /api/Device/InsertDeviceData/56e0d6431401bffe HTTP/1.1

11-823210800/213/310510_
4.04163890.00.892991.69
217.147.236.164billing.self.com.ge:443NULL

12-823265340/142/310557_
2.5919960.01.083057.30
217.147.236.164billing.self.com.ge:443NULL

13-823165280/4/311159_
0.068640.00.023030.36
178.134.170.190spar.self.ge:443POST /api/Device/InsertDeviceData/24b1b7e979f1d7e2 HTTP/1.1

14-823128130/10/310200_
0.191660.00.042982.17
217.147.236.164billing.self.com.ge:443NULL

15-82347420/255/309847_
4.72191060.01.873020.20
217.147.236.164billing.self.com.ge:443NULL

16-823283550/197/308456_
3.576650.00.803014.49
188.169.116.46spar.self.ge:443POST /api/Device/InsertDeviceData/e1469fdce8d4d5a7 HTTP/1.1

17-82375640/16/309641_
0.238580.00.063049.94
213.131.47.90family.self.ge:443POST /api/Device/InsertDeviceData/7c4f25aa57656ca8 HTTP/1.1

18-823246370/33/309582_
0.4310620.00.132938.06
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

19-823165290/4/308907_
0.0612540.00.023016.09
31.146.234.158spar.self.ge:443POST /api/Device/InsertDeviceData/657b1eecdf7b1224 HTTP/1.1

20-823128400/11/308976_
0.146550.00.042992.51
178.134.167.58spar.self.ge:443POST /api/Device/InsertDeviceData/cb27124e1adb7df0 HTTP/1.1

21-82347810/364/309606_
7.5518790.02.423061.93
5.152.50.9magniti.self.ge:443POST /api/App/GetWorkingStatus/3b173c13-a4ad-4e05-97bf-c00b847f

22-823136560/105/311148_
1.8417140.00.423078.95
31.146.19.10billing.self.com.ge:443NULL

23-823163250/54/310781_
1.241670.00.443071.92
217.147.236.164billing.self.com.ge:443NULL

24-823215600/86/308303_
3.2416216990.00.383007.55
217.147.236.164sss.self.ge:443GET /cronjob/sms.php HTTP/1.1

25-823210940/220/309914_
4.205580.01.852990.27
37.232.96.58spar.self.ge:443POST /api/Device/InsertDeviceData/587628bafde704eb HTTP/1.1

26-82352330/124/307831_
2.24192060.00.513001.91
217.147.236.164billing.self.com.ge:443NULL

27-823289660/33/308894_
0.396510.00.132999.95
213.131.47.90family.self.ge:443POST /api/Device/InsertDeviceData/7c4f25aa57656ca8 HTTP/1.1

28-823128410/8/307033_
0.11470.00.032964.20
188.169.163.231billing.self.com.ge:443NULL

29-823-0/0/307638.
0.302400.00.002944.55
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

30-823324370/188/309354_
8.608600.00.803070.97
92.241.70.190family.self.ge:443POST /api/Device/InsertDeviceData/5333f3805fe37c20 HTTP/1.1

31-82375650/19/308587_
0.22360.00.072979.90
80.241.243.66enterprise.self.ge:443GET /api/cards/?R=II-1-d2-r2_out HTTP/1.1

32-823136820/104/307654_
3.511890.00.502996.36
217.147.236.164billing.self.com.ge:443NULL

33-82375730/19/306944_
0.2511540.00.082987.28
109.238.228.178family.self.ge:443POST /api/Device/InsertDeviceData/ff92d4e4d0ef255c HTTP/1.1

34-823325030/29/307921_
0.511880.00.122946.15
5.152.102.201billing.self.com.ge:443NULL

35-82352810/120/307108_
1.889570.00.492973.36
176.221.198.146spar.self.ge:443POST /api/Device/InsertDeviceData/ebeebe8fb0c19461 HTTP/1.1

36-823249930/204/307250_
3.558230.02.133013.84
187.251.143.76

37-82341270/20/307182_
0.2918560.00.082944.26
178.134.12.142spar.self.ge:443POST /api/Device/InsertDeviceData/68c69a4c6602432d HTTP/1.1

38-823128610/13/307521_
0.137150.00.172966.55
188.169.214.210billing.self.com.ge:443NULL

39-823212680/152/308089_
2.591670.00.992995.89
217.147.236.164westinvest.self.ge:443GET /cron/sms.php?s=westinvest&t=1731271321 HTTP/1.1

40-823121060/232/307525_
3.601560.01.212973.57
94.43.126.2monolith.self.ge:443POST /api/Device/InsertDeviceData/0a77eb143fe0205f HTTP/1.1

41-823165350/4/306927_
0.0612530.00.022994.71
178.134.76.246spar.self.ge:443POST /api/Device/InsertDeviceData/cdbf6271c90d01cc HTTP/1.1

42-823128900/53/306963_
0.906570.00.212986.73
213.131.47.90family.self.ge:443POST /api/Device/InsertDeviceData/7c4f25aa57656ca8 HTTP/1.1

43-823324460/202/309280_
2.761560.04.173008.21
80.241.243.66enterprise.self.ge:443GET /api/cards/?R=II-1-d2-r2_out HTTP/1.1

44-823178390/166/308413_
7.3719140.01.093020.75
185.49.166.250billing.self.com.ge:443NULL

45-82341280/21/308025_
0.24260.00.103004.00
213.217.16.90medi.self.ge:443GET /api/cards/ HTTP/1.1

46-823137360/105/307824_
5.1419740.00.433069.23
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

47-82390280/54/307054_
2.8818280.00.243022.85
109.238.230.214aversiclinic.self.ge:443GET / HTTP/1.1

48-823128620/13/307365_
0.1318590.00

Found on 2024-11-10 20:42

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52bd4e8317

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Friday, 08-Nov-2024 23:36:45 +04
Restart Time: Monday, 14-Oct-2024 18:55:11 +04
Parent Server Config. Generation: 717
Parent Server MPM Generation: 716
Server uptime:  25 days 4 hours 41 minutes 33 seconds
Server load: 1.66 1.76 1.74
Total accesses: 239051043 - Total Traffic: 2397.5 GB
CPU Usage: u2423.36 s1351.31 cu0 cs0 - .173% CPU load
110 requests/sec - 1.1 MB/second - 10.5 kB/request
49 requests currently being processed, 757 idle workers
K________________________._____.____________________R_____C_____
___K___._____K_____..__________________________________________.
_R________K_____________________.___._________________________K_
____K_R__C______________________________________.__._____C__K_._
__K_________K_______C_______._K________._______R________________
__K____K____________________________._______________________C___
K____________________.K____________________________..__K________
_____________________________K__________K_______._______________
______________________.____.____.______._____________.__.__.____
_____C.________.________.____RC.__________________.___._________
_______________________KK___C____________._._________...CC._____
C______.__._KK.____W______.__________________________.._________
____.____.__________________C_R___._._R__C______K________K_.K___
____K__KC_.._.._______..._............................K._.......
........................._......................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-71645883/177/292210K
4.94197.80.732850.80
5.178.149.8roniko.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

1-71645980/185/292193_
2.6316540.00.752886.38
109.238.235.38spar.self.ge:443POST /api/Device/InsertDeviceData/7fec8b09b02527db HTTP/1.1

2-716215580/64/292291_
1.4713220.00.312896.55
5.178.149.8roniko.self.ge:443POST /api/App/GetWorkingStatus/c64161c7-70c2-4c95-8bea-f90cf519

3-716283600/406/290431_
10.0917140.09.722884.19
109.238.230.214billing.self.com.ge:443NULL

4-716246980/4/291159_
0.09141110.00.022904.48
217.147.236.164billing.self.com.ge:443NULL

5-716286190/194/289624_
2.674520.02.072861.37
37.232.90.74spar.self.ge:443POST /api/Device/InsertDeviceData/e33b12053b4137a6 HTTP/1.1

6-716286200/207/290007_
2.907170.02.212814.48
31.146.198.202billing.self.com.ge:443NULL

7-716181600/69/290711_
2.246540.00.312906.77
37.232.45.26spar.self.ge:443POST /api/Device/InsertDeviceData/33c2136e34c03522 HTTP/1.1

8-716215680/52/289888_
0.7112570.00.222869.11
92.241.75.34family.self.ge:443POST /api/Device/InsertDeviceData/eba0e85629a87981 HTTP/1.1

9-71655250/82/290795_
1.5414570.00.702905.43
95.104.124.252embawood.self.ge:443POST /api/Device/InsertDeviceData/5e0af2e6cd4d24ba HTTP/1.1

10-716126140/23/290546_
0.305570.00.092866.84
178.134.1.142spar.self.ge:443POST /api/Device/InsertDeviceData/8a44ff3a5fbe7ea6 HTTP/1.1

11-716286320/201/289800_
4.4315540.01.072832.20
92.241.75.34family.self.ge:443POST /api/Device/InsertDeviceData/eba0e85629a87981 HTTP/1.1

12-716305040/86/290051_
1.3217560.00.942882.06
146.255.240.150spar.self.ge:443POST /api/Device/InsertDeviceData/b4e83c9922aa7cb7 HTTP/1.1

13-716199350/11/290632_
0.1719550.00.382868.32
178.134.174.174spar.self.ge:443POST /api/Device/InsertDeviceData/4c3d3338d607a2c7 HTTP/1.1

14-716268800/102/289640_
1.530540.00.422810.50
185.229.111.246jibe.self.ge:443POST /api/Device/InsertDeviceData/0957c85a02830b05 HTTP/1.1

15-716101700/136/289276_
2.832070.00.862843.35
217.147.236.164billing.self.com.ge:443NULL

16-716159750/15/288228_
0.2215510.00.062855.68
213.131.47.90family.self.ge:443POST /api/Device/InsertDeviceData/7c4f25aa57656ca8 HTTP/1.1

17-716215100/113/288747_
2.437150.01.142883.06
212.72.143.211billing.self.com.ge:443NULL

18-716140640/69/289314_
0.8720130.00.262783.08
176.100.46.136magniti.self.ge:443POST /api/App/Initialization/b2c1a4b1-dcd3-4e9f-a92b-de3d58926e

19-716160270/16/288586_
0.241970.00.082843.92
217.147.236.164billing.self.com.ge:443NULL

20-716199560/12/288280_
0.2315620.00.052822.29
94.43.199.78spar.self.ge:443POST /api/Device/InsertDeviceData/b5863318fff7ccbd HTTP/1.1

21-716199570/9/289308_
0.1415150.00.032899.68
188.169.214.210billing.self.com.ge:443NULL

22-716140650/68/290661_
0.900530.00.282911.00
178.134.32.74spar.self.ge:443POST /api/Device/InsertDeviceData/179de9b26466fe24 HTTP/1.1

23-71697300/75/290195_
1.4315530.00.712914.64
92.241.75.34family.self.ge:443POST /api/Device/InsertDeviceData/eba0e85629a87981 HTTP/1.1

24-716257170/50/287873_
0.752080.00.212852.45
217.147.236.164billing.self.com.ge:443NULL

25-716-0/0/289483.
0.613100.00.002819.02
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

26-716305210/92/287552_
1.5216150.00.392844.94
109.236.81.161billing.self.com.ge:443NULL

27-716257310/38/288653_
0.5712520.00.152845.35
178.134.208.34spar.self.ge:443POST /api/Device/InsertDeviceData/0e65d2e6c7d749c2 HTTP/1.1

28-71620710/89/286614_
1.733130.00.372807.52
92.241.84.218billing.self.com.ge:443NULL

29-716157910/62/287483_
0.863540.00.262796.28
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

30-71636780/296/289124_
17.1411160.02.642908.65
37.232.6.162aversiclinic.self.ge:443POST /api/App/GetDashboardNews/3346d736-c5d1-4fe1-85b3-443b12c2

31-716-0/0/288336.
0.8826140.00.002814.57
217.147.236.164billing.self.com.ge:443NULL

32-716244600/359/287453_
5.603540.02.632828.43
213.131.39.178spar.self.ge:443POST /api/Device/InsertDeviceData/04ce205b1c65e4ce HTTP/1.1

33-71657380/132/286502_
2.2516500.01.182832.64
31.146.214.34spar.self.ge:443POST /api/Device/InsertDeviceData/66754a973226117d HTTP/1.1

34-716247180/4/287808_
0.0719660.00.022782.31
213.131.47.90family.self.ge:443POST /api/Device/InsertDeviceData/7c4f25aa57656ca8 HTTP/1.1

35-716160280/17/286799_
0.221470.00.072801.79
217.147.236.164billing.self.com.ge:443NULL

36-716268960/95/286777_
1.409640.00.382848.20
77.92.240.214spar.self.ge:443POST /api/Device/InsertDeviceData/273e44b54b0fcfe6 HTTP/1.1

37-716170030/208/286698_
5.161860.00.912784.76
80.241.243.165kumisi.self.ge:443GET /api/cards/ HTTP/1.1

38-716247190/4/287386_
0.088740.00.022804.61
80.241.251.210staff.self.ge:443POST /api/Chat/PoolMessages/OTczOTcyNjc3/3ddf664f-c81a-4a83-9f3

39-716119700/170/287871_
4.9611180.01.442836.84
37.232.6.162aversiclinic.self.ge:443POST /api/App/GetBirthDayList/3346d736-c5d1-4fe1-85b3-443b12c2f

40-716247450/4/287092_
0.0714790.00.022814.04
217.147.236.164billing.self.com.ge:443NULL

41-716140900/70/286468_
0.9719610.00.812824.24
213.131.47.90family.self.ge:443POST /api/Device/InsertDeviceData/7c4f25aa57656ca8 HTTP/1.1

42-716101730/119/286820_
6.271620.00.542823.72
94.43.90.166craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/f22b41145c116695 HTTP/1.1

43-716243250/300/288955_
5.2218520.01.772845.08
178.134.107.22spar.self.ge:443POST /api/Device/InsertDeviceData/41151c643a81e555 HTTP/1.1

44-71650850/273/288215_
6.3916530.01.392845.47
141.8.208.20foodservice.self.ge:443POST /api/Device/InsertDeviceData HTTP/1.1

45-716204620/204/287819_
3.611470.03.122846.34
217.147.236.164veziri.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

46-716244010/203/287398_
5.5914570.01.042890.91
141.8.208.32spar.self.ge:443POST /api/Device/InsertDeviceData/f41ce1d1c18b2d7c HTTP/1.1

47-7165566

Found on 2024-11-08 19:36

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc5202c0b1a2

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Wednesday, 06-Nov-2024 21:11:15 +04
Restart Time: Monday, 14-Oct-2024 18:55:11 +04
Parent Server Config. Generation: 616
Parent Server MPM Generation: 615
Server uptime:  23 days 2 hours 16 minutes 3 seconds
Server load: 1.47 3.15 3.97
Total accesses: 220173276 - Total Traffic: 2197.9 GB
CPU Usage: u2312.6 s1357.45 cu0 cs0 - .184% CPU load
110 requests/sec - 1.1 MB/second - 10.5 kB/request
453 requests currently being processed, 327 idle workers
KKKK_RK_K__K____K___KKK_R_KKC__KKKCCK______K_____KCK____K____KKK
_____KW__K_KC_C_KK_K___KKKKK__K_KR_K_CKKK_KKK___CKC__K_K__CKK__K
____KK_KK_K_______K_KKK__K__W___KCKKR_._CCKCKK__K_CC__K_KKKKKCKW
_KCCC_RKKCC__KK_KKKK_KK__K__K__.KC__CCK_KK_KK_CK_.C_K_W._K_KC_KK
C__KKK_KKCKK_CK_KKCKKK..K__K_K_K_K_WWKK_KKK_RK_K_KW_RCR__.K_KKKK
K___KCKK_C_KC.K__K__._.__KK_.CKK___KKWK_KCKC_KK___CKCKK_K_KKK_K_
C._RK_K_KKKKCKKWKC_.KK_KKW_CKCK.CKKK_KC_____C_KKK.KKKK__KKK____K
CK___KCKC_KWKC_R.KKWKK_KK_C_.KC____KKKKKKRK____KC_K.KKK.CK__.KK_
_KK_K_KC_KKRKK_K__K._______C_K____CK___.KKCK_KK._C__KK_R_CK__C__
KKKKWKKKK_K_______K___KWCK._KK_KK_KC__KK_____KKK___.___CKR__KCCK
C.KC_RC_C_K_K.WW_WKWCC_RK__RKKK_KKW_R_.KKKKCC._KK___..KK__CK___K
__KKKK_.KKKCKK_C..K._K._.___K_..CW_...K.....C.......K_..K......_
._KK.C..K._...R..._.R._K_..._._..RK.._K.__....K......._.K...K_K.
_.KK.KC.._...K__.K.._..K.._K...K_.K..........__._......_._KC_._K
.....C..K.K._.__K.C._.....C._K.K.K.K___....KRK..................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-615256261/3/269251K
0.06263.90.012608.80
217.147.236.164medicloud.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

1-615201261/10/269386K
0.14063.90.042667.46
217.147.236.164neolab.self.ge:443GET /cron/sms.php?s=neolab&t=1730913061 HTTP/1.1

2-615209721/66/269403K
0.85163.90.332632.71
217.147.236.164nbngroup.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

3-615255891/107/267616K
1.59263.90.642623.77
217.147.236.164kreston.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

4-615256600/3/268099_
0.062660.00.012672.04
109.238.228.178family.self.ge:443POST /api/Device/InsertDeviceData/ff92d4e4d0ef255c HTTP/1.1

5-615292460/276/267050R
5.130140.03.962625.36
91.184.121.193

6-615256621/3/266975K
0.05273.90.012581.22
217.147.236.164magniti.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

7-61544880/45/267929_
0.67160.00.602667.36
217.147.236.164billing.self.com.ge:443NULL

8-615150821/543/267297K
11.05183.93.442641.12
217.147.236.164mscollege.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

9-61548390/89/267834_
1.4411560.00.502664.85
217.147.236.164billing.self.com.ge:443NULL

10-61550700/195/267825_
3.080520.04.582639.22
185.229.111.246jibe.self.ge:443POST /api/Device/InsertDeviceData/924e7fc4bcd8463f HTTP/1.1

11-61548401/84/267232K
1.65263.90.332610.82
217.147.236.164knauf.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

12-615325570/39/267342_
0.571110.00.202653.62
217.147.236.164billing.self.com.ge:443NULL

13-61548580/94/268138_
1.512110.00.572644.33
217.147.236.164billing.self.com.ge:443NULL

14-61548590/103/266970_
1.731690.00.552565.39
31.146.177.14spar.self.ge:443POST /api/Device/InsertDeviceData/b1f8f987dbf9aa91 HTTP/1.1

15-615128490/31/266572_
0.72260.01.192605.52
217.147.236.164billing.self.com.ge:443NULL

16-615201451/7/265445K
0.11263.90.032614.65
217.147.236.164ktl-georgia.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

17-615206160/211/266192_
8.02070.01.172645.94
217.147.236.164billing.self.com.ge:443NULL

18-615167280/14/266652_
0.34016860.00.052547.78
217.147.236.164billing.self.com.ge:443NULL

19-61598470/132/266112_
2.552170.00.972616.27
217.147.236.164billing.self.com.ge:443NULL

20-615286501/51/265672K
0.671133.90.222597.13
217.147.236.164mrkt.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

21-615252801/60/266647K
0.810683.90.482671.91
217.147.236.164mn.self.ge:443GET /cron/logout.php HTTP/1.1

22-615293081/168/267903K
2.83293.92.272678.40
217.147.236.164lexus.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

23-61548600/92/267333_
1.452210.00.752675.42
217.147.236.164billing.self.com.ge:443NULL

24-615256080/103/265349R
1.57050.00.822644.07
217.147.236.164

25-615256900/4/266829_
0.071500.00.022604.39
92.241.70.190family.self.ge:443POST /api/Device/InsertDeviceData/5333f3805fe37c20 HTTP/1.1

26-615128621/22/265297K
0.41063.90.082611.05
217.147.236.164practice.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

27-615170671/130/266221K
2.50064.00.702605.19
217.147.236.164presentation.self.ge:443GET /cron/sms.php?s=presentation&t=1730913061 HTTP/1.1

28-615325331/46/264284C
0.630123.90.212595.61
92.54.201.50billing.self.com.ge:443NULL

29-61515850/96/264963_
1.491530.00.932571.46
31.146.118.82spar.self.ge:443POST /api/Device/InsertDeviceData/075dda8945288526 HTTP/1.1

30-615128630/19/266628_
0.27070.00.082660.95
217.147.236.164billing.self.com.ge:443NULL

31-615219081/183/265903K
2.94073.93.522601.35
217.147.236.164sairmeresort.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

32-615327361/154/265154K
2.51263.91.372599.02
217.147.236.164maxinai.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

33-61590051/236/264189K
8.68063.91.642602.75
217.147.236.164nutrimax.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

34-615170841/119/265413C
2.55073.90.782560.14
217.147.236.164billing.self.com.ge:443NULL

35-615292641/254/264567C
4.571523.92.212566.90
217.147.236.164billing.self.com.ge:443NULL

36-615286651/55/264500K
0.67063.92.902610.70
217.147.236.164orgservice.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

37-615128820/23/264544_
0.472620.00.252567.79
109.238.228.178family.self.ge:443POST /api/Device/InsertDeviceData/ff92d4e4d0ef255c HTTP/1.1

38-615210260/113/265064_
2.71260.00.872576.71
217.147.236.164billing.self.com.ge:443NULL

39-615219090/172/265655_
7.5012920.02.092589.13
217.147.236.164billing.self.com.ge:443NULL

40-615297070/107/264603_
1.552240.00.882578.58
217.147.236.164billing.self.com.ge:443NULL

41-615210390/99/264209_
6.0313680.00.782601.05
217.147.236.164billing.self.com.ge:443NULL

42-615167290/17/264518_
0.23160.00.082590.41
217.147.236.164billing.self.com.ge:443NULL

43-615201461/10/266410K
0.150173.90.042606.91
217.147.236.164pbservices.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

44-615174760/181/265865_
4.64160.00.752611.30
146.255.249.114pragma.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

45-61583030/83/265322_
1.691500.00.462614.02
92.51.122.174family.self.ge:443POST /api/Device/InsertDeviceData/e113a89e0c8b811f HTTP/1.1

46-61545270/41/265057_
0.55180.00.232643.54
217.147.236.164billing.self.com.ge:443NULL

47-615167460/18/264315_
0.24260.00.072643.70
217.147.236.164billing.self.com.ge:443NULL

48-61583330/72/264643_
0.92260.00.292627.60
217.147.236.164billing.self.com.ge:443NULL

49-615201611/9/263756K
0.12092.8

Found on 2024-11-06 17:11

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc525b312f53

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Monday, 04-Nov-2024 18:50:32 +04
Restart Time: Monday, 14-Oct-2024 18:55:11 +04
Parent Server Config. Generation: 483
Parent Server MPM Generation: 482
Server uptime:  20 days 23 hours 55 minutes 20 seconds
Server load: 15.92 12.07 11.98
Total accesses: 200727396 - Total Traffic: 1980.8 GB
CPU Usage: u2932.97 s1885.19 cu0 cs0 - .266% CPU load
111 requests/sec - 1.1 MB/second - 10.3 kB/request
241 requests currently being processed, 770 idle workers
______________K_____K_C__________KK___C_C___KK_C_C_K_________C__
CK______K________KK____K____K_KW_____K_____CC_K___RK____________
___R_CR____________C_K___C_______KC_KK.______K___C______________
________C_________C___C__WC_K_W_______W_________W_KCC_____RK_KK_
___K_______R________C________K____C____C_C_W__._____C_W__K___K_K
_CK_.C__C_____CK_K_______RC___K_KR____C___K_KKK_KW___C__C__CC._C
W_K_C___K_C____.C_K_____K__C_K_______________C_____K.K____K__CCK
_____K___C_R__K_KK__C___K_____CK_K___RR__K_C______KCC_______RKK_
_K______K_KR__CC_C____C______KK_____K__RC____R____R_______C__CCC
_____._____R_CK________K______________K_____K____________C__RK__
_C__K_.____.KK______CCK____C___K____KK___________CC_____________
K_C__.___K_____K____._________KK__KC__C______K_______R__________
_K_____C_K______K__CK___K._____C__R___.___KK__K__KCK__RC__._K__C
____K__________KK_____K______C___R__.C___KR__R_K__K_____K___R___
_K_______R_.__K_KKK___K_KCK_W_C____K__._K___________R_K______R__
__________C_______C____K_____C______________......._.__._K...._.
......_........_.K._.___.....__.._....__....._............_.....
............_........................K......C...................
..._............................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-482321490/303/245970_
5.19250.04.852357.76
46.175.134.54maxima.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

1-482214350/100/245856_
1.67460.01.082393.90
213.131.57.162rompetrol.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

2-482103800/537/245902_
9.37490.06.972394.61
178.134.208.74magniti.self.ge:443POST /api/App/RegisterPushToken/c1e2d4f8-8a26-4d0d-ac85-a9e0623

3-482305150/69/244403_
1.413170.00.562352.28
188.169.219.60billing.self.com.ge:443NULL

4-482118510/194/244590_
4.134430.01.862424.15
178.134.198.54billing.self.com.ge:443NULL

5-482268720/147/243895_
2.2751570.02.692370.76
66.249.81.5daisy.self.ge:443GET /slider/1.png HTTP/1.1

6-482101840/118/243751_
2.033510.02.732322.62
5.152.122.14family.self.ge:443POST /api/Device/InsertDeviceData/0b312e9c9b6c96b7 HTTP/1.1

7-482266490/14/244885_
0.244540.00.062411.60
217.147.236.164billing.self.com.ge:443NULL

8-482192360/31/244262_
0.59150.00.152378.83
5.152.51.211geocredit.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

9-482250360/479/244574_
9.233940.07.482405.19
217.147.236.164billing.self.com.ge:443NULL

10-482269070/137/244891_
3.552580.01.222387.85
92.241.80.122bict.self.ge:443POST /api/Device/InsertDeviceData/1a1e3002debc1374 HTTP/1.1

11-482303410/132/243697_
2.36560.01.302359.11
212.72.147.242geocredit.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

12-482164960/236/244159_
4.624570.02.722394.81
31.146.188.178spar.self.ge:443POST /api/Device/InsertDeviceData/3c3af4cbd756b858 HTTP/1.1

13-482192930/28/244865_
0.35070.00.102372.90
217.147.236.164billing.self.com.ge:443NULL

14-482112191/174/244156K
2.660763.81.502331.01
217.147.236.164elteg.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

15-482269090/167/243282_
2.710610.05.252348.57
94.43.224.182spar.self.ge:443POST /api/Device/InsertDeviceData/3d5a362564089e00 HTTP/1.1

16-48217960/134/242685_
3.50060.01.192375.62
5.152.102.201leadercredit.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

17-482226200/21/243188_
0.371770.00.492391.94
217.147.236.164billing.self.com.ge:443NULL

18-48297010/436/243511_
9.50570.04.962312.97
217.147.236.164veziri.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

19-48278460/210/243276_
8.73150.05.412364.60
185.49.166.250betlive.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

20-48221141/57/242605K
0.881254.00.232356.89
149.3.70.199element.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

21-482139340/97/243097_
1.812140.00.712411.44
147.161.251.9billing.self.com.ge:443NULL

22-482102121/103/244601C
1.761224.10.652419.55
5.152.102.201billing.self.com.ge:443NULL

23-48218950/126/244440_
1.66590.01.582424.67
149.3.33.132billing.self.com.ge:443NULL

24-482266930/17/242520_
0.25160.00.062388.10
212.72.153.34archi.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

25-48261730/121/244102_
1.770550.00.982346.98
109.238.228.178family.self.ge:443POST /api/Device/InsertDeviceData/ff92d4e4d0ef255c HTTP/1.1

26-482165440/252/242427_
6.45560.02.812357.14
185.49.166.250betlive.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

27-482139350/97/243281_
5.622310.00.542350.31
217.147.224.114clocks.self.ge:443GET / HTTP/1.1

28-482244870/223/241562_
4.582110.04.412356.87
147.161.251.1billing.self.com.ge:443NULL

29-482146850/36/242248_
1.373160.00.262332.12
185.49.166.250billing.self.com.ge:443NULL

30-48255900/61/243708_
0.793160.00.642420.48
31.146.88.122billing.self.com.ge:443NULL

31-482226490/21/243025_
0.311590.00.072363.97
217.147.236.164billing.self.com.ge:443NULL

32-482305880/75/242405_
1.493130.00.722357.36
217.147.236.164billing.self.com.ge:443NULL

33-482182431/191/241565K
8.00273.84.662345.38
217.147.236.164dhl.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

34-482226501/20/242468K
0.31163.80.092312.10
217.147.236.164eltbg.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

35-48238840/171/241799_
11.53380.01.352316.46
217.147.236.164billing.self.com.ge:443NULL

36-482300200/5/241548_
0.132670.00.022366.61
217.147.236.164billing.self.com.ge:443NULL

37-482215020/94/241726_
1.55160.01.922308.56
176.221.198.174magniti.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

38-482200141/225/242273C
4.100933.82.832335.87
217.147.236.164billing.self.com.ge:443NULL

39-48256160/65/242870_
0.824530.00.492348.29
109.238.228.178family.self.ge:443POST /api/Device/InsertDeviceData/ff92d4e4d0ef255c HTTP/1.1

40-48221491/66/241825C
0.98173.80.792323.48
217.147.236.164billing.self.com.ge:443NULL

41-482146860/38/241506_
0.4921380.00.552354.68
217.147.236.164billing.self.com.ge:443NULL

42-482226940/18/242048_
0.252550.00.072339.23
149.3.104.86spar.self.ge:443POST /api/Device/InsertDeviceData/4cba470299c65397 HTTP/1.1

43-48290190/258/243533_
7.002630.03.742365.41
31.146.150.226spar.self.ge:443POST /api/Device/InsertDeviceData/e09e5a46202882f4 HTTP/1.1

44-482139722/126/242793K
2.76194.41.992358.11
146.255.238.38khetieyonne.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

45-482112611/179/242633K
3.351643.91.802367.81
217.147.236.164letsgo.self.ge:443GET /cron/logout.php HTTP/1.1

46-48294350/45/242343_
0.754150.00.182377.25
31.146.200.164newlife.self.ge:443POST /api/App/GetWorkingStatus/49686d6a-e27c-4b98-b1ad-3fb5bf2c

47-482147431/38/241744C
0.491804.00.162405.85
217.147.236.164billing.self.com.ge:443NULL

48-482300530/7/241598_
0.104520.00.382365.29
5.152.102.201billing.self.com.ge:443NULL

49-482303611/153/241092C
2.641

Found on 2024-11-04 14:50

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52688a56a4

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Friday, 01-Nov-2024 14:48:19 +04
Restart Time: Monday, 14-Oct-2024 18:55:11 +04
Parent Server Config. Generation: 397
Parent Server MPM Generation: 396
Server uptime:  17 days 19 hours 53 minutes 7 seconds
Server load: 14.52 12.79 12.18
Total accesses: 166942694 - Total Traffic: 1688.4 GB
CPU Usage: u3398.62 s2320.74 cu0 cs0 - .371% CPU load
108 requests/sec - 1.1 MB/second - 10.6 kB/request
627 requests currently being processed, 367 idle workers
CRCCCCR_CCK_K____KKKKK_KCK_KKKK_K_C_____KKKRCR_RKCRCC_K__C_KCC__
_K_KC_KRKKCRCKKR__KCCK._KR___R__KK__C_CCKCKK_KWKCK_C_K_KK_KCCKCC
_K_C_KKCK_CK__K__RRCKCR__R__KK_____C__CRK__KKK_R_KRKKR_KKR_K_R_K
KC__C__C___KRK_C_K__KCCC_CC_KC_____WK_CKC_KC_KCRK_KKK_RKRRKCR_RK
C_R_CCRC_R_KKKRKRKKK_CCR_R___K___.CK__K___KWCCKCRRRC_KKK_KK_KCCK
_RK_CKR_._K_C._KK_KKC_RCC_.K.K_R_CKCK.__KKK____RKR__.__KC.K_.RKC
CKKR_K..CRC_KRK_KCC_CRC.K_CK___.R__KKCCC_RKC_.CKK___KCKRK_K_K___
K__C.RKC_C.R_.R__KCRC.K_K.KK.C_CKC_KKCC__.RK_KC__K__KCKCKK_KKKRW
RKKRC_C_.__.C._R_.R_RCC._R__C__R..CC__.__KC.RRCRCC..C._RKCCC_.R.
K_K.KKKC_K.KKCC___CKRKC_RCKKC_C..C._RCKRCKKC___.__.___.C__CKKCRC
KC__.__CK_CKK.__KCR.KK____KKK_.__CRKK_R_C_W_KK_CR_KR.KCKKKRC_K._
_CCCC_KR_K_CK__C.C_.C._._C..C____CRCKKC..K__CR._K_KK_CRR__K_K.CC
_KCK__CR___RCCC.C_CC_WRK_RKKCCCKC__C_K______CRR_C_K__KR_K_C.KCR_
CKC___C_C_K.._.K.C__KCCK_W_CK..K.KK_.K.CRCC_..R..._.K_..KK.K.KC_
KR__C.__CC_.___K.R._K.___CKWKC.KCCKC.C__CC.___R_.C._KKC_CC_K_K_.
.C..C__.KK.CCC_..._K_._K.._KR_..C..C_RCC_.K_C_____C._....__.K._R
K..__.C....KKK.__K_CK.K_C_..R__R_KKCRK..._.KK_.K_.CC_..______.__
KCCR_.RKK_.KCK..C._CR.C._R._K.C_._K.CRK.KKC....K_...C.K_.__...._
........C......K................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-39664231/154/205026C
2.030313.91.592002.30
217.147.236.164billing.self.com.ge:443NULL

1-396234740/216/204474R
3.78260.03.362038.49
149.3.95.82

2-396262081/23/204545C
0.400243.90.092031.47
217.147.236.164billing.self.com.ge:443NULL

3-396312491/11/203756C
0.191134.10.322007.32
92.51.72.150billing.self.com.ge:443NULL

4-396262491/27/203954C
0.91063.91.652086.82
217.147.236.164billing.self.com.ge:443NULL

5-396141681/73/203021C
0.98084.00.632006.43
217.147.236.164billing.self.com.ge:443NULL

6-396200080/235/202786R
4.246510.02.741970.38
109.238.232.138

7-396313050/16/203641_
0.19140.00.052055.02
95.104.24.211gtdfs.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

8-396102741/89/203470C
2.31183.90.792040.55
217.147.236.164billing.self.com.ge:443NULL

9-396189621/118/203857C
2.610103.91.222072.96
217.147.236.164billing.self.com.ge:443NULL

10-396212001/312/203954K
4.75053.92.242023.91
217.147.236.164nutrimax.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

11-396161570/589/203197_
12.2201600.05.722016.83
217.147.236.164billing.self.com.ge:443NULL

12-396104691/67/203641K
2.250143.90.332036.52
217.147.236.164pane.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

13-396203020/214/203674_
3.480510.02.832012.48
188.169.44.30spar.self.ge:443POST /api/Device/InsertDeviceData/832dca1b9720841f HTTP/1.1

14-396305390/209/203162_
2.82150.02.351989.40
46.49.71.81dressup.self.ge:443POST /api/App/RegisterPushToken/d13e6804-96de-4373-9488-dc2d848

15-39666980/185/202387_
4.60040.01.042005.10
92.241.76.10lazikacapital.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

16-396203430/224/202351_
3.94060.02.062007.74
217.147.236.164billing.self.com.ge:443NULL

17-396157991/235/202378K
5.390163.95.472036.63
217.147.236.164orgservice.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

18-39631941/703/202783K
14.01283.98.451958.69
217.147.236.164people.self.ge:443GET /cron/sms.php?s=people&t=1730458082 HTTP/1.1

19-396262501/26/202384K
1.301723.90.442013.17
217.147.236.164mrcheveli.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

20-396249601/281/202039K
4.11153.92.862015.94
217.147.236.164moncero.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

21-396143531/69/202567K
0.94054.00.792065.25
217.147.236.164pmcginternational.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

22-3968290/89/203626_
1.960150.00.492069.95
193.138.97.50gpih.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

23-396194781/397/203562K
7.24283.93.972050.37
217.147.236.164magniti.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

24-39623451/3/201848C
0.05063.90.012033.28
217.147.236.164billing.self.com.ge:443NULL

25-396267541/376/202676K
5.82173.95.922009.00
217.147.236.164midea.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

26-396104700/80/202109_
2.02240.01.082008.76
188.169.119.234velistore.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

27-396174601/54/202432K
0.65073.90.341995.21
217.147.236.164trd.self.ge:443GET /cron/sms.php?s=trd&t=1730458082 HTTP/1.1

28-39626151/3/201583K
0.03263.90.012030.59
217.147.236.164mainmart.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

29-39625261/162/201722K
3.70163.91.582000.37
217.147.236.164moedani.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

30-396127961/225/202978K
3.64263.91.482079.75
217.147.236.164nmedic.self.ge:443GET /cron/sms.php?s=nmedic&t=1730458082 HTTP/1.1

31-39638820/247/202645_
3.961130.03.892005.36
213.131.57.3sheratonbatumi.self.ge:443POST /api/App/GetWorkingStatus/6ef31aee-5c9a-4ab6-9afc-d31dfaa7

32-396159441/339/202030K
6.8301174.04.061992.57
217.147.236.164transporter.self.ge:443GET /cron/sms.php?s=transporter&t=1730458082 HTTP/1.1

33-396264790/26/201322_
0.480130.00.102004.42
188.169.238.21billing.self.com.ge:443NULL

34-396307281/198/201926C
3.8701424.02.931971.98
217.147.236.164billing.self.com.ge:443NULL

35-39610380/90/201569_
1.84070.03.051979.86
91.184.101.1cellfie.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

36-396127970/246/201447_
5.441300.02.872027.65
217.147.236.164billing.self.com.ge:443NULL

37-396269850/398/201560_
6.591720.03.711975.87
80.241.251.210staff.self.ge:443POST /api/Chat/PoolMessages/MjA2NDc5NTg3NQ==/a25e52f9-02e5-437e

38-396127990/250/202154_
6.210120.01.521999.31
212.72.147.242geocredit.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

39-396236270/191/202317_
3.27040.01.102023.53
93.186.215.194casacalda.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

40-39669884/78/201416K
1.52118121.52.841977.37
141.8.208.20spar.self.ge:443GET /buffer/tmp/spar/APPImages/spar%20-%2051670%20-%202024-10-2

41-396143541/53/201094K
0.650134.10.292016.84
92.241.84.218cellfie.self.ge:443GET /status/IMikeladze/?t=1730458099034 HTTP/1.1

42-396217821/1043/201466K
17.40053.96.822003.16
217.147.236.164tbcconcept.self.ge:443GET /cron/sms.php?s=tbcconcept&t=1730458082 HTTP/1.1

43-39669900/77/202737R
1.304180.01.572019.05
185.52.82.164

44-396153931/475/202038C
9.641134.16.582018.15
94.43.1.234billing.self.com.ge:443NULL

45-396160390/226/201824R
3.67540.02.412017.97
178.134.248.238

46-396224210/137/201699_
1.98180.00.972017.92
217.147.236.164billing.self.com.ge:443NULL

47-396102140/170/201699R
4.8751170.01.542066.01
149.3.95.82

48-39664281/420/201785K
6.8811514.94.252027.65
217.147.236.164raymann.self.ge:443GET /cron/sms.php?s=raymann&t=173045808

Found on 2024-11-02 13:25

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc5261274dea

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Wednesday, 30-Oct-2024 16:27:32 +04
Restart Time: Monday, 14-Oct-2024 18:55:11 +04
Parent Server Config. Generation: 354
Parent Server MPM Generation: 353
Server uptime:  15 days 21 hours 32 minutes 20 seconds
Server load: 6.71 8.70 11.38
Total accesses: 142669002 - Total Traffic: 1455.3 GB
CPU Usage: u3936.92 s2790.94 cu0 cs0 - .49% CPU load
104 requests/sec - 1.1 MB/second - 10.7 kB/request
201 requests currently being processed, 732 idle workers
_______K_CK____W______C__.____________R_W_________K_C___K___K___
_.K__R__C_R.K.__W._K_K_KK__R_KR______W.____CK_R____.R_.K___K.K__
_________._W_KRW___K__CK_K___CK_C____________K__R__.__________._
___._R_K__._C__.__C_._______________K___C__CK_______R_____C__K__
_____._R_.___K__._._RCC__._K__K____W__RRWK_C_W__CW____________K_
R___C__.CK_C.__RR___________.R_K__KCR___WK_____K________WKK.C___
__.___RK_____CK__K______KR___R_____K_______.____.____R__W.______
___._.__K._________C.____._CK__C____K________._.____K_.W._._.._.
C______C..K___C.R_K__.__R.K___________.________R______.__C______
._CK___K_________..K____._____________._____.______K_..._K___._K
_.__.___KK..K.R.C__._K_____.CC_______C__R___.________C_.__R_._KK
KC______K.___R_W__.___K_K._.___________.K._R_.C___.._W.__._K_._C
.__C_K_____.______.W___.___..__CC________W__K.__R_R___._________
._C__..C_._.._._____KK.__K.__K._.____KKK__._W___RR_.______R__R__
_..._______K______.___________....._KK..___..._RK.__.R.____.._K.
_.__._.._R_._..__.__.._._._._._.__..R_.__....__.C_____..__._.__.
.._.K._..._.CK_.R__________._K_KW._K____._____R___._...._.__C.._
K____K___.R_....._................._......._..........._........
........._......................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-353294380/651/178145_
9.693190.04.951752.54
91.184.120.68magniti.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

1-353247560/173/177483_
2.64040.07.361778.94
37.232.43.150kirurgia.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

2-35319180/444/177490_
7.650260.05.391788.15
188.169.13.198caucaspack.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

3-353247910/165/176972_
2.461270.01.281762.40
95.104.118.10mrcheveli.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

4-353172620/95/176943_
1.78250.01.001828.51
141.8.208.21foodservice.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

5-35353550/487/175975_
10.56390.03.551748.00
172.21.24.6aversiclinic.self.ge:443POST /api/App/GetLogo/c0271811-897f-47fa-a424-02752aa343f3/f613

6-353135480/212/176028_
3.012230.01.551724.59
212.72.159.2billing.self.com.ge:443NULL

7-353104191/17/176685K
0.230723290.10.341784.94
146.255.249.226dressup.self.ge:443GET /buffer/tmp/dressup/RenderPhoto/21624-user_photo_1889_c5457

8-353306400/56/176435_
0.703560.00.241794.97
94.100.239.194mineral.self.ge:443POST /api/Device/InsertDeviceData/07336c508f8ba94b HTTP/1.1

9-353104561/22/176816C
0.300694.50.081792.96
185.143.176.178spar.self.ge:443POST /api/Device/InsertDeviceData/d66c9178b90f61c4 HTTP/1.1

10-353286451/176/176533K
3.690174.02.801775.05
94.43.236.70thht.self.ge:443GET /status/20001067380/?t=1730291256464 HTTP/1.1

11-353147130/9/176173_
0.172580.00.041778.18
109.238.230.214aversiclinic.self.ge:443POST /api/Chat/PoolMessages/MzAxNzE3ODMwMQ==/3e486024-b4c4-4689

12-35318440/48/176654_
1.49360.00.191785.74
185.70.54.26billing.self.com.ge:443NULL

13-353266470/74/176608_
0.89440.00.381754.45
31.146.98.173air.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

14-353170790/210/176041_
3.52350.01.291732.66
212.72.146.106hotelspreference.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

15-35311720/143/175721W
7.14000.02.571758.85
92.241.75.34family.self.ge:443POST /api/Device/InsertDeviceData/eba0e85629a87981 HTTP/1.1

16-353216390/593/175509_
10.80440.06.591753.97
91.184.122.5

17-353251070/388/175335_
7.04280.04.161778.80
92.54.214.131nova.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

18-353138710/101/176394_
3.433780.00.671710.54
92.241.75.34family.self.ge:443POST /api/Device/InsertDeviceData/eba0e85629a87981 HTTP/1.1

19-353266890/75/175373_
0.9401050.00.891749.40
172.21.24.6aversiclinic.self.ge:443POST /api/App/GetLimits/1ad9448f-309b-482c-a361-d27ab6c633b4/68

20-35345620/242/175373_
4.89340.04.471756.96
178.134.55.18jeuholding.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

21-353270030/774/175877_
16.982720.08.091818.41
109.172.174.222billing.self.com.ge:443NULL

22-353231011/84/176352C
1.690124.10.521794.71
146.255.227.194billing.self.com.ge:443NULL

23-353176550/504/176661_
9.59350.04.171803.41
178.134.248.234dgholding.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

24-353171860/237/175160_
10.86460.02.491775.08
91.184.101.1cellfie.self.ge:443POST /api/Transactions/Register HTTP/1.1

25-353-0/0/175963.
0.05400.00.001769.84
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

26-353231390/86/175274_
1.682400.00.511744.48
35.205.159.124ktl-georgia.self.ge:443GET / HTTP/1.1

27-353181730/624/175494_
13.414730.07.841750.29
212.58.120.160magniti.self.ge:443POST /api/App/GetWorkingStatus/b6046d93-a0db-4416-b83b-864ff731

28-353173500/102/174655_
1.483510.00.511773.12
92.51.122.174family.self.ge:443POST /api/Device/InsertDeviceData/e113a89e0c8b811f HTTP/1.1

29-353213780/164/174841_
2.82350.01.421756.20
94.43.85.18insta.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

30-353163250/298/176072_
4.853740.02.131823.06
92.51.122.174family.self.ge:443POST /api/Device/InsertDeviceData/e113a89e0c8b811f HTTP/1.1

31-353284460/354/175672_
5.234600.05.331749.52
109.238.230.214aversiclinic.self.ge:443POST /api/Chat/PoolMessages/MzAxNzE3ODMwMQ==/3e486024-b4c4-4689

32-353231400/82/175084_
0.972590.00.421756.23
213.131.47.90family.self.ge:443POST /api/Device/InsertDeviceData/7c4f25aa57656ca8 HTTP/1.1

33-353266900/73/174777_
1.96160.00.551751.19
178.134.32.6dressup.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

34-353211450/388/175038_
6.853590.02.631721.40
92.51.122.174family.self.ge:443POST /api/Device/InsertDeviceData/e113a89e0c8b811f HTTP/1.1

35-353101760/127/174578_
2.931370.02.341726.46
80.241.243.66enterprise.self.ge:443GET /api/cards/?R=II-1-d4-r1_in HTTP/1.1

36-353174150/92/174826_
0.98490.00.631784.83
213.217.16.90billing.self.com.ge:443NULL

37-353101770/137/174970_
1.99340.02.021719.00
91.151.136.134tsurgroup.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

38-353101780/131/175444R
2.41640.02.011758.22
31.146.97.86

39-353285330/365/175622_
7.01340.04.521768.37
62.168.165.226citycom.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

40-353127910/306/174738W
4.53000.01.971727.45
92.241.75.34family.self.ge:443POST /api/Device/InsertDeviceData/eba0e85629a87981 HTTP/1.1

41-35319120/36/174249_
0.430800.00.161770.05
178.134.236.254magniti.self.ge:443POST /api/App/ReAuthentication/51e2519b-2732-4d4a-bfca-b056aabf

42-353255460/602/174590_
12.300390.05.771747.80
95.104.126.201dressup.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

43-353176900/614/175537_
13.310200.03.711750.99
178.134.236.254magniti.self.ge:443POST /api/App/GetServerDateTime/51e2519b-2732-4d4a-bfca-b056aab

44-35392410/455/175049_
11.87370.04.431755.98
213.131.33.134wendys.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

45-353304280/470/174693_
9.20060.03.911763.16
212.72.131.254ici-paris.self.ge:443GET /api/Chat/GetUnreadCount HTTP/1.1

46-353306560/68/174884_
0.864670.00.251754.55
213.131.47.90family.self.ge:443POST /api/Device/InsertDeviceData/7c4f25aa57656ca8 HTTP/1.1

47-353288070/279/1

Found on 2024-10-30 12:27

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52c7132830

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Monday, 28-Oct-2024 13:45:40 +04
Restart Time: Monday, 14-Oct-2024 18:55:11 +04
Parent Server Config. Generation: 328
Parent Server MPM Generation: 327
Server uptime:  13 days 18 hours 50 minutes 28 seconds
Server load: 10.02 8.84 9.37
Total accesses: 116653100 - Total Traffic: 1210.4 GB
CPU Usage: u3058.67 s1796.96 cu.83 cs4.68 - .408% CPU load
97.9 requests/sec - 1.0 MB/second - 10.9 kB/request
241 requests currently being processed, 576 idle workers
___K_K_______C_K____C____KKK_KWK___W.K_KCK__K_CK__KC______W__C_C
_.____C__K_C___K__C_W_K__________K____CW_____R___R__CC______K___
_R_____CKK___C__.______CR_KRKK_KK_KC_C___________C____C.K__KK_K_
__KK_C___W____K_K___________K______CC__RC_._K____K_K____CK______
__R__C_______WC__C_KR__C_C_____C_C.__________CRK___C___K._K__CC_
__C___K_K___K_RC_.__K___C___K__R__K__K__C___RWK__CR____CR__K__.C
_._____R_C______K___W_C_______._K_KCC____KCK_______KRC___C____CK
_..C_K.K_K.___..K_.K..__.__._____.__..K__C..K..__._.K..._KK_W_..
_._.C_R_._.._____._._..K_.._.W_____._._K_K_._.__R__W_.__._.K____
_.K_C._._CKC__KKK___K.W_.._K__.KC.____.__K_.__.CK.__..KK____.KC_
._.R._...__._..._____K.__.KK__K_..._C______..___..__..W______.KK
___.__._.K._.___K____.__K_K____.___._._.____._KK_.__K__.C.C__K._
__._.W_K_.__...__K_.KK__...__.C_______.______.___RK..._K_K_.._K_
K__C_.KK_WK_._._.__._.K.C._K_K..K_C_._.K..K.K..___..._K.._KK._..
____.__.._._...._.K_.K...K.C_.__K.....__...._.__...._....._.._.K
.._..._.___...._______.._......._........_._._._____..K......_.W
_K_K.....__.C_K._.._C.._.____K....K.............................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-327268110/63/148190_
1.585800.01.141480.71
217.147.236.164billing.self.com.ge:443NULL

1-327229670/56/147739_
0.831140.00.641492.87
94.43.132.13billing.self.com.ge:443NULL

2-327193110/72/147832_
0.953120.00.371514.30
92.51.118.182etaloni.self.ge:443GET /status/AniSH/?t=1730108735636 HTTP/1.1

3-327132811/425/147189K
10.202144.09.321480.98
146.255.226.110gsn.self.ge:443GET /status/zvashakmadze98/?t=1730108754155 HTTP/1.1

4-327291020/195/147217_
8.253120.03.181551.38
163.116.178.212billing.self.com.ge:443NULL

5-32769391/83/146039K
1.52021114.40.761487.11
188.169.33.211mac.self.ge:443GET /?option=r_hrbase HTTP/1.1

6-327206510/131/146278_
3.650860.02.361449.88
80.241.251.210staff.self.ge:443POST /api/Chat/PoolMessages/MjA2NDc5NTg3NQ==/57a358ea-9197-4b06

7-327120630/22/146838_
0.466140.00.821499.63
212.72.159.2billing.self.com.ge:443NULL

8-327107720/83/146836_
2.115150.01.301534.09
89.232.49.251billing.self.com.ge:443NULL

9-327193670/75/146957_
1.510940.01.941492.23
80.241.251.210testing.self.ge:443POST /api/Chat/PoolMessages/MzAxMjUzOTYxMg==/e76c6c50-814e-4512

10-327272850/102/146330_
1.971540.01.291488.52
217.147.236.164billing.self.com.ge:443NULL

11-32796780/190/146590_
3.964780.01.581510.74
217.147.236.164billing.self.com.ge:443NULL

12-327256920/183/146957_
3.683760.01.731506.11
217.147.236.233nutsinc.self.ge:443GET /api/Cards/AllCards HTTP/1.1

13-327230201/62/146783C
0.9801103.81.511472.18
217.147.236.164billing.self.com.ge:443NULL

14-327268650/58/146353_
1.33460.00.331455.32
217.147.236.164billing.self.com.ge:443NULL

15-327257331/171/145988K
8.0321354.12.211483.74
5.152.102.201leadercredit.self.ge:443GET /status/m.somkhishvili/?t=1730108710544 HTTP/1.1

16-327111280/22/145942_
0.500130.00.101480.70
146.255.233.146metro360.self.ge:443POST /api/App/GetWorkingStatus/cefacb49-b2cc-47ee-a186-cdbf48ef

17-32794270/152/145584_
2.754170.02.971505.18
81.16.249.87ndc.self.ge:443POST /api/App/GetDashboardNews/b6477105-b7e6-4157-85f4-76c78718

18-3275370/152/146265_
4.645130.01.661425.95
188.169.214.210billing.self.com.ge:443NULL

19-32734690/92/145361_
2.916790.00.931463.04
217.147.236.164billing.self.com.ge:443NULL

20-327182621/194/145673C
3.930763.82.811456.25
217.147.236.164billing.self.com.ge:443NULL

21-327168040/364/146327_
8.9351080.04.261543.81
217.147.236.164billing.self.com.ge:443NULL

22-327201100/246/146655_
6.035540.04.421503.85
92.51.122.174family.self.ge:443POST /api/Device/InsertDeviceData/e113a89e0c8b811f HTTP/1.1

23-32711680/223/146763_
5.096550.03.001542.93
187.251.143.76

24-327108100/94/145628_
2.255500.01.531508.33
92.51.105.18spar.self.ge:443POST /api/Device/InsertDeviceData/2b692123c14f37eb HTTP/1.1

25-32796791/203/146585K
6.551224.14.811504.21
94.43.32.106act.self.ge:443GET /status/13001063171/?t=1730108739650 HTTP/1.1

26-327145731/17/145566K
0.342104.00.071470.65
95.137.246.41nmedic.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

27-327130461/201/145985K
3.77185.22.051463.29
195.69.140.55nexus.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

28-327273900/109/144968_
3.255130.01.081487.95
185.70.53.62staff.self.ge:443POST /api/App/GetWorkingStatus/822bf1e9-0a74-4662-8319-e6081cd7

29-327230211/50/145499K
5.3911513.81.391464.87
217.147.236.164dressup.self.ge:443GET /cron/changetypes.php HTTP/1.1

30-32734220/278/146402W
16.41100.02.981542.79
141.8.208.20spar.self.ge:443GET /?firstname=&lastname=&org=0&org_place=0&position=&start_da

31-327130471/198/145914K
4.8002683.84.061481.42
217.147.236.164elteg.self.ge:443GET /cron/changetypes.php HTTP/1.1

32-327206900/126/145143_
2.123610.02.201470.52
5.152.14.2billing.self.com.ge:443NULL

33-32735030/89/145297_
1.535110.00.821475.57
146.255.238.38billing.self.com.ge:443NULL

34-327110020/68/144980_
1.92090.00.661457.83
188.169.33.211billing.self.com.ge:443NULL

35-32773000/28/144770W
0.62000.00.121455.47
80.241.251.210testing.self.ge:443POST /api/Chat/PoolMessages/MzAxMjUzOTYxMg==/e76c6c50-814e-4512

36-327-0/0/145369.
2.60900.00.001510.66
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

37-32736341/34/145396K
0.60183.90.361440.11
212.72.159.2raymann.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

38-32714310/302/145903_
6.116150.04.111481.59
92.51.72.150billing.self.com.ge:443NULL

39-32791601/525/145640K
10.281404.06.481495.65
45.9.46.102medulla.self.ge:443GET /status/60001157817/?t=1730108738947 HTTP/1.1

40-327184781/6/144670C
0.10153.80.021455.89
217.147.236.164billing.self.com.ge:443NULL

41-327113541/19/144587K
0.39153.80.191500.35
217.147.236.164gastroloft.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

42-32769400/92/145354_
1.555770.00.991486.27
217.147.236.164billing.self.com.ge:443NULL

43-327218550/183/145609_
5.285130.02.911467.69
92.241.76.10lazikacapital.self.ge:443GET /status/18001066346/?t=1730108733591 HTTP/1.1

44-327302441/33/145449K
4.84004.50.201483.90
93.123.17.151td.self.ge:443GET /debug/default/view?panel=config HTTP/1.1

45-32753320/217/144956_
4.441150.04.191477.95
82.211.132.43billing.self.com.ge:443NULL

46-32714361/255/145400C
5.65183.86.511481.39
95.137.237.211billing.self.com.ge:443NULL

47-32795101/152/144938K
1.9811253.83.661505.93
217.147.236.164element.self.ge:443GET /cron/changetypes.php HTTP/1.1

48-327219900/433/145012_
9.342540.05.491482.13
94.43.199.122billing.self.com.ge:443NULL

Found on 2024-10-28 09:45

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc522acc272a

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Saturday, 26-Oct-2024 14:04:44 +04
Restart Time: Monday, 14-Oct-2024 18:55:11 +04
Parent Server Config. Generation: 312
Parent Server MPM Generation: 311
Server uptime:  11 days 19 hours 9 minutes 32 seconds
Server load: 2.90 3.87 3.70
Total accesses: 101722627 - Total Traffic: 1081.3 GB
CPU Usage: u2476.19 s1257.69 cu0 cs0 - .366% CPU load
99.8 requests/sec - 1.1 MB/second - 11.1 kB/request
66 requests currently being processed, 756 idle workers
_.K_____________________K_____________K___K_.__________._______K
_______K_____K____K.________________R_________K_____C_______._R_
_________.___C___________________________________R____________._
K_K____________._________.______________________._______________
_____________K_________________K__K____________K_____.__________
__....._K__K._.._._.._K_._____.._______.__________._.___..__._..
____.___._K_.__.___..___..._.___.C________R____C_._._._____.___.
.______.__.__..______.._.._______________._.._____.__.__._____._
_____K_.__.___C._._._____R___..___.K________C_.._...___K____.___
_._____.__._____.____.___._._._.___.________K__._.__.._..K_._.__
__C.__._________.______.._.K..__..__K__._.____._____.____R._.___
____K__K_K_.R_______..C__.______.__.___._._K._._C._____.____....
__.K____.__.________.________.____K_._..__C_________K___K_K_.___
__C__..__...._.__C._________.______..___C_____._._K____K_____K_.
.__K____._._.__..__...._W__._.__.__.______._.____K.___K_.___._..
R_____.______.___.__..____._C_.._.____C_K___....................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-31132350/125/128446_
1.9520550.04.451320.29
92.54.192.182spar.self.ge:443POST /api/Device/InsertDeviceData/ab7021a938eef842 HTTP/1.1

1-311-0/0/128076.
6.411300.00.001329.64
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

2-31165461/61/128135K
0.810154.00.341339.40
178.134.12.162eltbg.self.ge:443GET /status/61004066238/?t=1729937084661 HTTP/1.1

3-311185780/83/127642_
5.7821540.00.781303.98
94.43.142.210spar.self.ge:443POST /api/Device/InsertDeviceData/99817c6f547bf862 HTTP/1.1

4-311158250/149/127825_
7.27260.03.401396.49
80.241.241.230ambassadorikachreti.self.ge:443GET /api/cards/ HTTP/1.1

5-311257000/30/126463_
0.4517560.00.171318.79
141.8.208.32spar.self.ge:443POST /api/Device/InsertDeviceData/f41ce1d1c18b2d7c HTTP/1.1

6-311182870/42/126574_
0.915150.00.181285.68
178.134.43.38billing.self.com.ge:443NULL

7-311257480/27/127129_
0.3817530.00.311326.86
149.3.18.30spar.self.ge:443POST /api/Device/InsertDeviceData/60d8dd80c9e503d2 HTTP/1.1

8-31165800/64/127440_
0.989160.01.771372.36
80.241.241.174magniti.self.ge:443POST /api/App/GetMenu/6d08fd59-ebd8-4c69-b54e-be0002090f4e/3f9d

9-311318000/173/127552_
2.54750.01.551320.25
31.146.174.22medi.self.ge:443GET /api/cards/ HTTP/1.1

10-31110350/287/126875_
9.6020150.03.121322.03
146.255.232.134billing.self.com.ge:443NULL

11-31159680/15/127135_
0.1811520.00.061347.55
80.241.251.82spar.self.ge:443POST /api/Device/InsertDeviceData/1e6d73ab52392c1d HTTP/1.1

12-311150310/59/127275_
0.889540.02.391326.55
146.255.226.214spar.self.ge:443POST /api/Device/InsertDeviceData/cbf1906fb4701b6d HTTP/1.1

13-311298100/223/127304_
4.0110140.04.581297.53
185.49.165.220billing.self.com.ge:443NULL

14-311222930/37/126850_
0.6520150.00.151282.00
5.187.9.30billing.self.com.ge:443NULL

15-31160190/22/126649_
0.4020130.00.461334.54
5.152.102.201billing.self.com.ge:443NULL

16-311151140/97/126229_
2.358960.00.801304.85
92.51.77.122magniti.self.ge:443POST /api/App/GetLimits/422a80ed-ae0f-4db0-af73-97981e6ff836/19

17-311257490/30/126011_
0.5415140.00.121348.80
188.169.66.118trd.self.ge:443GET /status/54001006588/?t=1729937066332 HTTP/1.1

18-311276640/164/126676_
2.84460.00.791269.08
187.251.143.76

19-311193360/139/125979_
2.480490.00.921293.69
193.228.126.87foodservice.self.ge:443POST /api/Device/InsertDeviceData HTTP/1.1

20-31168660/163/126281_
3.277160.04.641280.22
212.72.135.245billing.self.com.ge:443NULL

21-311100790/9/126859_
0.1510130.00.291381.33
91.151.136.173roniko.self.ge:443POST /api/App/GetLimits/5b5bc1af-493b-4879-a062-9cd524185066/d3

22-3118750/204/127070_
34.116560.03.181332.47
178.134.198.98spar.self.ge:443POST /api/Device/InsertDeviceData/13d579841e24d9e8 HTTP/1.1

23-311150320/50/127054_
0.7210550.00.201382.16
178.134.52.198spar.self.ge:443POST /api/Device/InsertDeviceData/9bd61536671a37ba HTTP/1.1

24-311231971/161/126145K
3.762152.73.161353.30
92.51.72.150eltbg.self.ge:443GET /status/61001058922/?t=1729937087752 HTTP/1.1

25-311243140/77/126994_
1.39300.00.301336.16
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

26-31160210/19/126046_
0.2711260.00.171306.31
198.235.24.67cth.self.ge:443GET / HTTP/1.1

27-311136650/5/126578_
0.090550.00.021304.31
149.3.109.146spar.self.ge:443POST /api/Device/InsertDeviceData/a94c8201b1130119 HTTP/1.1

28-31183060/104/125744_
2.18590.00.611324.62
37.232.51.222billing.self.com.ge:443NULL

29-31133040/130/126219_
2.602550.02.531309.74
92.51.119.218spar.self.ge:443POST /api/Device/InsertDeviceData/6e43a3684e7b7ed7 HTTP/1.1

30-31114460/25/126820_
0.386620.00.171369.12
95.104.116.246construction.self.ge:443POST /api/Device/InsertDeviceData/2b58291418110c43 HTTP/1.1

31-31114470/24/126379_
0.41760.00.281319.24
80.241.243.66enterprise.self.ge:443GET /api/cards/?R=II-3-d1-r1_in HTTP/1.1

32-31166470/246/125751_
5.0613530.02.161299.96
213.131.39.178spar.self.ge:443POST /api/Device/InsertDeviceData/04ce205b1c65e4ce HTTP/1.1

33-311181830/255/126028_
5.1141370.05.551302.31
92.241.75.34family.self.ge:443POST /api/Device/InsertDeviceData/eba0e85629a87981 HTTP/1.1

34-311272950/115/125416_
7.034570.00.891289.97
193.176.213.251spar.self.ge:443POST /api/Device/InsertDeviceData/07c0b98361c343f3 HTTP/1.1

35-31115330/22/125455_
0.35880.00.091297.79
92.51.77.122magniti.self.ge:443POST /api/App/GetLogo/422a80ed-ae0f-4db0-af73-97981e6ff836/30a8

36-311101020/9/125954_
0.133100.00.271341.78
178.134.32.6billing.self.com.ge:443NULL

37-311151590/108/125878_
6.1011520.01.751282.42
149.3.109.110spar.self.ge:443POST /api/Device/InsertDeviceData/8367175b03e85496 HTTP/1.1

38-311151655/102/126424K
1.6921020.20.461318.78
91.184.120.145novotel.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

39-311109420/103/126022_
1.570600.00.871328.39
31.146.177.6spar.self.ge:443POST /api/Device/InsertDeviceData/0f82b61653f90092 HTTP/1.1

40-31115370/32/125303_
0.5118140.00.101288.29
212.72.149.18newlight.self.ge:443GET /status/16001032268/?t=1729937018990 HTTP/1.1

41-31179510/207/125305_
3.55570.03.991335.03
185.70.53.220

42-31160571/14/125883K
0.202115.30.051307.00
5.187.10.13magniti.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

43-311316150/71/126226_
1.001710.00.281304.30
213.131.39.178spar.self.ge:443POST /api/Device/InsertDeviceData/04ce205b1c65e4ce HTTP/1.1

44-311-0/0/125844.
2.21700.00.001309.59
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

45-311318380/173/125749_
3.906550.03.211310.99
37.232.45.26spar.self.ge:443POST /api/Device/InsertDeviceData/33c2136e34c03522 HTTP/1.1

46-31169390/15/126086_
0.228570.00.061314.41
31.146.131.74spar.self.ge:443POST /api/Device/InsertDeviceData/634e9390ba08e2d7 HTTP/1.1

47-311223420/37/125538_
0.5111160.00.141346.50
31.146.198.98

Found on 2024-10-26 10:04

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52f52ace70

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Thursday, 24-Oct-2024 13:51:00 +04
Restart Time: Monday, 14-Oct-2024 18:55:11 +04
Parent Server Config. Generation: 272
Parent Server MPM Generation: 271
Server uptime:  9 days 18 hours 55 minutes 48 seconds
Server load: 6.08 4.62 4.62
Total accesses: 84706639 - Total Traffic: 908.3 GB
CPU Usage: u2837.45 s1665.1 cu0 cs0 - .532% CPU load
100 requests/sec - 1.1 MB/second - 11.2 kB/request
195 requests currently being processed, 656 idle workers
_______C_.________K___K_RCK_.K________K_C__C__..C_____C______C__
_K____K_KK__K.__W_______________C___KK____R_K_.____C____________
________________K_K_____K______._____CC_C_RC____C_K__CC____CC_K_
_K______.C_K___.C_KKK_KK_.___KR_W____._______K___________W_R____
_____._____._K_C___W_______KKCR_K_K____K__K_C_________K______W__
____K____WK__K____._._C_C__KC_C.__K__K__K_________R____.___K_K_.
____C_____KCK_C_K_____._K___C._K________C_K._____K__R_K.K_____R_
___________._K__.C_K__R___K________R_______W____K____.______K___
________K__.___C____.__C___._____C___KK___KC__KW________KRC_K___
K_K_R.___.K__K_.K______C__________._K_______KCK_C_K_____RKC_____
_____CKK__________C_.K__C________K___K__KK_____R_R_R_K___CR_K___
_K.___K__K______._________._KC_______C___K___K________K_K_._____
_________C.K_____.KC__._KKK___C__WCC______K__KK__.K____K_R_C____
K______R____._.___.C___..._K.___.__C_..______K___K_._K._.__.__..
W....K...................__..._......_..........................
._......................R...._....._............................
.._......................._.....................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-27113480/90/107143_
2.01480.01.641100.29
31.146.136.186billing.self.com.ge:443NULL

1-27123690/57/106672_
0.357590.01.491119.56
94.43.32.230spar.self.ge:443POST /api/Device/InsertDeviceData/bd2678938c62db0a HTTP/1.1

2-27195950/9/106387_
0.13450.00.031125.26
217.147.236.164billing.self.com.ge:443NULL

3-271214810/63/106339_
0.698150.00.481097.11
91.184.123.187aversiclinic.self.ge:443POST /api/App/GetMenu/8feb931c-9108-440f-bb1b-32775aa67f64/3704

4-27131510/166/106550_
2.494120.04.091194.25
178.134.12.162billing.self.com.ge:443NULL

5-271102950/79/105549_
1.44060.01.091103.56
217.147.236.164billing.self.com.ge:443NULL

6-27197210/292/105375_
7.3411240.02.931077.70
193.176.213.37egt-georgia.self.ge:443POST /api/Transactions/Register HTTP/1.1

7-271104861/177/106133C
3.3911423.81.201118.13
217.147.236.164billing.self.com.ge:443NULL

8-271132900/199/105964_
3.774550.02.031147.71
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

9-271-0/0/106479.
1.952300.00.001098.71
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

10-27162160/22/105465_
0.330570.00.081098.84
31.146.176.198spar.self.ge:443POST /api/Device/InsertDeviceData/a0773584e2ef4603 HTTP/1.1

11-27196280/8/105702_
0.964110.00.031124.76
92.241.87.122billing.self.com.ge:443NULL

12-271215410/47/105960_
1.391150.00.591113.84
87.253.46.230billing.self.com.ge:443NULL

13-271227270/113/106056_
1.89300.02.691073.41
159.65.144.72myip.self.ge:443GET /.DS_Store HTTP/1.1

14-271141990/75/105444_
1.106880.00.651063.90
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

15-27124010/23/105792_
0.397780.00.091139.56
31.146.84.186askaneli.self.ge:443POST /api/Transactions/Register HTTP/1.1

16-27114020/89/105171_
6.06550.01.321089.89
37.232.87.24alliancetbilisi.self.ge:443POST /api/Transactions/Register HTTP/1.1

17-271127630/381/104776_
6.216550.05.241135.64
92.51.105.18spar.self.ge:443POST /api/Device/InsertDeviceData/2b692123c14f37eb HTTP/1.1

18-27124201/23/105545K
0.402124.00.091065.27
178.134.82.6mbc.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

19-271259060/244/104910_
5.096140.02.201084.03
37.232.12.241billing.self.com.ge:443NULL

20-271142000/67/105250_
1.154140.00.381084.53
5.152.14.2billing.self.com.ge:443NULL

21-271103340/84/105404_
1.174130.00.711139.54
91.151.136.165tsurgroup.self.ge:443POST /api/App/GetWorkingStatus/5db68a7d-401d-40a6-848a-f7e05fde

22-271324491/360/105650K
10.862104.14.471115.80
37.232.43.150kirurgia.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

23-27171580/165/105656_
3.73870.02.571175.45
91.184.123.187aversiclinic.self.ge:443POST /api/App/GetServerDateTime/8feb931c-9108-440f-bb1b-32775aa

24-271313080/32/105184R
0.452910.00.161132.41
92.241.87.138

25-271103071/11/105821C
0.12173.80.201138.75
217.147.236.164billing.self.com.ge:443NULL

26-271187071/120/104559K
3.070134.12.121071.83
185.49.166.250betlive.self.ge:443GET /status/01019064315/?t=1729763460473 HTTP/1.1

27-27192260/218/105589_
4.66460.02.101090.56
92.241.69.54

28-271-0/0/104639.
0.643200.00.001114.62
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

29-27192271/210/105239K
3.972132.62.121085.73
185.201.24.28imedil.self.ge:443GET /status/19001111255/?t=1729763499187 HTTP/1.1

30-271215680/46/105688_
0.6551090.00.181142.57
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

31-271268160/38/105116_
0.88550.00.171105.63
80.241.248.210

32-271133240/201/104723_
3.90300.02.451090.35
185.115.4.162extrameat.self.ge:443GET /templates/images/footer_logo.png HTTP/1.1

33-271268750/34/104728_
2.57250.00.191080.94
217.147.236.164billing.self.com.ge:443NULL

34-271103660/62/104490_
0.86750.00.721075.49
217.147.236.164billing.self.com.ge:443NULL

35-271313290/32/104294_
0.433140.00.421094.05
5.152.102.201billing.self.com.ge:443NULL

36-271287360/434/104726_
9.457140.04.841140.60
172.21.24.38aversiclinic.self.ge:443POST /api/App/GetWorkingStatus/0217bb54-525f-4762-aca5-b95fe8dd

37-27162700/23/104404_
0.5661240.01.311067.53
217.147.236.164billing.self.com.ge:443NULL

38-27114221/104/105358K
1.890124.11.131107.35
109.238.227.29medcapital.self.ge:443GET /status/62011002501/?t=1729763459666 HTTP/1.1

39-271313300/36/105098_
0.80350.00.411116.56
185.115.4.162extrameat.self.ge:443GET /slider/3.png HTTP/1.1

40-271227581/119/104376C
1.771103.81.071082.05
46.175.134.54billing.self.com.ge:443NULL

41-271289900/811/104193_
17.50400.08.491098.89
159.65.144.72myip.self.ge:443GET /_all_dbs HTTP/1.1

42-271175380/58/104973_
0.832540.01.221094.24
92.51.122.174family.self.ge:443POST /api/Device/InsertDeviceData/e113a89e0c8b811f HTTP/1.1

43-271133391/238/104694C
3.720664.64.151088.99
81.16.252.247finhub.self.ge:443POST /api/Chat/PoolMessages/MzM0MzQzMTExMA==/c78d2fd1-47ea-4147

44-27162710/18/104635_
0.285160.00.271090.23
31.146.44.35dio.self.ge:443POST /api/App/GetWorkingStatus/5991b39c-5cd0-4dc5-a14c-6bfe4482

45-27124210/27/104617_
0.522530.00.171107.79
146.255.247.122air.self.ge:443POST /api/Device/InsertDeviceData/6b8a1ece1b42d66a HTTP/1.1

46-271-0/0/105003.
4.373700.00.001119.86
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

47-271-0/0/104365.
5.3012140.00.001117.26
146.255.226.110billing.self.com.ge:443NULL

48-27124221/23/104569C
0.380803.80.091094.76
217.147.236.164billing.self.com.ge:443NULL

49-271105590/13

Found on 2024-10-24 09:50

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc528136b0df

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Sunday, 20-Oct-2024 15:54:59 +04
Restart Time: Monday, 14-Oct-2024 18:55:11 +04
Parent Server Config. Generation: 188
Parent Server MPM Generation: 187
Server uptime:  5 days 20 hours 59 minutes 47 seconds
Server load: 3.82 3.98 3.36
Total accesses: 49391549 - Total Traffic: 544.0 GB
CPU Usage: u1907.59 s930.1 cu0 cs0 - .559% CPU load
97.3 requests/sec - 1.1 MB/second - 11.5 kB/request
82 requests currently being processed, 649 idle workers
____K____W____.________.____________._____.___W_._C______K__C___
____RR________.R_______K___________________W__C_K___R___________
___.W________C___.________.___.__________________._W_____.______
__________K____.__K_W___C____________._____________.K___________
_K___.______________R________W__K..C_____.___K.____________C____
______R____K_______K________W_RW________W_.__.________RK_.______
.___K_._____W__KR___R____K.._.__________W____._K______________K_
_C___________RW__.___._.C_________.K________KW______C___________
_______K______________K__K.__K___._K_______W_____________.______
________K_K__._____________..__K____R_R_______________._________
______________________K______.__..____WR_.K_._C_.._K.K__________
___.______..._.___...__.K._._____._.K__._..C.___.K__.___..______
.WK.K..____._______.___._..C_.._...._..............._...........
........._............................_._......._...__..........
............W........._......._.................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-187289710/5/63249_
0.076540.00.02658.81
213.131.39.178spar.self.ge:443POST /api/Device/InsertDeviceData/04ce205b1c65e4ce HTTP/1.1

1-187126490/34/62643_
0.431170.00.15675.82
212.72.131.20kingpremier.self.ge:443POST /api/App/RegisterPushToken/0c8dfa5e-39c4-4a38-b000-70d87c1

2-187289850/5/62913_
0.1013700.00.02673.30
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

3-187126890/39/62414_
0.591000.00.49664.46
178.134.83.193billing.self.com.ge:443NULL

4-18721101/53/62699K
0.65004.50.63715.99
93.123.17.151td.self.ge:443GET /.vscode/sftp.json HTTP/1.1

5-187175790/276/62327_
8.105120.01.95674.08
80.241.241.166magniti.self.ge:443POST /api/App/Initialization/2c896f78-baed-4a21-ae1d-690b4e17db

6-187141830/252/61708_
4.0411640.03.96640.52
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

7-18726790/155/62367_
2.980130.01.03659.09
80.241.241.166magniti.self.ge:443POST /api/App/GetWorkingStatus/2c896f78-baed-4a21-ae1d-690b4e17

8-187126900/34/62645_
0.421550.00.16699.64
176.221.225.66spar.self.ge:443POST /api/Device/InsertDeviceData/ea5696c87e784c27 HTTP/1.1

9-187251440/253/62882W
7.59000.01.99665.71
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

10-187255410/13/62122_
0.274540.00.05674.84
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

11-187181220/21/62396_
0.284550.00.10691.05
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

12-18792920/198/62524_
3.0711140.00.82676.44
5.178.129.4billing.self.com.ge:443NULL

13-187175230/84/62237_
1.6711520.00.36637.17
185.81.93.202spar.self.ge:443POST /api/Device/InsertDeviceData/71f59ce3493c6cbc HTTP/1.1

14-187-0/0/61904.
18.391400.00.00643.32
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

15-187221060/119/61823_
2.1301160.00.79691.47
92.241.75.34family.self.ge:443POST /api/Device/InsertDeviceData/eba0e85629a87981 HTTP/1.1

16-187255690/12/61675_
0.183540.00.06663.81
31.146.223.78spar.self.ge:443POST /api/Device/InsertDeviceData/691c13c37fcc65a7 HTTP/1.1

17-18748260/98/61552_
1.294520.00.69702.00
146.255.228.86spar.self.ge:443POST /api/Device/InsertDeviceData/6bf0d30b70d1b4b7 HTTP/1.1

18-187289860/6/62003_
0.092190.00.02652.21
146.255.233.146billing.self.com.ge:443NULL

19-187290000/5/61960_
0.102150.00.02670.59
178.134.146.138magniti.self.ge:443POST /api/App/GetWorkingStatus/e7ae447b-3066-4e7d-9e16-246a8a42

20-187127070/32/61711_
0.51570.00.12654.65
80.241.243.66enterprise.self.ge:443GET /api/cards/?R=II-3-d1-r1_in HTTP/1.1

21-187127080/32/61898_
0.420130.00.13703.76
31.146.176.114billing.self.com.ge:443NULL

22-187178770/140/62189_
1.721350.01.03681.15
188.93.90.18billing.self.com.ge:443NULL

23-187-0/0/62073.
0.301100.00.00707.06
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

24-187299420/57/62075_
1.699730.00.54696.29
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

25-187304810/292/61928_
4.843680.02.93698.41
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

26-187127090/33/61481_
0.443120.00.16665.13
5.152.90.232bilioni.self.ge:443POST /api/App/GetUserApplications/f94e686d-8d65-42e6-b0f5-2608b

27-187265670/140/61994_
2.5213100.01.00658.30
31.146.181.14billing.self.com.ge:443NULL

28-187127100/33/61317_
0.417570.00.14684.98
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

29-18755580/99/61713_
1.5012230.00.59652.13
45.9.44.171miniso.self.ge:443POST /api/App/GetWorkingStatus/26703428-043d-47e4-ac4b-52781b7b

30-187290010/7/62170_
0.119760.00.03670.35
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

31-187181420/26/61793_
0.35180.00.12684.45
213.200.15.250tskaltuboplaza.self.ge:443POST /api/App/GetWorkingStatus/159cacd8-a994-4a88-bb8c-dd327325

32-187300400/60/61368_
0.753590.00.45635.43
77.92.226.178spar.self.ge:443POST /api/Device/InsertDeviceData/b353f852a92758d6 HTTP/1.1

33-187270110/224/61357_
4.141170.01.68648.30
5.152.102.201billing.self.com.ge:443NULL

34-18713280/107/61471_
1.3811580.00.66647.81
94.43.254.22spar.self.ge:443POST /api/Device/InsertDeviceData/48ab4af2dc3cceca HTTP/1.1

35-18754820/432/61059_
9.519940.03.35668.54
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

36-187-0/0/60828.
3.49800.00.00669.44
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

37-187107110/157/61131_
2.21370.00.78644.59
62.168.190.34kvarelilake.self.ge:443POST /api/App/GetWorkingStatus/4c976152-8772-4e3e-92ff-b2e05260

38-187300410/58/61865_
0.696580.00.26674.43
94.43.239.186spar.self.ge:443POST /api/Device/InsertDeviceData/4540a45bfb46a0cc HTTP/1.1

39-187290020/6/61347_
0.095690.00.03656.83
95.104.116.246construction.self.ge:443POST /api/Device/InsertDeviceData/2b58291418110c43 HTTP/1.1

40-187290030/5/60971_
0.0711500.00.02653.53
37.232.88.66spar.self.ge:443POST /api/Device/InsertDeviceData/d6db4fd6085fa14b HTTP/1.1

41-18727700/148/61156_
4.0113480.00.75676.50
178.134.107.14spar.self.ge:443POST /api/Device/InsertDeviceData/3469b09e7dbc2a26 HTTP/1.1

42-187-0/0/61553.
5.74900.00.00666.12
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

43-187127580/34/61265_
0.51990.00.14651.07
62.168.190.34billing.self.com.ge:443NULL

44-187181620/28/61419_
0.397200.00.11660.23
178.134.146.138magniti.self.ge:443POST /api/App/GetWorkingStatus/e7ae447b-3066-4e7d-9e16-246a8a42

45-187127600/40/61262_
0.792600.00.16671.14
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

46-187175350/74/61575W
3.23000.00.36685.57
94.43.128.70craftbranchs.self.ge:443

Found on 2024-10-22 10:09

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc524cf608cd

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Friday, 18-Oct-2024 15:10:01 +04
Restart Time: Monday, 14-Oct-2024 18:55:11 +04
Parent Server Config. Generation: 141
Parent Server MPM Generation: 140
Server uptime:  3 days 20 hours 14 minutes 50 seconds
Server load: 4.08 5.05 4.87
Total accesses: 33418974 - Total Traffic: 412.1 GB
CPU Usage: u2881.2 s1738.99 cu0 cs0 - 1.39% CPU load
101 requests/sec - 1.3 MB/second - 12.9 kB/request
395 requests currently being processed, 411 idle workers
RKRW__R___KKK_.__K.______K_.KCKK__WC_KK.KKK_______._____K_RR_._R
__WRR_WK__KRRRCW_KKK__K_K__KK_.RKK___R._KKKCKK_W_K_WK_C_RC_.___.
.K_W____K_KK.KKKWRWKK_K_K_.K____KK____._K____K_W____RKK_K_KK_C_.
_K_CKKKR.___KC__RKK__KK_K_K_W_.__K_KKKKRKR___KK_R__K_K_.KR____KR
K_K_..__K_.KK___R_K_KWK_KRK_WR__K_WK__W_KK__..K__K_____CK.K_..__
_R._RW_W__._RK_.._W_.KK.K_.K.R_..K_____._CK_._.__K..___.K.KR_K._
._WRCRKR.WR.__KK.K.__..___R._KK.._.___._CK..____._..__K_WR.K_.K.
__._K_._.WR._KKK._K.KK_K_.K_.___KW_R.____KWW._K..._K.._.R__R_.._
_W_CKWK.R_.WR_CR.K_K_RKRKR...CW_C..R___K.R.K._.___.W._____....__
__WWKK._KR_.KKWRKCCK....._._K__KKKK__._._K_K.K_.K.KK_._..__.CRR_
W_KK_RWK_._K_R__.W..___K.K__R__.R.R_.KK..K._.___CK_KK.KKK.K__K_.
KK.._K.W___K._._..K..__CKK_R__C_K...K.K.W._C._K___CK_K....._.K..
K_...K_K.W.___.R___..._K_.__KRR.WK____..K._.._.___R.._._KRK..C.K
._K__....KK___WK____.W.__RR....WKK_K_._._..K_W__CK__.__RK..K_K.W
._..._.____.____C._C_..._K...._.KK._K.C.R_._.__WK___.__K.__KR_K.
.R_.R._K__._.._W_KWKK____R.K_WK_RKKKR_..R_..KK...___R..____K_C_.
KK_._K.WK.._KK..._.....R.__K...._......._...._................R.
.............._.................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-140181190/21/42002R
0.290550.00.09485.45
94.43.222.238

1-140112931/46/41610K
0.73073.91.22503.01
217.147.236.164accor.self.ge:443GET /cron/poolDevice.php HTTP/1.1

2-14035780/174/41754R
2.900210.01.13493.41
80.241.251.210

3-14024090/241/41283W
5.63000.02.64497.72
217.147.236.164akhalikhedva.self.ge:443GET /cron/Consulting.php HTTP/1.1

4-140260880/7/41661_
0.09260.00.03532.02
62.212.36.58extrameat.self.ge:443GET /api/cards/ HTTP/1.1

5-140272980/244/41622_
5.112770.03.83504.92
109.238.232.134billing.self.com.ge:443NULL

6-140221960/18/40892R
0.400290.00.39482.27
95.47.238.33

7-140238520/150/41518_
2.383840.02.75491.38
37.232.46.122billing.self.com.ge:443NULL

8-14024980/49/41634_
0.724130.00.75515.30
94.137.163.216billing.self.com.ge:443NULL

9-14025480/53/41776_
0.730130.00.41490.56
212.72.147.242billing.self.com.ge:443NULL

10-140104661/100/41000K
2.062232.92.91500.58
212.72.147.242geocredit.self.ge:443GET /status/12001085779/?t=1729249799718 HTTP/1.1

11-140222451/12/41430K
0.190124.00.05509.18
178.134.146.186gulf.self.ge:443GET /status/48001026893/?t=1729249800973 HTTP/1.1

12-140261311/8/41582K
0.120303.90.03499.10
217.147.236.164act.self.ge:443GET /cron/LoginProcess.php HTTP/1.1

13-140271430/133/41343_
2.391590.01.29474.06
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

14-140-0/0/40904.
4.77800.00.00471.47
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

15-140182010/25/40891_
0.323130.00.09520.28
185.49.165.213episodehotels.self.ge:443POST /api/App/GetWorkingStatus/7d4911aa-650d-4ec2-81cd-b1e7c262

16-140179240/86/40710_
1.632140.01.18495.60
91.151.137.45billing.self.com.ge:443NULL

17-140276971/189/40727K
3.32083.82.53528.04
217.147.236.164newschool.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

18-140-0/0/41052.
0.431900.00.00475.48
91.184.127.162oktopus.self.ge:443GET /buffer/js/9663730d4301f596dc5d53d9e0bdda98_script.js HTTP/

19-140145240/87/41018_
2.004130.01.50495.33
92.241.76.10billing.self.com.ge:443NULL

20-14025490/54/40900_
0.694590.00.21488.17
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

21-140310240/453/41299_
8.111150.09.11522.50
212.72.143.211billing.self.com.ge:443NULL

22-14078800/286/40922_
9.154510.04.40493.73
217.147.236.233dhl.self.ge:443GET /api/Cards/AllCards HTTP/1.1

23-140303900/58/41046_
1.794130.00.99536.35
80.241.251.98billing.self.com.ge:443NULL

24-14080320/242/41097_
4.8801450.03.74525.10
188.169.123.18spar.self.ge:443POST /api/Device/InsertDeviceData/2fba39815c30eab5 HTTP/1.1

25-140271711/147/41000K
3.0721060274.52.24526.68
212.72.128.38dressup.self.ge:443GET /buffer/tmp/dressup/RenderPhoto/35504-user_photo_6834_a723e

26-14031230/126/40765_
2.184600.02.13491.23
95.137.241.204billing.self.com.ge:443NULL

27-140-0/0/41113.
0.802500.00.00493.03
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

28-14080731/251/40775K
4.8901113.93.92509.73
217.147.236.164alliancetbilisi.self.ge:443GET /cron/controllers_data.php HTTP/1.1

29-140108441/176/40730C
3.090144.23.39495.98
94.137.163.216billing.self.com.ge:443NULL

30-140101581/36/41337K
0.650344.10.32500.39
212.72.159.2raymann.self.ge:443GET /status/09001028022/?t=1729249801256 HTTP/1.1

31-140303911/49/40969K
2.960963.81.23500.58
217.147.236.164adli.self.ge:443GET /cron/controllers_data.php HTTP/1.1

32-14026220/50/40758_
0.77210.01.35471.05
178.134.199.254billing.self.com.ge:443NULL

33-140179640/90/40626_
1.493630.00.89482.62
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

34-14026270/58/40628W
0.98000.00.87481.92
217.147.236.164adwise.self.ge:443GET /cron/sms.php?s=adwise&t=1729249801 HTTP/1.1

35-14072211/105/40282C
2.421103.91.74492.47
178.134.146.186billing.self.com.ge:443NULL

36-140188130/223/40198_
9.402780.02.96502.85
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

37-140261321/7/40332K
0.120553.90.03488.98
217.147.236.164akhalikhedva.self.ge:443GET /cron/pool.php HTTP/1.1

38-140145571/96/41071K
1.480753.81.40501.67
217.147.236.164ndemo.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

39-140-0/0/40865.
3.653700.00.00492.44
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

40-140254031/83/40203K
1.472273.91.51480.67
178.134.199.254rustarholdings.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

41-140222461/14/40184K
0.3801313.80.69509.42
217.147.236.1641pay.self.ge:443GET /cron/controllers_data.php HTTP/1.1

42-140222731/17/40850K
0.242194.30.08498.19
91.151.137.45tsurgroup.self.ge:443GET /status/58001033229/?t=1729249799261 HTTP/1.1

43-14036270/179/40624_
9.761100.02.21479.79
5.152.102.201billing.self.com.ge:443NULL

44-140143420/32/40732_
0.604520.00.34495.43
31.146.82.62billing.self.com.ge:443NULL

45-140179650/73/40455_
1.573150.00.75485.48
212.72.135.245billing.self.com.ge:443NULL

46-140165360/149/40910_
2.832500.03.99512.56
213.131.47.90family.self.ge:443POST /api/Device/InsertDeviceData/7c4f25aa57656ca8 HTTP/1.1

47-140180090/80/40209_
1.804100.00.87520.35
91.184.127.162billing.self.com.ge:443NULL

48-14072260/109/40938_
1.551540.01.94482.57
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

49-140182020/22/40801_
0.28570.0

Found on 2024-10-18 11:09

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52b7642736

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Wednesday, 16-Oct-2024 10:51:36 +04
Restart Time: Monday, 14-Oct-2024 18:55:11 +04
Parent Server Config. Generation: 88
Parent Server MPM Generation: 87
Server uptime:  1 day 15 hours 56 minutes 24 seconds
Server load: 12.47 8.18 8.43
Total accesses: 13643275 - Total Traffic: 154.8 GB
CPU Usage: u2696.82 s1649.04 cu0 cs0 - 3.02% CPU load
94.9 requests/sec - 1.1 MB/second - 11.9 kB/request
244 requests currently being processed, 703 idle workers
__K_CC__R____R___KKK__K______RRCK__KK__K_________C__KC__K___C___
_.KK_.__K__K_K____KK_____C_____WK_____K___CR_C___K____CK________
_____R_C_K._K________C__R_CK___K__C___.C____KKC______K____K_KK__
_____C________K____K____C._K___K_________C___C______K_R__R_C____
CRK_CK____K___R__._K_CW_W_K__K_CR_________K_C____C__.___K_____K_
_K_____K_K__K__KK__CK_C_C___K_____K______K_______K.C_K__KR_R____
__R__.__C____KR____C_K____K_K___K__KKKK____C____C___.____K____._
R_KC__________K___.____KK_____C___K_C__K_____KK._____CKK___K_R_K
K___K.R___R_______C._____K_KC_____K_____.K__K__K___K______K_____
K____KC__K_KC___________K_______K__________K__K_K__.________.__K
_____C_._____K__K____.K______K__.K_C._K____K__________C____K_W__
_____K_K.K_K___K_._KCK________________.K___._.KR_.____R.__K_K___
____R_K_______C_____.______K____KK_K_________KK_K__.___K_KR_____
__CC______K_K_KK______CR____K._KK____RCK_K___K_K___WK__R____CK_.
______K__K______._.__.__._K______K.._.____K._____......K._....C_
.C..._..............__......_.......C.._____.._......_.._.._.._.
._._..K._K...K_._.........._.__.....K..._..._...................
....._..._...........K................._.....R..........._.....K
...._..........._...............................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-87325600/175/18209_
3.56460.02.53193.29
109.238.225.246medi.self.ge:443GET /api/cards/ HTTP/1.1

1-8764000/15/17673_
0.345140.00.06193.56
2.57.219.138billing.self.com.ge:443NULL

2-8729941/23/17726K
0.380893.90.40191.25
109.238.230.214aversiclinic.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

3-8738710/87/17775_
6.402700.01.00205.82
149.3.95.82billing.self.com.ge:443NULL

4-8722981/244/17801C
6.251154.05.08207.78
176.221.255.73billing.self.com.ge:443NULL

5-87157571/127/18221C
1.98083.81.60202.55
217.147.236.164billing.self.com.ge:443NULL

6-87234170/114/17498_
2.560160.04.43201.48
95.104.124.252billing.self.com.ge:443NULL

7-8772290/330/17720_
11.862100.07.68193.00
178.134.84.234billing.self.com.ge:443NULL

8-87118560/3/18209R
0.069570.00.01193.84
37.110.167.135

9-87233750/48/17833_
0.683170.00.55191.25
92.241.84.254billing.self.com.ge:443NULL

10-87215960/419/17633_
8.2952100.06.65201.71
95.104.126.240bangkok.self.ge:443POST /api/Device/InsertDeviceData/ed9db0072909d045 HTTP/1.1

11-87311950/299/17814_
4.980130.05.37188.75
109.172.174.222billing.self.com.ge:443NULL

12-87146170/67/17566_
1.0724880.01.69202.06
217.147.236.164billing.self.com.ge:443NULL

13-8774450/151/17717R
3.351100.02.29177.81
178.134.152.70

14-87119280/4/17353_
0.084890.00.12174.65
80.241.251.210demo.self.ge:443POST /api/Chat/PoolMessages/MzEyNzkxNDQ4/000d09fa-500f-40f5-8b5

15-87136060/429/17684_
9.523660.07.80208.43
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

16-87234580/122/17448_
3.681180.02.06192.04
188.169.6.44tserti.self.ge:443POST /api/App/GetWorkingStatus/a48890af-3a16-4be5-b0cc-cf81ffa6

17-87138662/355/17352K
10.152115.86.69193.99
178.134.88.86dressup.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

18-87197191/126/17611K
2.480384.11.21190.19
85.117.62.178cmc.self.ge:443GET /status/n.sisvadze@cmc.ge/?t=1729061493916 HTTP/1.1

19-87112231/78/17608K
1.551763.82.26203.98
217.147.236.164stradaoro.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

20-87234410/57/17425_
0.917110.00.39206.92
92.54.255.68billing.self.com.ge:443NULL

21-8730720/23/17476_
0.37370.00.30199.57
78.40.106.7europroduct.self.ge:443GET /api/cards/ HTTP/1.1

22-87283051/42/17580K
0.660124.10.77196.60
5.152.102.201leadercredit.self.ge:443GET /status/d.medzmariashvili/?t=1729061483384 HTTP/1.1

23-87308530/245/17352_
4.055130.04.32202.95
185.81.93.66billing.self.com.ge:443NULL

24-87197960/129/17371_
2.184480.01.24188.21
31.146.97.38spar.self.ge:443POST /api/Device/InsertDeviceData/e4ed25c04323a6a1 HTTP/1.1

25-87310140/110/17597_
2.71680.02.88196.82
80.241.243.66enterprise.self.ge:443GET /api/cards/?R=II-3-d1-r1_in HTTP/1.1

26-8716640/575/17522_
11.640150.014.73206.08
92.54.255.68billing.self.com.ge:443NULL

27-87283060/39/17722_
0.654230.00.93189.74
91.184.121.61mrcheveli.self.ge:443POST /api/App/GetWorkingStatus/40374ef4-56c8-40ee-887f-b91a7f2a

28-87197980/125/17444_
2.0571290.01.93209.30
217.147.236.164billing.self.com.ge:443NULL

29-8730730/24/17259R
0.420130.00.21186.35
80.241.251.210

30-8716660/613/17704R
12.050780.018.77206.39
127.0.0.1

31-87115791/167/17546C
2.43083.91.46195.75
217.147.236.164billing.self.com.ge:443NULL

32-872344222/61/17443K
1.00017042.90.31185.31
178.134.146.186gulf.self.ge:443POST /?option=s&service=reloadweeksum&t=1729061496208 HTTP/1.1

33-8731030/29/17094_
0.330520.00.30186.58
92.54.217.26spar.self.ge:443POST /api/Device/InsertDeviceData/40cf0292991d6112 HTTP/1.1

34-8724470/217/17264_
3.846140.03.34194.41
178.134.219.198kontakt.self.ge:443POST /api/App/GetWorkingStatus/7f611af2-e496-4727-b328-7b83af88

35-87112701/72/17092K
1.820124.21.17186.53
87.253.46.230telianivalley.self.ge:443GET /status/20001064915/?t=1729061496301 HTTP/1.1

36-8731052/27/17051K
0.5412910.60.85201.86
178.134.152.70argo.self.ge:443GET /?return=Lz9maXJzdG5hbWU9Jmxhc3RuYW1lPSZwcml2YXRlX251bWJlcj

37-87179800/204/17141_
3.833170.03.57193.42
212.72.147.242billing.self.com.ge:443NULL

38-8731060/34/17442_
0.657550.01.73200.65
193.176.215.62spar.self.ge:443POST /api/Device/InsertDeviceData/abcfec18bd2241fa HTTP/1.1

39-87283371/42/17307K
0.612134.10.38196.68
109.172.174.222yorkholding.self.ge:443GET /status/42001036566/?t=1729061502528 HTTP/1.1

40-8774220/210/17297_
3.371130.02.19191.37
94.43.115.122billing.self.com.ge:443NULL

41-8742660/144/17020_
2.651130.01.74199.21
212.72.143.211billing.self.com.ge:443NULL

42-8742670/165/17464_
2.862120.04.15191.55
81.16.254.72billing.self.com.ge:443NULL

43-87315730/33/17361_
0.505480.00.97193.99
31.146.1.174spar.self.ge:443POST /api/Device/InsertDeviceData/a1e7eb3f844bd9e3 HTTP/1.1

44-87274700/107/17161_
1.991580.02.01193.28
213.131.47.90family.self.ge:443POST /api/Device/InsertDeviceData/7c4f25aa57656ca8 HTTP/1.1

45-87112710/89/17324_
1.411130.00.76194.26
178.134.146.186billing.self.com.ge:443NULL

46-8764570/16/17545_
0.3043020.00.60201.21
212.72.139.42magniti.self.ge:443GET /buffer/tmp/magniti/RenderPhoto/13401-user_photo_6302_9ea4c

47-8739130/98/16986_
1.417110.01.62198.70
212.72.133.78billing.self.com.ge:443NULL

48-87315740/37/17473_
0.581130.00.16192.61
104.28.232.73bilioni.self.ge:443POST /api/App/GetWorkingStatus/5f3f2863-03c7-4773-a9fe-227a7018

49-87119294/7/17466C
0.1711027.90.04198.30
87.253.

Found on 2024-10-16 06:51

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52c91fd6b6

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Tuesday, 15-Oct-2024 04:16:53 +04
Restart Time: Monday, 14-Oct-2024 18:55:11 +04
Parent Server Config. Generation: 56
Parent Server MPM Generation: 55
Server uptime:  9 hours 21 minutes 41 seconds
Server load: 4.83 4.57 10.39
Total accesses: 2531866 - Total Traffic: 18.2 GB
CPU Usage: u1471.31 s635.79 cu0 cs0 - 6.25% CPU load
75.1 requests/sec - 0.6 MB/second - 7.5 kB/request
17 requests currently being processed, 592 idle workers
___WK_____________________.________________________________.C___
_______________________________.___________.K.______.___________
______C._.______________________________.___________K_____._____
_.__.___________K________________.________K_____________________
________________________R___K_____________________.__________._C
___..______K_______________C___________.________________________
.___.___________________..R________________C_____W__.___________
___._______________.._......_.._._._____..____._.._.__.._C__._..
_._..___._____..._._.__._._.._..__.._._._.__..__._.__..__..____.
_.__...._..._._.._...._._._....._..._._._.._..................._
_...._.....__..._....._.._.._.___....__......._.____..__......._
....._.._.____........_..._._..__.___._...._._._....._.___._.._.
.._.......__._._..__....__......__._._.._._.........._._._..._..
...._._........__.._....__.__..._.................._.._.__...._.
.._..........._..._.._........_......__._..___..___.............
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-5571040/68/4076_
0.9712610.00.2729.89
185.143.176.178spar.self.ge:443POST /api/Device/InsertDeviceData/d66c9178b90f61c4 HTTP/1.1

1-55295080/168/3753_
2.797550.00.6723.94
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

2-5528650/73/3940_
1.004540.00.2929.69
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

3-5532310/21/3798W
0.25000.00.0832.72
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

4-55245281/39/3787K
0.46095.20.1635.52
178.134.22.237dressup.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

5-55153210/62/3831_
0.855550.00.2423.20
92.241.75.34family.self.ge:443POST /api/Device/InsertDeviceData/eba0e85629a87981 HTTP/1.1

6-55148180/100/3690_
1.275500.00.4026.06
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

7-55280560/40/3802_
0.489770.00.1629.57
213.131.51.150spar.self.ge:443POST /api/Device/InsertDeviceData/cc2ac98e99b3fa34 HTTP/1.1

8-55316530/74/3972_
1.2712920.00.3025.93
94.43.90.166craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/f22b41145c116695 HTTP/1.1

9-55280620/35/3820_
0.401580.00.1528.23
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

10-5542200/328/3745_
4.1412520.01.3331.53
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

11-55320290/30/3829_
0.3715720.00.1226.39
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

12-5561070/114/3718_
2.199560.00.5427.91
94.43.48.246spar.self.ge:443POST /api/Device/InsertDeviceData/331b6f2e3055cc4a HTTP/1.1

13-5573270/14/3907_
0.189630.00.0525.36
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

14-555360/219/3711_
2.966490.00.9623.15
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

15-5528790/75/3830_
0.8112500.00.6127.68
176.221.166.202spar.self.ge:443POST /api/Device/InsertDeviceData/21edee412c7c41a3 HTTP/1.1

16-55196800/235/3867_
4.048460.00.9326.14
92.241.75.34family.self.ge:443POST /api/Device/InsertDeviceData/eba0e85629a87981 HTTP/1.1

17-5532460/23/3615_
0.276580.00.0928.62
217.11.163.39spar.self.ge:443POST /api/Device/InsertDeviceData/cf575f6734a271c8 HTTP/1.1

18-55229300/132/3699_
1.803530.00.5427.38
167.94.138.40

19-5588950/348/3720_
5.921500.01.9823.68
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

20-55196960/225/3639_
7.942490.01.2025.96
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

21-5573380/17/3616_
0.204520.00.0724.42
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

22-5525830/114/3621_
1.8413740.00.4528.47
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

23-55320390/29/3670_
0.350590.00.1129.08
213.131.63.178spar.self.ge:443POST /api/Device/InsertDeviceData/dc0d558644ef793c HTTP/1.1

24-55280630/36/3561_
0.544670.00.1423.65
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

25-5569870/158/3622_
2.5212480.00.6227.54
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

26-55-0/0/3652.
1.741900.00.0027.68
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

27-5532470/20/3589_
4.2814530.00.1025.68
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

28-55231510/101/3689_
1.432570.00.8829.52
94.43.254.78spar.self.ge:443POST /api/Device/InsertDeviceData/eca66709e2b79c2d HTTP/1.1

29-55231600/94/3556_
1.561590.00.3724.25
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

30-555550/218/3670_
5.247700.00.9025.77
92.241.75.34family.self.ge:443POST /api/Device/InsertDeviceData/eba0e85629a87981 HTTP/1.1

31-5528800/71/3553_
0.988570.00.2831.29
187.251.143.76

32-55320400/28/3512_
0.300480.00.1226.17
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

33-5548720/339/3524_
4.626540.02.9826.25
217.147.236.233dhl.self.ge:443GET /api/Cards/AllCards HTTP/1.1

34-5532650/159/3709_
7.103540.00.6828.28
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

35-55196970/247/3568_
3.009900.01.0026.12
77.92.240.214spar.self.ge:443POST /api/Device/InsertDeviceData/273e44b54b0fcfe6 HTTP/1.1

36-55124700/245/3450_
5.480550.01.0120.53
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

37-55153280/61/3468_
0.864560.00.2424.23
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

38-55191340/100/3477_
1.447500.00.3823.48
92.241.75.34family.self.ge:443POST /api/Device/InsertDeviceData/eba0e85629a87981 HTTP/1.1

39-55271090/128/3641_
2.456510.00.5129.12
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

40-55153290/59/3482_
0.7915820.00.2325.32
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

41-5569960/151/3503_
4.7211490.00.6331.22
92.241.75.34family.self.ge:443POST /api/Device/InsertDeviceData/eba0e85629a87981 HTTP/1.1

42-5571710/68/3630_
2.6511200.00.2926.88
80.241.243.66enterprise.self.ge:443GET /api/cards/?R=II-1-d2-r2_out HTTP/1.1

43-55131480/7/3646_
0.102550.00.0328.33
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

44-55188860/50/3627_
0.6611570.00.2031.21
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

45-5528990/72/3493_
0.839550.00.3229.72
217.147.236.164translate.self.ge:443POST /api/Translation/Translate HTTP/1.1

46-55131790/6/3590_
0.0915710.00.0226.01
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

47-55320470/26/3460_
0.29054<

Found on 2024-10-15 00:16

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc524335c442

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Saturday, 12-Oct-2024 22:03:58 +04
Restart Time: Thursday, 10-Oct-2024 18:03:25 +04
Parent Server Config. Generation: 74
Parent Server MPM Generation: 73
Server uptime:  2 days 4 hours 32 seconds
Server load: 5.13 10.07 10.05
Total accesses: 20581110 - Total Traffic: 185.7 GB
CPU Usage: u2770.93 s1584.97 cu0 cs0 - 2.33% CPU load
110 requests/sec - 1.0 MB/second - 9.5 kB/request
88 requests currently being processed, 844 idle workers
__.__W__K___K__R_______________________K____________K_._________
_______C________..________.C.___K._W________.__R________________
______________._____________.__W___________.____._K_KR_________W
__K___K_____________.__RR______________________.______R__W__C.__
____C_____________K_____R__________W___._R____._._____K_______..
___K__.____._C_____.____.______K_R_________..___C_________K_.___
._________________._W_________._________._________._________.___
___._______________________.__W_____.._R________________C__R.___
W_._____K____C____.___K__________._CR_R__K_C_____.______________
._.___.__._______.__C____._C.______________W.________________R__
_______.____K_._____K___.______________.W____________R____K_____
__K___._________.______..__.____.________._K_______________.____
___.___.___C______..__.______.______.K___C___K.______.__R___.__.
___._______C_R______________.___.________________..___RK___R._R_
______C_K_____C__K______._K.._____._K______.__K_________._____._
____R___._K_W____._______.K___._.____W_R_._____._..._........_._
_....._.....K.K....._._._..._K...__......_......................
...........K....................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-7321520/46/20074_
0.701200.00.75189.10
127.0.0.1billing.self.com.ge:80GET /recoveryconsole/bpl/syncstatus.php?type=replicate&argument

1-73309300/5/19933_
0.09000.00.02167.63
62.168.190.234billing.self.com.ge:443NULL

2-73-0/0/20092.
3.71100.00.00183.48
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

3-7319480/148/19992_
7.8514670.01.89184.01
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

4-73309470/10/20022_
0.16118030.01.13184.48
178.134.28.50billing.self.com.ge:443NULL

5-73309480/7/20011W
0.11000.00.03190.93
93.123.17.151td.self.ge:443GET /server-status HTTP/1.1

6-73110970/21/20096_
4.41101070.00.09183.03
94.43.128.70billing.self.com.ge:443NULL

7-73115520/66/20167_
2.371290.00.93167.13
212.72.138.102billing.self.com.ge:443NULL

8-73268921/113/19997K
5.952968210.10.89174.84
188.169.58.112aversiclinic.self.ge:443GET /buffer/js/dbcc29acf383f2eac88dfecf9bfd6f2c_script.js?v=2-2

9-7375790/149/19904_
2.5413140.01.60182.09
31.146.118.194miniso.self.ge:443POST /api/App/GetWorkingStatus/ab159db3-f9fa-4ae4-b6c5-0db99a1e

10-7366710/140/19939_
2.0914840.00.78189.11
185.81.94.182spar.self.ge:443POST /api/Device/InsertDeviceData/de89e7c3fdc85b6c HTTP/1.1

11-7396790/101/20141_
1.68111130.01.32178.15
94.43.128.70billing.self.com.ge:443NULL

12-7321642/36/19743K
0.46105.51.52163.05
93.123.17.151td.self.ge:443GET /debug/default/view?panel=config HTTP/1.1

13-7355780/260/19799_
8.94670.04.72174.12
212.72.154.62zoommer.self.ge:443POST /api/App/GetLogo/5a4b60f5-c52e-4fea-831b-aba56a173486/4267

14-73111130/26/19875_
0.4310130.00.10176.48
178.134.146.186billing.self.com.ge:443NULL

15-73269000/120/19996R
1.81460.01.30201.67
94.43.128.70

16-73115630/74/20147_
0.958430.01.51201.62
188.169.123.42medi.self.ge:443GET /api/cards/ HTTP/1.1

17-7323770/73/19830_
1.7112490.01.19176.09
141.8.208.20foodservice.self.ge:443POST /api/Device/InsertDeviceData HTTP/1.1

18-73115640/71/19948_
1.22160.00.87183.96
37.232.87.24alliancetbilisi.self.ge:443POST /api/Transactions/Register HTTP/1.1

19-73252560/56/19785_
0.8915140.00.45182.71
91.184.125.131superstore.self.ge:443POST /api/App/GetWorkingStatus/e85604ec-5da3-4ff5-aa65-7afaf6f6

20-7334050/128/19809_
2.85750.05.97170.78
94.43.128.70billing.self.com.ge:443NULL

21-73193760/524/20091_
13.1615520.06.38181.35
94.43.59.42spar.self.ge:443POST /api/Device/InsertDeviceData/d6f6aef321e21b6f HTTP/1.1

22-73309550/5/19880_
0.0811600.00.02173.25
94.43.48.246spar.self.ge:443POST /api/Device/InsertDeviceData/331b6f2e3055cc4a HTTP/1.1

23-7366790/153/19904_
2.6110490.01.72173.33
94.43.1.74spar.self.ge:443POST /api/Device/InsertDeviceData/3d71750dc9090d90 HTTP/1.1

24-73309860/114/19826_
2.26156740.01.91180.07
178.134.28.50billing.self.com.ge:443NULL

25-73282180/82/19673_
1.1713160.01.84179.83
178.134.204.174miniso.self.ge:443POST /api/App/GetWorkingStatus/b4df2218-00e8-4f0e-91ac-f3400f3b

26-73125950/299/19785_
4.3513120.01.88163.51
178.134.204.174miniso.self.ge:443POST /api/App/GetUserInfo/b4df2218-00e8-4f0e-91ac-f3400f3b670c/

27-73252570/45/19732_
4.6511530.00.59173.00
188.169.116.18spar.self.ge:443POST /api/Device/InsertDeviceData/b5112ed061e6932c HTTP/1.1

28-73250940/150/19690_
6.7412520.00.90186.55
176.221.166.30spar.self.ge:443POST /api/Device/InsertDeviceData/0617c24d3f6604b4 HTTP/1.1

29-73202600/38/20065_
4.8410130.01.05183.63
178.134.95.252billing.self.com.ge:443NULL

30-7334150/118/19705_
2.0216740.01.08165.89
217.147.236.233nbngroup.self.ge:443POST /api/Transactions/RegisterByID HTTP/1.1

31-7321760/46/19752_
0.7716140.01.06189.07
178.134.164.18arttime.self.ge:443POST /api/App/GetMenu/8263c418-72f4-48fb-8d85-202bb92fe058/a480

32-7334160/104/19849_
1.552480.00.43164.57
37.232.70.107air.self.ge:443POST /api/Device/InsertDeviceData/1599c663db376b95 HTTP/1.1

33-73222390/129/19700_
1.798510.00.61179.39
213.131.46.178spar.self.ge:443POST /api/Device/InsertDeviceData/8440cddf530a483e HTTP/1.1

34-73269080/115/19840_
5.953560.01.14173.19
92.51.78.234spar.self.ge:443POST /api/Device/InsertDeviceData/88c914586bb4aea7 HTTP/1.1

35-73111140/36/19826_
0.4711240.00.85188.09
178.134.28.50dressup.self.ge:443GET /?ref=LogOut HTTP/1.1

36-73210330/194/19729_
3.131100080.00.79183.81
94.43.128.70craftbranchs.self.ge:443POST /api/Device/RegisterPinTransaction/3ca191618b547ea6 HTTP/1

37-73252760/54/19833_
0.79150.00.42167.93
95.104.94.179ipkli.self.ge:443GET /api/cards/ HTTP/1.1

38-7321770/38/19797_
0.64121570.00.83176.22
212.72.138.102billing.self.com.ge:443NULL

39-737481/255/19700K
8.231152.51.04187.27
37.232.93.30navne.self.ge:443GET /status/08201039156/?t=1728756252094 HTTP/1.1

40-7366890/142/19850_
2.5915670.01.78185.72
146.255.228.86spar.self.ge:443POST /api/Device/InsertDeviceData/6bf0d30b70d1b4b7 HTTP/1.1

41-73309560/7/19780_
0.0915600.00.03174.79
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

42-73303120/51/19616_
0.7713140.00.20164.57
213.200.15.131tskaltuboplaza.self.ge:443POST /api/App/GetBirthDayList/090ffc5c-3b7a-4481-8c79-2473ceca0

43-73241700/88/19722_
1.541110.01.00175.78
5.178.148.218billing.self.com.ge:443NULL

44-7334310/116/19768_
1.6515140.00.65188.52
212.58.121.161magniti.self.ge:443POST /api/App/GetWorkingStatus/2288b171-38a7-4d6e-aea4-1c0342d5

45-7319840/156/19886_
3.8013120.01.19186.46
178.134.204.174miniso.self.ge:443POST /api/App/GetLogo/b4df2218-00e8-4f0e-91ac-f3400f3b670c/f4a9

46-73111440/32/19700_
0.53460.00.51168.44
80.241.243.66enterprise.self.ge:443GET /api/cards/?R=II-1-d4-r2_out HTTP/1.1

47-73260440/12/19625_
0.247150.00.72183.48
31.146.208.86billing.self.com.ge:443NULL

Found on 2024-10-12 18:03

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc520d912e00

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Thursday, 10-Oct-2024 21:32:23 +04
Restart Time: Thursday, 10-Oct-2024 18:03:25 +04
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 hours 28 minutes 57 seconds
Server load: 14.64 13.37 13.99
Total accesses: 1605751 - Total Traffic: 15.5 GB
CPU Usage: u2856.68 s1622.97 cu0 cs0 - 35.7% CPU load
128 requests/sec - 1.3 MB/second - 10.1 kB/request
160 requests currently being processed, 728 idle workers
____________KC___K_K____CK__CK______C__________RC__K_KK_____K___
C________________K__________K_K____K______________K______C___K__
_R__K____C__R___C___R_______K_____________________________._____
_________KK______________C_____K___C____K____C________C_K__.____
___________K_K___________K_K____C______C_____K______K___K__.___K
_____K________________K_______K__KK________RC_______C___C_KK___K
_____K__C__K_______K______K___W__________________________K_CK___
_K______C______R____CKK____K____________K_________K__K___C______
__C_C_K_____C___K______________KKC.K_______R_____CK____K___C____
__K_K_C_K_C___R____KC____________K____________KC________W_______
.C_________K________R__.KK_R_._._.__K_R_______K_K.K_____K_______
K__K____.C.__R_K___KWKC____R.___________K__.____K_______R__K__CK
____K_____.____K._K.K._.___R__.....CK_..._......K..._.__...._...
._.....___.._......__..._......._._..._..._....__......K........
...._._........_._...._.....KCC.__K.....K_.R..._............__..
............K_._..__._....__._..__R._.......__..._..._._._.._...
__......................_.C_._.......____.._C.._._._.W.___..__..
._.........___...__._._....._.........._.KR__...C._..C._K_._.__.
.....__.._.._...................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-0255740/55/1535_
1.72560.00.2817.35
217.147.236.164billing.self.com.ge:443NULL

1-0313870/271/1497_
13.266110.01.6113.76
217.147.236.164billing.self.com.ge:443NULL

2-0319790/3/1499_
0.056770.00.0114.88
146.255.245.142spar.self.ge:443POST /api/Device/InsertDeviceData/fa4d037bc5a22963 HTTP/1.1

3-0163760/322/1485_
9.82570.03.2414.14
37.232.83.75bilioni.self.ge:443POST /api/App/GetLogo/8030479b-b907-4885-a2d1-726daebce102/920f

4-0253860/149/1476_
2.27690.00.6616.26
217.147.236.164vr.self.ge:443GET /cron/poolDevice.php HTTP/1.1

5-0258250/44/1565_
0.51680.00.2416.28
217.147.236.164billing.self.com.ge:443NULL

6-051990/305/1531_
9.46690.02.2416.68
217.147.236.164billing.self.com.ge:443NULL

7-0247200/128/1529_
2.59570.00.9614.10
217.147.236.164billing.self.com.ge:443NULL

8-0162300/58/1570_
4.765110.00.3413.94
217.147.236.164billing.self.com.ge:443NULL

9-086440/17/1482_
4.56570.00.0810.80
217.147.236.164billing.self.com.ge:443NULL

10-088930/30/1503_
0.40150.00.1115.41
217.147.236.164billing.self.com.ge:443NULL

11-0228130/82/1493_
5.58690.01.1214.47
217.147.236.164ultra.self.ge:443GET /cron/poolDevice.php HTTP/1.1

12-0314971/44/1447K
0.54163.90.259.85
217.147.236.164emg.self.ge:443GET /cron/sms.php HTTP/1.1

13-0181851/96/1480C
5.82063.90.5912.62
217.147.236.164billing.self.com.ge:443NULL

14-0319720/199/1502_
2.99050.01.7421.55
217.147.236.164billing.self.com.ge:443NULL

15-0116830/67/1503_
0.956400.00.2718.75
217.147.236.164smarkets.self.ge:443GET /cron/poolDevice.php HTTP/1.1

16-071650/347/1520_
14.136170.05.8617.72
217.147.236.164billing.self.com.ge:443NULL

17-088941/35/1512K
0.61073.90.1313.67
217.147.236.164flexmedia.self.ge:443GET /cron/sms.php HTTP/1.1

18-0198570/122/1529_
1.995260.00.4719.32
217.147.236.164billing.self.com.ge:443NULL

19-0260331/10/1518K
0.13153.90.0416.67
217.147.236.164dwc.self.ge:443GET /cron/sms.php HTTP/1.1

20-0275310/85/1547_
1.184610.01.2314.71
37.232.83.75bilioni.self.ge:443POST /api/App/ReAuthentication/8030479b-b907-4885-a2d1-726daebc

21-0153720/171/1534_
2.812530.00.8313.33
31.146.131.226spar.self.ge:443POST /api/Device/InsertDeviceData/0cdddd9f89abc38f HTTP/1.1

22-037360/35/1462_
4.526180.00.1815.19
217.147.236.164billing.self.com.ge:443NULL

23-0224370/598/1527_
15.366480.04.3112.79
31.146.2.222air.self.ge:443POST /api/Device/InsertDeviceData/da55643f24fe3326 HTTP/1.1

24-041280/35/1523C
0.530220.01.3914.42
95.104.32.109billing.self.com.ge:443NULL

25-0263411/12/1539K
0.1811004.00.0411.36
217.147.236.164dhm.self.ge:443GET /cron/sms.php HTTP/1.1

26-0135430/28/1491_
0.384650.00.1213.69
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

27-0306100/144/1528_
2.055620.00.9715.95
5.152.102.201billing.self.com.ge:443NULL

28-0135661/28/1514C
0.38163.90.3116.97
217.147.236.164billing.self.com.ge:443NULL

29-0317461/42/1518K
0.58063.90.2419.95
217.147.236.164fitpass.self.ge:443GET /cron/sms.php HTTP/1.1

30-0135670/28/1550_
0.375340.00.1513.02
5.178.149.238billing.self.com.ge:443NULL

31-089120/33/1508_
0.40160.00.2414.94
217.147.236.164billing.self.com.ge:443NULL

32-0258260/47/1456_
0.605270.00.1811.78
217.147.236.164billing.self.com.ge:443NULL

33-089140/32/1541_
0.424620.00.2319.60
37.232.83.75bilioni.self.ge:443POST /api/App/GetDashboardNews/8030479b-b907-4885-a2d1-726daebc

34-0277750/83/1506_
1.21680.00.3211.58
217.147.236.164zpa-360.self.ge:443GET /cron/poolDevice.php HTTP/1.1

35-0296110/113/1554_
1.68680.00.6615.44
217.147.236.164billing.self.com.ge:443NULL

36-042051/37/1560C
0.45053.90.1518.16
217.147.236.164billing.self.com.ge:443NULL

37-030270/231/1558_
4.96640.04.7415.24
217.147.236.164zgvaludi.self.ge:443GET /cron/poolDevice.php HTTP/1.1

38-059110/178/1496_
6.46660.01.3315.54
217.147.236.164billing.self.com.ge:443NULL

39-0181530/19/1513_
0.22090.00.1817.10
176.221.200.18billing.self.com.ge:443NULL

40-0296310/372/1498_
6.96550.03.0112.62
81.16.240.38globalerty.self.ge:443POST /api/Transactions/RegisterByID HTTP/1.1

41-067680/110/1504_
2.611570.00.6413.15
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

42-0319920/2/1500_
0.057890.00.0111.64
217.147.236.164billing.self.com.ge:443NULL

43-0320560/198/1528_
3.325890.01.7017.31
92.241.76.10billing.self.com.ge:443NULL

44-0152620/240/1523_
4.14150.01.8217.15
217.147.236.164billing.self.com.ge:443NULL

45-0222590/289/1550_
5.0362020.02.4015.93
217.147.236.164skyinn.self.ge:443GET /cron/poolDevice.php HTTP/1.1

46-0222600/256/1477_
9.47380.03.9415.18
217.147.236.164billing.self.com.ge:443NULL

47-0319930/2/1513R
0.02070.00.0114.64
80.241.251.210

48-0201741/214/1439C
7.72000.21.8213.12
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

49-0258380/48/1490_
0.665140.00.1912.48
217.147.236.164billing.self.com.ge:443NULL

50-0258390/46/1529_
0.5831510.00.1915.32
5.152.102.201billing.self.com.ge:443NULL

51-085321/148/1508K
2.29283.90.6115.73
217.147.236.164delivo.self.ge:443GET /cron/sms.php HTTP/1.1

Found on 2024-10-10 17:32

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc521b21d9bd

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Tuesday, 08-Oct-2024 22:11:52 +04
Restart Time: Tuesday, 08-Oct-2024 18:37:29 +04
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 hours 34 minutes 22 seconds
Server load: 4.88 8.77 9.94
Total accesses: 1385360 - Total Traffic: 15.3 GB
CPU Usage: u2730.35 s1556.48 cu0 cs0 - 33.3% CPU load
108 requests/sec - 1.2 MB/second - 11.6 kB/request
138 requests currently being processed, 816 idle workers
___K__W_WW______________.______C_____W_.___R__W_._______________
___KW_.____________._K__________W_________K__W__________________
C___C_K_______W__W__W___W__________C__________________W__W_KW_._
W.__________WW___K___WWK_C_____W.___RK_W______W________R_____KC_
_K___C_W__.W_____.__C_____________R________W________._______K___
_._____K______.___________K_____K__.____C___C.________W.__K____C
C______________________C___C__________________._W_______________
_________K._____K__WKC____C_____WK_W________W___C_______C______W
WCK___C_KKK______R___._____________________________W_____C_.K.__
_._________________C_________W________________W.._____._.R___K..
K_________.._..___._._W____.......C_.___.__.C._.._.C____.__...._
_.__..._._.___.._...___W_______.___K_.W_.___._C__W__.__...___...
..._..W__._.__..__.C.___.C...K__..._____._.____...._...__.R_.W.K
...._.______K__..___..__...__._.________..___W__..__._.W__C..C_.
_..__.._.______.__.._._._W.K.._W___...._.___..__...K_W...__...__
.._W.__.___W_.__._..____._.._..____.K..C_____.__.__......_WW_.._
...K._C..W____.___K..._.._._..._._.__._.K..._._._...________C._W
.___...._.__..K_______.K__.__.K_____.__.___C_._K___.__....._._._
_.._....___.._..__._.K_..__.___._..._.......__..._____W.._...___
_._._...._.__...................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-0254920/158/1287_
2.844540.00.7712.37
176.221.166.198spar.self.ge:443POST /api/Device/InsertDeviceData/4255c41ce2d6df7d HTTP/1.1

1-0228380/20/1269_
0.293600.00.1914.57
213.131.40.14spar.self.ge:443POST /api/Device/InsertDeviceData/226f9f725dfcbe0e HTTP/1.1

2-0211450/59/1301_
1.711580.01.2416.82
217.147.236.164billing.self.com.ge:443NULL

3-079991/31/1277K
0.34104.50.5214.90
93.123.17.132td.self.ge:443GET /debug/default/view?panel=config HTTP/1.1

4-0223820/201/1247_
3.959530.02.2012.31
46.49.52.11craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/b8e6f909655ea8a6 HTTP/1.1

5-0192050/128/1272_
1.896760.01.9913.20
213.131.33.70magniti.self.ge:443POST /api/App/GetWorkingStatus/e0c9ecec-300c-4b6b-9db6-a5c22151

6-0131240/259/1256W
9.586800.01.9511.45
217.147.236.164smartpharm.self.ge:443GET /cron/logout.php HTTP/1.1

7-050610/67/1251_
0.92850.00.9211.56
217.147.236.164billing.self.com.ge:443NULL

8-028050/27/1250W
0.329800.00.1114.91
217.147.236.164citybus.self.ge:443GET /cron/logout.php HTTP/1.1

9-0180050/10/1290W
0.1411000.00.0413.57
217.147.236.164sss.self.ge:443GET /cronjob/sms.php HTTP/1.1

10-0161180/59/1269_
0.729590.00.7314.80
146.255.228.222spar.self.ge:443POST /api/Device/InsertDeviceData/1e0878ab98bc2d0b HTTP/1.1

11-099390/136/1311_
2.291680.01.0411.97
68.183.9.16

12-0276430/12/1289_
0.1712620.00.0513.41
213.131.63.178spar.self.ge:443POST /api/Device/InsertDeviceData/dc0d558644ef793c HTTP/1.1

13-0192370/137/1234_
3.044640.01.749.61
213.131.36.162spar.self.ge:443POST /api/Device/InsertDeviceData/71ba6ae2a2a7f074 HTTP/1.1

14-0271120/339/1261_
6.181250.02.7015.61
217.147.236.164billing.self.com.ge:443NULL

15-0325500/156/1289_
3.027657510.02.1615.88
217.147.236.164nutrimax.self.ge:443GET /cron/logout.php HTTP/1.1

16-0126760/28/1247_
0.49070.00.1211.64
134.209.25.199

17-0180340/20/1245_
4.0611660.00.1913.75
178.134.109.14spar.self.ge:443POST /api/Device/InsertDeviceData/00702335db5329a6 HTTP/1.1

18-0277000/11/1275_
0.156590.00.0412.99
178.134.123.66spar.self.ge:443POST /api/Device/InsertDeviceData/30eddf12158a41ae HTTP/1.1

19-0232670/90/1271_
1.45340.00.8014.19
217.147.236.164zgvaludi.self.ge:443GET /cron/sms.php HTTP/1.1

20-0127940/29/1242_
0.370560.00.1211.60
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

21-0232850/88/1258_
1.730480.00.9015.58
185.229.111.246jibe.self.ge:443POST /api/Device/InsertDeviceData/c97dd2591ae08e54 HTTP/1.1

22-0180350/20/1260_
0.2314630.00.0814.83
92.51.115.250billing.self.com.ge:443NULL

23-0228660/20/1264_
0.287900.00.1515.62
92.241.75.34family.self.ge:443POST /api/Device/InsertDeviceData/eba0e85629a87981 HTTP/1.1

24-0-0/0/1264.
3.40371460.00.0013.74
217.147.236.164billing.self.com.ge:443NULL

25-0146140/131/1241_
1.950830.01.1311.38
159.223.132.86

26-010460/234/1268_
3.8512120.01.2410.99
91.184.121.45vakomotors.self.ge:443POST /api/App/Initialization/994d2804-587d-4af4-a78e-38652dc01f

27-0111980/161/1253_
2.9910530.01.0914.84
178.134.166.170spar.self.ge:443POST /api/Device/InsertDeviceData/2bf77ca6307ffe6c HTTP/1.1

28-0127950/25/1254_
0.291460.00.1121.29
217.147.236.164billing.self.com.ge:443NULL

29-0255080/159/1287_
2.651260.01.5616.44
217.147.236.164billing.self.com.ge:443NULL

30-066030/196/1275_
7.2611730.02.7121.47
91.184.121.45vakomotors.self.ge:443POST /api/App/GetBirthDayList/994d2804-587d-4af4-a78e-38652dc01

31-0233071/88/1220C
6.27063.91.6712.09
217.147.236.164billing.self.com.ge:443NULL

32-011540/4/1269_
0.08121830.00.0211.74
217.147.236.164billing.self.com.ge:443NULL

33-0305910/45/1307_
0.567710.00.1813.92
178.134.43.146billing.self.com.ge:443NULL

34-0127210/97/1282_
1.3615670.00.4616.08
178.134.204.174miniso.self.ge:443POST /api/App/GetWorkingStatus/196fa110-0fe4-4e50-a8e2-6b3e4875

35-0233080/83/1273_
1.6614620.01.8115.69
31.146.44.35billing.self.com.ge:443NULL

36-012140/4/1264_
0.07860.00.0212.69
217.147.236.164billing.self.com.ge:443NULL

37-0128280/27/1272W
0.46000.00.1315.05
62.168.190.46bamo.self.ge:443GET /api/cards/ HTTP/1.1

38-0183140/80/1263_
1.3041080.00.3313.56
37.232.70.107air.self.ge:443POST /api/Device/InsertDeviceData/1599c663db376b95 HTTP/1.1

39-0-0/0/1245.
0.4335800.00.0012.68
217.147.236.164smash.self.ge:443GET /cron/controllers_data.php HTTP/1.1

40-0228670/17/1221_
0.23111160.00.0711.63
109.238.237.82dressup.self.ge:443POST /api/App/GetLimits/022e6fcc-7ab3-4dcc-878b-09f609ea13ff/04

41-0106860/223/1257_
3.727690.02.3414.97
213.131.33.70magniti.self.ge:443POST /api/App/GetWorkingStatus/e0c9ecec-300c-4b6b-9db6-a5c22151

42-0292300/219/1275_
4.788620.03.6513.44
141.8.208.32spar.self.ge:443POST /api/Device/InsertDeviceData/2cb733d853525447 HTTP/1.1

43-0129250/191/1225R
7.5401280.00.8512.96
159.223.132.86

44-028270/19/1281_
4.311560.00.1113.36
217.147.236.164billing.self.com.ge:443NULL

45-0244470/214/1254_
3.50360.01.339.34
217.147.236.164wendys.self.ge:443GET /cron/sms.php HTTP/1.1

46-0128320/21/1233W
0.366500.00.0910.55
217.147.236.164total100.self.ge:443GET /cron/logout.php HTTP/1.1

47-034520/114/1275_
1.4112610.00.5012.34
92.241.76.10billing.self.com.ge:443NULL

48-0-0/0/1279.
0.052200.00.0013.19
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

49-066130/213/1295_
4.12107260.02.8315.50
91.184.121.45vakomotors.self.ge:443POST /api/App/RegisterPushToken/994d2804-587d-4af4-a7

Found on 2024-10-08 18:11

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc524dc3b558

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Sunday, 06-Oct-2024 18:53:24 +04
Restart Time: Friday, 04-Oct-2024 18:02:48 +04
Parent Server Config. Generation: 43
Parent Server MPM Generation: 42
Server uptime:  2 days 50 minutes 35 seconds
Server load: 8.88 8.02 6.70
Total accesses: 16584178 - Total Traffic: 120.5 GB
CPU Usage: u2313.08 s1146.3 cu0 cs0 - 1.97% CPU load
94.3 requests/sec - 0.7 MB/second - 7.6 kB/request
106 requests currently being processed, 892 idle workers
_______C____________K_________C_K____________K__C_______________
________K___K__________________K__K_______________________R_____
___________C__K___K_C________________C__________C____W_C________
____________C_____._K_K__K______________K_____________KR_____K__
_________W_____K_____R_C_______________K____K______KC_W_C_______
_________________K__K___________________________________________
__________R______KC_____.___C_______K_______._____.___C_________
.________.__K___C______________K_.___________K______R_K_________
____________.____________K_______________K______.____________.__
___K_._____.________.______K__._.C_.._____K__._____________.K__.
__..__________.____C_________________K__________..________K_____
._____..__C____________._____C___.__R_.____.___K________________
___K_R_K._C_K_.___.___K___________K___K_______.__.C___K._.C__._C
_.___._________..KC__...____.._________._C_____________._.___K_.
__.___._____K._____.._.__K__K_C____._K__K___.__.__K_.______K___.
______.__.____.__C___.._____C_....KKW..._.__...____._._...K_____
K_..___...__._._K_._..._.C..._.C_K__.._....._.._..__.R.._....._.
.._.......K......__._....._........._.._...._.__..._..._.....K_.
_.._............_C...K___._...____K........................__...
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-4211740/65/16774_
0.9291380.01.31123.56
31.146.191.54wendys.self.ge:443GET /status/01008046631/?t=1728226392812 HTTP/1.1

1-42104330/25/16661_
0.3010210.00.11135.91
217.147.236.164zodi.self.ge:443GET /cron/car_lead.php HTTP/1.1

2-42204780/49/16946_
0.709820.00.97125.13
217.147.236.164thermorum.self.ge:443GET /cron/controllers_data.php HTTP/1.1

3-42323680/36/16563_
0.411010450.00.14113.20
31.146.172.194spar.self.ge:443POST /api/Device/InsertDeviceData/467e83760707480c HTTP/1.1

4-42270470/40/16761_
0.5992260.00.16117.63
217.147.236.164seraltech.self.ge:443GET /cron/controllers_data.php HTTP/1.1

5-4212000/71/16596_
0.910450.01.92122.48
109.238.225.246medi.self.ge:443POST /api/reader/ HTTP/1.1

6-42233320/22/16752_
0.381580.00.07121.33
146.255.232.134billing.self.com.ge:443NULL

7-42246591/139/16750C
1.97063.91.18128.23
217.147.236.164billing.self.com.ge:443NULL

8-42271410/42/16559_
0.771610.03.18123.99
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

9-42307920/8/16441_
0.100590.00.03114.73
185.49.166.250billing.self.com.ge:443NULL

10-42159970/16/16721_
0.24109420.00.06115.40
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

11-4275320/1/16683_
0.029800.00.00128.39
217.147.236.164billing.self.com.ge:443NULL

12-42203980/173/16805_
2.5810970.00.93130.99
217.147.236.164unicom.self.ge:443GET /cron/car_lead.php HTTP/1.1

13-4277130/102/16560_
2.016170.01.13117.80
5.152.15.45

14-42248060/109/16510_
1.524510.00.42114.58
37.232.65.38spar.self.ge:443POST /api/Device/InsertDeviceData/c11252f99039e31a HTTP/1.1

15-42173390/304/16752_
2.959540.01.33124.13
178.134.43.42spar.self.ge:443POST /api/Device/InsertDeviceData/5e479eb9dd0fd4e2 HTTP/1.1

16-4262700/2/16549_
0.021070.00.01123.58
217.147.236.164billing.self.com.ge:443NULL

17-42129700/87/16650_
1.1492350.00.73125.12
217.147.236.164technogroup.self.ge:443GET /cron/controllers_data.php HTTP/1.1

18-4263310/2/16568_
0.021060.00.01123.14
217.147.236.164billing.self.com.ge:443NULL

19-4214910/128/16604_
1.672610.00.51128.46
213.131.44.10europroduct.self.ge:443GET /api/cards/ HTTP/1.1

20-42222301/79/16486K
1.3901343.90.54118.95
217.147.236.164chkvianisakhli.self.ge:443GET /cron/sms.php HTTP/1.1

21-42308520/7/16565_
0.1310230.00.03131.14
217.147.236.164sevsamora.self.ge:443GET /cron/car_lead.php HTTP/1.1

22-42205080/45/16418_
0.589580.00.18113.90
217.147.236.164moncero.self.ge:443GET /cron/controllers_data.php HTTP/1.1

23-42267680/74/16486_
1.4610160.00.49115.81
217.147.236.164usa2georgia.self.ge:443GET /cron/car_lead.php HTTP/1.1

24-42267700/79/16400_
1.204740.02.17125.11
5.178.129.4billing.self.com.ge:443NULL

25-4263320/2/16476_
0.02860.00.01120.87
217.147.236.164billing.self.com.ge:443NULL

26-4262360/118/16406_
1.756140.00.48122.56
217.147.236.164billing.self.com.ge:443NULL

27-4247440/30/16458_
0.451050.00.12118.75
217.147.236.164se.self.ge:443GET /cron/car_lead.php HTTP/1.1

28-426260/196/16574_
2.639980.01.08119.91
217.147.236.164x2.self.ge:443GET /cron/controllers_data.php HTTP/1.1

29-4262570/198/16601_
5.3661250.00.55121.11
149.3.104.82billing.self.com.ge:443NULL

30-42290581/228/16506C
14.520644.12.18124.68
92.54.255.68billing.self.com.ge:443NULL

31-4215070/127/16498_
1.85109560.01.57119.30
31.146.173.42spar.self.ge:443POST /api/Device/InsertDeviceData/55a05c7ff8c30d1e HTTP/1.1

32-42197671/135/16506K
9.980622.90.87124.59
81.16.250.250wyndham.self.ge:443GET /status/01012002971/?t=1728226402651 HTTP/1.1

33-42205110/47/16479_
0.829670.00.96122.74
217.147.236.164unimedi.self.ge:443GET /cron/controllers_data.php HTTP/1.1

34-4262580/124/16434_
1.65460.01.39119.13
217.147.236.164billing.self.com.ge:443NULL

35-42246710/140/16427_
2.249760.00.80125.13
217.147.236.164niks.self.ge:443GET /cron/controllers_data.php HTTP/1.1

36-42267710/77/16349_
1.6610740.01.38116.84
217.147.236.164billing.self.com.ge:443NULL

37-42222310/78/16477_
0.9710190.00.55111.57
217.147.236.164techzy.self.ge:443GET /cron/car_lead.php HTTP/1.1

38-42111570/54/16452_
0.671620.00.21115.45
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

39-42288250/306/16449_
5.9610100.05.78122.78
217.147.236.164billing.self.com.ge:443NULL

40-42205120/47/16450_
0.515490.00.19129.28
92.241.75.34family.self.ge:443POST /api/Device/InsertDeviceData/eba0e85629a87981 HTTP/1.1

41-42270020/208/16383_
2.846100.02.33123.37
217.147.236.164billing.self.com.ge:443NULL

42-42270180/200/16412_
3.7291090.01.17112.27
217.147.236.164nbgg.self.ge:443GET /cron/controllers_data.php HTTP/1.1

43-4212220/65/16373_
0.859660.00.26114.41
217.147.236.164staff.self.ge:443GET /cron/controllers_data.php HTTP/1.1

44-42308530/5/16398_
0.074110.00.02129.17
5.152.102.201billing.self.com.ge:443NULL

45-42157671/54/16485K
0.71010074.70.66120.48
217.147.236.164cargon.self.ge:443GET /cron/sms.php HTTP/1.1

46-42106740/185/16384_
3.480610.01.59119.79
176.221.166.198spar.self.ge:443POST /api/Device/InsertDeviceData/4255c41ce2d6df7d HTTP/1.1

47-42160240/19/16428_
0.245690.00.08120.82
217.147.236.164billing.self.com.ge:443NULL

48-42285321/419/16430C
8.30073.94.28127.89
217.147.236.164billing.self.com.ge:443NULL

49-42267720/81/16347_
1.222720.01.07112.54
91.184.122.135lopota.self.ge:443POST /?option=s&service=reloadweeksum&

Found on 2024-10-06 14:53

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc525ae8d112

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Friday, 04-Oct-2024 20:15:28 +04
Restart Time: Friday, 04-Oct-2024 18:02:48 +04
Parent Server Config. Generation: 2
Parent Server MPM Generation: 1
Server uptime:  2 hours 12 minutes 40 seconds
Server load: 17.81 12.20 12.52
Total accesses: 1215771 - Total Traffic: 10.6 GB
CPU Usage: u2395.84 s1347.18 cu0 cs0 - 47% CPU load
153 requests/sec - 1.4 MB/second - 9.2 kB/request
268 requests currently being processed, 737 idle workers
___C_____KRK___________K___R___KR____CKR.________K_KK___________
C_____________K_CKK_____K_KC__K______CC______________KC____KK___
___K____________K__C_______K_K__K__W__K__K_C_K__K_C__K_____K____
K___K__W___C__K_C____C___C_____K_______KC_C___..___K_W______K___
___K_________K_KK.__K__KK____CK___________________K_K___K_C_KW__
._CCK__C__K_______K_K__CKC___K____________KK_KR______C_KK____K__
K_K____C_K_K_KWRK______K_CRK______CK__.___C__KCC____._C._C__CK__
__._K___R____.________K_._C___K_._C._R_K___________..C_KK__C_KK_
___K___KK____________K.____K________K__K___K_____K_CC____C_.__..
____C__.___K_CW._C__W._______K______KK.___._.C___.K_K__K_WCC_._K
K...__..C....._.K_..__.K.__.K.___K._..___._._C_K__.K.C.._.R_.K__
_._...K_.___C___________._K__..__.__...W._.__.C.._..__C._K_K___.
K._..____KC_.__.._C__K..__.__K_.C.____..K_______.C___.__.._.K.__
_K_W.C_K._._._..K_._C.C.____R....__K___._K______.___K.._.KK_KK_.
_____.__..._KC._..__K____.R..KK.___.____..________._._._C.____..
__K_._____K..___._C.._.K._....K.K._K.._.___KKC..__.KK_.__._.C.C_
CK_._._..__.....R._CK.KK_..___..._._...K__..C_.CC_.._K..._C.C...
..__.._KW_K....C___.___K..._....__..__K_..___C.KK_._.__..C.K..__
..._____.__.___.__..._......__.....KC.__._.KC_..K__...._K_CCK...
C__.C_____.__.K_.._.K.__..C_._...K._.C._._.....__...__....K_._K.
..__._....___...................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-1221790/35/1152_
0.5151300.00.1612.31
178.134.89.58spar.self.ge:443POST /api/Device/GetDiffPins/3f4adad1d54fa251 HTTP/1.1

1-1239690/60/1108_
4.9210230.00.6111.79
217.147.236.164billing.self.com.ge:443NULL

2-15260/123/1215_
2.319220.02.2117.69
217.147.236.164billing.self.com.ge:443NULL

3-162281/596/1146C
8.680593.95.2910.13
217.147.236.164billing.self.com.ge:443NULL

4-1203560/4/1117_
0.062670.00.026.70
149.3.104.150spar.self.ge:443POST /api/Device/InsertDeviceData/d69aa6fa5942a68b HTTP/1.1

5-1160740/105/1124_
1.62350.00.428.97
217.147.236.164billing.self.com.ge:443NULL

6-162380/626/1226_
10.582730.06.4814.85
94.43.128.70craftbranchs.self.ge:443POST /api/Device/InsertDeviceData/3ca191618b547ea6 HTTP/1.1

7-129130/227/1115_
6.991530.00.989.23
95.104.115.34superstore.self.ge:443POST /api/App/GetWorkingStatus/154e4308-e571-4817-a092-b11736c4

8-1221920/37/1139_
0.483660.00.1615.57
91.151.137.58argo.self.ge:443POST /api/App/GetMenu/5eb82aa3-015a-4225-81d2-e65106e4fbbb/e026

9-168801/148/1130K
2.05153.83.7115.20
217.147.236.164crossroad.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

10-1288430/75/1212R
1.2971400.00.458.75
213.131.39.178

11-1164871/156/1105K
2.431583.91.438.76
217.147.236.164craftbranchs.self.ge:443GET /cron/applybenefits.php HTTP/1.1

12-1124880/220/1144_
8.1061420.02.2411.40
212.58.113.11billing.self.com.ge:443NULL

13-1173210/38/1078_
0.45150.00.466.82
217.147.236.164billing.self.com.ge:443NULL

14-162600/575/1120_
8.524800.04.018.87
217.147.236.164billing.self.com.ge:443NULL

15-1239960/66/1125_
0.807950.00.3010.60
5.152.14.58billing.self.com.ge:443NULL

16-1255380/306/1123_
4.340590.02.179.56
141.8.208.21foodservice.self.ge:443POST /api/Device/InsertDeviceData HTTP/1.1

17-1203740/4/1163_
0.066930.00.0210.17
217.147.236.164billing.self.com.ge:443NULL

18-1221930/35/1113_
0.433510.00.1413.62
91.151.137.58argo.self.ge:443POST /api/App/GetServerDateTime/5eb82aa3-015a-4225-81d2-e65106e

19-159900/20/1154_
0.251510.00.159.17
46.49.56.46natural.self.ge:443GET /api/cards/ HTTP/1.1

20-186640/272/1116_
3.909520.02.168.84
141.8.208.32spar.self.ge:443POST /api/Device/InsertDeviceData/f41ce1d1c18b2d7c HTTP/1.1

21-1107020/12/1110_
0.179260.00.2310.55
217.147.236.164billing.self.com.ge:443NULL

22-1124890/193/1100_
2.29250.01.239.30
217.147.236.164billing.self.com.ge:443NULL

23-1188191/243/1162K
3.391593.92.1010.26
217.147.236.164collectivedv.self.ge:443GET /cron/applybenefits.php HTTP/1.1

24-1259780/89/1127_
1.759260.00.668.74
217.147.236.164billing.self.com.ge:443NULL

25-1282640/116/1120_
2.486930.00.467.37
217.147.236.164billing.self.com.ge:443NULL

26-1282210/227/1127_
2.959240.01.129.57
217.147.236.164velistore.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

27-176630/212/1133R
2.953650.01.1710.96
193.176.214.13

28-1107320/14/1136_
0.182610.00.0611.85
149.3.104.150spar.self.ge:443POST /api/Device/InsertDeviceData/d69aa6fa5942a68b HTTP/1.1

29-168990/146/1135_
2.6263080.00.587.65
217.147.236.164billing.self.com.ge:443NULL

30-1269200/47/1130_
0.789800.00.148.72
40.77.167.46billing.self.com.ge:443NULL

31-1298091/349/1124K
7.031743.82.2810.91
217.147.236.164carexpress.self.ge:443GET /cron/changetypes.php HTTP/1.1

32-160040/18/1153R
0.3061000.00.4411.22
109.172.176.214

33-1145470/370/1135_
6.069460.02.317.17
217.147.236.164billing.self.com.ge:443NULL

34-1161200/100/1159_
3.201070.01.0910.05
94.43.206.182liderfood.self.ge:443POST /api/App/GetLogo/68e74c5e-583f-4b0a-92d6-f956f732db5e/0fa9

35-176650/224/1107_
3.446600.01.548.32
77.92.226.178spar.self.ge:443POST /api/Device/InsertDeviceData/b353f852a92758d6 HTTP/1.1

36-1139970/251/1067_
3.4231070.01.378.14
217.147.236.164billing.self.com.ge:443NULL

37-1255621/298/1123C
4.9401123.81.467.35
217.147.236.164billing.self.com.ge:443NULL

38-1156021/8/1134K
0.101673.90.039.95
217.147.236.164communalcompany.self.ge:443GET /cron/applybenefits.php HTTP/1.1

39-111900/60/1116R
0.8911510.00.238.75
91.151.136.106

40-1-0/0/1151.
0.40900.00.0011.11
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

41-169000/171/1146_
3.120570.01.1014.19
217.147.236.164billing.self.com.ge:443NULL

42-1269530/30/1116_
0.400670.00.129.70
92.241.76.10billing.self.com.ge:443NULL

43-1282650/129/1149_
2.93960.00.7913.43
217.147.236.164wyndham.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

44-1156190/9/1125_
0.1651040.00.049.89
217.147.236.164billing.self.com.ge:443NULL

45-118960/174/1137_
3.592160.02.199.79
217.147.236.164billing.self.com.ge:443NULL

46-1203750/4/1066_
0.070690.00.028.71
217.147.236.164billing.self.com.ge:443NULL

47-1255630/283/1079_
4.164460.02.2110.97
217.147.236.164billing.self.com.ge:443NULL

48-1223520/500/1166_
8.173670.03.218.86
217.147.236.164billing.self.com.ge:443NULL

49-165611/47/1118K
0.561604.20.1811.32
5.178.217.5rustarholdings.self.ge:443GET /status/01008024315/?t=1728058529264 HTTP/1.1

50-130950/88/1127_
2.001490.00.409.45
94.43.142.210spar.self.ge:443POST /api/Device/InsertDeviceData/99817c6f547bf862 HTTP/1.1

51-165871/49/1128K
0.63292.20.219.57
213.131.

Found on 2024-10-04 16:15

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52a47fea7c

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Monday, 30-Sep-2024 09:57:39 +04
Restart Time: Friday, 27-Sep-2024 18:12:22 +04
Parent Server Config. Generation: 84
Parent Server MPM Generation: 83
Server uptime:  2 days 15 hours 45 minutes 17 seconds
Server load: 7.78 8.91 7.94
Total accesses: 21185038 - Total Traffic: 154.3 GB
CPU Usage: u2590.72 s1500.72 cu0 cs0 - 1.78% CPU load
92.3 requests/sec - 0.7 MB/second - 7.6 kB/request
430 requests currently being processed, 869 idle workers
K___KCCK______KC_K__K___CKK__CK_C_KR__C__R__W_R_KK______KK___RK_
__K____._K_K_K_K__K.______K___K_K____R_____C_K___K____K_KK____KC
KC___K_K__KK__CKK.___K_W__C_KKK_KR_K_CKK_______K__K_.K__K____KW_
_K____KR_KK___C__.C__K_K____RK__KC___K_.____K_C____K_______.__K_
___KK_______C____K_____KK___W____K_K__K_________.K__.R_K_C__KK__
____K_______KR__K_.K__C_K_C_____K_____K__.KK__._RC.______K___K__
__K_KK_K____RKK____C____KK__C._________.KR__________C__KW_K_____
___KC_____C___K.___K___K_CKK_____K___K____C___CK__K__R_K_RC_._K_
K__K__C__K__________.____K_KK_KK________KK_K_K__K__K____KC__R__.
__K___KK_K__KKK__.___K___C__._____K._R________C____._K_._C_K__K_
___CC___K__KKC_K.K_K_C_____WKK.KC.__K_______R__KK_CKKC__KK_____K
KCKK__CK_._______C_K____KCKC_R____K___KR___R__C__W_C__K__C______
_C___K___KCK__.R__KCK____RK_______KR______K___K_KK__KKCR_____._K
______KR__KCKKKK_K_K___C___R_K___KKK_KR_KCK__WK_._____KR.C_KKK_R
_R_K_K_C__K_K____K_.K_______C_KC__RR____.___KK_______K___KKK__._
__K___K_____CR______K__KK_______KCC_____KK____.___K__K__KC_K____
____.___K____R______K_R___CC_C____RK_KK_K_K_C__K_.K___KC_K_K_KK_
K_K_K__KK__KK___K_K________.___KC_K_____R___W____R__C.K___K__.R_
K_.__CK_C_K______R___RK__C___________W____CK____KC_KK__K__CK____
_______K_K__WCK_K_K______R__C__CK__K_K_K__KK__C__K_KKK_____R____
__KWKCKK__KC___C___KK____KR__C__K___CR_____.___________.........
............C...._.......K......_..._._..._.....................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-8390491/46/20983K
2.001745.60.75164.16
188.169.6.44tserti.self.ge:443GET /status/01001084590/?t=1727675857652 HTTP/1.1

1-83233640/30/20879_
0.585730.00.81140.20
193.176.214.21autopia.self.ge:443POST /api/App/GetUserApplications/5268dbf7-fb6f-4dff-875f-b308c

2-83220030/137/21021_
2.282640.01.32151.43
178.134.219.26billing.self.com.ge:443NULL

3-8340310/48/21118_
0.917650.01.07172.43
188.169.117.51billing.self.com.ge:443NULL

4-83184421/28/20784K
0.522704.00.21137.48
212.72.147.242geocredit.self.ge:443GET /status/18001057396/?t=1727675857336 HTTP/1.1

5-8313571/4/20737C
0.100604.20.02148.10
94.43.166.118billing.self.com.ge:443NULL

6-8380631/239/21420C
5.771622.75.81155.66
178.134.146.186billing.self.com.ge:443NULL

7-8341301/347/21057K
6.34004.65.91143.99
93.123.17.186td.self.ge:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

8-83138260/45/20718_
0.781540.00.37154.24
109.238.226.238billing.self.com.ge:443NULL

9-8391320/70/20708_
1.691730.02.08157.80
188.169.244.39dressup.self.ge:443POST /api/App/GetWorkingStatus/022e6fcc-7ab3-4dcc-878b-09f609ea

10-8315010/5/20492_
0.096710.00.02149.23
212.72.135.245billing.self.com.ge:443NULL

11-83207640/103/21282_
2.722620.02.25162.00
92.241.76.10billing.self.com.ge:443NULL

12-83186330/41/20934_
0.790100.01.04158.36
146.255.254.214billing.self.com.ge:443NULL

13-83138840/41/20428_
0.78350.00.65154.83
217.147.236.164billing.self.com.ge:443NULL

14-83170931/329/20562K
7.54053.93.94159.41
217.147.236.164ibp.self.ge:443GET /cron/sms.php HTTP/1.1

15-8315031/6/20746C
0.111624.00.02164.46
81.16.242.44billing.self.com.ge:443NULL

16-83167480/164/20646_
2.7372310.02.74143.36
178.134.89.58spar.self.ge:443POST /api/Device/InsertDeviceData/3f4adad1d54fa251 HTTP/1.1

17-83254931/77/20945K
5.620365.21.06160.72
185.49.166.250betlive.self.ge:443GET /buffer/tmp/betlive/RenderPhoto/76-user_photo_338?v=1727675

18-83234400/22/21150_
0.374590.00.09147.54
109.172.174.222billing.self.com.ge:443NULL

19-83296310/287/20619_
6.871650.05.68158.80
188.169.214.210imedil.self.ge:443POST /api/App/GetDashboardNews/99ef1da7-a58e-472a-987f-d3f9eb78

20-8355491/173/20872K
2.840714.23.64159.76
212.58.120.57technogroup.self.ge:443GET /status/a.kumsishvili@techno-group.ge/?t=1727675859053 HTTP

21-83109680/297/20644_
6.143600.05.52157.19
31.146.98.173billing.self.com.ge:443NULL

22-8315680/5/20797_
0.1201290.00.02152.48
217.147.236.164billing.self.com.ge:443NULL

23-8340960/63/20647_
1.074650.00.68161.16
5.152.102.201billing.self.com.ge:443NULL

24-83300217/88/20999C
1.58111232.51.63161.81
94.137.163.216billing.self.com.ge:443NULL

25-83268511/144/20388K
2.391764.12.17145.25
94.43.78.184termotsentri.self.ge:443GET /status/09001029013/?t=1727675857003 HTTP/1.1

26-8315721/5/20558K
0.101944.10.02149.10
5.152.14.2dhl.self.ge:443GET /status/599250165/?t=1727675856354 HTTP/1.1

27-83300230/76/20483_
2.1326070.01.08151.45
217.147.236.164billing.self.com.ge:443NULL

28-83285680/23/20626_
0.72280.00.29157.98
212.58.103.253billing.self.com.ge:443NULL

29-83138851/43/21002C
0.801604.10.75154.75
31.146.44.35billing.self.com.ge:443NULL

30-83107561/97/20580K
1.86083.90.87149.56
217.147.236.164ikigai.self.ge:443GET /cron/sms.php HTTP/1.1

31-83255540/82/20588_
1.79414890.01.42157.70
188.169.159.138billing.self.com.ge:443NULL

32-83187021/35/20569C
0.900614.20.63147.64
92.54.255.68billing.self.com.ge:443NULL

33-83252990/24/20621_
0.455600.00.32163.52
193.176.214.21autopia.self.ge:443POST /api/App/GetDashboardNews/5268dbf7-fb6f-4dff-875f-b308cf96

34-8341011/61/20814K
2.33263.90.94140.36
217.147.236.164hashbank.self.ge:443GET /cron/sms.php HTTP/1.1

35-83159700/95/20568R
1.789540.02.18158.91
185.115.6.92

36-83313900/120/20916_
2.1915700.02.05150.65
212.72.147.42gulf.self.ge:443POST /api/App/SetBTNWorkingStatus/b3949955-6f07-42a5-a887-5aebf

37-83301970/18/20783_
0.316100.00.07152.15
188.169.84.218cito.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

38-8355901/181/20452C
4.580564.53.78149.56
92.54.217.202spar.self.ge:443POST /api/Device/InsertDeviceData/e9cfd3f79eda99bf HTTP/1.1

39-8355910/166/20691_
3.543540.01.67146.47
31.146.211.218spar.self.ge:443POST /api/Device/InsertDeviceData/56e0d6431401bffe HTTP/1.1

40-83282600/174/20631_
4.870790.02.56162.37
217.142.28.107billing.self.com.ge:443NULL

41-8391800/76/20585R
1.663790.01.37161.58
94.43.173.121

42-83286300/10/20755_
0.21620.00.06157.67
141.8.208.20billing.self.com.ge:443NULL

43-8332540/223/20666_
4.446110.03.33151.09
193.176.214.21autopia.self.ge:443POST /api/App/Initialization/5268dbf7-fb6f-4dff-875f-b308cf96fa

44-8342410/350/20578W
13.81000.06.50148.49
31.146.188.91horekaoperatori.self.ge:443GET /status/01024008560/?t=1727675859693 HTTP/1.1

45-83168980/162/20521_
2.715650.04.00151.18
185.115.7.86dressup.self.ge:443POST /api/App/GetLimits/9d03bd24-ff30-4632-b5f4-8852ccde1cd1/a2

46-83168990/131/20572R
6.880610.02.46148.77
94.43.59.34

47-83286310/14/20769_
0.3668410.00.27156.58
31.146.20.178newlife.self.ge:443POST /api/App/SetBTNWorkingStatus/66567b86-d0b9-4cc7-9eb0-41ee1

48-8352761/574/20761K
18.97001.79.01150.42
178.134.146.186gulf.self.ge:443GET /assets/icons/bi-box-arrow-right.svg HTTP/1.1

49-83108232/101/20490K
2.4811010.31.00145.42
5.152.89.25

Found on 2024-10-02 05:18

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52431221cf

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Friday, 12-Jul-2024 05:30:58 +04
Restart Time: Monday, 08-Jul-2024 10:17:01 +04
Parent Server Config. Generation: 267
Parent Server MPM Generation: 266
Server uptime:  3 days 19 hours 13 minutes 57 seconds
Server load: 1.47 1.26 2.22
Total accesses: 33591225 - Total Traffic: 352.5 GB
CPU Usage: u1957.2 s831.86 cu0 cs0 - .849% CPU load
102 requests/sec - 1.1 MB/second - 11.0 kB/request
29 requests currently being processed, 1002 idle workers
_____________________________________________.______._K_________
_____.__________________________K__C_K__________________________
____________._CK______________.___________K___.______K__________
_____________________C__._____________C_________K_W_____________
___________________________________.____________________________
.W________________________C______.___._________.________________
_______________K______K____________________.______..____________
______________________.___________________.__C__________________
._____________________________________.__.________________K_____
___._________________________._______________K___________.______
___.__.K_______________________W__K________._.____________C_____
_______________.____K__________________________________.________
___________________.____W_______________________________________
__C_________.___________________________C_______________________
______.__________________________________.___C__________________
________________.________.___.______.__________......._.._..._..
...._._._._...._._...._....._._._._K......_.........__...._._...
....__.__.__._..._......_......................__..._._.._......
......._.._......_..._...._.._...__.._.._.._......._.....__._...
_.__...._._........................_...._..................._...
..._..._..._._..................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-26662130/135/32023_
1.6761030.00.56352.54
217.147.236.164ve.self.ge:443GET /cron/sms.php HTTP/1.1

1-266274450/147/31940_
1.720570.00.61328.89
217.147.236.164billing.self.com.ge:443NULL

2-266194660/122/32165_
1.61650.00.47347.15
217.147.236.164billing.self.com.ge:443NULL

3-26656340/44/32135_
0.489570.00.17342.65
217.147.236.164billing.self.com.ge:443NULL

4-266283780/23/32225_
0.28650.00.09339.18
217.147.236.164billing.self.com.ge:443NULL

5-266230130/29/32112_
0.32860.00.12321.82
217.147.236.164billing.self.com.ge:443NULL

6-266186330/31/31789_
0.380840.00.12336.39
217.147.236.164billing.self.com.ge:443NULL

7-26649390/16/31980_
0.203550.00.07341.00
31.146.151.46europeanschool.self.ge:443GET /api/cards/ HTTP/1.1

8-266138840/8/31868_
0.103980.00.03317.29
217.147.236.164billing.self.com.ge:443NULL

9-266230240/28/31928_
0.332510.00.11327.04
217.147.236.164billing.self.com.ge:443NULL

10-266265940/58/31699_
0.627690.00.43322.85
217.147.236.164billing.self.com.ge:443NULL

11-266186390/31/31542_
0.632920.00.13323.72
217.147.236.164billing.self.com.ge:443NULL

12-266267190/53/31801_
0.621700.00.21325.00
217.147.236.164zgvaludi.self.ge:443GET /cron/visitor.php HTTP/1.1

13-266274560/140/31387_
2.056110.00.55330.87
217.147.236.164billing.self.com.ge:443NULL

14-266263000/80/31664_
0.9231160.00.39318.13
217.147.236.164unison.self.ge:443GET /cron/changetypes.php HTTP/1.1

15-266267200/51/31621_
3.8492100.00.23321.95
217.147.236.164billing.self.com.ge:443NULL

16-266138910/7/31819_
0.101780.00.03343.19
217.147.236.164billing.self.com.ge:443NULL

17-266135450/69/31519_
0.780600.00.29329.77
217.147.236.164billing.self.com.ge:443NULL

18-266318960/398/31745_
7.071050.01.59328.65
217.147.236.164billing.self.com.ge:443NULL

19-26694960/11/31422_
0.171780.00.04327.82
217.147.236.164vanilla.self.ge:443GET /cron/visitor.php HTTP/1.1

20-266238920/116/31661_
1.801530.00.45332.92
176.221.166.30spar.self.ge:443POST /api/Device/InsertDeviceData/0617c24d3f6604b4 HTTP/1.1

21-266186400/34/31694_
0.432960.00.13324.43
217.147.236.164billing.self.com.ge:443NULL

22-26642460/166/31621_
2.031640.00.65341.80
217.147.236.164billing.self.com.ge:443NULL

23-266138920/10/31460_
0.143710.00.04324.10
92.241.76.10billing.self.com.ge:443NULL

24-266240810/244/31241_
6.9110850.01.02309.97
217.147.236.164billing.self.com.ge:443NULL

25-266283890/16/31223_
3.671550910.00.07340.50
217.147.236.164sss.self.ge:443GET /cronjob/visitor.php HTTP/1.1

26-266277400/53/31394_
0.554620.00.21328.34
212.72.147.242billing.self.com.ge:443NULL

27-26695060/12/31163_
0.277990.00.05340.23
217.147.236.164billing.self.com.ge:443NULL

28-266139080/8/31277_
0.100670.00.03313.13
217.147.236.164zoo.self.ge:443GET /cron/applybenefits.php HTTP/1.1

29-266142920/37/31091_
0.468480.00.16331.45
213.131.36.162spar.self.ge:443POST /api/Device/InsertDeviceData/71ba6ae2a2a7f074 HTTP/1.1

30-266230250/29/31071_
0.361730.00.11303.29
217.147.236.164win-win.self.ge:443GET /cron/visitor.php HTTP/1.1

31-266267290/54/31351_
0.639720.00.25313.67
217.147.236.164billing.self.com.ge:443NULL

32-26699470/40/31062_
0.455970.00.15318.93
217.147.236.164billing.self.com.ge:443NULL

33-26695070/12/30996_
0.147580.00.05303.89
217.147.236.164billing.self.com.ge:443NULL

34-26695160/9/31321_
0.10660.00.03313.98
217.147.236.164billing.self.com.ge:443NULL

35-26695170/11/31249_
0.14700.00.04323.64
5.152.15.45

36-26695180/12/31317_
0.13540.00.05311.03
37.232.87.24alliancetbilisi.self.ge:443POST /api/Transactions/Register HTTP/1.1

37-266186500/32/31236_
0.370780.00.12324.02
217.147.236.164billing.self.com.ge:443NULL

38-266139090/7/31199_
0.107440.00.03324.93
31.146.173.250medi.self.ge:443GET /api/cards/ HTTP/1.1

39-266179980/62/31284_
0.70850.00.24331.82
217.147.236.164billing.self.com.ge:443NULL

40-26673150/73/30953_
0.85950.00.29320.85
217.147.236.164billing.self.com.ge:443NULL

41-266230350/28/31272_
0.33960.00.11318.65
217.147.236.164billing.self.com.ge:443NULL

42-26695190/12/31059_
0.141050.00.05292.23
217.147.236.164billing.self.com.ge:443NULL

43-266227020/147/31151_
2.13260.00.58326.01
217.147.236.164billing.self.com.ge:443NULL

44-266139110/7/31219_
0.111640.00.03332.83
217.147.236.164zpa-360.self.ge:443GET /cron/visitor.php HTTP/1.1

45-266-0/0/31310.
0.053600.00.00350.78
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

46-266267310/56/31253_
0.623760.00.21329.08
217.147.236.164billing.self.com.ge:443NULL

47-266143010/39/31326_
0.703850.00.15327.21
217.147.236.164billing.self.com.ge:443NULL

48-266186510/33/31324_
0.344490.00.13323.37
217.147.236.164billing.self.com.ge:443NULL

49-26628900/71/31430_
7.251060.00.32332.79
217.147.236.164billing.self.com.ge:443NULL

50-266186540/34/31309_
0.431730.00.13317.63
217.147.236.164billing.self.com.ge:443NULL

51-266274920/139/30915_
1.685710.00.55328.41
217.147.236.164billing.self.com.ge:443NULL

52-266-0/0/31060.
2.703300.00.00319.76
127.0.0.1billing.self.com.ge:80OPTIONS

Found on 2024-07-12 01:30

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52480cc72e

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Wednesday, 10-Jul-2024 12:52:29 +04
Restart Time: Monday, 08-Jul-2024 10:17:01 +04
Parent Server Config. Generation: 180
Parent Server MPM Generation: 179
Server uptime:  2 days 2 hours 35 minutes 28 seconds
Server load: 34.77 12.44 6.19
Total accesses: 19148884 - Total Traffic: 209.7 GB
CPU Usage: u2194.96 s1110.36 cu0 cs0 - 1.81% CPU load
105 requests/sec - 1.2 MB/second - 11.5 kB/request
431 requests currently being processed, 0 idle workers
RCKKRKRRRCKCCKRKKRCKRRKKRCRKRCKRKRKRRRCRKRRRRRRKRRRKCRCKRKKRRRRK
KKRCRKRRKCRRKRRCRCCRRCRRRKRKCCKCKRRKRCKRKCCKRRRCCRCKRRKRCRKRKCKR
RCRRRRRCRRRRRRRRKKRCCRRRCRRKRRCKCRCRRCRCRKRRKWRKRRKCKKRRRRRRWKRC
KKRRKCRCKRKRRKRKCKKKCRKKKRRCRCRRRRRWRKRRKRKRRRCRKKKRKRRWRCRKRRKK
RRRKRRKKKRRRRRRCRCRKRCCRCKRRKKRRRCRCKRCRCCRRCRRCCRCCKCCKCCCCCRCR
KKKKRRKKRCRKRKRKKKKRRRKKRRKRRKKKRRKRRRRRKKRRRRRRRRRKKRRKRRRKRKKK
KRKKRRRKKRKRRRRCWCCRRRKKKKKRRKRRKKRRRRRK.G...................R..
................................................................
................................................................
..............................................................R.
....K...........................................................
................................................................
....................K...........................................
................................................................
.......................................C.R......................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-179304010/13/18306R
0.17500.00.06219.91
185.49.166.250

1-179304031/7/18151C
0.141507.30.03194.13
185.46.176.211billing.self.com.ge:443NULL

2-179305552/15/18567K
0.32098216.10.73212.79
212.72.131.254ici-paris.self.ge:443GET /buffer/js/8183133e0feeff6d0ed559bd4c41c4d2_script.js?v=2-1

3-179306441/13/18264K
0.230637.30.07198.20
5.152.102.201leadercredit.self.ge:443GET /status/kh.turmanidze/?t=1720601547706 HTTP/1.1

4-179306550/10/18414R
0.160700.00.04205.08
93.186.215.194

5-179306571/11/18267K
0.230557.30.32185.67
185.49.166.250betlive.self.ge:443GET /status/01024068672/?t=1720601548587 HTTP/1.1

6-179306590/7/18041R
0.144570.00.03200.67
185.46.176.211

7-179306610/14/18194R
0.271500.00.06199.33
188.169.214.210

8-179306640/2/18232R
0.065570.00.01196.50
176.221.158.56

9-179306661/2/18189C
0.0616877.30.01193.49
188.169.214.210billing.self.com.ge:443NULL

10-179306691/7/18165K
0.150547.30.05193.41
5.152.102.201leadercredit.self.ge:443GET /status/m.nonikashvili/?t=1720601541856 HTTP/1.1

11-179306710/4/18040C
0.091460.00.02200.82
92.54.255.68billing.self.com.ge:443NULL

12-179306721/3/18135C
0.070544.10.02185.87
185.49.166.250billing.self.com.ge:443NULL

13-179306751/11/17946K
0.201697.30.05194.70
45.9.45.182benefits.self.ge:443GET /status/nkotua@benefits.ge/?t=1720601545429 HTTP/1.1

14-179306760/9/18058R
0.133570.01.22193.63
31.146.98.173

15-179306771/8/18014K
0.151607.40.03181.09
45.9.32.21benefits.self.ge:443GET /status/tmikadze@benefits.ge/?t=1720601547320 HTTP/1.1

16-179306781/6/18125K
0.110577.40.03199.72
188.169.117.51fec.self.ge:443GET /status/13001056935/?t=1720601549170 HTTP/1.1

17-179306790/5/17951R
0.090940.00.02194.33
178.134.141.102

18-179306801/2/18055C
0.060514.00.01181.79
149.3.101.179billing.self.com.ge:443NULL

19-179306811/4/18011K
0.080566.00.02204.56
80.241.251.210zk.self.ge:443GET /status/admin@self.ge/?t=1720601548968 HTTP/1.1

20-179306820/13/18131R
0.284600.00.03196.60
5.152.102.201

21-179306830/11/17960R
0.35090.00.90188.76
81.16.245.14

22-179306841/12/17998K
0.240567.50.06206.15
212.72.146.106hotelspreference.self.ge:443GET /status/01024037776/?t=1720601597634 HTTP/1.1

23-179306851/7/17837K
0.131605.80.04193.36
212.72.147.242geocredit.self.ge:443GET /status/45001035914/?t=1720601547550 HTTP/1.1

24-179306860/1/17816R
0.049810.00.01186.94
95.104.118.10

25-179306894/7/17771C
0.1211296.20.59207.65
91.184.121.39billing.self.com.ge:443NULL

26-179306900/3/17898R
0.086530.00.02200.98
213.131.50.62

27-179306911/8/17549K
0.141522.50.03185.96
92.241.73.162etaloni.self.ge:443GET /status/NinoEb/?t=1720601543080 HTTP/1.1

28-179306920/8/17634R
0.114610.00.03182.21
92.241.71.106

29-179306931/3/17732C
0.080527.20.02209.24
5.152.14.2billing.self.com.ge:443NULL

30-179306941/10/17632K
0.190577.30.39181.51
178.134.141.102gloria.self.ge:443GET /status/61004062040/?t=1720601900377 HTTP/1.1

31-179306950/4/17870R
0.1021180.00.43182.87
5.152.102.201

32-179306961/7/17623K
0.130647.30.04188.91
2.57.219.138primeinsurance.self.ge:443GET /status/11001029801/?t=1720601546497 HTTP/1.1

33-179306970/1/17649R
0.047820.00.01179.54
94.43.132.13

34-179306981/4/17888K
0.091565.80.02184.51
212.72.147.242geocredit.self.ge:443GET /status/59001069851/?t=1720601547517 HTTP/1.1

35-179306990/3/17903R
0.045110.00.01196.20
185.49.166.250

36-179307000/2/17786R
0.062640.00.01189.63
92.241.69.54

37-179307010/10/17783R
0.1711820.00.04201.88
212.72.147.242

38-179307021/8/17723C
0.150787.20.04191.21
178.134.146.186billing.self.com.ge:443NULL

39-179299900/13/17894R
0.24190.00.07208.84
109.238.230.214

40-179307031/4/17560K
0.092607.30.02192.77
94.43.253.130autohome.self.ge:443GET /status/vasiko.kalichava@ciu.edu.ge/?t=1720601530089 HTTP/1

41-179307040/10/17879R
0.171580.00.05194.27
94.43.253.130

42-179307060/3/17683R
0.063650.00.02179.09
5.152.102.201

43-179307070/4/17687R
0.090530.00.02192.17
188.169.214.210

44-179307080/6/17647R
0.140570.00.50199.86
81.16.246.134

45-179307090/6/17852R
0.111770.00.75195.88
185.49.166.250

46-179307100/5/17741R
0.1001390.00.02186.32
46.175.134.54

47-179307113/11/17792K
0.420113.60.06198.38
91.151.136.188superstore.self.ge:443GET /templates/images/holiday.png HTTP/1.1

48-179307120/7/17857R
0.153430.00.03195.42
31.148.201.252

49-179307130/5/17987R
0.090560.00.02200.02
178.134.66.54

50-179307140/6/17811R
0.123560.00.03176.59
5.152.102.201

51-179307151/3/17406K
0.072737.10.02192.81
94.43.132.13ardi.self.ge:443GET /status/n.ruso/?t=1720601546989 HTTP/1.1

52-179307160/1/17640C
0.021720.00.00190.63
185.49.166.250billing.self.com.ge:443NULL

Found on 2024-07-10 08:52

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52472ef6c3

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Monday, 08-Jul-2024 22:30:50 +04
Restart Time: Monday, 08-Jul-2024 10:17:01 +04
Parent Server Config. Generation: 16
Parent Server MPM Generation: 15
Server uptime:  12 hours 13 minutes 49 seconds
Server load: 7.91 8.64 8.30
Total accesses: 5239321 - Total Traffic: 64.4 GB
CPU Usage: u2365.9 s1053.58 cu0 cs0 - 7.77% CPU load
119 requests/sec - 1.5 MB/second - 12.9 kB/request
381 requests currently being processed, 626 idle workers
___W_K__K___KRK_W_KKK_____KKC._____C___W__________K__K____KCK_KC
K___W_.____C.__.KKWK_CKCKC_K_K_WW_____W_WW___C_K__CW___.__K_____
K___CCW___KK_W____WCKK_CK__KK_R_WWW__K__K____WW___KK____R_C._WC_
KKKW_____KK_KWC__K_WW__W_C_K________C_C______C_____W___C_W_.C_W_
___R_K___C__K_CW_._.__CK_C___.K____RW__KW_KCW__________WC__K__CC
____R_KK_KKW___K____CWW___WWK_K____WKK_WKC______CW___________.__
_C_CCW_K_____.KK__W__K___KCWWWKRKWKC__K___C_C___CCW._W___KKCCK__
__.__K____KWK_W.K______C___KK___W__W____R__KKCK_CW___KWCW_C_WK__
_W___C__K___KWKK_C__K______K_K__WK___.K____W_KK__.KK_________W_C
K__KK_______.K_________..W_KWW___KW_.KW_.K_____CKK__K_____W_____
__C____C_K________CRW____W____C______WCWKC__KC__K_KK_C__WW____K_
_K._W_W__W___KK____.C________W.__CK_____.___K_C___CC__C___C_____
_K_WK______W____K___KK_K_C__K_C__________KK_C_KC____K_KKW_K__K__
_._CWKK.____C____W_KK____K_KW_W_KK_K__K__.__K_C___KC_KK____K__WK
CKK_C_______C_K______K_W__....K_....._.._._.............R.K.._._
...._._C.....W.........._...._.._...W.....KW._W..._.......C...__
K_C.........K_.__..._.W_..K.......R.K.._.K..K.._..__K__..__..C._
....._K.._W._.._K._K_..C._.K.._.._._...CK._.._._.._....._..W._..
._.....K.__.C..C_._....._.K.....W...W..__.._K..KKK...K_...._K...
C..K..........K.._._.__CK_C..__K.K..............................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-15232310/28/4697_
0.334720.00.1167.33
217.147.236.164billing.self.com.ge:443NULL

1-15149930/177/4649_
2.471720.02.5261.16
92.241.76.10billing.self.com.ge:443NULL

2-15153020/139/4883_
2.245630.00.9266.58
5.152.102.201billing.self.com.ge:443NULL

3-15181390/29/4660W
0.482200.00.1163.59
217.147.236.164janelidzeaudit.self.ge:443GET /cron/logout.php HTTP/1.1

4-15246610/115/4778_
1.4655480.00.4964.29
217.147.236.164billing.self.com.ge:443NULL

5-15137301/39/4695K
0.68153.90.2351.67
217.147.236.164tsiskvili.self.ge:443GET /cron/logout2.php HTTP/1.1

6-1561740/177/4639_
9.52070.01.6859.62
217.147.236.164billing.self.com.ge:443NULL

7-1543130/13/4634_
0.40011580.00.7457.62
217.147.236.164wendys.self.ge:443GET /cron/sms.php HTTP/1.1

8-15265361/52/4660K
3.80253.90.2455.51
217.147.236.164thearthouse.self.ge:443GET /cron/logout2.php HTTP/1.1

9-1517410/271/4725_
3.5611160.03.0160.67
217.147.236.164billing.self.com.ge:443NULL

10-15195630/126/4706_
1.790690.01.0757.02
217.147.236.164billing.self.com.ge:443NULL

11-1586470/8/4635_
0.143580.00.0366.04
185.168.226.214spar.self.ge:443POST /api/Device/InsertDeviceData/9e6ff29adc8615b4 HTTP/1.1

12-1524141/80/4662K
0.87173.90.5849.79
217.147.236.164tskaltuboplaza.self.ge:443GET /cron/logout2.php HTTP/1.1

13-15195870/129/4679R
1.68060.01.3457.40
206.81.12.61

14-15194681/165/4870K
2.35173.92.7761.24
217.147.236.164tsurgroup.self.ge:443GET /cron/logout2.php HTTP/1.1

15-1543240/12/4610_
0.170460.00.0552.15
178.134.82.202spar.self.ge:443POST /api/Device/InsertDeviceData/16ad11d0977a2657 HTTP/1.1

16-1560840/42/4751W
0.541100.00.5961.32
217.147.236.164pane.self.ge:443GET /cron/logout.php HTTP/1.1

17-15327450/48/4616_
3.832530.00.1956.70
5.178.178.144aversiclinic.self.ge:443POST /api/App/GetWorkingStatus/8a18fb2a-c486-4547-a1f0-7652c31e

18-15131031/66/4589K
0.801623.90.2548.89
217.147.236.164novotel.self.ge:443GET /cron/applybenefits.php HTTP/1.1

19-15322661/16/4629K
0.212642.60.0669.13
92.241.76.10lazikacapital.self.ge:443GET /status/19001091742/?t=1720463447893 HTTP/1.1

20-1549721/43/4765K
0.50063.80.1764.38
217.147.236.164gpih.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

21-1593690/41/4694_
0.490580.00.2656.52
45.9.46.18inexphone.self.ge:443POST /api/App/GetLimits/337c29bf-ad6d-4b62-900a-f0050229e41b/48

22-1543250/11/4724_
0.164540.00.0560.50
80.241.251.210td.self.ge:443POST /api/Chat/PoolMessages/MzU3MTE5MTkxMQ==/4e9305ef-c754-4953

23-1591530/202/4667_
2.663550.02.8755.50
37.131.231.106billing.self.com.ge:443NULL

24-15164270/260/4600_
7.47150.01.4253.18
217.147.236.164billing.self.com.ge:443NULL

25-15322780/15/4551_
0.231800.00.0757.68
217.147.236.164billing.self.com.ge:443NULL

26-15181581/31/4710K
0.37204.00.1264.75
217.147.236.164billing.self.com.ge:443GET /cron/applybenefits.php HTTP/1.1

27-1593851/42/4530K
0.52253.90.1652.12
217.147.236.164tiflispalace.self.ge:443GET /cron/logout2.php HTTP/1.1

28-15239491/151/4566C
2.30153.91.1358.18
217.147.236.164billing.self.com.ge:443NULL

29-15-0/0/4680.
0.701800.00.0064.51
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

30-1543380/14/4529_
0.193540.00.3055.23
80.241.251.210td.self.ge:443POST /api/Chat/PoolMessages/MzA2NTg2NjU1Nw==/0feb61bc-0606-446c

31-1581210/73/4692_
1.085960.00.6849.83
217.147.236.164billing.self.com.ge:443NULL

32-15181690/28/4578_
0.35518850.00.3359.08
217.147.236.164billing.self.com.ge:443NULL

33-1537830/245/4625_
4.93150.02.1557.59
217.147.236.164velistore.self.ge:443GET /cron/sms.php HTTP/1.1

34-15232740/26/4662_
0.30260.00.1051.03
217.147.236.164billing.self.com.ge:443NULL

35-15322791/15/4775C
0.18153.90.0660.67
217.147.236.164billing.self.com.ge:443NULL

36-1549730/50/4685_
0.61160.00.6455.50
217.147.236.164billing.self.com.ge:443NULL

37-1550000/52/4696_
0.635550.01.0267.78
31.146.176.114billing.self.com.ge:443NULL

38-1561890/171/4611_
5.8702530.01.3957.44
217.147.236.164billing.self.com.ge:443NULL

39-1515700/476/4632W
9.04400.07.2663.58
217.147.236.164sulakauri.self.ge:443GET /cron/logout.php HTTP/1.1

40-1550010/41/4542_
0.530660.00.1659.89
31.146.188.158billing.self.com.ge:443NULL

41-1593860/43/4746_
0.61530.01.3062.61
213.157.199.6bochorishvili.self.ge:443GET /slider/2.png HTTP/1.1

42-1543390/12/4573_
0.140500.00.0550.19
80.241.251.210td.self.ge:443POST /api/Chat/PoolMessages/MzU3MTE5MTkxMQ==/4e9305ef-c754-4953

43-1550020/47/4575_
0.572790.00.1961.43
217.147.236.164billing.self.com.ge:443NULL

44-15232750/25/4541_
0.3021330.00.2958.38
217.147.236.164billing.self.com.ge:443NULL

45-15279410/21/4722_
0.27590.00.0755.46
185.115.5.181billing.self.com.ge:443NULL

46-1586680/8/4706_
0.140670.00.0355.28
45.9.46.18inexphone.self.ge:443POST /api/App/GetServerDateTime/337c29bf-ad6d-4b62-900a-f005022

47-1565250/136/4628_
8.87150.01.8957.37
217.147.236.164billing.self.com.ge:443NULL

48-1561900/180/4616_
2.38160.01.5852.70
217.147.236.164billing.self.com.ge:443NULL

49-1570740/901/4839_
15.803130.08.6458.14
217.147.236.164billing.self.com.ge:443NULL

50-1514311/151/4669K
3.3303003.81.7353.41
217.147.236.164letre.self.ge:443GET /cron/changetypes.php HTTP/1.1

51-1515323

Found on 2024-07-08 18:30

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc528d062185

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Saturday, 06-Jul-2024 22:55:02 +04
Restart Time: Tuesday, 02-Jul-2024 02:59:24 +04
Parent Server Config. Generation: 89
Parent Server MPM Generation: 88
Server uptime:  4 days 19 hours 55 minutes 37 seconds
Server load: 3.30 6.29 7.39
Total accesses: 41303156 - Total Traffic: 399.6 GB
CPU Usage: u2054.24 s927.01 cu0 cs0 - .714% CPU load
99 requests/sec - 1.0 MB/second - 10.1 kB/request
109 requests currently being processed, 886 idle workers
._______K_________________KK___C_______K___R___._K______________
_._.___R.________KR___K_.___.K.__._W______________R__________W__
_____.R______________.____K__________CK____W______.__._____K____
___K_________.______________KR__________W__W_________K_K_______W
._W________K______WW_______________KKK______________W___________
_____________________________._._K________K_C_RW_________K______
__________________._____RK_______.____K__C._____._._______W_W___
____._______.__________W__K___R_K___.______.___._.______________
___K._.___._______._________K_._______..________K______.._______
________.______....___._.___._.___.C._.__...___K_.______._____C_
RW_R._________.______..__._K_____.__._____CK____.__.__W___K_____
C____._.____.._______.R_._.__K_W___________..____._.__..___.__..
_____.__.R._____.__.___._WK..___..__._____.____R___.._K__._____.
._._._._____.R___._..W_R______.__._K__________....K__.KK___..___
.____.C____..R_._.__RCK_________._R____K__._____...____.__._.K_.
____.....___W______.R..__.._____.____.K_.______.__W.___RR__.___.
____._W__.__________.___._____.________.___.K_______._.__W___.._
____._._______.__._R_K_C_K_W._._.___._____.___.K____R.__.__K.K__
.___.____._..............._..._.........._......................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-88-0/0/38853.
0.444300.00.00373.82
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

1-8818680/72/38675_
0.808570.00.29381.84
92.241.75.162spar.self.ge:443POST /api/Device/InsertDeviceData/c36354d734113ca3 HTTP/1.1

2-88300570/47/38621_
0.762070.00.22367.26
141.8.208.20

3-8891510/478/38704_
18.3810830.03.26373.33
178.134.99.78spar.self.ge:443POST /api/Device/InsertDeviceData/c66a0a69eebc3fe5 HTTP/1.1

4-88221800/20/38616_
0.22101160.00.08372.09
31.146.234.210lopota.self.ge:443GET /api/cards/ HTTP/1.1

5-88257330/47/38471_
0.5219590.00.18380.26
95.104.119.254bazari.self.ge:443POST /api/App/GetUserApplications/1b587d0b-b2c2-4cfa-b3a8-2e72d

6-8893070/4/38718_
0.0612570.00.01362.49
31.146.171.146spar.self.ge:443POST /api/Device/InsertDeviceData/13e5334abbf1978f HTTP/1.1

7-8850140/7/38520_
0.0922770.00.03347.26
94.43.48.246spar.self.ge:443POST /api/Device/InsertDeviceData/331b6f2e3055cc4a HTTP/1.1

8-88286161/15/38626K
0.17063.80.06357.52
217.147.236.1641pay.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

9-88111900/98/38305_
1.2222720.00.42385.19
178.134.76.226spar.self.ge:443POST /api/Device/InsertDeviceData/0818c0ca75a784bb HTTP/1.1

10-88126910/63/38233_
0.9013610.00.24360.55
185.70.52.215billing.self.com.ge:443NULL

11-88126920/67/38568_
0.7823100.00.24358.20
91.151.136.250air.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

12-8842800/39/38612_
0.4418100.00.15368.72
37.232.75.250belorusulisakhli.self.ge:443POST /api/App/Initialization/503d3d76-7de3-4a58-b32a-460844f756

13-88178780/133/38738_
1.616770.03.22371.55
185.201.24.25billing.self.com.ge:443NULL

14-8877510/177/38872_
6.70900.03.60356.66
185.244.25.250gtmotors.self.ge:80GET /.DS_Store HTTP/1.1

15-88171230/57/38456_
0.68000.00.42371.42
147.182.149.75billing.self.com.ge:443GET /v2/_catalog HTTP/1.1

16-88256670/89/38442_
1.312510.00.37367.52
94.43.206.10spar.self.ge:443POST /api/Device/InsertDeviceData/a3c82fb550e49187 HTTP/1.1

17-88299300/82/38361_
2.196550.00.38383.20
147.182.149.75

18-88155800/101/38257_
1.8191080.01.25363.22
176.221.166.30spar.self.ge:443POST /api/Device/RegisterPinTransaction/0617c24d3f6604b4 HTTP/1

19-88300700/41/38396_
0.521480.00.84362.09
31.146.138.170newschool.self.ge:443GET /api/cards/ HTTP/1.1

20-8842990/36/38449_
0.401660.00.14352.90
217.147.236.164billing.self.com.ge:443NULL

21-88186820/154/38200_
1.8615560.00.77375.68
149.3.104.150spar.self.ge:443POST /api/Device/InsertDeviceData/d69aa6fa5942a68b HTTP/1.1

22-88210600/89/38196_
1.1314510.00.35353.27
80.241.243.66enterprise.self.ge:443GET /api/cards/?R=II-1-d2-r2_out HTTP/1.1

23-885970/12/38427_
0.151250.00.04368.88
217.147.236.164billing.self.com.ge:443NULL

24-88257390/47/38538_
0.4916410.00.18388.53
31.146.171.182spar.self.ge:443POST /api/Device/InsertDeviceData/558cd38154743dd7 HTTP/1.1

25-88112450/115/38335_
1.591790.01.20367.83
185.115.7.59miniso.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

26-88300711/47/38330K
0.63063.90.18363.08
217.147.236.164alliance.self.ge:443GET /cron/pool.php HTTP/1.1

27-88300811/43/38354K
0.562584.10.17382.42
93.186.215.194casacalda.self.ge:443GET /status/01013015208/?t=1720292099553 HTTP/1.1

28-8843940/152/38400_
2.002450.01.88357.89
217.147.236.164billing.self.com.ge:443NULL

29-88256680/89/38346_
1.696580.00.36370.76
178.134.43.30spar.self.ge:443POST /api/Device/InsertDeviceData/0120dc6c3249e6eb HTTP/1.1

30-88252980/280/38533_
7.4095230.02.04370.37
176.221.166.30spar.self.ge:443POST /api/Device/RegisterPinTransaction/0617c24d3f6604b4 HTTP/1

31-88286171/16/38245C
0.201562.70.06373.52
185.201.24.24billing.self.com.ge:443NULL

32-88222550/21/38182_
0.3013550.00.09365.48
213.131.46.178spar.self.ge:443POST /api/Device/InsertDeviceData/8440cddf530a483e HTTP/1.1

33-88127020/60/38053_
0.672360.00.22352.63
217.147.236.164billing.self.com.ge:443NULL

34-886030/11/38122_
0.151350.00.38374.00
217.147.236.164billing.self.com.ge:443NULL

35-88136090/126/38362_
1.6517470.00.85360.62
31.146.234.158spar.self.ge:443POST /api/Device/InsertDeviceData/657b1eecdf7b1224 HTTP/1.1

36-8889890/135/38461_
1.831700.00.89374.51
31.146.171.182spar.self.ge:443POST /api/Device/InsertDeviceData/558cd38154743dd7 HTTP/1.1

37-8862390/71/38183_
1.5117470.00.32345.15
37.232.75.250belorusulisakhli.self.ge:443POST /api/App/GetMenu/503d3d76-7de3-4a58-b32a-460844f756b9/1495

38-8890560/32/38195_
0.361610.00.13388.52
178.134.178.202aversiclinic.self.ge:443GET /api/cards/ HTTP/1.1

39-88222421/124/38208K
1.740115.52.04366.91
91.151.138.203kvarelilake.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

40-88213790/56/38662_
0.6317520.00.91372.47
37.232.75.250belorusulisakhli.self.ge:443POST /api/App/GetDashboardNews/503d3d76-7de3-4a58-b32a-460844f7

41-8862400/74/38472_
0.841250.00.31383.64
217.147.236.164billing.self.com.ge:443NULL

42-88127030/63/38377_
0.7019900.00.27370.85
217.147.236.164billing.self.com.ge:443NULL

43-8879970/383/38272R
5.40000.05.06363.05
217.147.236.164

44-88300820/42/38215_
0.4622530.00.16351.38
81.16.253.70spar.self.ge:443POST /api/Device/InsertDeviceData/46a6ad35fa0f0b02 HTTP/1.1

45-8850250/8/38301_
0.107570.00.03393.46
5.152.122.146spar.self.ge:443POST /api/Device/InsertDeviceData/421352f7399ff5cc HTTP/1.1

46-8862530/71/38353_
0.8922550.00.57392.04
37.131.231.106billing.self.com.ge:443NULL

47-88-0/0/38354.
1.8147220.00.00376.75
217.147.236.164billing.self.com.ge:443NULL

48-88210770/89/38394_
0.8912580.00.32378.49
31.146.188.178spar.self.ge:443POST /api/Device/

Found on 2024-07-06 18:54

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc523a9ae23f

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Friday, 05-Jul-2024 18:36:20 +04
Restart Time: Tuesday, 02-Jul-2024 02:59:24 +04
Parent Server Config. Generation: 68
Parent Server MPM Generation: 67
Server uptime:  3 days 15 hours 36 minutes 55 seconds
Server load: 13.87 12.88 11.80
Total accesses: 32730773 - Total Traffic: 332.4 GB
CPU Usage: u2918.27 s1395.79 cu0 cs0 - 1.37% CPU load
104 requests/sec - 1.1 MB/second - 10.6 kB/request
207 requests currently being processed, 929 idle workers
_________K__K_____RW_K________K___K________________C____________
_______K____C____C__________CW_K_____K___R_K___________W_KK____C
_K________________CK_KK_______K____________K____KK______________
_K____K_C_______K______________W___RK___W_K__K___K_R_____CK___K_
C___C____________R__________C__K__________C___K__C____KW_____K__
K_K__C_____K_K___W_C___.K_K________C____RK___K_C__R_C___________
K_K___C_K_____K____W_____K__R______C____K_____KKK_.______.._.__K
_____C___.__._K________.______.____.___.___K_R_R.___KCW__._._._C
.K__..K__._.__.___.K_K____._.__K____.CK_____C._._____..______.K_
_._C.__._____K_._______K___._K_____RC.______C__.__C________C___.
.__.____K__...____..__K.K_._.___..CK.____R______C_._____.__K__._
__.____.__C_K_______.R__..___._R._____.__.K____.K._.__KC__....K.
______.___.__._.__R_______..______RC.C._C_______K_W___W_KR___K__
_K______.____.____.R._______._..__.___._..__._____._..___K__._C.
________._.W__._____C._.__C________K__._.__K.._.____._C__._..__K
___R_._.._C.RK__C_.___K______W_______CK___C_._._____K__CR_______
_K_______________..___._.___C.___._.__.__.___C.__KC_____..__._..
_________C.K_K.._K__K__..__.K_K______KK_.KK__C___K_____C__.___C.
.__K_K___K____C___K___K_.___._CR__C__._____C_____.______.___._._
.K__R_._C__.____.K__._C__KC_K__R.___...__._...._..K..._...._._..
............___.K......_..._..._.........._..____....._._.......
..__....._........K.._......_...._......._.__......__...........
._._...__.._....................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-67190100/276/30316_
4.816640.03.91305.76
46.175.134.54billing.self.com.ge:443NULL

1-67300260/21/30139_
0.28660.00.08311.19
217.147.236.164udabno.self.ge:443GET /cron/poolDevice.php HTTP/1.1

2-67254850/141/30130_
2.262150.00.93299.53
146.255.230.58billing.self.com.ge:443NULL

3-67325020/252/30132_
8.15660.01.74309.35
217.147.236.164transporter.self.ge:443GET /cron/car_lead.php HTTP/1.1

4-67255310/158/30090_
2.512520.02.40307.18
5.152.119.94spar.self.ge:443POST /api/Device/InsertDeviceData/5263b6311cdd34f8 HTTP/1.1

5-6732080/424/29995_
11.526580.03.61315.88
217.147.236.164billing.self.com.ge:443NULL

6-6767030/14/30239_
0.18680.00.06293.32
217.147.236.164usa2georgia.self.ge:443GET /cron/car_lead.php HTTP/1.1

7-67109990/9/29985_
0.12190.00.03284.88
178.134.52.222billing.self.com.ge:443NULL

8-67128770/36/29925_
0.465550.00.14288.74
92.241.76.10billing.self.com.ge:443NULL

9-6789943/97/29734K
1.37098.01.06310.30
188.169.79.148nazilbe.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

10-6786750/646/29774_
19.806250.07.56295.39
217.147.236.164usa2georgia.self.ge:443GET /cron/pool.php HTTP/1.1

11-6723420/18/29982_
0.244510.00.07291.35
80.241.251.82spar.self.ge:443POST /api/Device/InsertDeviceData/1e6d73ab52392c1d HTTP/1.1

12-6723771/22/30101K
0.511504.10.10295.15
212.58.114.102maradiso.self.ge:443GET /status/tretiakov.n/?t=1720190178230 HTTP/1.1

13-6729010/93/30266_
4.636490.00.41302.67
217.147.236.164billing.self.com.ge:443NULL

14-67281490/182/30360_
2.89650.01.97289.99
217.147.236.164ter-askaneli.self.ge:443GET /cron/pool.php HTTP/1.1

15-6780530/669/29914_
20.95060.010.47304.38
217.147.236.164billing.self.com.ge:443NULL

16-67301210/21/29954_
0.276500.00.08300.26
217.147.236.164billing.self.com.ge:443NULL

17-67250830/31/29945_
0.366780.00.12317.13
217.147.236.164billing.self.com.ge:443NULL

18-67146210/209/29849R
6.19180.01.98295.45
146.255.232.134

19-67217760/114/29936W
1.53000.00.84286.61
217.147.236.164demo.self.ge:443GET /cron/sms.php HTTP/1.1

20-67265060/67/29900_
1.620540.00.38283.47
188.169.214.210billing.self.com.ge:443NULL

21-67318061/61/29728K
0.90053.90.58305.50
217.147.236.164communalcompany.self.ge:443GET /cron/sms.php HTTP/1.1

22-6723780/27/29745_
0.47480.00.58288.27
212.72.139.150billing.self.com.ge:443NULL

23-67110250/8/29976_
0.1161100.00.03295.94
146.255.232.134billing.self.com.ge:443NULL

24-67304260/105/29983_
1.776920.01.40322.44
217.147.236.164swefland.self.ge:443GET /cron/controllers_data.php HTTP/1.1

25-67304550/113/29886_
1.48180.00.48304.77
146.255.249.226billing.self.com.ge:443NULL

26-6792730/276/29920_
5.006560.04.01292.53
217.147.236.164billing.self.com.ge:443NULL

27-6791040/106/29835_
1.7061430.01.64313.52
217.147.236.164billing.self.com.ge:443NULL

28-67127990/462/29903_
8.715620.02.98292.47
80.241.251.210staff.self.ge:443POST /api/Chat/PoolMessages/MTMzMTU3MjI2OQ==/941309a6-dffb-4cd9

29-6793200/264/29846_
4.556460.01.49302.62
217.147.236.164billing.self.com.ge:443NULL

30-67174901/33/30013K
0.440683.90.13302.66
217.147.236.164crossroad.self.ge:443GET /cron/sms.php HTTP/1.1

31-67276770/241/29795_
7.252580.02.40301.94
80.241.251.210td.self.ge:443POST /api/Chat/PoolMessages/ODM3OTIyMjQ=/0569a083-4870-4bfd-95e

32-6724190/21/29700_
0.23140.00.43292.40
37.232.87.24alliancetbilisi.self.ge:443POST /api/Transactions/Register HTTP/1.1

33-6791060/95/29659_
1.956330.00.98286.89
217.147.236.164wvgfoundation.self.ge:443GET /cron/car_lead.php HTTP/1.1

34-67302311/147/29608K
2.131624.10.87310.84
212.72.158.94raymann.self.ge:443GET /status/01024056121/?t=1720190178882 HTTP/1.1

35-67233440/232/29947_
5.096660.03.21294.89
217.147.236.164billing.self.com.ge:443NULL

36-6791300/95/29997_
1.312740.01.99302.40
31.146.98.173billing.self.com.ge:443NULL

37-6729250/94/29737_
1.432630.01.02281.22
92.54.255.68billing.self.com.ge:443NULL

38-6724200/17/29799_
0.3961290.00.07320.30
217.147.236.164billing.self.com.ge:443NULL

39-67318680/66/29820_
0.840550.00.83307.68
37.232.125.130spar.self.ge:443POST /api/Device/InsertDeviceData/70e0acc5c961433d HTTP/1.1

40-67110260/8/30290_
0.104570.00.03303.44
188.169.116.186spar.self.ge:443POST /api/Device/InsertDeviceData/775260b73bc73d92 HTTP/1.1

41-6785640/53/29995_
0.996540.00.85314.99
217.147.236.164terminal.self.ge:443GET /cron/controllers_data.php HTTP/1.1

42-67301480/24/29921_
0.362720.00.55303.17
188.169.16.211lemeridienbatumi.self.ge:443POST /api/App/GetMenu/a55b5e30-b3d1-40b0-8672-ba041e715977/e8e9

43-67304840/103/29823_
1.55040.00.64291.71
81.16.240.38globalerty.self.ge:443POST /api/Transactions/RegisterByID HTTP/1.1

44-67175430/1/29714_
0.045920.00.00286.23
217.147.236.164billing.self.com.ge:443NULL

45-67277180/228/29855_
4.596540.02.51320.56
217.147.236.164vr.self.ge:443GET /cron/controllers_data.php HTTP/1.1

46-67251400/28/29875_
1.186920.00.89322.89
217.147.236.164billing.self.com.ge:443NULL

47-67281750/178/29872_
2.6462960.00.74310.78
217.147.236.164tsurgroup.self.ge:443GET /cron/controllers_data.php HTTP/1.1

48-67319460/61/29876_
0.814530.00.23300.96
178.134.76.246spar.self.ge:443POST /api/Device/InsertDeviceData/cdbf6271c90d01cc HTTP/1.1

49-67217770/112/30113_
1.762820.01.17298.74
5.152.102.201billing.self.com.ge:443NULL

50-6729570/95/29855_
1.386

Found on 2024-07-05 14:36

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52bb7f358f

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Thursday, 04-Jul-2024 19:27:00 +04
Restart Time: Tuesday, 02-Jul-2024 02:59:24 +04
Parent Server Config. Generation: 54
Parent Server MPM Generation: 53
Server uptime:  2 days 16 hours 27 minutes 35 seconds
Server load: 1.26 1.28 1.68
Total accesses: 24540468 - Total Traffic: 256.8 GB
CPU Usage: u3148.44 s1490.48 cu0 cs0 - 2% CPU load
106 requests/sec - 1.1 MB/second - 11.0 kB/request
83 requests currently being processed, 858 idle workers
__C____________________.______________K_KR__________________.___
______K________________._________R_______C______C_K_____________
__.KK__K_____.___________._R____.K._____K__K__K____C___________K
_____K_________K__.__.____R______KK_________._______________C_._
_____________________________K_______K_K__________.______C______
_____.____._____________________K____K__________R_______________
._K__W_____________K_____.___K__C___________K______.______.K____
_W__K___R__________K_K________C____K__________K____.___.__.____.
_.______.____._.C________C_______.__._____K__.K.___.________R__.
_.____KK______._.______________K_______..____..________._____._.
_____K_.R._._.____..__.___C.___________.._._______..____________
__K.._W.__..____.___.._.__K_..._._____K_..____K__._K____...._W_.
__.K_.__..__.__.__.._.__..._.________._._...____._________.._.__
_C_.___K_______.______._._K...____._.._..____.__K_..__________._
.__.______C.________...._..K__.__.___..__._..._..__..._K__.___.K
._...__._...._....____....._.._.._.._..__.._.....W.........._._.
_...._...__...____._._...._..___._C_...._...._._.._K___.._..___.
__....._._.___..._..._._..._......_..._........_.__.......__C_._
....._..._..K_..__.._...._......_..__..__._...._..._.._.._......
.._K_.......K_.K._...._._.____..__...______....._......___._..._
K............._._............................................._.
............................................................__..
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-53226410/62/22660_
0.851480.01.15240.11
31.146.81.94colosseummarina.self.ge:443POST /api/App/GetWorkingStatus/1a95b680-d6e2-408d-92e8-124876ff

1-53114050/105/22452_
1.9014550.00.91237.69
92.54.255.68billing.self.com.ge:443NULL

2-53274791/18/22538C
0.231504.10.14234.38
95.104.118.10billing.self.com.ge:443NULL

3-53262290/116/22408_
1.8611520.00.49242.66
5.152.119.230spar.self.ge:443POST /api/Device/InsertDeviceData/c5b70d177488fac9 HTTP/1.1

4-5311490/162/22491_
3.4842240.01.87240.49
213.131.48.238pepsi.self.ge:443POST /api/Transactions/Register HTTP/1.1

5-5332130/265/22348_
10.1411610.05.01250.01
91.151.136.84billing.self.com.ge:443NULL

6-5315490/123/22567_
1.964410.01.35224.88
141.8.208.21foodservice.self.ge:443POST /api/Device/InsertDeviceData HTTP/1.1

7-5347650/5/22352_
0.094620.00.02218.01
92.54.201.50dressup.self.ge:443POST /api/App/GetWorkingStatus/7acefe9a-7ffd-4d86-9145-d1c243ae

8-53315330/48/22403_
0.5963100.00.19226.93
31.146.234.210lopota.self.ge:443POST /api/reader/ HTTP/1.1

9-5315800/118/22112_
1.931960.01.54243.36
217.147.236.164billing.self.com.ge:443NULL

10-53226730/52/22215_
0.610540.00.20231.90
212.58.119.115billing.self.com.ge:443NULL

11-53136230/71/22372_
0.8316980.00.26225.06
217.147.236.164billing.self.com.ge:443NULL

12-53144460/28/22508_
0.4151380.00.45233.19
146.255.233.146billing.self.com.ge:443NULL

13-53315110/45/22524_
0.6815470.00.18233.24
92.51.119.218spar.self.ge:443POST /api/Device/InsertDeviceData/6e43a3684e7b7ed7 HTTP/1.1

14-53275000/15/22747_
0.193540.00.06222.22
185.201.24.27billing.self.com.ge:443NULL

15-53275010/17/22255_
0.2211560.00.52233.65
212.72.139.86billing.self.com.ge:443NULL

16-53318220/10/22324_
0.1816570.00.04227.43
178.134.178.202aversiclinic.self.ge:443POST /api/App/GetWorkingStatus/cd0bc7a5-6060-44d1-a7a0-fe4275ad

17-53318390/10/22245_
0.141450.00.11246.75
77.92.245.114spar.self.ge:443POST /api/Device/InsertDeviceData/772ea75771a54bf2 HTTP/1.1

18-53207110/91/22230_
1.428590.00.58228.85
178.134.178.202aversiclinic.self.ge:443POST /api/App/GetWorkingStatus/cd0bc7a5-6060-44d1-a7a0-fe4275ad

19-5347880/3/22366_
0.0514500.00.01219.94
94.43.114.232

20-5357030/306/22282_
7.3313510.01.73209.96
149.3.104.150spar.self.ge:443POST /api/Device/InsertDeviceData/d69aa6fa5942a68b HTTP/1.1

21-53301640/202/22041_
6.3816560.01.69229.11
188.169.178.214spar.self.ge:443POST /api/Device/InsertDeviceData/bb4a958752286841 HTTP/1.1

22-53250300/84/22058_
1.161670.00.43220.52
80.241.248.210thearthouse.self.ge:443GET /api/cards/ HTTP/1.1

23-53-0/0/22310.
0.804500.00.00219.23
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

24-5335530/40/22335_
0.527230.00.17250.35
143.198.120.174autograph.self.ge:443GET / HTTP/1.1

25-53119620/299/22278_
5.654490.04.64236.25
5.152.102.201billing.self.com.ge:443NULL

26-53114320/99/22315_
5.195530.00.98228.93
95.104.118.10billing.self.com.ge:443NULL

27-53121470/71/22250_
1.6910450.00.33236.87
141.8.208.21foodservice.self.ge:443POST /api/Device/InsertDeviceData HTTP/1.1

28-53308240/308/22189_
8.92250.02.33223.37
217.147.236.233kingpremier.self.ge:443POST /api/Transactions/RegisterByID HTTP/1.1

29-53318400/10/22180_
0.1513590.00.04240.26
188.169.87.142spar.self.ge:443POST /api/Device/InsertDeviceData/48de28a3fa3ca894 HTTP/1.1

30-5316100/105/22357_
1.811100.01.22235.24
5.152.15.45

31-5316120/112/22236_
1.7312490.00.50237.58
5.152.127.185billing.self.com.ge:443NULL

32-53153210/141/22081_
1.970580.01.27224.63
212.72.137.14spar.self.ge:443POST /api/Device/InsertDeviceData/1d7f117dfafce038 HTTP/1.1

33-5311780/148/22067_
2.48127730.01.05218.52
146.255.233.146billing.self.com.ge:443NULL

34-53144720/26/22102_
0.290470.00.18245.00
92.54.201.50billing.self.com.ge:443NULL

35-53144730/24/22283_
3.6210420.00.58223.19
188.169.123.62medi.self.ge:443GET /api/cards/ HTTP/1.1

36-53270690/242/22380_
3.351500.01.75234.75
185.81.92.30delivo.self.ge:443GET /status/01524093484/?t=1720106818522 HTTP/1.1

37-53266680/272/22186_
4.9201890.03.16216.83
178.134.79.178spar.self.ge:443POST /api/Device/GetDiffPins/ab25dcae67f4404f HTTP/1.1

38-5335711/39/22176K
0.49272.30.15252.51
92.54.201.50dressup.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

39-5377460/73/22086_
0.85141010.00.27240.03
217.147.236.164billing.self.com.ge:443NULL

40-53219851/261/22492K
8.70104.52.36223.37
93.123.17.137td.self.ge:443GET /server HTTP/1.1

41-53114330/95/22388R
7.680440.00.70243.50
5.152.102.201

42-53144950/34/22274_
0.452150.00.13238.97
91.151.136.126tsiskvili.self.ge:443POST /?option=s&service=savecelldata HTTP/1.1

43-53271570/47/22232_
0.6417890.00.19227.60
217.147.236.164billing.self.com.ge:443NULL

44-53121700/87/22040_
1.181660.00.31216.31
217.147.236.164billing.self.com.ge:443NULL

45-53182800/238/22196_
4.7716530.03.06248.07
31.146.116.42billing.self.com.ge:443NULL

46-5379260/43/22283_
0.5915570.00.16243.55
109.172.139.102billing.self.com.ge:443NULL

47-53313420/75/22168_
0.971950.00.29233.73
81.16.240.38globalerty.self.ge:443POST /api/Transactions/RegisterByID HTTP/1.1

48-5350710/350/22156_
5.504520.03.02226.01
176.221.166.30spar.self.ge:443POST /api/Device/InsertDeviceData/0617c24d3f6604b4 HTTP/1.1

49-5347890/4/22451_
0.0714480.00.01234.77
92.241.76.10billing.self.com.ge:443NULL

50-53293260/155/22268_
2.901

Found on 2024-07-04 15:26

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc522f4314cc

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Tuesday, 02-Jul-2024 13:39:52 +04
Restart Time: Tuesday, 02-Jul-2024 02:59:24 +04
Parent Server Config. Generation: 2
Parent Server MPM Generation: 1
Server uptime:  10 hours 40 minutes 28 seconds
Server load: 5.05 8.48 9.45
Total accesses: 4160531 - Total Traffic: 43.9 GB
CPU Usage: u3893.63 s1752.3 cu0 cs0 - 14.7% CPU load
108 requests/sec - 1.2 MB/second - 11.1 kB/request
164 requests currently being processed, 894 idle workers
___________._____C________________K________________.._____K__R_.
_K______K__._K_._____K____K____K_________KC_K_______KKK_______C_
_K_____________RC__K_K_R______K.__________KK______C___________W_
___K__K______________C________._K_.__.___K___.________K_______C_
__________K_K__K_K_._______KC__KK____K___C__________W_C_________
__K_____K____KR_C_________K_____K._CK__R___________________.K_K_
__C____K__.__K___WC_____K._______K______C.____K___________RK____
__KK_____K____KKK______K_.___C___._______.______R_____________._
__K__________RKK_R___C________K_______R_______________K__.______
_.______C__K.K.__K_.__K_.___._..________C__..________._.__..__._
K._K.__K_.R__.__._..__C_.__R_R___CK_.___KK_._.__K.______._______
___K.C_.___._____________.._.________.K._____.._R_______.__.____
_.K____.._._____K_C_K__K_.___C_.K___C_.___K.__._R_____.____._._K
K__R__._______..______W_._.__C____....______...C______..________
__C______RK__..C__._____W..__.___K...___._______K_________K____.
______.K_____.___._.C_._______________R_..____R_______C_KK._.___
__.___.__._C__K__._._.__K_.K___K___R_.__._____KCK__K_.___..__K_K
C___.._.._.K.._..._K____.._.__...._..___._.__....._.K.._...._...
._.._.K__..K.._.._.._..._._........_.____K_....._....___...K.___
_____...._..._.._._...._.K.K_._._..__......__..__.__..C___......
...._.__........._.__..........._..........._....._.............
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-15500/121/3764_
4.6452820.01.7237.72
109.238.230.214billing.self.com.ge:443NULL

1-187750/57/3817_
0.7591660.00.4641.18
80.241.251.210billing.self.com.ge:443NULL

2-195540/105/3716_
1.6613510.01.1638.81
94.43.132.13billing.self.com.ge:443NULL

3-1299760/28/3818_
0.4082050.00.1138.18
217.147.236.164billing.self.com.ge:443NULL

4-1210400/5/3745_
0.093490.00.0338.64
37.232.96.58spar.self.ge:443POST /api/Device/InsertDeviceData/587628bafde704eb HTTP/1.1

5-1213750/41/3786_
0.529520.00.1739.83
176.221.166.30spar.self.ge:443POST /api/Device/InsertDeviceData/0617c24d3f6604b4 HTTP/1.1

6-143490/73/3690_
1.436600.00.3036.32
149.3.18.18spar.self.ge:443POST /api/Device/InsertDeviceData/07d8a052f44704dc HTTP/1.1

7-1124680/16/3764_
0.238940.00.8137.27
178.134.161.158dressup.self.ge:443POST /api/App/GetLimits/f0e74a23-f0b2-46fd-beb9-c16c373c65ef/4e

8-1256350/39/3751_
0.537630.00.5527.29
178.134.248.254spar.self.ge:443POST /api/Device/InsertDeviceData/df387cedeefc88ff HTTP/1.1

9-1263690/163/3664_
4.553640.01.9235.87
109.172.174.221billing.self.com.ge:443NULL

10-1167510/15/3822_
0.208650.00.1944.24
178.134.161.158dressup.self.ge:443POST /api/App/GetDashboardNews/f0e74a23-f0b2-46fd-beb9-c16c373c

11-1-0/0/3781.
0.9234740.00.0033.24
178.134.216.70billing.self.com.ge:443NULL

12-154380/68/3837_
1.478570.00.3037.03
178.134.76.246spar.self.ge:443POST /api/Device/InsertDeviceData/cdbf6271c90d01cc HTTP/1.1

13-128160/156/3815_
2.551630.00.9143.65
5.178.149.186kvarelilake.self.ge:443POST /api/App/GetBirthDayList/631a51b3-e915-4937-8005-1641606c9

14-189960/291/3745_
5.25460.02.7436.55
217.147.236.164whitesails.self.ge:443GET /cron/sms.php HTTP/1.1

15-141020/204/3718_
3.441280.02.2232.46
146.255.233.22billing.self.com.ge:443NULL

16-188040/53/3732_
0.772550.00.5939.21
185.46.176.211delivo.self.ge:443GET /status/22001022585/?t=1719913189813 HTTP/1.1

17-1322941/85/3713C
2.000524.20.7336.20
213.131.33.42billing.self.com.ge:443NULL

18-189150/255/3771_
5.900550.02.5236.86
95.104.23.147idsborjomitbs.self.ge:443GET /api/cards/ HTTP/1.1

19-1315180/837/3827_
22.9510570.07.1740.21
37.232.90.130billing.self.com.ge:443NULL

20-1132880/190/3777_
2.677550.02.6738.25
178.134.200.122spar.self.ge:443POST /api/Device/InsertDeviceData/bb6836d5d15c067b HTTP/1.1

21-119620/27/3704_
0.354110.00.1138.22
178.134.199.254billing.self.com.ge:443NULL

22-1153070/357/3699_
6.027460.03.9640.72
80.241.251.210staff.self.ge:443POST /api/Chat/PoolMessages/ODM3OTIyMjQ=/7d900e71-d758-428d-8c5

23-189160/244/3700_
7.18360.04.4835.75
92.241.83.186superstore.self.ge:443POST /api/App/GetLogo/de1c154d-258c-49b5-bacc-2a5861fb581e/886e

24-1236600/110/3854_
2.435640.01.3541.44
212.72.147.242billing.self.com.ge:443NULL

25-188050/67/3757_
0.878560.00.4238.21
80.241.251.210staff.self.ge:443POST /api/Chat/PoolMessages/MzAzODQ3ODc5Ng==/62e16228-8b55-421b

26-1191350/263/3676_
5.120630.04.9037.06
212.72.147.242billing.self.com.ge:443NULL

27-135320/288/3800_
4.883550.04.6937.93
92.51.95.114

28-1103450/668/3695_
12.82990.06.2833.17
178.134.161.158dressup.self.ge:443POST /api/App/GetLogo/f0e74a23-f0b2-46fd-beb9-c16c373c65ef/f2bd

29-15880/128/3771_
2.37460.04.0849.72
217.147.236.164wyndham.self.ge:443GET /cron/sms.php HTTP/1.1

30-1221740/124/3908_
1.846520.00.6940.00
213.131.33.78billing.self.com.ge:443NULL

31-134580/228/3759_
5.01450.03.1038.44
217.147.236.164billing.self.com.ge:443NULL

32-1178510/154/3673_
2.3611840.01.6632.46
212.72.153.85billing.self.com.ge:443NULL

33-1167090/56/3756_
0.774210.00.6541.53
185.115.4.93wishlist.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

34-188501/58/3735K
0.761632.70.5936.57
92.241.76.10lazikacapital.self.ge:443GET /status/39001044550/?t=1719913191702 HTTP/1.1

35-1265730/133/3792_
3.59470.01.4140.04
217.147.236.164tskaltuboplaza.self.ge:443GET /cron/sms.php HTTP/1.1

36-1214060/44/3660_
1.175820.00.8034.66
87.253.46.230billing.self.com.ge:443NULL

37-1184190/91/3665_
1.640600.00.9134.55
5.178.149.186kvarelilake.self.ge:443POST /api/App/GetServerDateTime/631a51b3-e915-4937-8005-1641606

38-1184600/98/3728_
2.0411510.02.0942.57
80.241.251.210staff.self.ge:443POST /api/Chat/PoolMessages/MTE2MjE0MTEzNQ==/06fae58d-614d-47ec

39-1271200/300/3819_
9.718700.03.5542.76
95.137.211.244billing.self.com.ge:443NULL

40-143910/58/3731_
1.5810610.00.2337.50
188.169.214.210billing.self.com.ge:443NULL

41-1271210/288/3718_
10.21870.02.9337.14
217.147.236.164billing.self.com.ge:443NULL

42-1256810/41/3806_
0.7841270.00.8738.42
217.147.236.164billing.self.com.ge:443NULL

43-1167100/84/3740_
1.674500.01.0238.44
185.49.166.250billing.self.com.ge:443NULL

44-1300110/46/3719_
0.90380.02.3237.17
92.51.95.114billing.self.com.ge:443NULL

45-1214070/41/3742_
0.618500.00.1640.06
80.241.251.210td.self.ge:443POST /api/Chat/PoolMessages/MzU3MTE5MTkxMQ==/9956a5fe-e065-45f0

46-150130/106/3750_
1.76134640.01.6039.18
109.238.232.138billing.self.com.ge:443NULL

47-188510/57/3719_
0.9510960.00.8032.80
92.241.76.10billing.self.com.ge:443NULL

48-1320040/426/3752_
8.867460.09.5241.81
109.238.225.246medi.self.ge:443POST /api/reader/ HTTP/1.1

49-196190/95/3696_
4.90450.00.4335.49
217.147.236.164billing.self.com.ge:443NULL

50-1228300/171/3741_
6.17101900.01.4138.72
217.147.236.164billi

Found on 2024-07-02 09:39

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc522a278616

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Sunday, 30-Jun-2024 16:06:08 +04
Restart Time: Friday, 31-May-2024 18:04:15 +04
Parent Server Config. Generation: 899
Parent Server MPM Generation: 898
Server uptime:  29 days 22 hours 1 minute 52 seconds
Server load: 2.04 4.32 3.62
Total accesses: 239785786 - Total Traffic: 2198.7 GB
CPU Usage: u3227.37 s1561.35 cu0 cs0 - .185% CPU load
92.8 requests/sec - 0.9 MB/second - 9.6 kB/request
1100 requests currently being processed, 8 idle workers
KKKCKKKKCKC_KCCKCKKWKCCKKKKKCKCCWCKCKKKCKCRCCKKRKCCCCCCKKKCCCCKK
CKCCCKCCKWKKCKKCCKCCKWCKCCKCKCKCCCKKKCK_RWKCKCKKWRCWWCCKKKKKRCCC
CKKCKKKCKCKKCCCKWCCCKKCCKCCCKCCKKKKRRWCKCCKKRCKKWWKKKCKKCKKCCCCK
KKCCCRRCWWKCWCKKKCKKKKKCCCWCWKKCWKKKKWKRKCCKCCKCKKKKKCKKCCKKKKKK
KWCKRKCKCKKCCKKKKKKKCKKKKKCCKKCKCWKKKCCKCRCCCKKKKCKKCKCKCRCKCCRK
KRKCCKCCKKKKRCKCRCCKRKCKKRKKKKKCCWKCKKKCKCKKKKKCCCKCKCCCCCKKCKCC
KKKKCCCCKKCCKKCKW_WKRKKCKKCKKCCRKKKCKKCCRCKKKCKKKKKKCKRCKKCKKWCW
KK.CKKCCC.CKKCCWKKKC.WCCKRCRKCKKCKK.WWCKCKCKCRC.KWKCKKKCK.KKKK.K
KKCCKKKW.KKKKCCCCWCKCKKK.WKKKCRKCCKC.CKCRKKCCKKCKKCCKKKKKC.KCKC.
_RRKKKKWCKKW.KWKKKKKKCKKCK.WCKCCCCCWKCKKRKCKKCKKKKKKKKK.KCWCKKKC
KKKC.C.CCCCCCKKCKCK.CCCCCKKKWCKKCCK.KC.CKKCKKKKKKCCK.KCKCRKKKCKK
WCCKCCKKCCCCKKKCCKCKKRKCWKKKCCKKKKCKCKKCCKRWKRKKCCCKKCKWRRKCKK.C
WKCKCKKRKKKKCKCKCCCCCCCCRCC_KRKKC.KCCCCCKKCKCKCCKCKRKC.KKKKKKRKK
KKCK..KCCKKCKCKWWKKKKKWKCKKKWKKCCCKCKK_KKCKC.KKKCCCKCCKCCCKCRWKK
KKCC.CRCC.CCKWCCCCCKKCKKCKKKKKCRCCCKKKCRCKWCCKK.WKK..KCCKR.KRCKC
RCC.KKC.W.CK._..KCR.CK.C.CRKCKW.C.C.KKKKKK.CKCK.CKWCKKKC.C..CKCK
CCK...CKKWKKCCKK.K.....C..KKK.CCC.KKK.KKCKKKKKKCCCK.CKKC.KCWKKCC
C.C.K.CCK..KK.C..C.KR.KKCKCW.C.K.CCWKCKKKC.CCKC.KCCKC.KKCKK..KK.
WK.KCKKC.WC.CCC_CKCKC.C.KCCKKCKKKCKC..KKC.K.KKC.KK..C...........
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-89898661/73/236098K
0.92193.91.532116.56
217.147.236.164kenari.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

1-8987041/37/235409K
0.540123.90.532144.54
217.147.236.164mgroup.self.ge:443GET /cron/car_lead.php HTTP/1.1

2-898264061/145/236272K
8.1203203.90.912182.51
217.147.236.164meama.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

3-898149891/213/234992C
3.3811263.92.602100.63
217.147.236.164billing.self.com.ge:443NULL

4-898266511/50/235568K
0.69063.90.552108.36
217.147.236.164mn.self.ge:443GET /cron/car_lead.php HTTP/1.1

5-898273521/100/235063K
1.72293.91.562169.19
217.147.236.164ibp.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

6-898229551/6/234791K
0.09073.90.022095.62
217.147.236.164lazikacapital.self.ge:443GET /cron/pool.php HTTP/1.1

7-898298191/38/234845K
0.510333.90.152169.52
217.147.236.164nikora.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

8-898300061/297/234794C
8.041233.92.392154.72
217.147.236.164billing.self.com.ge:443NULL

9-898231881/155/234464K
2.600103.92.402152.01
217.147.236.164mersinturizmi.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

10-898197991/12/234804C
0.16193.90.042176.12
217.147.236.164billing.self.com.ge:443NULL

11-898198090/9/234035_
0.130250.00.032078.63
217.147.236.164billing.self.com.ge:443NULL

12-898122211/114/233919K
1.8102993.91.412116.80
217.147.236.164alliancetbilisi.self.ge:443GET /cron/sms.php HTTP/1.1

13-898264141/138/234125C
5.301633.91.022086.53
217.147.236.164billing.self.com.ge:443NULL

14-898229711/6/234248C
0.09063.90.022125.95
217.147.236.164billing.self.com.ge:443NULL

15-89866201/84/234944K
2.500123.91.632147.61
217.147.236.164mn.self.ge:443GET /cron/pool.php HTTP/1.1

16-89883281/227/233836C
3.911703.91.682090.26
217.147.236.164billing.self.com.ge:443NULL

17-898201191/59/233236K
7.782503.90.932099.89
217.147.236.164geojuice.self.ge:443GET /cron/controllers_data.php HTTP/1.1

18-898229721/6/234294K
0.100213.90.022172.24
217.147.236.164leadercredit.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

19-89824010/120/233613W
1.746600.00.532152.88
217.147.236.164sss.self.ge:443GET /cronjob/RunDBJob.php HTTP/1.1

20-89898801/77/233505K
1.410113.91.082104.81
217.147.236.164kingpremier.self.ge:443GET /cron/pool.php HTTP/1.1

21-898161541/63/233465C
0.871273.90.262100.90
217.147.236.164billing.self.com.ge:443NULL

22-898210641/152/232868C
2.421543.90.612149.70
217.147.236.164billing.self.com.ge:443NULL

23-898242271/530/232737K
8.070103.92.952158.37
217.147.236.164jibe.self.ge:443GET /cron/pool.php HTTP/1.1

24-89824981/185/232148K
7.35073.90.972077.53
217.147.236.164liderfood.self.ge:443GET /cron/car_lead.php HTTP/1.1

25-898314551/133/232652K
2.21083.90.512092.46
217.147.236.164medulla.self.ge:443GET /cron/car_lead.php HTTP/1.1

26-89858641/135/232692K
5.65083.90.592065.69
217.147.236.164lsg.self.ge:443GET /cron/car_lead.php HTTP/1.1

27-898232011/148/232960K
7.14063.92.192129.25
217.147.236.164legi.self.ge:443GET /cron/pool.php HTTP/1.1

28-89856571/183/232481C
2.801113.92.072042.56
217.147.236.164billing.self.com.ge:443NULL

29-8981564310/285/232639K
5.2518661.71.912103.77
146.255.233.146metro360.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

30-898305761/91/232121C
1.321243.91.302061.07
217.147.236.164billing.self.com.ge:443NULL

31-898324101/126/232635C
2.0911153.90.892118.55
217.147.236.164billing.self.com.ge:443NULL

32-898132730/173/232655W
4.11000.01.832134.59
217.147.236.164emotors.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

33-898124141/266/232645C
12.151883.94.022128.68
217.147.236.164billing.self.com.ge:443NULL

34-898130521/86/232006K
1.710153.90.312079.66
217.147.236.164liderfood.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

35-898198101/10/232506C
0.15163.90.142129.90
217.147.236.164billing.self.com.ge:443NULL

36-898132821/162/231664K
2.91063.91.022075.83
217.147.236.164marlo.self.ge:443GET /cron/car_lead.php HTTP/1.1

37-89883651/217/232152K
4.540103.93.062139.24
217.147.236.164kraken.self.ge:443GET /cron/pool.php HTTP/1.1

38-898161981/60/232091K
0.910173.90.792122.71
217.147.236.164letre.self.ge:443GET /cron/pool.php HTTP/1.1

39-89883661/218/232623C
9.681193.92.052089.99
217.147.236.164billing.self.com.ge:443NULL

40-898130631/79/232195K
1.540423.90.982153.49
217.147.236.164mpbiograpi.self.ge:443GET /cron/pool.php HTTP/1.1

41-898268571/1/232912C
0.010143.90.002106.81
217.147.236.164billing.self.com.ge:443NULL

42-898314790/139/231652R
3.461140.00.642065.01
31.146.118.170

43-898266661/46/231593C
0.621553.90.562076.07
217.147.236.164billing.self.com.ge:443NULL

44-89824361/121/231900C
1.7811403.90.472098.07
217.147.236.164billing.self.com.ge:443NULL

45-898268551/408/232277K
11.020113.93.142114.45
217.147.236.164liderfood.self.ge:443GET /cron/pool.php HTTP/1.1

46-898166681/16/232693K
0.19153.90.062154.04
217.147.236.164ipkli.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

47-898235180/51/232102R
0.94070.00.202108.03
217.147.236.164

48-89898941/75/231736K
1.7401574.30.702097.24
31.146.98.173air.self.ge:443GET /status/01005004705/?t=1719749397207 HTTP/1.1

49-898166891/166/231623

Found on 2024-06-30 12:05

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52fa84b1d3

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Friday, 28-Jun-2024 12:40:17 +04
Restart Time: Friday, 31-May-2024 18:04:15 +04
Parent Server Config. Generation: 884
Parent Server MPM Generation: 883
Server uptime:  27 days 18 hours 36 minutes 1 second
Server load: 21.44 14.17 12.32
Total accesses: 223218846 - Total Traffic: 2069.3 GB
CPU Usage: u3847.51 s1907.24 cu0 cs0 - .24% CPU load
93 requests/sec - 0.9 MB/second - 9.7 kB/request
415 requests currently being processed, 769 idle workers
RK_____K_CK___K_CKKCK____C_C______CC__CKK__C__CC_____KK__KR___KC
RR_K_____K_RK____K__K___R__K____R__C__K__K____R_KR_K_______C__KK
__C_C__R__KK___C____K__KC_C___K_C_K_CK_____KK___KK_R___K_C_K_RWW
C__CCC__CKKK_____R_K____C_R_K__K___C_K_RK__RK_W_____KK_KWCC__K_W
__R_C___R____C___K_K_C__CR_____C_K_R____CW_KK____________K__R___
KK_K___________KK______C__KC_CR__K_K_______KKKKC__R_________KR_K
KRK_R_K_RKK_C_________KK_K.C______KKRC___C____KK__W_______CK__K_
_K_K__C___RKCK___R________KK_____C_R_C_K____KC___R__KK_R___CR___
__C____KKC__CC__K_______CR___K_K_C_C_K___CRC_CKC___C____KK__C___
_K._____.__K___._KCK__.____R._R___.KKCRK_C.__K___K_.__.___K_____
....C_C_K_R.K..RR___KKK_KK____KW_..___K.C_.KK_K._..__C____KK__K_
.__R_._____.K.R_.____K_K_R_.KK__CKK__..WKK_CWK_KK.CK_K___.._R_K_
K___K.______.__.K.___._.__C_.KR________.K___.R____KK_KKK___K____
_..CR_K.R___._C__..K_.__.____C.__K______C_____R_KCKK..._K___K___
_._K_.__.___C_.___C__C._.___K_____C.K.K.K.K__.____C_._K_._._..__
.._R____K__.____..K.K_KK_.K_CK_K__._____CKKK__._C_________K__KK_
__KC___.___K__KC_W_.W__.__KK_.._.K._C.._K_C.K___K_K________._.__
__K.____CK._KK_.___.____K__K____.KKK___C._WRK__.CK._CK.__C_K..._
K..__._K_WR_KKKC___KR__.__K______RK_KCK_______KK.___C.._R_K__.K.
.._.R_.__.___.K_.K___K.___.___.__.K.____C_..K_C.._.._K_CRKK_____
__.___________CKC._._......._..C...__.._._......_........K......
....................KK._......._.._..K_..........._......_...K..
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-883120630/145/219944R
2.2184560.02.371987.18
178.134.43.146

1-883210811/17/219188K
0.262153.90.072012.49
217.147.236.164batumimall.self.ge:443GET /cron/bulletin_alerts.php HTTP/1.1

2-883121030/141/219910_
2.5721570.00.892037.18
217.147.236.164tskaltuboplaza.self.ge:443GET /cron/Consulting.php HTTP/1.1

3-883135120/78/218788_
1.4021330.00.861975.11
217.147.236.164zoo.self.ge:443GET /cron/Consulting.php HTTP/1.1

4-883267100/232/219182_
10.452129210.01.351975.19
217.147.236.164sss.self.ge:443GET /cronjob/controllers_data.php HTTP/1.1

5-883100010/87/218868_
1.982860.00.932047.50
217.147.236.164se.self.ge:443GET /cron/Consulting.php HTTP/1.1

6-88318660/41/218555_
0.672860.00.161972.62
217.147.236.164spt.self.ge:443GET /cron/Consulting.php HTTP/1.1

7-883100291/82/218800K
8.6312695.90.482034.95
212.72.147.242geocredit.self.ge:443GET /status/28001081994/?t=1719564015335 HTTP/1.1

8-883211090/19/218661_
0.252470.00.112027.10
217.147.236.164ter-askaneli.self.ge:443GET /cron/poolDevice.php HTTP/1.1

9-88326621/287/218345C
6.110243.91.862017.30
217.147.236.164billing.self.com.ge:443NULL

10-883234401/298/218478K
27.19153.92.952027.98
217.147.236.164cito.self.ge:443GET /cron/bulletin_alerts.php HTTP/1.1

11-883211100/21/217892_
0.3221280.00.601957.54
217.147.236.164trd.self.ge:443GET /cron/controllers_data.php HTTP/1.1

12-883311510/2/217771_
0.02250.00.011987.05
217.147.236.164billing.self.com.ge:443NULL

13-883114930/326/218065_
7.540650.02.821965.95
217.147.236.164billing.self.com.ge:443NULL

14-88384061/142/218136K
2.38283.91.711995.82
212.72.147.226dressup.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

15-883211500/21/218685_
0.462440.00.082013.76
217.147.236.164veziri.self.ge:443GET /cron/poolDevice.php HTTP/1.1

16-883277791/7/217617C
0.1612292.60.031966.22
178.134.146.186billing.self.com.ge:443NULL

17-883211511/19/217016K
0.29053.90.071975.99
217.147.236.164coffeelab.self.ge:443GET /cron/bulletin_alerts.php HTTP/1.1

18-883310111/99/218052K
4.05082.90.732037.01
185.70.53.241bellemaison.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

19-88352391/43/217530C
0.7401993.90.252030.09
217.147.236.164billing.self.com.ge:443NULL

20-88392671/193/217324K
3.36063.91.581973.89
217.147.236.164citygarage.self.ge:443GET /cron/contractsalerts.php HTTP/1.1

21-883126380/279/217205_
8.810440.03.201972.75
94.43.40.52billing.self.com.ge:443NULL

22-883121390/28/216759_
0.5221690.00.112023.96
217.147.236.164stadiumhotel.self.ge:443GET /cron/controllers_data.php HTTP/1.1

23-883211520/15/216583_
0.21190.00.062029.45
109.238.230.214billing.self.com.ge:443NULL

24-883100300/106/215965_
1.94090.00.351947.45
217.147.236.164billing.self.com.ge:443NULL

25-88319051/42/216434C
0.5312044.10.171961.41
212.72.158.94billing.self.com.ge:443NULL

26-883258660/199/216572_
7.33180.01.371944.65
31.146.88.122billing.self.com.ge:443NULL

27-883315156/147/216762C
5.50023214.10.921999.16
45.9.46.102billing.self.com.ge:443NULL

28-883189040/116/216543_
5.32250.00.871918.47
217.147.236.164billing.self.com.ge:443NULL

29-88352760/43/216587_
0.740630.00.571987.64
5.152.102.201billing.self.com.ge:443NULL

30-883291820/152/215822_
2.620250.02.011934.76
217.147.236.164billing.self.com.ge:443NULL

31-883202990/63/216472_
1.15270.00.251990.87
217.147.236.164wendys.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

32-883211530/17/216449_
0.362860.00.062006.36
91.184.123.130miniso.self.ge:443POST /api/App/GetWorkingStatus/64c0ff29-3a18-428f-b218-47ca8e23

33-883244160/13/216539_
0.312920.00.051991.48
217.147.236.164yasageorgia.self.ge:443GET /cron/controllers_data.php HTTP/1.1

34-883304071/241/215923C
5.580793.91.361959.13
217.147.236.164billing.self.com.ge:443NULL

35-883168581/71/216411C
5.090183.91.392005.77
217.147.236.164billing.self.com.ge:443NULL

36-883308990/361/215654_
18.15080.05.101951.05
217.147.236.164billing.self.com.ge:443NULL

37-883135380/74/215907_
4.7321270.01.642006.23
217.147.236.164westinvest.self.ge:443GET /cron/poolDevice.php HTTP/1.1

38-883259152/217/215918C
3.651278.02.181997.85
185.49.166.250billing.self.com.ge:443NULL

39-88319371/50/216405K
0.85153.90.841963.63
217.147.236.164becra.self.ge:443GET /cron/sms.php HTTP/1.1

40-883168361/67/216194K
1.290103.90.732030.72
92.51.95.114magniti.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

41-883239860/107/216786_
1.892780.00.831973.23
217.147.236.164x2.self.ge:443GET /cron/poolDevice.php HTTP/1.1

42-883156440/219/215643_
8.7621120.03.341941.72
217.147.236.164vakomotors.self.ge:443GET /cron/controllers_data.php HTTP/1.1

43-883135401/78/215447C
5.14163.90.741946.76
217.147.236.164billing.self.com.ge:443NULL

44-883100810/90/215875_
1.44260.00.641971.12
217.147.236.164billing.self.com.ge:443NULL

45-883305540/53/216159_
0.73060.00.621995.18
217.147.236.164billing.self.com.ge:443NULL

46-88319382/47/216503C
0.8201478.20.372020.87
37.232.43.150billing.self.com.ge:443NULL

47-883278181/8/215989C
0.1201994.10.041972.45
149.3.101.179billing.self.com.ge:443NULL

48-883121720/28/215633_
0.4921810.00.131966.84
217.147.236.164msholding.self.ge:443GET /cron/Consulting.php HTTP/1.1

49-883189320/116/215457_
2.4321480.01.321985.27
217.147.236.164ska.self.ge:443GET

Found on 2024-06-28 08:40

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc5293456f2a

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Wednesday, 26-Jun-2024 15:36:40 +04
Restart Time: Friday, 31-May-2024 18:04:15 +04
Parent Server Config. Generation: 855
Parent Server MPM Generation: 854
Server uptime:  25 days 21 hours 32 minutes 25 seconds
Server load: 2.17 2.51 2.86
Total accesses: 207159214 - Total Traffic: 1922.6 GB
CPU Usage: u4199.19 s1943.34 cu0 cs0 - .275% CPU load
92.6 requests/sec - 0.9 MB/second - 9.7 kB/request
240 requests currently being processed, 825 idle workers
K__K___.__K___KKK______________.___K_K____.___K_KK___K_R___K.R_C
___K______K_____________KC_K__C_K____KK.___C_____________W.___K_
__K______KC_K__K__K__C___C____________K_____C_K_K__CCK_____K____
______C____________C___C___C_K______K_CK____.K_._._____CK____KK_
.___K_________C___RK_C_K_C___W__KK_R_____K_____C___._K____KC_K__
___K_K__K________K_________K_C_C___________K__KC_____K_K__C____.
__K________K_______K_____R_.____.._.____KK____KKK_____K_K_____K_
_KKR___._K__R_____.___C._C__K____.____K_______RC___C_C_._______K
___.___CK__C_____K______._R_____C_C__K______W__________K________
_____C___K__KK___CCK____.K____K_C________.R__C_KK______KK___C___
__K___________.___KK__K______CK___K__CCC___.___K_____.._________
_WC___RK_._K_______K_K._____________C_C_._C_____C__K_____K___C._
._K.__K__R.K____K__C___CCK_KK____C.._C_C_CK___RWK_CW__K___.____K
_._K_R___C.__.__K_____K__RK__K____C_______________________C___C_
_K___R___C_____._______.K__.____R__C___.._C__.C.__K_K__._._...__
CK_R___..C...__.__CK__C_______.K____.C_._____________.____.____C
R_K____C_.K.__._._..K._.__W._._C__..K_K_..__K__.___.K___K______K
C_...___...___.__._.R_......_._...K._.........____.._....__..._.
__K._._.__._..._._.._..__._.___.___...C.._....._..._..CK_..._...
_..K._................._......................_.................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-854237391/88/204551K
1.66173.83.391852.37
217.147.236.164newlight.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

1-854229060/143/204089_
11.991090.03.251886.42
5.152.102.201leadercredit.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

2-854120240/273/204655_
7.147750.03.681899.94
185.70.53.238magniti.self.ge:443POST /api/App/GetMenu/fee75ad7-c2de-465d-9cfc-0b75297bc4ad/4e42

3-854173981/100/203650K
1.52163.91.361849.08
217.147.236.164tiflispalace.self.ge:443GET /cron/sms.php HTTP/1.1

4-85421560/129/203903_
1.645460.02.091843.78
109.172.174.221billing.self.com.ge:443NULL

5-854309080/125/203492_
1.877480.01.581909.87
31.146.169.120enterprise.self.ge:443GET /api/cards/ HTTP/1.1

6-85429490/611/203154_
19.678620.06.741830.46
185.70.53.136embawood.self.ge:443POST /api/App/GetWorkingStatus/6fc93e0b-f7c7-4e57-b9d0-4ab9827f

7-854-0/0/203408.
3.47300.00.001888.04
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

8-854117280/50/203496_
0.697510.00.271896.51
178.134.248.234billing.self.com.ge:443NULL

9-85451420/60/203201_
0.910590.00.671891.87
5.152.15.45

10-854324531/305/203266K
5.432133.92.101896.48
217.147.236.164swefland.self.ge:443GET /cron/sms.php HTTP/1.1

11-85453520/137/202843_
1.848920.04.741822.56
109.172.176.2bga.self.ge:443POST /api/Transactions/Register HTTP/1.1

12-854268800/74/202636_
1.5110570.00.401856.41
178.134.69.146spar.self.ge:443POST /api/Device/InsertDeviceData/e9151e454907cb46 HTTP/1.1

13-85484860/58/202838_
0.755650.00.431829.43
5.152.102.201billing.self.com.ge:443NULL

14-854135761/553/202969K
12.06292.94.361864.60
91.151.136.172embawood.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

15-854269601/88/203343K
1.512582.60.991881.86
212.72.147.242geocredit.self.ge:443GET /status/28001006261/?t=1719401798587 HTTP/1.1

16-85485601/113/202427K
10.231564.12.031837.02
146.255.233.146metro360.self.ge:443GET /status/61009029896/?t=1719400919700 HTTP/1.1

17-85485250/59/201705_
0.857520.01.071843.42
94.43.60.203billing.self.com.ge:443NULL

18-854125980/210/202895_
4.05990.03.391880.83
5.178.149.119billing.self.com.ge:443NULL

19-85484670/227/202298_
7.221510.03.051886.37
94.43.142.210spar.self.ge:443POST /api/Device/InsertDeviceData/3fef12016107128f HTTP/1.1

20-854174340/87/202241_
1.41950.00.401828.13
217.147.236.164billing.self.com.ge:443NULL

21-854229350/136/202032_
2.4872560.02.021838.10
185.70.53.238magniti.self.ge:443POST /api/App/GetWorkingStatus/fee75ad7-c2de-465d-9cfc-0b75297b

22-854315220/18/201624_
0.281020.00.121881.95
141.8.208.20spar.self.ge:443GET /buffer/tmp/spar/APPImages/spar%20-%2054290%20-%202024-06-2

23-854290380/240/201596_
10.247770.02.731865.38
92.51.95.114magniti.self.ge:443GET /status/60001157820/?t=1719401656251 HTTP/1.1

24-854196360/140/200778_
2.164620.00.691828.58
178.134.198.54billing.self.com.ge:443NULL

25-854197390/151/201232_
2.439560.02.071823.25
92.241.76.10billing.self.com.ge:443NULL

26-854160810/219/201427_
3.65290.02.041811.55
31.146.118.170dressup.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

27-854206060/89/201527_
1.43610410.00.981864.77
217.147.236.164billing.self.com.ge:443NULL

28-85425110/13/201330_
0.2772430.00.061791.10
185.70.53.238magniti.self.ge:443POST /api/App/GetLimits/fee75ad7-c2de-465d-9cfc-0b75297bc4ad/9d

29-854266030/206/201394_
8.07350.02.901851.95
217.147.236.164billing.self.com.ge:443NULL

30-854309650/136/200827_
2.31030.01.431802.12
188.129.182.118billing.self.com.ge:443NULL

31-854-0/0/201277.
13.612400.00.001853.10
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

32-854290720/261/201344_
12.811570.02.811871.95
212.72.131.254billing.self.com.ge:443NULL

33-85453860/114/201334_
2.5210610.01.351850.23
31.146.176.114tolia.self.ge:443POST /api/App/GetWorkingStatus/d9155eb0-f7e2-4e8f-bbf5-ff05cd07

34-854238200/100/200558_
1.832570.01.521825.20
80.241.251.210testing.self.ge:443POST /api/Chat/PoolMessages/ODM3OTIyMjQ=/e26eb9d2-46ba-4ea5-8cd

35-854206301/98/201352K
1.772534.30.631870.05
212.72.149.18newlight.self.ge:443GET /status/61001035193/?t=1719401705416 HTTP/1.1

36-85414670/470/200598_
13.5471580.03.101810.65
217.147.236.164billing.self.com.ge:443NULL

37-854249085/89/200744K
1.55210604.00.921868.28
178.134.178.202aversiclinic.self.ge:443GET /buffer/tmp/aversiclinic/RenderPhoto/708-user_photo_3980.pn

38-854238210/86/200754_
2.1511680.00.931863.32
92.51.95.114billing.self.com.ge:443NULL

39-854269610/88/201185_
6.842570.00.641837.90
185.81.93.154billing.self.com.ge:443NULL

40-854315630/16/200963_
0.244120.00.091890.77
109.238.237.82billing.self.com.ge:443NULL

41-854160820/217/201524_
3.564100.01.301839.61
93.177.143.87billing.self.com.ge:443NULL

42-854-0/0/200489.
1.71100.00.001809.46
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

43-85454200/112/200239_
1.672590.00.901807.43
5.152.15.45bs.self.ge:443POST /api/App/GetWorkingStatus/1a9f5dcb-6f99-470d-aa32-aa9d0ea5

44-854261870/144/200798_
7.590730.02.491841.42
31.146.3.30billing.self.com.ge:443NULL

45-854216110/36/200952_
0.691260.01.361860.08
188.169.162.133curatio.self.ge:443GET /?ref=LogOut HTTP/1.1

46-85485261/53/201291K
0.65253.90.221877.27
217.147.236.164superstore.self.ge:443GET /cron/sms.php HTTP/1.1

47-854301290/72/200939_
1.243490.01.031844.89
185.46.176.211billing.self.com.ge:443NULL

48-854197662/154/200617K
2.34284.73.021833.86
185.70.53.136embawood.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

49-854

Found on 2024-06-26 11:36

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52f05dc916

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Saturday, 22-Jun-2024 14:31:21 +04
Restart Time: Friday, 31-May-2024 18:04:15 +04
Parent Server Config. Generation: 779
Parent Server MPM Generation: 778
Server uptime:  21 days 20 hours 27 minutes 6 seconds
Server load: 1.14 0.91 1.29
Total accesses: 174482532 - Total Traffic: 1623.3 GB
CPU Usage: u3127.35 s1469.77 cu0 cs0 - .243% CPU load
92.4 requests/sec - 0.9 MB/second - 9.8 kB/request
196 requests currently being processed, 890 idle workers
______K____K___K__K__KK_R_K__________K______________K___________
K_R_______K________WK____C_______C_____K___CK___._C_C____CC___K_
CK_K______________________CK_______KK_C________C____W_________KC
______KW___C___K______WC__K______________K_K_K_________.W__C____
____K_______K_R__K______K__________________K___C_____C__C_K_____
__KC___C_____K_K__C__WK_____R__________K_C____K____.____________
_______________K___C___K____R_______C_____C_._____C_C_K_______WK
KCC______K____CK_K__K_CK_____K___________CC_K___C_______________
_C_R___C______W__R______R____R_____KK__________K__K____K___.____
_____KK__C__.___C__K_K_.C__R______K__CCC_______.____._____C___C.
_CK_______________KK_______C_______________.__C____.___R____CK__
__._________________.________C______K_.___KK_C___K___C_C.______.
_.___K_.K__.__K_________K________.____R_C__W_._C________K_______
K_________________.C__K_.___________C____._K_______.______K__C__
KKK_______K_W___.._____.__C_________C_._______WK____._______K_K_
_C___K_____C__________KK________C__K______C_KR__________________
______________C__K_______K___.KK________C_______.C._......K.._..
................_._....R........._....._...K........_.C....._C..
....._..R........K.__K._..C._........_._._....._....._._.R......
..._.C........_........_.........._.....__...__.._.....K...._...
.__......__.....................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-778321400/16/172387_
0.237880.00.061554.39
85.114.239.233tzd.self.ge:443POST /api/App/GetDashboardNews/f48ebee2-9f44-40f8-adf9-cc0de65a

1-77842810/194/171836_
2.74060.03.531565.81
217.147.236.164billing.self.com.ge:443NULL

2-778290420/19/172424_
0.254810.00.151594.99
178.134.71.218billing.self.com.ge:443NULL

3-778290540/17/171636_
0.257790.00.191573.43
217.147.236.164billing.self.com.ge:443NULL

4-778195780/77/171954_
0.917430.00.321562.94
217.147.236.164pirveli.self.ge:443GET /cron/controllers_data.php HTTP/1.1

5-778321650/12/171581_
0.175500.00.051620.98
87.253.38.177billing.self.com.ge:443NULL

6-778111871/107/171198K
10.1911324.41.591546.25
217.147.236.164dgholding.self.ge:443GET /cron/sms.php HTTP/1.1

7-77848110/105/171345_
5.0781060.03.191595.18
217.147.236.164billing.self.com.ge:443NULL

8-77881280/139/171545_
2.211740.01.541623.22
92.241.69.54billing.self.com.ge:443NULL

9-778150340/34/171203_
0.466110.00.221588.23
185.70.52.129kirurgia.self.ge:443POST /api/App/Initialization/6c3f06fe-aa69-4b4a-95ba-abe10dac96

10-77842820/183/171459_
6.357510.02.361626.94
217.147.236.164spacecargo.self.ge:443GET /cron/controllers_data.php HTTP/1.1

11-778113631/128/170799K
1.712634.10.841531.00
95.137.211.244medcapital.self.ge:443GET /status/01019007743/?t=1719052279437 HTTP/1.1

12-77898990/2/170861_
0.037530.00.011569.03
217.147.236.164billing.self.com.ge:443NULL

13-778257550/254/170797_
10.877500.04.881545.85
217.147.236.164ska.self.ge:443GET /cron/controllers_data.php HTTP/1.1

14-778113810/138/170999_
2.14870.02.311579.52
217.147.236.164yorkholding.self.ge:443GET /cron/pool.php HTTP/1.1

15-778321661/15/171269K
0.20063.90.061582.87
217.147.236.164energony.self.ge:443GET /cron/sms.php HTTP/1.1

16-778224050/24/170606_
0.327580.00.111546.43
217.147.236.164tiflispalace.self.ge:443GET /cron/controllers_data.php HTTP/1.1

17-778292760/59/169980_
0.75470.01.081564.74
212.72.144.110billing.self.com.ge:443NULL

18-77853001/53/171155K
0.67053.90.291582.94
217.147.236.164element.self.ge:443GET /cron/sms.php HTTP/1.1

19-778184170/129/170467_
1.588730.01.201601.51
217.147.236.164billing.self.com.ge:443NULL

20-778324630/67/170558_
0.88890.00.991568.82
217.147.236.164billing.self.com.ge:443NULL

21-778222861/113/170258K
1.98153.90.601556.07
217.147.236.164demo.self.ge:443GET /cron/sms.php HTTP/1.1

22-778223031/125/169908K
1.75243.91.361609.94
217.147.236.164container.self.ge:443GET /cron/sms.php HTTP/1.1

23-77848280/95/169998_
1.508590.00.831591.81
92.51.105.254spar.self.ge:443POST /api/Device/InsertDeviceData/a23ed6b1b3b2fe12 HTTP/1.1

24-77830950/10/169164R
0.139530.00.041555.02
212.72.146.106

25-77899360/2/169382_
0.02860.00.011535.59
217.147.236.164billing.self.com.ge:443NULL

26-778183141/38/169679K
0.470552.90.331528.47
87.253.38.177dio.self.ge:443GET /status/61002015408/?t=1719052280888 HTTP/1.1

27-778186910/206/169602_
6.260940.02.091574.34
187.251.143.76billing.self.com.ge:443NULL

28-778224220/29/169652_
0.388220.00.121508.64
217.147.236.164billing.self.com.ge:443NULL

29-778214470/152/169714_
8.617630.01.491562.11
217.147.236.164billing.self.com.ge:443NULL

30-77831190/12/169062_
0.185630.00.051524.48
185.70.52.129kirurgia.self.ge:443POST /api/App/GetDashboardNews/6c3f06fe-aa69-4b4a-95ba-abe10dac

31-778256030/121/169614_
1.646530.00.841564.54
178.134.1.142spar.self.ge:443POST /api/Device/InsertDeviceData/8a44ff3a5fbe7ea6 HTTP/1.1

32-778184440/122/169315_
1.567610.00.871576.38
217.147.236.164billing.self.com.ge:443NULL

33-77853240/51/169605_
0.653280.00.561558.33
185.70.52.129kirurgia.self.ge:443GET /buffer/tmp/kirurgia/RenderPhoto/701-user_photo_3421_834fb9

34-778116590/42/168909_
0.50850.00.181546.15
217.147.236.164zodi.self.ge:443GET /cron/pool.php HTTP/1.1

35-778290660/19/169603_
0.268280.00.071593.00
217.147.236.164billing.self.com.ge:443NULL

36-77853250/57/168930_
0.667620.00.311535.47
217.147.236.164tca.self.ge:443GET /cron/controllers_data.php HTTP/1.1

37-778224232/29/169091K
0.481256.50.111582.60
178.134.80.22medcapital.self.ge:443GET /?ref=LogOut HTTP/1.1

38-77857770/339/169159_
4.99890.04.651580.33
217.147.236.164zpa-360.self.ge:443GET /cron/pool.php HTTP/1.1

39-77899370/3/169522_
0.050790.00.011555.51
31.146.44.35billing.self.com.ge:443NULL

40-778228970/75/169117_
0.883270.00.391546.90
217.147.236.164billing.self.com.ge:443NULL

41-778289400/242/169787_
6.347740.02.001571.90
217.147.236.233dhl.self.ge:443GET /api/Cards/AllCards HTTP/1.1

42-77831390/8/168991_
3.378117730.00.071544.04
217.147.236.164sss.self.ge:443GET /cronjob/pool.php HTTP/1.1

43-778183410/34/168684_
0.618740.00.141540.08
217.147.236.164billing.self.com.ge:443NULL

44-77814710/155/168949_
2.1541770.02.001534.80
104.28.200.73billing.self.com.ge:443NULL

45-778151120/128/169228_
2.127590.01.391574.73
217.147.236.164transporter.self.ge:443GET /cron/controllers_data.php HTTP/1.1

46-778149920/174/169714_
2.44870.02.481586.44
217.147.236.164billing.self.com.ge:443NULL

47-778323710/399/169245_
12.37490.04.261566.58
91.184.126.164billing.self.com.ge:443NULL

48-778193450/323/169145_
7.53880.04.291563.09
217.147.236.164x2.self.ge:443GET /cron/car_lead.php HTTP/1.1

49-778256180/111/168758_
1.528330.01.461578.06
217.147.236.164wyndham.self.ge:443GET /cron/pool.php HTTP/1.1

50-7782559

Found on 2024-06-22 10:31

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52a86c7445

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Thursday, 20-Jun-2024 17:55:45 +04
Restart Time: Friday, 31-May-2024 18:04:15 +04
Parent Server Config. Generation: 726
Parent Server MPM Generation: 725
Server uptime:  19 days 23 hours 51 minutes 29 seconds
Server load: 17.64 13.70 11.67
Total accesses: 159768106 - Total Traffic: 1501.2 GB
CPU Usage: u3933.03 s1873.18 cu0 cs0 - .336% CPU load
92.5 requests/sec - 0.9 MB/second - 9.9 kB/request
353 requests currently being processed, 832 idle workers
..___CKC__C_K_._______.R__W___C_K_K_.___C__K_______C_K__K_CC___R
_K__K_______K_______K________C__C__CKK_______C_____K___K__K_C.__
____________KKC________R_C________C______._KK____C_____C_______K
_______CK___CK______KC________.CK._W____C_CKK___C_K_KK__C_K_____
__CW___K__C__CK______K___K______K_K_C.KC_KK__K____KC___KC_CK____
___KC_____CKK_CKKC__K_____C__KK___CK___CK__K________CR____CC_CKK
KK_K__CC_____K__RC_____KK________KR__KK.__K__._C___C_._C_WKK____
____K_.._K_K_____K___CC______C___C__CR__K_K______K__CK__._______
_______.K.KK.C_____________...._C__K_K.K___K_C_C_K___.._._K__C__
C___K__KK_._K___C..._C_C.._C____._KKCCC__.._____C_C.____K.KK_.C_
_.W_CKK_.___K_._.______KK__._K___K_.C_K___C_RK_K_.._KK____KKKK__
.___K_.._.K__C__C__C__C__.____.._C_K____._____.__CC.__C___.__R_R
__________C__.___.KC.__._.K.__.K__._.__________.___._._____W_KCK
KC___C__K.C__.___._K_._C__C__._K__KK.KC_____K__W_KC__.__.K___.K_
.KRC_.CK___C_CKK_.._K.__C__R.._____.___.C___.__KCK__..___.__._K.
._______..______C_.__.K_._K.KC_C_____________K__KC.__C______KRK_
K_.C._C_KCRK.K_KCC_._._____K._R._____CK_K_______KKK_CC_C.__C_K__
K___.K__K_.._____KC___.__K._.CC__.___C_______WK.__K___.__K__K_C_
_CKK___KCC__.__.___W______._K_._KK_._R._____K._C_K______.RC_____
__._______KK.K__._.._WK.__.____.___K._..K__C.K_.____C____C._____
_C__C____...___._.._____.___.K...___K_..KK_R_KCK_CK_..___.KK.W.K
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-725-0/0/157965.
0.112700.00.001432.37
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

1-725-0/0/157555.
1.341000.00.001452.37
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

2-725261490/186/158015_
2.864240.01.451477.75
212.72.128.254billing.self.com.ge:443NULL

3-725129900/91/157341_
1.306560.00.361447.38
94.43.235.22spar.self.ge:443POST /api/Device/InsertDeviceData/065e1a4f3f81c912 HTTP/1.1

4-725227500/292/157671_
13.203550.02.321452.23
80.241.251.210td.self.ge:443POST /api/Chat/PoolMessages/ODM3OTIyMjQ=/a1a9497d-3f39-4199-997

5-725143861/44/157208C
4.15153.90.191503.75
217.147.236.164billing.self.com.ge:443NULL

6-725294161/169/156863K
5.650615.91.401430.35
37.232.13.98insta.self.ge:443GET /status/61001082421/?t=1718891744971 HTTP/1.1

7-725167461/217/157059C
3.581504.17.421482.15
92.54.255.68billing.self.com.ge:443NULL

8-725323110/23/157208_
0.36200.00.291490.06
217.147.236.164billing.self.com.ge:443NULL

9-725323580/23/156880_
0.343630.00.741463.91
87.253.46.230billing.self.com.ge:443NULL

10-72564571/26/157144C
0.38143.90.731504.22
217.147.236.164billing.self.com.ge:443NULL

11-725209750/37/156580_
0.601360.00.361409.23
46.49.108.184billing.self.com.ge:443NULL

12-7253381/347/156510K
9.4823712.14.161460.36
92.223.124.27td.self.ge:443GET / HTTP/1.1

13-725224750/240/156668_
3.725590.02.451438.59
94.43.239.186spar.self.ge:443POST /api/Device/InsertDeviceData/837c89c03d86b07d HTTP/1.1

14-725-0/0/156733.
7.261600.00.001458.55
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

15-725225010/249/157087_
3.817450.06.721467.49
31.146.174.138medi.self.ge:443GET /api/cards/ HTTP/1.1

16-725247090/86/156535_
1.84480.00.981431.11
149.3.3.122billing.self.com.ge:443NULL

17-72597040/454/155744_
8.868550.07.151453.70
92.241.92.2spar.self.ge:443POST /api/Device/InsertDeviceData/842d02f7832f2c0e HTTP/1.1

18-725308350/232/156977_
3.41150.02.111454.38
217.147.236.164billing.self.com.ge:443NULL

19-725194150/94/156283_
1.632500.01.811487.22
141.8.208.20foodservice.self.ge:443POST /api/Device/InsertDeviceData HTTP/1.1

20-725144530/167/156287_
3.0441310.02.801456.55
217.147.236.164billing.self.com.ge:443NULL

21-725247380/146/156188_
2.551600.02.011441.08
31.146.172.214billing.self.com.ge:443NULL

22-725-0/0/155774.
0.50231170.00.001494.19
217.147.236.164billing.self.com.ge:443NULL

23-725257410/253/155728R
6.96050.04.961471.91
213.131.36.162

24-72597840/111/155044_
1.520670.01.161432.32
217.147.236.164billing.self.com.ge:443NULL

25-725175490/41/155229_
0.55460.00.161426.11
217.147.236.164billing.self.com.ge:443NULL

26-725161712/105/155225W
1.60006.01.121399.35
81.16.251.43zodi.self.ge:443GET /?option=mytasks HTTP/1.1

27-725210110/41/155457_
0.6082240.00.511457.99
92.54.201.58billing.self.com.ge:443NULL

28-725167730/199/155540_
2.827560.02.411394.57
80.241.243.66enterprise.self.ge:443GET /api/cards/?R=II-1-d3-r2_out HTTP/1.1

29-725241250/34/155594_
0.4321010.00.131449.23
31.146.1.190gulf.self.ge:443POST /api/App/GetBirthDayList/80f3d28a-221a-441b-b072-fb4879273

30-725241261/32/154837C
0.450554.30.131398.03
31.146.98.173billing.self.com.ge:443NULL

31-725309380/84/155366_
1.485470.01.231440.87
141.8.208.21foodservice.self.ge:443POST /api/Device/InsertDeviceData HTTP/1.1

32-72595991/7/155210K
0.24063.80.031470.19
217.147.236.164tortini.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

33-725230940/189/155532_
2.873520.01.041446.21
31.146.81.94colosseummarina.self.ge:443POST /api/App/GetMenu/943a70d5-83b8-46d9-bdcd-9b62f580ae21/b98b

34-725315331/453/154812K
8.290464.15.381438.93
95.104.118.78gsn.self.ge:443GET /status/ggordadze59/?t=1718891745949 HTTP/1.1

35-72520250/64/155533_
0.855700.00.591476.11
217.147.236.164billing.self.com.ge:443NULL

36-725-0/0/154771.
20.461500.00.001424.85
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

37-725257730/239/155081_
4.836560.02.591471.58
91.151.136.159sulakauri.self.ge:443POST /api/App/GetWorkingStatus/4bda39cd-753c-4390-a324-d45a44ba

38-72596390/5/154994_
0.105790.00.021455.66
217.147.236.164billing.self.com.ge:443NULL

39-725278010/67/155467_
4.08450.00.291446.67
217.147.236.164billing.self.com.ge:443NULL

40-72564581/12/154906C
0.170702.70.041421.11
5.10.33.117billing.self.com.ge:443NULL

41-72553420/234/155419_
3.806400.03.371442.58
92.241.80.30medi.self.ge:443GET /api/cards/ HTTP/1.1

42-725278960/141/154860_
9.051520.01.081435.25
94.43.236.82spar.self.ge:443POST /api/Device/InsertDeviceData/6cd3c0f1300af624 HTTP/1.1

43-725175911/54/154685K
1.57153.90.501433.56
217.147.236.164telianivalley.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

44-725289990/31/154702_
0.510630.00.331416.99
217.147.236.164billing.self.com.ge:443NULL

45-725162250/101/155023_
1.46750.01.301463.87
217.147.236.164billing.self.com.ge:443NULL

46-725179440/554/155505_
13.664510.08.111462.59
80.241.251.210td.self.ge:443POST /api/Chat/PoolMessages/MzU3MTE5MTkxMQ==/11e50b96-2d8f-4e02

47-725162060/265/154997_
4.876670.05.571448.50
31.146.98.173billing.self.com.ge:443NULL

48-72582790/521/155008_
9.63260.05.581439.41
217.147.236.164billing.self.com.ge:443NULL

49-725130210/99/154716_
1.3681370.01.121465.57
217.147.236.164billing.self.com.ge:443NULL

50-725279290/142/155342_
2.711620.0</

Found on 2024-06-20 13:55

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52d1b24853

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Tuesday, 18-Jun-2024 09:47:16 +04
Restart Time: Friday, 31-May-2024 18:04:15 +04
Parent Server Config. Generation: 663
Parent Server MPM Generation: 662
Server uptime:  17 days 15 hours 43 minutes 1 second
Server load: 15.71 12.57 11.88
Total accesses: 139540996 - Total Traffic: 1302.5 GB
CPU Usage: u3124.4 s1509.68 cu0 cs0 - .304% CPU load
91.5 requests/sec - 0.9 MB/second - 9.8 kB/request
495 requests currently being processed, 660 idle workers
__K_K___WR___CC_CRC_CCR__R_.__C__R___W___CKC__R__C___R___CC_R_W_
__KK_____RR______K__W__R_K____C___RK__R___C__CRRC____K____C___C_
R_____K__R__KR__C___K____K______CR_K_CK_R_KK_R____KR_RKC___C_K_K
____CC_RCCKRK__C___C__K_____K___R__C___R_R._____C___R_C______KR_
__CW____KCK__K__C__KW__RCR___R__CR__C_.___KKKKCC_K____C__C_C____
C_____C_KRCR_C___CK_K____K_C_CRW_KK___CCKK__KRKCCKK_K__C__RC__CR
_R__RK_K_______KC_RKKCCC_CKK__KKKRWKK_C_CK_K_R_K___C_CKK___RC___
K__RR____K_K_R__C__CC_KC____K_C_K_C___R____C_CRK____R_____R____C
KCK_C___KC_C______KR_KCKKKCKK_R_______RK._CCKKK_KCR_KKKC_R._KK_C
__C___KCWK_K____C_K_WCC__K_KKCK.K___K_RK_RRC_R_R___C_RR_RR_____K
_C__CC___K____K_R_R_C_K_K_______KK____CR__._KKCCR_CC_K_KC___.___
K_K__._KK_KCCK_K_..__KRRKC____._C_C_KC_C___R_R__CRR__R._KRK_.___
_K_._C__KCC_K_R_.___C_C_KKC_R__C_CR___C______KCK_KCK________CCK_
K_..R_C__R__K._____.___K_____CR_KW_.._______C_C.__.K__RWK_W_K_.R
_C_K_KKKKRC___K_K_CK__C_W__K___.CR___C.R__WCCC___C_C_K_KC_.R_._K
C______CKC_K.KK_WRC__C_KC_C_.____C__.KK_W_C__K_________C___CC_.W
.CK_.____C__C.._C_C__.C_.____KKK___K.___C.KKC_C_K__.C_..K__W__K_
_RC__K___W_K_C__C_RWC__._._K.____K_K.K___.RR____R_K__R__C_CRR_._
_K_.R_.._C___..CKCC.......__..__R_CR__.._.__C_.C.CC.R..RR___K._.
R...C.K__._...._..._R...K.K_...._...............................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-662284360/230/138672_
7.81360.02.441244.11
217.147.236.164silktech.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

1-662284380/233/138811_
3.483160.02.561273.67
217.147.236.164billing.self.com.ge:443NULL

2-66223021/60/138975K
1.240752.71.431289.25
92.241.76.10lazikacapital.self.ge:443GET /status/58001009645/?t=1718689635893 HTTP/1.1

3-662202460/88/138444_
1.48280.00.981258.23
217.147.236.164billing.self.com.ge:443NULL

4-662326481/7/138532K
0.07283.80.421266.79
109.238.230.214aversiclinic.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

5-662327020/3/138253_
0.053520.00.011303.66
217.147.236.164billing.self.com.ge:443NULL

6-662285010/215/137991_
4.012560.03.631247.20
188.169.214.2nazilbe.self.ge:443GET /status/61004064393/?t=1718689630321 HTTP/1.1

7-662139570/100/138223_
4.65360.00.781283.84
217.147.236.164se.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

8-662103710/111/138145W
1.87000.00.561315.07
94.43.1.122dgholding.self.ge:443GET /buffer/tmp/dgholding/RenderPhoto/1821-user_photo_338.png?v

9-662285060/218/138083R
7.02880.02.461289.31
185.201.24.29

10-662285070/218/138252_
7.10350.02.871306.67
217.147.236.164support.self.ge:443GET /cron/poolDevice.php HTTP/1.1

11-662313290/71/137695_
1.1531370.02.401234.94
37.131.231.106billing.self.com.ge:443NULL

12-662278360/79/137557_
5.380750.01.481266.97
92.241.76.10billing.self.com.ge:443NULL

13-662141491/38/137856C
0.580594.00.361255.94
5.152.14.2billing.self.com.ge:443NULL

14-662246911/106/137823C
1.371163.91.111267.74
217.147.236.164billing.self.com.ge:443NULL

15-662104330/121/138197_
1.953670.03.191282.10
217.147.236.164telianivalley.self.ge:443GET /cron/controllers_data.php HTTP/1.1

16-662285141/231/137624C
4.3804494.87.081237.23
217.147.236.164billing.self.com.ge:443NULL

17-662120160/56/136948R
0.784140.01.371271.88
212.72.147.242

18-662285171/216/137909C
13.75083.93.331262.54
217.147.236.164billing.self.com.ge:443NULL

19-662205380/26/137478_
0.370150.00.101296.14
217.147.236.164billing.self.com.ge:443NULL

20-662104341/118/137493C
2.21083.91.671279.80
217.147.236.164billing.self.com.ge:443NULL

21-662170591/109/137266C
2.211542.72.331260.50
92.241.76.10billing.self.com.ge:443NULL

22-662295760/158/136890R
5.7942020.02.491310.27
37.232.46.122

23-662237630/21/136746_
3.602460.00.731274.64
45.9.32.21billing.self.com.ge:443NULL

24-662139580/116/136107_
1.76150.01.621247.42
217.147.236.164billing.self.com.ge:443NULL

25-662157010/176/136436R
6.298250.03.561242.33
92.241.76.10

26-662327050/3/136365_
0.050490.00.011227.31
94.43.99.254spar.self.ge:443POST /api/Device/InsertDeviceData/1e3830204cc82beb HTTP/1.1

27-662-0/0/136687.
0.31100.00.001278.17
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

28-662278770/82/136746_
1.51350.01.381205.76
217.147.236.164billing.self.com.ge:443NULL

29-662142030/40/136820_
0.51000.00.201256.50
62.212.34.202billing.self.com.ge:443NULL

30-662104841/110/135986C
1.751594.10.711209.72
92.54.244.93billing.self.com.ge:443NULL

31-662261440/156/136620_
2.290840.02.321263.11
213.131.44.10europroduct.self.ge:443GET /api/cards/ HTTP/1.1

32-662307410/8/136370_
0.120340.00.231271.57
185.168.224.98billing.self.com.ge:443NULL

33-662157020/169/136688R
2.67450.01.641261.57
5.152.102.201

34-662140020/102/136078_
1.58230.01.661242.79
141.8.208.20billing.self.com.ge:443NULL

35-662295780/148/136752_
2.313540.01.611289.83
217.147.236.164tsurgroup.self.ge:443GET /cron/controllers_data.php HTTP/1.1

36-662238360/20/135882_
0.301620.00.101245.64
95.137.241.204billing.self.com.ge:443NULL

37-662285362/236/136273W
7.530014.64.531281.91
94.43.1.122dgholding.self.ge:443GET /buffer/tmp/dgholding/RenderPhoto/5409-user_photo_5053_59ba

38-662285370/223/136180_
4.56350.02.671270.53
217.147.236.164whitesails.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

39-662109620/47/136691_
0.69380.00.611261.16
217.147.236.164sheratonbatumi.self.ge:443GET /cron/poolDevice.php HTTP/1.1

40-662172830/32/136267_
0.502460.00.311244.01
80.241.251.210td.self.ge:443POST /api/Chat/PoolMessages/MzU3MTE5MTkxMQ==/b87cd6f0-13b8-495c

41-662288101/229/136653C
3.74173.95.571267.15
217.147.236.164billing.self.com.ge:443NULL

42-6626121/150/136143K
2.8614394.21.221255.84
217.147.236.164assorti.self.ge:443GET /cron/sms.php HTTP/1.1

43-662313851/73/135639C
1.971534.11.501249.40
37.232.46.122billing.self.com.ge:443NULL

44-66269610/135/135913_
2.461450.01.661228.61
94.43.92.106spar.self.ge:443POST /api/Device/InsertDeviceData/2ed83bf77829478b HTTP/1.1

45-662246920/82/136373_
4.67360.00.771288.54
217.147.236.164trd.self.ge:443GET /cron/poolDevice.php HTTP/1.1

46-662172840/32/136659R
0.4441970.00.151288.44
193.176.214.29

47-66270190/129/136105_
2.270600.01.991263.52
92.241.76.10billing.self.com.ge:443NULL

48-662170990/103/136018_
4.93370.00.751235.29
217.147.236.164supta.self.ge:443GET /cron/poolDevice.php HTTP/1.1

49-662171000/102/136058C
1.800230.01.331292.64
82.211.150.197billing.self.com.ge:443NULL

50-662110240/54/136583_
0.810520.01.031276.55
109.238.225.178billing.self.com.ge:443NULL

Found on 2024-06-18 05:47

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52baa9533f

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Sunday, 16-Jun-2024 06:57:36 +04
Restart Time: Friday, 31-May-2024 18:04:15 +04
Parent Server Config. Generation: 578
Parent Server MPM Generation: 577
Server uptime:  15 days 12 hours 53 minutes 20 seconds
Server load: 0.78 0.76 0.75
Total accesses: 123078904 - Total Traffic: 1162.7 GB
CPU Usage: u2424.61 s1097.61 cu0 cs0 - .262% CPU load
91.7 requests/sec - 0.9 MB/second - 9.9 kB/request
87 requests currently being processed, 860 idle workers
_____C______K_C______C_______.________C_________________________
W___________K_________CK___.______________C___________________K_
_R____________CC_____K____________________C__________C________K_
___W__C_K______K____________K___C_____________C______K__________
__C__________________C______C_________K_K___K_._____KK__.______.
___K__C_________________________._________K______________.______
__K__R____K______C___C______K_______________..__________________
_K____C________._.K__________________________________KW__.______
C__._____________._______________C___._K.____KKK__.__C__._______
________K___._________.___._...__..__K__K_..___.___._.____.._.__
._..K..._.____..___._.____._..._K.___._._.______._.___________._
.K._.___K.._K___.____._____.._.__..___..___.._..__.__K__._._.___
__..________.___._.____._K__..._._K.___.___.__..._.__.K______.__
..._..___.__.__._.._.._.______C_____...___.__._._C___K______._._
________.._K_.___CK__.__.._____.___________K._____.______._.__..
__________..___.._C_K.__.___...____.____....__.__.K.____.___.___
_..C__R....___.._.._C._.._______..._________.C_.._____._K__._.._
_____.__._K_..._.___.._....K______K____...C_C..__...............
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-57740360/6/122239_
0.084470.00.021112.33
31.146.150.226spar.self.ge:443POST /api/Device/InsertDeviceData/e09e5a46202882f4 HTTP/1.1

1-57783320/42/122354_
0.42550.00.161139.09
217.147.236.164billing.self.com.ge:443NULL

2-577189560/63/122440_
0.7720640.00.261162.76
87.253.46.230billing.self.com.ge:443NULL

3-577321580/10/121779_
0.122350.00.041117.70
217.147.236.164billing.self.com.ge:443NULL

4-577283500/48/122051_
0.511750.00.191131.89
217.147.236.164billing.self.com.ge:443NULL

5-577321541/11/121536C
0.12153.90.041162.51
217.147.236.164billing.self.com.ge:443NULL

6-577156800/64/121482_
0.765520.00.251107.15
31.146.183.18spar.self.ge:443POST /api/Device/InsertDeviceData/b36ff99334115eca HTTP/1.1

7-577220740/57/121738_
0.6523150.00.231136.74
217.147.236.164billing.self.com.ge:443NULL

8-577319670/121/121833_
4.3641050.00.591182.12
217.147.236.164billing.self.com.ge:443NULL

9-577321590/11/121652_
0.238800.00.041150.39
62.168.190.46bamo.self.ge:443POST /api/reader/ HTTP/1.1

10-577223800/95/121836_
1.57880.00.381174.17
217.147.236.164billing.self.com.ge:443NULL

11-577189610/61/121150_
0.71650.00.241086.20
217.147.236.164billing.self.com.ge:443NULL

12-577258601/20/121061K
0.250893.90.081131.87
217.147.236.164pbservices.self.ge:443GET /cron/sms.php HTTP/1.1

13-577283570/54/121478_
0.570550.00.211113.51
185.49.166.250billing.self.com.ge:443NULL

14-577175711/186/121333C
2.250883.90.731130.92
217.147.236.164billing.self.com.ge:443NULL

15-577289370/15/121671_
0.1810440.00.061143.28
178.134.69.214spar.self.ge:443POST /api/Device/InsertDeviceData/df82b81805e6d330 HTTP/1.1

16-5777890/81/121331_
4.052380.00.321104.32
217.147.236.164swisscapital.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

17-577258650/18/120566_
0.2219450.00.071136.88
109.238.225.246medi.self.ge:443POST /api/reader/ HTTP/1.1

18-577255150/97/121540_
1.7810520.00.391109.73
80.241.243.66enterprise.self.ge:443GET /api/cards/?R=II-1-d2-r1_in HTTP/1.1

19-577177130/181/121295_
2.3215230.00.731158.84
66.249.66.42comforter.self.ge:443GET / HTTP/1.1

20-5777940/86/121050_
1.5523110.00.341150.18
217.147.236.164zpa-360.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

21-577156951/67/120916C
3.75053.90.301130.77
217.147.236.164billing.self.com.ge:443NULL

22-577283580/47/120638_
3.682350.00.211156.87
217.147.236.164teramotors.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

23-577220750/57/120511_
0.62250.00.231128.64
217.147.236.164billing.self.com.ge:443NULL

24-577204510/609/119708_
11.488870.02.661112.94
217.147.236.164billing.self.com.ge:443NULL

25-577157100/65/120008_
0.742370.00.261097.23
217.147.236.164billing.self.com.ge:443NULL

26-57740400/6/120073_
0.0723770.00.021094.03
217.147.236.164termotsentri.self.ge:443GET /cron/controllers_data.php HTTP/1.1

27-57728270/118/120392_
5.1323490.00.511131.45
92.54.217.210spar.self.ge:443POST /api/Device/InsertDeviceData/02128c45ed64f9e9 HTTP/1.1

28-577258660/19/120446_
0.211750.00.071076.86
217.147.236.164billing.self.com.ge:443NULL

29-577-0/0/120558.
0.98500.00.001133.31
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

30-577189620/63/119624_
3.952360.00.481077.08
217.147.236.164billing.self.com.ge:443NULL

31-577258700/18/120397_
0.2023610.00.071130.63
217.147.236.164tsurgroup.self.ge:443GET /cron/controllers_data.php HTTP/1.1

32-577227390/22/119968_
0.2518430.00.081130.39
178.134.165.34spar.self.ge:443POST /api/Device/InsertDeviceData/4ee7d7d1c28486f2 HTTP/1.1

33-57771710/3/120480_
0.031150.00.011127.77
217.147.236.164billing.self.com.ge:443NULL

34-577116980/226/119778_
2.601170.00.971088.70
217.147.236.164billing.self.com.ge:443NULL

35-577189680/66/120642_
0.730470.00.261154.10
178.134.178.202aversiclinic.self.ge:443GET /api/cards/ HTTP/1.1

36-57783460/37/119801_
0.4514600.00.151117.99
92.54.255.68billing.self.com.ge:443NULL

37-577196160/25/120041_
0.2911540.00.101144.79
178.134.43.30spar.self.ge:443POST /api/Device/InsertDeviceData/0120dc6c3249e6eb HTTP/1.1

38-577158321/251/120027C
6.65163.91.021138.44
217.147.236.164billing.self.com.ge:443NULL

39-57752370/42/120655_
0.574610.00.161138.43
31.146.160.22spar.self.ge:443POST /api/Device/InsertDeviceData/3a2843c799bcc642 HTTP/1.1

40-577146820/27/119908_
0.30650.00.111098.54
217.147.236.164billing.self.com.ge:443NULL

41-57733220/164/120438_
2.0671530.00.661127.11
217.147.236.164billing.self.com.ge:443NULL

42-577319740/129/120138_
1.57960.00.511132.66
217.147.236.164billing.self.com.ge:443NULL

43-577127030/258/119535_
6.762390.01.051120.77
217.147.236.164billing.self.com.ge:443NULL

44-577157120/69/119805_
0.7816540.00.281084.65
149.3.109.146spar.self.ge:443POST /api/Device/InsertDeviceData/a94c8201b1130119 HTTP/1.1

45-577189690/61/120079_
0.769490.00.241143.71
178.134.82.202spar.self.ge:443POST /api/Device/InsertDeviceData/16ad11d0977a2657 HTTP/1.1

46-577157130/68/120470_
0.729520.00.271144.16
146.255.228.86spar.self.ge:443POST /api/Device/InsertDeviceData/6bf0d30b70d1b4b7 HTTP/1.1

47-577289420/15/120001_
0.1613110.00.061129.10
185.115.4.248coffeesta.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

48-5777990/87/119828_
4.28670.00.561098.10
217.147.236.164billing.self.com.ge:443NULL

49-57772580/74/119927_
0.7912520.00.351154.92
80.241.243.66enterprise.self.ge:443GET /api/cards/?R=II-3-d1-r1_in HTTP/1.1

Found on 2024-06-16 02:57

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc5266efcc10

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Wednesday, 12-Jun-2024 09:10:12 +04
Restart Time: Friday, 31-May-2024 18:04:15 +04
Parent Server Config. Generation: 407
Parent Server MPM Generation: 406
Server uptime:  11 days 15 hours 5 minutes 57 seconds
Server load: 4.23 8.65 10.47
Total accesses: 91113975 - Total Traffic: 859.2 GB
CPU Usage: u3044.4 s1443.29 cu0 cs0 - .447% CPU load
90.7 requests/sec - 0.9 MB/second - 9.9 kB/request
1095 requests currently being processed, 0 idle workers
CCRCCCCCCCCCKKCKKCCCKCCCCCCCKKKCCCCCCRCCKCCCCCRCKCCCCCKCCKCKCKKC
CKCKRKWCKCRCCKCCCCKCCKKKCKKKCCCRCCRCCCCRCCKCCKKCCCKCCKCKCCKKKKCC
CWCKCKKCCKCCKCCCKCKKCKCCCWKKKCCCKCKCKKCCCCCKRKRCKCCCKCCCKCKKWCCK
KKCCRCCKKCCWCKCCKKCRCCCCCCKCKCCCCKKCCKCKKCCCCCCCCCKCKKCRCCCCKCKC
CKCCKKCKCKKCRKWCCKCCWKCCCWKKCCKKKCKCCRKCCCCWKCRCRKCCCCKCKWCCKKCW
CCCCKKKCCCKCWCKCCWCCWCKKWCCWKCCCCKCKCCCCCCKCKKRKRKKCKKCKKCWCKCCC
CCCCCWCCCRCKKCCKCKKRCKCCCCWKCCCKCCCCCCCCCCKKKCCCKKCCCCCCCWKKRCCC
CRWKKKCCKKCCCKCKCKRCKKWCKCKKCRCCCCKCCCRR.RCCCCCKKCC..KCKKKWCKCRK
CKKCRCRKCCCKKKCCCCCCK.CCCC.KCK.WRCCCCCCRCCC.CCCCRKCCCCCKCKK.CKKK
C.KCCKCKKKK..CCCKRCKCCCC.KCKKC.C.KKCCCCKCCRCCCCC.CCKKC.R.KK.C.CC
CCCCCCCCC.KC.C.KKCCK.C.CCKCCCCCCCKWRK.CWCC..CCCKKKKCKCCCCCCCCRKC
C.CKKWCCK.KCCCCC.CCC.R.CRC.KKKCKCCWCCKC.C.CCCCKCCC.WCCCKWKCCCWKK
CKKCKCCCKRCKK.KCKCCCCCRCK.KCCKCCCKRCKCKCRWCCCCC.CKCCCCCWKCCKCWCK
CCCCC.KCCCCCCKCCK.CCKCCCCKCRCRCCCC.CCCKRKC.KKCR.CKCRCCCKKCR.CCCC
.RCWCCC.KKCCKCRCCKCKCCCWKCC.CCCCCKKCCCCKKCCCKCCCKCCCCCCKCC.CC.CK
RCC.KCKKRKWCCCKCCR.KRC.KK.CC.C.CC..CC..C.C..C.C.K.CC....C....KC.
KK.CCCCCCC.C.C.K.CKWCK.CK.CK.CKCKCC.C.C.KC.KC..C.CC.CCKWCW.K..K.
R.C...RC.C......C.KC.CRC.CCCCCCCKCC......WCCK.CCWKRCWK.CC..C....
C.....CCKC....K.RK.CC..CCC..K.C.C.....K..CKRCCCKCC.CK.KKKKCKC..C
CK..C.C.CCCCCC.....C..K.RC..K.KCK.CKKCCKCC..CKC.....C...........
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-406233511/334/91041C
11.83153.96.94840.41
217.147.236.164billing.self.com.ge:443NULL

1-40662431/24/91015C
0.321293.90.11848.35
217.147.236.164billing.self.com.ge:443NULL

2-406219420/115/90956R
2.1941400.01.66876.39
5.152.14.58

3-406271621/174/90456C
6.6801064.02.42836.78
217.147.236.164billing.self.com.ge:443NULL

4-406315751/36/90499C
0.5101193.90.34819.80
217.147.236.164billing.self.com.ge:443NULL

5-406166771/2/90319C
0.030183.90.01864.01
217.147.236.164billing.self.com.ge:443NULL

6-406123361/215/90163C
3.351253.94.86809.98
217.147.236.164billing.self.com.ge:443NULL

7-40662931/20/90473C
0.291843.90.08843.14
217.147.236.164billing.self.com.ge:443NULL

8-406182281/68/90475C
0.9811762.70.97876.43
178.134.146.186billing.self.com.ge:443NULL

9-406250161/115/90536C
1.800483.91.02872.52
217.147.236.164billing.self.com.ge:443NULL

10-406265961/245/90477C
4.3903873.94.69854.33
217.147.236.164billing.self.com.ge:443NULL

11-406123471/204/89927C
3.411663.91.97805.37
217.147.236.164billing.self.com.ge:443NULL

12-40629711/33/90171K
0.460573.80.45842.26
217.147.236.164jibe.self.ge:443GET /cron/Consulting.php HTTP/1.1

13-406100721/14/90407K
0.2205855.50.06834.78
91.151.136.184lemeridienbatumi.self.ge:443POST /?option=s&service=savecelldata HTTP/1.1

14-406295171/469/90392C
8.5915383.94.69832.22
217.147.236.164billing.self.com.ge:443NULL

15-406167221/2/90305K
0.03263.90.01840.34
217.147.236.164oc.self.ge:443GET /cron/poolDevice.php HTTP/1.1

16-406167231/2/90044K
0.02253.90.01816.55
217.147.236.164medi.self.ge:443GET /cron/car_lead.php HTTP/1.1

17-40630271/36/89558C
0.56183.90.68848.90
217.147.236.164billing.self.com.ge:443NULL

18-406156921/135/90434C
2.34163.93.35829.81
217.147.236.164billing.self.com.ge:443NULL

19-406112801/81/90206C
8.7918843.80.82848.54
217.147.236.164billing.self.com.ge:443NULL

20-406167571/2/89904K
0.02163.90.01855.60
217.147.236.164pepsi.self.ge:443GET /cron/poolDevice.php HTTP/1.1

21-406219651/169/89859C
1.871254.23.76821.37
37.232.43.150billing.self.com.ge:443NULL

22-40630281/26/89548C
0.401563.90.86850.71
217.147.236.164billing.self.com.ge:443NULL

23-406252891/51/89728C
5.201803.80.89854.68
217.147.236.164billing.self.com.ge:443NULL

24-406136231/10/88915C
0.14193.90.04812.90
217.147.236.164billing.self.com.ge:443NULL

25-40699681/74/89470C
1.26053.91.76823.96
217.147.236.164billing.self.com.ge:443NULL

26-406271981/178/89334C
3.6401403.82.29796.37
217.147.236.164billing.self.com.ge:443NULL

27-406320331/303/89565C
6.680413.96.34842.71
217.147.236.164billing.self.com.ge:443NULL

28-406284311/42/89699K
0.620844.10.22802.17
95.137.211.244medcapital.self.ge:443GET /status/13001017444/?t=1718169009035 HTTP/1.1

29-406316231/39/89852K
0.571483.90.42857.52
217.147.236.164imedil.self.ge:443GET /cron/Consulting.php HTTP/1.1

30-406101721/14/88999K
0.180143.90.05801.15
217.147.236.164nikora.self.ge:443GET /cron/car_lead.php HTTP/1.1

31-406102121/14/89634C
0.170293.90.06856.45
217.147.236.164billing.self.com.ge:443NULL

32-406187791/136/89276C
2.281993.93.26834.61
217.147.236.164billing.self.com.ge:443NULL

33-406316501/41/89603C
0.570844.21.23826.59
81.16.246.134billing.self.com.ge:443NULL

34-40613461/155/89036C
2.51163.91.66800.38
217.147.236.164billing.self.com.ge:443NULL

35-406217671/186/89891C
2.95083.91.74858.83
217.147.236.164billing.self.com.ge:443NULL

36-40630771/32/89143C
0.4812563.90.32839.56
217.147.236.164billing.self.com.ge:443NULL

37-40643200/242/89290R
4.7641720.03.29853.96
95.104.115.34

38-406102131/13/89136C
0.2312993.90.07845.66
217.147.236.164billing.self.com.ge:443NULL

39-406182791/65/89854C
1.0615193.00.75839.19
5.152.108.44billing.self.com.ge:443NULL

40-406266161/244/89383K
4.34093.92.80815.95
217.147.236.164practice.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

41-4065551/221/89642C
6.81183.92.75834.10
217.147.236.164billing.self.com.ge:443NULL

42-406298291/248/89342C
6.371813.95.28848.22
217.147.236.164billing.self.com.ge:443NULL

43-406303901/101/88994C
1.641723.91.19844.66
217.147.236.164billing.self.com.ge:443NULL

44-406233821/240/89018C
6.7501573.93.69806.66
217.147.236.164billing.self.com.ge:443NULL

45-406185671/185/89381C
6.091303.92.43847.98
217.147.236.164billing.self.com.ge:443NULL

46-406220660/59/89507R
0.893120.02.27854.98
212.72.150.22

47-40676221/150/89445C
2.7411193.91.85838.47
217.147.236.164billing.self.com.ge:443NULL

48-406102141/15/89125K
0.22093.90.05812.73
217.147.236.164sheratonbatumi.self.ge:443GET /cron/poolDevice.php HTTP/1.1

49-406126521/143/89343C
2.4711934.12.11859.24
212.72.146.106billing.self.com.ge:443NULL

50-406194441/186/89593C
3.3801063.91.31863.60
217.147.236.164billing.self.com.ge:443NULL

51-4065771/253/89142C
3.691363.93.32835.56
217.147.236.164

Found on 2024-06-12 05:10

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc524cbe5118

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Saturday, 08-Jun-2024 08:22:16 +04
Restart Time: Friday, 31-May-2024 18:04:15 +04
Parent Server Config. Generation: 265
Parent Server MPM Generation: 264
Server uptime:  7 days 14 hours 18 minutes 1 second
Server load: 0.81 2.24 3.82
Total accesses: 59715338 - Total Traffic: 570.7 GB
CPU Usage: u2218.76 s956.16 cu0 cs0 - .484% CPU load
91 requests/sec - 0.9 MB/second - 10.0 kB/request
136 requests currently being processed, 701 idle workers
___________WC___K__KCCC_______W________K____K__C__C_KC__K_CC____
________________________________K____K____C_C_C___C__________K__
________K_____C__CK____________R__________K__C____K_____________
__________________CC_______R_K___C____________C_K_C__________C_K
___K______R__________C________C______KK_______K___________K_____
___________C_K_______K__________________K_______R________K____C_
___K_.K_______WKKC_______K__K___K_C_______C_________K___________
___KRK___CW_K_____C____R_K_______C___K_C_K__C_________C__KK_____
_K_K_K___KC___CC___C__C__K______R_______K_RK____________R_______
____K______K_________K________________KK____________....___K_._K
._.___.C_._....C._.K.K.___K_.__........__....._.._._C______..C..
...___.._K_C..___..K.._..___......_._...__......_..._...._.._.._
._.......C.._.K......K__...K_..___.._...__......_........RRK....
._......._...._.._...__...._..._._.___._.............._.__......
...KK..__.........__._.___...____.......__...._..._._.._..___._.
...C..........__......_..........._..._.._....._._....K_._.._...
.._._....._K_....._......._...______..._._..._....._..._...__...
._..K....._._...._._._.R.._..._.._....._......_.......__.R_.....
._._...._._...._..__....._..._._..__.K_.....__.__...__._.C..._..
__..___._.___.C_..._._..._.._..._...............................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-26461780/34/59279_
0.40470.00.14553.55
217.147.236.164reainvestment.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

1-264241300/52/59528_
0.693110.00.72575.50
217.147.236.164supta.self.ge:443GET /cron/car_lead.php HTTP/1.1

2-26410450/41/59180_
0.47290.00.18558.48
217.147.236.164toyota-transport.self.ge:443GET /cron/poolDevice.php HTTP/1.1

3-264154770/26/59094_
0.470420.00.33560.81
5.152.119.50spar.self.ge:443POST /api/Device/InsertDeviceData/90520705180e6721 HTTP/1.1

4-26461900/37/59000_
0.413650.00.32539.39
217.147.236.164swiftcredit.self.ge:443GET /cron/controllers_data.php HTTP/1.1

5-264235680/9/58993_
0.161480.00.04575.28
178.134.80.42spar.self.ge:443POST /api/Device/InsertDeviceData/119dff1efd72efbb HTTP/1.1

6-264161400/60/58834_
0.693620.00.23532.11
217.147.236.164tsiskvili.self.ge:443GET /cron/controllers_data.php HTTP/1.1

7-264236560/8/58882_
0.100240.00.03559.79
217.147.236.164billing.self.com.ge:443NULL

8-26461910/33/58803_
0.363180.00.13588.73
217.147.236.164tbsrv.self.ge:443GET /cron/car_lead.php HTTP/1.1

9-26498110/71/59125_
4.114610.01.19576.95
217.147.236.164billing.self.com.ge:443NULL

10-264236570/8/58990_
0.113680.00.04573.32
217.147.236.164spacecargo.self.ge:443GET /cron/controllers_data.php HTTP/1.1

11-264139040/155/58540W
2.501500.01.27543.75
217.147.236.164sss.self.ge:443GET /cronjob/pool.php HTTP/1.1

12-26466551/109/58900C
4.94183.90.47573.85
217.147.236.164billing.self.com.ge:443NULL

13-264154890/20/59028_
0.212120.00.16556.34
217.147.236.164x2.self.ge:443GET /cron/poolDevice.php HTTP/1.1

14-264267490/3/58936_
0.03100.00.01557.57
139.59.143.102better.self.ge:443GET /_all_dbs HTTP/1.1

15-264209890/332/58607_
13.753710.02.26551.55
217.147.236.164stradaoro.self.ge:443GET /cron/controllers_data.php HTTP/1.1

16-264281211/87/58682K
1.09153.90.34544.80
217.147.236.164chkvianisakhli.self.ge:443GET /cron/sms.php HTTP/1.1

17-264186660/14/58429_
0.162120.00.06581.86
217.147.236.164trd.self.ge:443GET /cron/poolDevice.php HTTP/1.1

18-264224770/270/58923_
3.824840.02.20533.41
217.147.236.164billing.self.com.ge:443NULL

19-26430601/328/58785K
5.47253.92.09557.88
217.147.236.164bsa.self.ge:443GET /cron/sms.php HTTP/1.1

20-264267581/3/58405C
0.0411072.80.01567.85
91.184.123.249brandr.self.ge:443POST /api/App/GetWorkingStatus/d604b5d5-afaa-42c2-8462-60865b4f

21-264272241/48/58573C
0.73183.90.77546.47
217.147.236.164billing.self.com.ge:443NULL

22-264155691/176/58399C
8.68063.90.77566.46
217.147.236.164billing.self.com.ge:443NULL

23-264267590/2/58447_
0.01460.00.01562.31
217.147.236.164billing.self.com.ge:443NULL

24-26478440/155/58028_
1.88260.01.27535.14
217.147.236.164whitesails.self.ge:443GET /cron/poolDevice.php HTTP/1.1

25-264186770/17/58246_
0.2041160.00.07535.62
217.147.236.164billing.self.com.ge:443NULL

26-264312680/89/58218_
4.342100.01.31525.99
217.147.236.164zoo.self.ge:443GET /cron/poolDevice.php HTTP/1.1

27-264312730/83/58284_
0.97060.01.40554.18
217.147.236.164billing.self.com.ge:443NULL

28-26498150/71/58304_
0.913950.00.91524.40
217.147.236.164telianivalley.self.ge:443GET /cron/controllers_data.php HTTP/1.1

29-264324540/123/58499_
4.593680.00.65567.29
217.147.236.164ruebushgroup.self.ge:443GET /cron/controllers_data.php HTTP/1.1

30-264281220/88/58251W
1.20000.00.56530.49
93.123.17.142td.self.ge:443GET /server-status HTTP/1.1

31-264186780/14/58360_
0.16380.00.05585.52
217.147.236.164sairmeresort.self.ge:443GET /cron/car_lead.php HTTP/1.1

32-264123780/29/58225_
0.330160.00.19551.58
217.147.236.164billing.self.com.ge:443NULL

33-26410730/42/58466_
0.603870.00.28558.58
217.147.236.164vr.self.ge:443GET /cron/controllers_data.php HTTP/1.1

34-26498290/72/58061_
0.804510.00.78539.55
178.134.170.226spar.self.ge:443POST /api/Device/InsertDeviceData/8c09f01a2ed0eb61 HTTP/1.1

35-26498300/71/58351_
0.804100.00.39563.79
37.232.87.24alliancetbilisi.self.ge:443POST /api/Transactions/Register HTTP/1.1

36-264126290/145/58281_
8.330110.01.21562.16
217.147.236.164billing.self.com.ge:443NULL

37-26462730/81/58140_
3.433450.00.50547.92
217.147.236.164unimedi.self.ge:443GET /cron/controllers_data.php HTTP/1.1

38-26430550/72/58077_
0.8811160.00.55575.19
188.169.6.44billing.self.com.ge:443NULL

39-264272251/52/58584K
0.57173.90.40563.67
217.147.236.164coca-colaegrisi.self.ge:443GET /cron/sms.php HTTP/1.1

40-26462820/84/58349_
1.27200.00.53545.96
139.59.143.102better.self.ge:443GET /v2/_catalog HTTP/1.1

41-264210030/346/58442_
7.763860.02.17550.67
217.147.236.164pc.self.ge:443GET /cron/controllers_data.php HTTP/1.1

42-26410740/42/58159_
0.470110.00.16552.11
217.147.236.164billing.self.com.ge:443NULL

43-26462830/82/58069_
1.31370.01.47556.93
217.147.236.164billing.self.com.ge:443NULL

44-264123791/24/58111K
0.32263.90.09517.46
217.147.236.164cargon.self.ge:443GET /cron/sms.php HTTP/1.1

45-26430750/84/58247_
1.263890.01.41556.23
217.147.236.164toyota-transport.self.ge:443GET /cron/controllers_data.php HTTP/1.1

46-264161470/62/58261_
3.82360.00.27560.64
217.147.236.164ve.self.ge:443GET /cron/car_lead.php HTTP/1.1

47-26410751/46/58200C
0.69063.90.18552.88
217.147.236.164billing.self.com.ge:443NULL

48-264267690/2/58117_
0.02260.00.01538.77
217.147.236.164billing.self.com.ge:443NULL

49-264324620/125/58251_
1.953120.01.15582.43
217.147.236.164thermorum.self.ge:443

Found on 2024-06-08 04:22

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52d71d5574

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Thursday, 06-Jun-2024 07:56:00 +04
Restart Time: Friday, 31-May-2024 18:04:15 +04
Parent Server Config. Generation: 220
Parent Server MPM Generation: 219
Server uptime:  5 days 13 hours 51 minutes 45 seconds
Server load: 0.42 1.19 1.70
Total accesses: 42989499 - Total Traffic: 405.1 GB
CPU Usage: u2076.74 s928.18 cu0 cs0 - .624% CPU load
89.2 requests/sec - 0.9 MB/second - 9.9 kB/request
61 requests currently being processed, 875 idle workers
_W__________._____K______.__________W____C__K_C_________________
________._____R_________________________________________._______
_______.____________.C__._K_________..____R____RK____K___.__KC__
_________________.__R__________________________________K________
____________K_______________.____K_______________________K__R___
_____________________________.___________________K._______._____
.__W________________C__.KC______________________________R_______
______________.___.________________________K_K______KW__________
.___K_______._______._____..____.__.K__.__.____.__._._.K._______
___._______.___._..._____K.._.____K________________.____._..K___
.__K__K__._.___.._______._____._________._.__._K.__R__..____..__
________C_..._._.____.C____._.____._.__K___.R.__.___.._.____..R_
___.KK._._______.R._____.____K__.._____._____.__._._____._._._..
...__________._C_KK__._._______R___._.____.__._.K___.__R.______.
._______.__.._.__._.____.._....__...__.._.__.___._.__R_._._...__
______.________.___.___..___..___...___.__.__...____._R__._____.
______.__.._.._.K_______.__..._..__._..._...__._.____._____W___.
__._______.__.____K_______._....................................
..........._............................._......................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-219203920/151/43070_
1.6973150.00.93401.79
217.147.236.233tortini.self.ge:443POST /api/Transactions/Register HTTP/1.1

1-219121080/236/43358W
2.90000.01.24402.69
185.49.166.250betlive.self.ge:443GET /status/33001074618/?t=1717646160696 HTTP/1.1

2-219123210/33/42899_
7.3814520.00.51401.13
109.172.136.75unison.self.ge:443POST /api/App/GetWorkingStatus/811134f2-a058-41dc-807d-55e6885b

3-21990900/82/42918_
0.899360.00.95407.40
212.72.131.254billing.self.com.ge:443NULL

4-21915080/132/42956_
10.151450.03.37388.27
217.147.236.164billing.self.com.ge:443NULL

5-219277470/149/42921_
1.991160.00.76414.02
217.147.236.164transporter.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

6-219310040/293/42646_
3.874120.02.06389.11
31.146.79.93superstore.self.ge:443POST /api/App/Initialization/9a9bce56-b618-49f4-a40a-faea68c8d6

7-21991200/35/42754_
0.428960.00.19404.51
95.104.124.252embawood.self.ge:443POST /api/Device/RegisterPinTransaction/cab0879eb7ae337d HTTP/1

8-219286290/83/42694_
7.975530.00.45401.75
185.115.7.109embawood.self.ge:443POST /api/App/GetWorkingStatus/0d4245d9-5659-43f7-bd36-7917a0df

9-21948170/126/42980_
1.6417520.00.99416.00
213.131.36.162spar.self.ge:443POST /api/Device/InsertDeviceData/71ba6ae2a2a7f074 HTTP/1.1

10-219321620/46/42780_
0.571360.00.39413.64
217.147.236.164billing.self.com.ge:443NULL

11-219309600/4/42353_
0.065520.00.02382.85
31.146.97.74spar.self.ge:443POST /api/Device/InsertDeviceData/38edb160a10d2ddf HTTP/1.1

12-219-0/0/42727.
5.373700.00.00408.85
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

13-219206520/19/43016_
0.252460.00.08401.51
178.134.107.14spar.self.ge:443POST /api/Device/InsertDeviceData/3469b09e7dbc2a26 HTTP/1.1

14-21948280/117/42944_
4.651170.00.48415.61
217.147.236.164wyndham.self.ge:443GET /cron/RunDBJob.php HTTP/1.1

15-219203790/69/42651_
0.776540.00.30396.86
92.241.73.206spar.self.ge:443POST /api/Device/InsertDeviceData/50800cf834e6a3c9 HTTP/1.1

16-219299390/5/42771_
0.0815440.00.02402.61
94.137.163.216billing.self.com.ge:443NULL

17-219308140/131/42444_
2.046430.00.64397.94
109.238.225.246medi.self.ge:443POST /api/reader/ HTTP/1.1

18-219242381/105/42831K
1.370474.20.94394.35
81.16.241.185gtgroup.self.ge:443GET /status/01025004329/?t=1717646159255 HTTP/1.1

19-219299470/5/42718_
0.0913140.00.02402.37
178.134.236.42magniti.self.ge:443POST /api/App/Initialization/d3825146-1bc8-4d80-8e8d-7adcc6c788

20-21958740/83/42221_
1.10060.01.12403.56
178.134.236.42magniti.self.ge:443POST /api/App/GetLogo/61730a6c-a82e-4d4c-b41b-6a137f503c32/25a9

21-219321830/177/42481_
2.450500.00.71385.97
212.72.146.106hotelspreference.self.ge:443GET /status/01010003581/?t=1717646177139 HTTP/1.1

22-219196840/360/42409_
8.4612580.02.42389.18
45.9.46.18billing.self.com.ge:443NULL

23-21992010/41/42238_
0.481250.01.00391.73
217.147.236.164billing.self.com.ge:443NULL

24-219258740/180/42073_
2.647420.00.96385.55
149.3.104.86spar.self.ge:443POST /api/Device/InsertDeviceData/4cba470299c65397 HTTP/1.1

25-219-0/0/42313.
5.521800.00.00385.82
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

26-219206680/20/42197_
0.2815480.00.21373.12
178.134.107.14spar.self.ge:443POST /api/Device/InsertDeviceData/3469b09e7dbc2a26 HTTP/1.1

27-21948290/123/42160_
4.471650.00.71384.58
217.147.236.164billing.self.com.ge:443NULL

28-21915200/136/42258_
2.48111130.01.05375.35
217.147.236.164billing.self.com.ge:443NULL

29-21960890/38/42521_
0.4613560.00.16402.32
217.147.236.164billing.self.com.ge:443NULL

30-21961010/39/42364_
0.4415750.00.36379.88
217.147.236.164billing.self.com.ge:443NULL

31-219318690/94/42189_
1.379610.00.40415.96
5.152.102.201billing.self.com.ge:443NULL

32-219215070/260/42416_
4.660100.01.75404.74
178.134.236.42magniti.self.ge:443POST /api/App/Initialization/61730a6c-a82e-4d4c-b41b-6a137f503c

33-219172900/152/42432_
4.257490.01.07402.36
94.43.48.246spar.self.ge:443POST /api/Device/InsertDeviceData/331b6f2e3055cc4a HTTP/1.1

34-219180510/115/41909_
1.5713580.00.55373.98
185.70.53.252aversiclinic.self.ge:443POST /api/App/ReAuthentication/35565fcc-7e2a-4148-bdd3-7368ada6

35-219173510/68/42288_
0.811550.00.70411.37
217.147.236.164billing.self.com.ge:443NULL

36-219236670/64/42216W
0.78000.00.64407.56
178.134.222.162synevo.self.ge:443GET /status/01211114980/?t=1717646159817 HTTP/1.1

37-219142050/146/42222_
4.911660.00.66394.33
217.147.236.164zoommer.self.ge:443GET /cron/sms.php HTTP/1.1

38-219206690/19/42145_
0.2011900.00.08410.72
217.147.236.164billing.self.com.ge:443NULL

39-219321730/47/42460_
0.581060.00.39408.54
178.134.66.182

40-219103240/442/42126_
5.991650.01.88392.70
217.147.236.164billing.self.com.ge:443NULL

41-219206814/24/42297C
0.3304132759.60.83400.54
89.232.35.64billing.self.com.ge:443NULL

42-219123550/28/42082_
0.3110520.00.57390.11
188.169.87.130spar.self.ge:443POST /api/Device/InsertDeviceData/6ea71f47c29346a4 HTTP/1.1

43-219149840/115/42029_
1.8111570.00.65392.34
217.147.236.164billing.self.com.ge:443NULL

44-21925821/355/42273K
10.901514.31.50373.99
31.146.98.173air.self.ge:443GET /status/26001031029/?t=1717646157975 HTTP/1.1

45-219204010/59/42263_
0.711360.00.46410.49
185.70.53.252aversiclinic.self.ge:443POST /api/App/GetLogo/35565fcc-7e2a-4148-bdd3-7368ada6c463/7355

46-219299481/5/42307C
0.07192.80.02402.18
91.151.136.216billing.self.com.ge:443NULL

47-21961140/39/42219_
0.514500.00.59400.02
31.146.98.173billing.self.com.ge:443NULL

48-21961150/40/42268_
0.8512470.00.94385.82
92.51.105.18spar.self.ge:443POST /api/Device/InsertDevi

Found on 2024-06-06 03:55

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc5293057f8d

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Tuesday, 04-Jun-2024 10:13:59 +04
Restart Time: Friday, 31-May-2024 18:04:15 +04
Parent Server Config. Generation: 148
Parent Server MPM Generation: 147
Server uptime:  3 days 16 hours 9 minutes 44 seconds
Server load: 3.36 3.75 3.81
Total accesses: 27067345 - Total Traffic: 246.1 GB
CPU Usage: u3046.34 s1530.73 cu0 cs0 - 1.44% CPU load
85.3 requests/sec - 0.8 MB/second - 9.5 kB/request
267 requests currently being processed, 985 idle workers
______.__K_.__K__K_____R________._K_KRK__.K____C___K_KKC_K______
_CKK___CK____R___________C__K._______.W___________.________C___R
____C_KC____K____._KKR__________________W________K_.__._K__K_K__
___CC__KK____KR__C_______KK_K_____._______R____K______K___R_W___
C_____K__.K_KR_C___.__CR_R._K_C______KRC.K_____W___K____K_______
C___.K___K.K_____.__K.C_.__C___C_____C__KR________K_C___K_C__C__
_C______C_KC_______K___..___C.K_.__....K._.________C________.___
_._________K.K__..__._K____.._W___._CC_.___._KR__.C_K_.C._R____K
.K_K_._K_.____._..___C_KK__._C___KK_C._________C_.C__.____KC.___
K________K_K__K____C._KK_CK______K_________K.____.__KK____WC___.
._____R._C.__K._.___..__._K__.K____K_.__.____K_.R__C..________._
__.____._.K_.__K__C_.._K___K__KC__K___._______.________K______._
___._.__K._.____.._.________.._C__._____CC___C_K___.K_C___K._.__
K._K_____K_____WK_______KK____.K__R______.K.__._R_K_.KKK__R_R___
_K__KC__CK_K_.K__._______.C_.___._K_K___C__.___K___K_____.______
R___._____CR_______K__._._K____._._K___._K__.___._.___._.___R_K.
__K________.._K_._C__.________._________K_.___.____.K____K_____C
_K_.____.__C_K_..K___.__.___K.___._______K__W____R._K________...
_R_____.K___KK._K__K_..._.____.____C__R_.K._.K.__..______K__R_C_
__________._K.._C..____._KK_____K_.________C_____K___.K______.__
_____._______._W____KK_C__K.______R____....._.K..._.__.___.._...
...._.__.___.C_K_.C___C_.__._...__________.._.___C..___KR._..K..
..C_.K._...____.___.___.C....K....___K_.__._..K_.._._C_.__...R..
_.._.._C...._._.._._.K___._.K__.................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-14710750/44/27445_
0.637560.00.60240.96
188.169.214.210billing.self.com.ge:443NULL

1-14782320/31/27454_
0.452530.00.21249.65
91.151.137.12billing.self.com.ge:443NULL

2-14778430/733/27404_
10.6921670.010.16241.10
178.134.200.254spar.self.ge:443POST /api/Device/InsertDeviceData/d6539e7922a74abb HTTP/1.1

3-14782740/34/27400_
0.493850.00.13255.31
185.70.53.136kirurgia.self.ge:443POST /api/App/GetWorkingStatus/b7a4c523-a993-4110-887c-792fb432

4-147153150/228/27577_
4.9591170.03.43246.72
178.134.146.186billing.self.com.ge:443NULL

5-147310550/404/27521_
8.1591090.07.47259.51
94.43.246.100

6-147-0/0/27320.
6.31500.00.00244.23
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

7-147324650/125/27372_
2.064520.01.29257.29
93.177.148.236stradaoro.self.ge:443POST /api/App/GetMenu/bc93f1e6-d4a8-40c6-a0c6-39ca9e14b957/191c

8-147121560/170/27256_
2.822760.02.01238.54
212.72.153.242billing.self.com.ge:443NULL

9-147230041/70/27245K
0.981484.10.53252.14
37.232.96.142wendys.self.ge:443GET /status/01017055967/?t=1717481638108 HTTP/1.1

10-147226130/7/27365_
0.127100.00.03255.63
46.49.56.46billing.self.com.ge:443NULL

11-147-0/0/27100.
1.5138400.00.00235.89
92.51.127.82foodservice.self.ge:443POST /api/Device/InsertDeviceData HTTP/1.1

12-147230050/68/27356_
1.070680.00.83254.85
141.8.208.32spar.self.ge:443POST /api/Device/InsertDeviceData/f41ce1d1c18b2d7c HTTP/1.1

13-147156030/147/27404_
2.736460.03.27245.85
178.134.107.18spar.self.ge:443POST /api/Device/InsertDeviceData/c3f9543699b4dd03 HTTP/1.1

14-14746622/46/27422K
0.75095.90.94258.42
46.49.56.46natural.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

15-147129150/98/27233_
2.0171130.02.18243.10
185.168.224.98midea.self.ge:443POST /api/App/GetWorkingStatus/80efaa77-768c-4fd2-acbb-efe025ad

16-14748190/42/27265_
0.61900.00.59242.70
80.241.251.210td.self.ge:443GET /OneSignalSDKWorker.js?appId=383b048a-1a43-43ce-b363-c45fce

17-147226721/7/27124K
0.091574.20.12235.13
188.92.214.130coffeesta.self.ge:443GET /status/01011075043/?t=1717481639051 HTTP/1.1

18-14733580/120/27461_
1.911510.02.26250.33
178.134.71.218billing.self.com.ge:443NULL

19-147194910/16/27319_
0.40730.00.14248.93
92.241.77.162billing.self.com.ge:443NULL

20-14748200/41/27044_
0.635440.00.16247.25
92.241.76.10billing.self.com.ge:443NULL

21-147270240/203/27162_
4.08080.03.49239.47
178.134.199.254billing.self.com.ge:443NULL

22-147168060/91/27135_
1.260380.00.83244.10
185.143.176.178spar.self.ge:443POST /api/Device/InsertDeviceData/d66c9178b90f61c4 HTTP/1.1

23-14748720/42/27030R
0.540620.00.33252.04
141.8.208.20

24-147219640/659/26871_
14.701580.015.11244.08
185.70.53.247jibe.self.ge:443POST /api/App/GetWorkingStatus/2ac4186a-735b-4202-a650-ba67f44e

25-14711340/53/27037_
0.986470.01.41236.57
212.72.147.242billing.self.com.ge:443NULL

26-147270610/190/26935_
3.094490.01.70233.98
80.241.251.210td.self.ge:443POST /api/Chat/PoolMessages/ODM3OTIyMjQ=/495beb6d-3bec-4da5-8ce

27-147228100/128/26986_
1.931620.01.50249.02
80.241.251.210td.self.ge:443POST /api/Chat/PoolMessages/ODM3OTIyMjQ=/495beb6d-3bec-4da5-8ce

28-147186670/151/27026_
2.786590.04.03229.57
92.223.63.22billing.self.com.ge:443NULL

29-147162030/17/27191_
0.249100.00.07252.69
149.3.7.165billing.self.com.ge:443NULL

30-14756990/239/27054_
4.82990.03.49228.58
81.16.255.198billing.self.com.ge:443NULL

31-147195740/19/26964_
0.347630.00.69255.88
31.146.138.58spar.self.ge:443POST /api/Device/InsertDeviceData/e374f24646f72217 HTTP/1.1

32-147-0/0/27163.
2.693100.00.00255.46
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

33-147200260/458/27152_
7.175720.07.19266.48
212.72.147.242billing.self.com.ge:443NULL

34-147230541/70/26789K
1.630464.21.36236.09
31.146.98.173air.self.ge:443GET /status/01029016667/?t=1717481638057 HTTP/1.1

35-147195750/15/27034_
0.24780.00.07262.08
46.175.134.18billing.self.com.ge:443NULL

36-147261561/55/27094K
0.821653.00.24264.33
92.54.255.68swisscapital.self.ge:443GET /status/aleksandre.tushmalovi@swisscapital.ge/?t=1717481637

37-14798850/491/26967R
8.839250.010.07240.50
92.241.76.10

38-147261571/67/26908K
6.67092.71.66249.99
31.146.218.164spacecargo.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

39-147168550/292/27202_
5.53880.05.30270.82
37.232.15.249billing.self.com.ge:443NULL

40-147156570/196/26831_
4.715230.07.45239.11
141.8.208.20billing.self.com.ge:443NULL

41-147-0/0/27039.
9.071100.00.00246.32
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

42-147226741/6/26946K
0.101552.70.02233.67
212.72.147.242geocredit.self.ge:443GET /status/13001010157/?t=1717481637854 HTTP/1.1

43-147115320/26/26743_
0.382670.00.11230.06
188.169.214.210billing.self.com.ge:443NULL

44-147294890/130/27035_
2.037100.03.11233.98
92.54.255.68billing.self.com.ge:443NULL

45-14748750/53/26972_
0.79990.00.50252.66
109.238.225.246medi.self.ge:443POST /api/reader/ HTTP/1.1

46-14734590/108/27026_
1.9431100.02.10246.26
149.3.7.165billing.self.com.ge:443NULL

47-147261961/64/26978C
0.971544.20.99242.13
92.54.255.68billing.self.com.ge:443NULL

48-147302440/54/26989_
0.825500.00.25231.45
188.169.214.210billing.self.com.ge:443NULL

49-147206220/211/26933_
3.863490.03.01250.11
213.131.33.134billing.self.com.ge:443NULL

50-147230560/70/27247_
0.984

Found on 2024-06-04 06:13

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52e594fb5c

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Saturday, 01-Jun-2024 11:09:49 +04
Restart Time: Friday, 31-May-2024 18:04:15 +04
Parent Server Config. Generation: 21
Parent Server MPM Generation: 20
Server uptime:  17 hours 5 minutes 34 seconds
Server load: 1.74 1.82 1.52
Total accesses: 5013502 - Total Traffic: 41.7 GB
CPU Usage: u2022.29 s929.78 cu0 cs0 - 4.8% CPU load
81.5 requests/sec - 0.7 MB/second - 8.7 kB/request
100 requests currently being processed, 993 idle workers
R__._____..____________K________C_.___________________________K_
__C.______C__R__________K___K___K_____K____C______K__________K__
__________________._____K_____K_____K______________________C____
____R______________________________K_____________.K_____________
_______R___________________________K_________K.__C__K____C_W_C__
.________________.____C________K__W________C_.________C______.__
_________.____.____.__._._____.__________C__.___C____.K__.______
_K.W_____K__.__._________.__._.__._____..___._____K.____________
_.___.._____...KK.__._________.__._._K________K____K__..___.____
__.____._____._.______.K_K_CK_______.______K_.______K._.________
__.______.____C_._._________C.._KKR___.__KC.___..___._______._._
_._.___K__..__K.____KK__.______C_._______.__._..____R_____._____
.K___..___.____.____...____.__K_.____._._._._____.___._____.____
____.______._._C_______C_____.____K_.__.___..__.K__.______..__W_
.__C_________K.__.____._.__K_____K__._________._.__K___....._.__
___.__.__.______..__._..__._____._._______._W______..________._C
__K____._____.__.____C______.__..C.______W.____.__.__.__..____._
____.K_._.__.._____K_.C_____._C_..__K.__K__.._K._._.___________.
_____._C._.____R__C_______.__..____.____._____________C_____..K_
.__________________K_______.________.__.W.___.._K_.__..________W
R...............................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-20268750/51/5234R
0.66350.00.2342.70
178.134.146.186

1-20101340/80/5161_
1.084560.01.2242.84
31.146.183.134spar.self.ge:443POST /api/Device/InsertDeviceData/1319bc55e687b303 HTTP/1.1

2-2070720/78/5219_
4.734460.01.4748.62
81.16.242.44billing.self.com.ge:443NULL

3-20-0/0/5196.
0.022700.00.0039.52
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

4-20114470/238/5183_
3.9781140.02.1539.60
217.147.236.164billing.self.com.ge:443NULL

5-20182070/357/5152_
5.040440.04.2051.91
109.238.225.246medi.self.ge:443POST /api/reader/ HTTP/1.1

6-20126390/264/5172_
3.6512430.02.5749.44
31.146.27.174spacecargo.self.ge:443POST /api/App/GetWorkingStatus/4603bd96-1765-46f4-ad8b-297429d5

7-20200910/23/5028_
0.324220.00.1750.94
178.134.27.102billing.self.com.ge:443NULL

8-20120930/182/5152_
3.13100.01.7347.38
173.252.107.120embawood.self.ge:443GET /robots.txt HTTP/1.1

9-20-0/0/5172.
2.80900.00.0042.20
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

10-20-0/0/5170.
3.891000.00.0050.99
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

11-20101570/76/5157_
0.962260.00.4645.78
217.147.236.164billing.self.com.ge:443NULL

12-20105820/31/5173_
0.42670.00.1248.49
217.147.236.164thermorum.self.ge:443GET /cron/sms.php HTTP/1.1

13-20101580/75/5134_
1.182180.00.3046.18
5.152.102.201billing.self.com.ge:443NULL

14-20201220/25/5152_
0.3410560.00.9939.54
109.238.229.222spar.self.ge:443POST /api/Device/InsertDeviceData/b9610b7d0f36f964 HTTP/1.1

15-2040370/85/5130_
0.951840.00.3441.08
217.147.236.164billing.self.com.ge:443NULL

16-20210540/214/5080_
7.12660.02.3243.12
217.147.236.164tolia.self.ge:443GET /cron/sms.php HTTP/1.1

17-2070950/92/5157_
1.65660.03.1249.11
217.147.236.164ultra.self.ge:443GET /cron/sms.php HTTP/1.1

18-2023670/3/5185_
0.0518390.00.0242.48
178.134.27.102zoommer.self.ge:443POST /api/App/ReAuthentication/e1a50c79-f2c2-4166-b2de-94c50bea

19-20235570/58/5223_
0.694490.00.2243.95
31.146.82.62billing.self.com.ge:443NULL

20-20169410/26/5154_
0.3021470.00.1046.84
213.131.40.14spar.self.ge:443POST /api/Device/InsertDeviceData/226f9f725dfcbe0e HTTP/1.1

21-2070960/89/5088_
1.335580.00.7444.16
92.241.76.62billing.self.com.ge:443NULL

22-20268940/49/5098_
3.5512550.00.2239.00
193.228.126.87foodservice.self.ge:443POST /api/Device/InsertDeviceData/905e401d9d27030e HTTP/1.1

23-20169571/28/5125K
0.320505.50.3148.02
89.232.35.64argo.self.ge:443GET /status/10350001074/?t=1717225785875 HTTP/1.1

24-20136280/31/5126_
1.9616590.00.1447.38
176.221.255.62leadercredit.self.ge:443GET /status/l.buzaladze/?t=1717225750656 HTTP/1.1

25-20314410/10/5124_
0.1518550.00.1243.71
94.43.115.122billing.self.com.ge:443NULL

26-20281240/90/5106_
4.22760.00.8536.73
217.147.236.164billing.self.com.ge:443NULL

27-20315580/7/5163_
0.0821440.00.0345.28
109.238.225.246medi.self.ge:443POST /api/reader/ HTTP/1.1

28-20245300/21/5142_
0.3118100.00.2140.27
91.151.136.145billing.self.com.ge:443NULL

29-20184520/165/5113_
3.841510.01.5445.45
178.134.155.102spar.self.ge:443POST /api/Device/InsertDeviceData/c75f2931bdf86c29 HTTP/1.1

30-20153310/177/5100_
6.441880.01.2542.49
95.137.241.204aversiclinic.self.ge:443POST /api/App/GetWorkingStatus/11e957f9-8acf-4d57-83dc-3b1ed273

31-20235900/63/5155_
0.83101000.00.2548.45
217.147.236.164billing.self.com.ge:443NULL

32-20216211/64/5151C
0.811454.20.3147.21
212.72.146.106billing.self.com.ge:443NULL

33-20275590/256/5149_
4.584520.013.0252.78
188.169.178.214spar.self.ge:443POST /api/Device/InsertDeviceData/bb4a958752286841 HTTP/1.1

34-20-0/0/5058.
4.542100.00.0044.78
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

35-20184650/115/5158_
1.961820.01.0146.75
188.169.7.232billing.self.com.ge:443NULL

36-20278720/15/5101_
0.267490.00.8949.47
62.212.36.58extrameat.self.ge:443GET /api/cards/ HTTP/1.1

37-2095960/276/5114_
7.199520.03.3338.19
94.43.231.14billing.self.com.ge:443NULL

38-20154800/124/5141_
4.09122600.00.9946.56
217.147.236.164billing.self.com.ge:443NULL

39-20315590/6/5149_
0.0813720.00.0246.31
188.169.123.186billing.self.com.ge:443NULL

40-20268950/58/5057_
0.68650.00.4139.21
217.147.236.164yorkholding.self.ge:443GET /cron/sms.php HTTP/1.1

41-2040380/86/5235_
1.3311430.00.4143.34
92.241.74.182spar.self.ge:443POST /api/Device/InsertDeviceData/ad84ed690d06d8b2 HTTP/1.1

42-20315810/9/5104_
0.1120520.00.0437.28
176.221.198.74spar.self.ge:443POST /api/Device/InsertDeviceData/d0968bf818f36faf HTTP/1.1

43-2023680/4/5099_
0.061560.00.0139.95
188.169.128.65billing.self.com.ge:443NULL

44-20154990/109/5063_
1.6421500.01.6738.85
185.49.166.250billing.self.com.ge:443NULL

45-20303620/237/5085_
3.8612470.02.3146.85
176.221.166.202spar.self.ge:443POST /api/Device/InsertDeviceData/21edee412c7c41a3 HTTP/1.1

46-20247530/102/5086_
1.332160.00.7647.55
217.147.236.164billing.self.com.ge:443NULL

47-2072210/449/5070_
11.4811490.04.3640.22
31.146.82.62billing.self.com.ge:443NULL

48-208490/95/5094_
1.329650.00.7640.30
178.134.186.198billing.self.com.ge:443NULL

49-2070480/44/5156_
0.5315530.00.4441.42
80.241.251.210td.self.ge:443POST /api/Chat/PoolMessages/ODM3OTIyMjQ=/a9c09941-0258-40dd-96a

50-2038900/141/5064_
1.8022430.01.3144.14
178.134.76.246spar.self.ge:443POST /api/Device/InsertDeviceData/cdbf6271c90d01cc HTTP/1.1

Found on 2024-06-02 07:05

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52b6432d81

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Wednesday, 29-May-2024 20:51:42 +04
Restart Time: Wednesday, 29-May-2024 18:26:15 +04
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  2 hours 25 minutes 27 seconds
Server load: 1.40 1.26 1.26
Total accesses: 814017 - Total Traffic: 8.5 GB
CPU Usage: u1813.52 s751.99 cu0 cs0 - 29.4% CPU load
93.3 requests/sec - 1.0 MB/second - 11.0 kB/request
143 requests currently being processed, 890 idle workers
__________________________._C_CC_.____K_____.___________________
___________CK_.____W_____________K_._W_C__________C_KK____K_____
_______K__.________K_______________________C___K_C________K__C_R
____________CK_______________K____C_________K_____K___.____K____
_C________K___.___________________K_____KW_________K____C_C_____
______K______C___CW_______________K______KC__K__________C_______
_____.__..__C_.____________K___K___._W.__________K_.R___K___K_KC
_____K___.____________.____.____.._CK___K_R___.________._____.__
W_____K__K_C______KC___K______KK______._____C__C____.__K_______K
_CC_____________.K__.____K____K__C____________.__K_.__K_________
__C__C________________________C_________._K______C_________C____
____._.C_C._.K.___C.K____________C___C_________C____________.__W
_C_______.__K_______K.______________.__K._K__._____KK____K______
______K_____.___K_C_____C____________C____.________K_______C__K.
__...__K__K________RC__________._____________K_K_K_W.____K_.C___
__KC_____K_.._____C_.______K_______C____C_K__________________R__
___K_____W_K__________C__._._.__..____C____._.KK.__._.._.C_._.__
_____.___.C.......K....._....................._.................
.K..............................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-0180710/3/764_
0.031890.00.014.86
5.178.214.209billing.self.com.ge:443NULL

1-0274310/30/801_
0.33250.00.128.82
217.147.236.164billing.self.com.ge:443NULL

2-0274380/31/751_
0.4111720.00.1311.03
92.241.76.10billing.self.com.ge:443NULL

3-0131890/8/770_
0.2291080.00.035.49
217.147.236.164billing.self.com.ge:443NULL

4-0260580/134/769_
4.639940.01.269.13
146.255.224.98billing.self.com.ge:443NULL

5-0212470/54/793_
0.8517470.01.019.03
37.232.125.82spar.self.ge:443POST /api/Device/InsertDeviceData/67198d7f9915c8de HTTP/1.1

6-0101860/183/780_
5.93450.02.005.57
217.147.236.164billing.self.com.ge:443NULL

7-094560/147/813_
1.875650.01.057.93
5.152.15.45bs.self.ge:443GET /api/cards/ HTTP/1.1

8-0290890/123/764_
1.9221410.00.8710.19
5.178.205.114

9-0181050/3/756_
0.056820.00.016.25
37.232.46.166spar.self.ge:443POST /api/Device/InsertDeviceData/64dec883c404ec89 HTTP/1.1

10-011690/153/755_
5.719510.01.3611.63
146.255.254.230medi.self.ge:443GET /api/cards/ HTTP/1.1

11-0152050/48/742_
0.60080.00.745.42
217.147.236.164billing.self.com.ge:443NULL

12-044640/156/748_
2.0118540.00.856.20
109.238.225.246medi.self.ge:443GET /api/cards/ HTTP/1.1

13-0252220/80/761_
0.94650.01.4111.42
217.147.236.164billing.self.com.ge:443NULL

14-0182420/44/745_
0.50185830.00.204.94
81.16.250.251wyndham.self.ge:443POST /api/App/SetBTNWorkingStatus/ae0fe89b-ad5e-4295-80f6-60c5e

15-0182430/45/753_
0.501770.00.378.05
149.3.35.216billing.self.com.ge:443NULL

16-0182550/50/791_
0.552060.00.209.09
217.147.236.164billing.self.com.ge:443NULL

17-084370/108/772_
3.436610.00.5010.46
5.178.148.141billing.self.com.ge:443NULL

18-0124440/281/795_
5.2781800.05.6011.74
217.147.236.164billing.self.com.ge:443NULL

19-05430/31/771_
0.40121160.00.1311.47
217.147.236.164billing.self.com.ge:443NULL

20-0256000/264/768_
3.4520570.02.325.63
31.146.20.150mercure.self.ge:443POST /api/App/GetMenu/38877d7f-cf13-43b0-bacc-93b1f514cd71/fbcf

21-0303550/399/758_
5.650540.02.325.59
188.169.162.133billing.self.com.ge:443NULL

22-0152170/56/760_
0.6419530.00.595.03
37.131.231.106billing.self.com.ge:443NULL

23-0132000/8/763_
0.2741010.00.038.14
217.147.236.164billing.self.com.ge:443NULL

24-0103100/60/801_
0.7121980.00.3510.28
217.147.236.164billing.self.com.ge:443NULL

25-0294710/71/783_
0.813470.00.2811.05
31.146.131.226spar.self.ge:443POST /api/Device/InsertDeviceData/0cdddd9f89abc38f HTTP/1.1

26-0-0/0/765.
0.5820620.00.007.31
92.241.76.62billing.self.com.ge:443NULL

27-0152360/48/784_
0.5321550.00.197.03
31.146.223.78spar.self.ge:443POST /api/Device/InsertDeviceData/691c13c37fcc65a7 HTTP/1.1

28-0256011/265/777C
6.57153.91.6111.32
217.147.236.164billing.self.com.ge:443NULL

29-05590/26/804_
0.31060.00.108.14
217.147.236.164billing.self.com.ge:443NULL

30-0132011/11/761C
0.18053.90.048.72
217.147.236.164billing.self.com.ge:443NULL

31-0132181/11/772C
0.19173.90.047.95
217.147.236.164billing.self.com.ge:443NULL

32-069450/16/805_
0.171150.00.0610.16
217.147.236.164billing.self.com.ge:443NULL

33-0-0/0/771.
0.241000.00.0012.50
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

34-0193790/186/765_
3.67650.02.057.49
217.147.236.164billing.self.com.ge:443NULL

35-031090/368/820_
5.0510520.05.4714.85
92.241.81.34metta.self.ge:443GET /api/cards/ HTTP/1.1

36-044650/156/763_
6.7414950.02.359.45
217.147.236.164billing.self.com.ge:443NULL

37-044840/158/772_
1.8410450.00.865.39
176.221.166.30spar.self.ge:443POST /api/Device/InsertDeviceData/0617c24d3f6604b4 HTTP/1.1

38-084442/231/763K
5.9511214.42.787.73
2.57.218.110ants.self.ge:443GET /favicon.ico HTTP/1.1

39-0101240/12/778_
0.1511110.00.049.20
91.184.121.3billing.self.com.ge:443NULL

40-0101330/16/784_
0.203460.00.068.56
92.54.217.2spar.self.ge:443POST /api/Device/InsertDeviceData/b2fde015b483f828 HTTP/1.1

41-038690/22/787_
0.242050.00.135.81
217.147.236.164billing.self.com.ge:443NULL

42-0294880/75/765_
0.832050.00.588.43
217.147.236.164billing.self.com.ge:443NULL

43-0132190/8/768_
0.151530.00.036.53
188.169.178.214spar.self.ge:443POST /api/Device/InsertDeviceData/bb4a958752286841 HTTP/1.1

44-0-0/0/760.
0.161300.00.007.42
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

45-0132200/9/748_
0.2720580.00.056.92
31.146.20.150mercure.self.ge:443POST /api/App/GetMenu/38877d7f-cf13-43b0-bacc-93b1f514cd71/b907

46-0161010/91/766_
3.9119530.00.436.63
92.241.76.10billing.self.com.ge:443NULL

47-0178380/216/794_
8.6421580.02.3110.34
178.134.89.166billing.self.com.ge:443NULL

48-0295070/78/760_
0.941160.01.356.65
146.255.224.98billing.self.com.ge:443NULL

49-0242390/162/768_
2.149410.00.815.18
188.169.87.142spar.self.ge:443POST /api/Device/InsertDeviceData/48de28a3fa3ca894 HTTP/1.1

50-0161020/92/765_
3.891070.00.477.91
217.147.236.164billing.self.com.ge:443NULL

51-0274580/31/759_
0.3814910.00.1210.13
217.147.236.164billing.self.com.ge:443NULL

52-05600/27/744_
0.2891150.00.156.20
212.72.137.14spar.self.ge:443POST /api/Device/RegisterPinTran

Found on 2024-05-30 06:20

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52589559f5

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Saturday, 25-May-2024 17:24:30 +04
Restart Time: Tuesday, 21-May-2024 04:08:38 +04
Parent Server Config. Generation: 151
Parent Server MPM Generation: 150
Server uptime:  4 days 13 hours 15 minutes 52 seconds
Server load: 1.33 3.13 4.77
Total accesses: 36480882 - Total Traffic: 352.4 GB
CPU Usage: u1946.35 s843.75 cu0 cs0 - .709% CPU load
92.7 requests/sec - 0.9 MB/second - 10.1 kB/request
97 requests currently being processed, 948 idle workers
__________K___________K_______________________C_._K_____K___C__K
_________________________K_____.____C______KK_C________________K
_._______________.____C________________________________________K
____C_K____________K_K________.__K________.______C______________
C__C_______C______________C__K_.________________.________K______
___.__________K..________C____K.___________.____________K____.__
K____K_CK________K____C_.C__.__K_____________________._________.
____C_.____C_____._.C_K_______C______________________.__KW______
_K__K____________________C____K__.______C____R___K_______K______
____._______.________K_______.__________C______K_.______________
________.____________CC___W.___.__________KC______._______._____
___._____K___K_.__.K_____.__..__________K______._K______C_K__.__
.______________K_________._.______.___K_____K_____K____________R
____________._____C___K_____________C__W__R___K__________K..____
_KC____________K._.___________________.________.________________
__K____K_________________.__R__K_____._C__________________._.__.
._._.._...__.___...__.___._......C.___...._.._......._._..C.._..
_......_..__K.__..._._._....._..__.___K....___C..._._....__._...
..__K........_._....._..__.._.K........._..__......K......_.._._
..._._......_._...._..._.__.__..................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-150110740/78/35132_
0.851560.00.31334.37
212.58.120.119coffeelab.self.ge:443POST /api/App/GetLogo/eadb3c1f-b3fa-4b7d-bbf4-0032774a5296/6683

1-150164040/26/34984_
3.1017280.00.10337.27
217.147.236.164udabno.self.ge:443GET /cron/pool.php HTTP/1.1

2-15046400/3/34886_
0.04080.00.01317.67
217.147.236.164billing.self.com.ge:443NULL

3-15054140/231/34984_
3.0117790.02.09326.00
37.232.125.130spar.self.ge:443POST /api/Device/GetDiffPins/70e0acc5c961433d HTTP/1.1

4-150288000/61/35063_
0.751290.01.21330.50
217.147.236.164billing.self.com.ge:443NULL

5-150277510/16/35062_
0.23080.00.07333.68
217.147.236.164billing.self.com.ge:443NULL

6-150207590/62/34921_
0.68171070.00.24330.51
212.72.158.94billing.self.com.ge:443NULL

7-150177610/75/35193_
0.84180.00.40341.21
217.147.236.164billing.self.com.ge:443NULL

8-15016430/184/35260_
2.721770.02.07348.46
217.147.236.164billing.self.com.ge:443NULL

9-150183220/290/34985_
7.615680.02.06344.37
92.241.68.122gtc.self.ge:443GET /api/cards/ HTTP/1.1

10-150194731/25/34690K
0.280612.70.10325.11
92.241.76.10lazikacapital.self.ge:443GET /status/51001014150/?t=1716643470103 HTTP/1.1

11-150317620/53/34767_
0.6313770.00.22371.23
94.43.92.42billing.self.com.ge:443NULL

12-150164860/203/34744_
2.927580.01.49314.04
187.251.143.76billing.self.com.ge:443NULL

13-150312320/143/34995_
1.871790.00.90346.95
217.147.236.164tserti.self.ge:443GET /cron/pool.php HTTP/1.1

14-150303180/102/34944_
1.624440.01.50355.15
188.169.87.134spar.self.ge:443POST /api/Device/InsertDeviceData/790dc944ef3bf075 HTTP/1.1

15-15046500/3/35013_
0.031750.00.01328.25
217.147.236.164worldvision.self.ge:443GET /cron/pool.php HTTP/1.1

16-150164220/29/34950_
0.331760.00.11331.75
217.147.236.164billing.self.com.ge:443NULL

17-15091510/118/34854_
1.491730.00.49326.32
217.147.236.164billing.self.com.ge:443NULL

18-150203950/206/34834_
3.5981840.02.78335.54
217.147.236.164billing.self.com.ge:443NULL

19-150133980/33/34692_
0.361770.00.13332.88
217.147.236.164billing.self.com.ge:443NULL

20-15013340/6/34817_
0.081730.00.02320.77
217.147.236.164billing.self.com.ge:443NULL

21-150146830/71/34867_
0.8017540.00.49335.35
193.228.126.87foodservice.self.ge:443POST /api/Device/InsertDeviceData/905e401d9d27030e HTTP/1.1

22-150262171/144/34857K
2.20183.91.89320.70
217.147.236.164intraco.self.ge:443GET /cron/sms.php HTTP/1.1

23-15055540/46/34749_
0.561750.01.23332.72
217.147.236.164velistore.self.ge:443GET /cron/pool.php HTTP/1.1

24-150307190/11/34549_
0.18152250.00.25324.90
212.72.147.242billing.self.com.ge:443NULL

25-15024560/50/34787_
0.611730.00.19321.87
217.147.236.164billing.self.com.ge:443NULL

26-150317740/51/34369_
3.3617108150.00.21329.52
217.147.236.164sss.self.ge:443GET /cronjob/duplicates.php HTTP/1.1

27-150272500/242/34511_
3.1312750.01.51307.08
37.131.231.106billing.self.com.ge:443NULL

28-150194820/25/34561_
0.2717340.00.10321.13
217.147.236.164billing.self.com.ge:443NULL

29-150252370/551/34439_
7.97600.04.23306.95
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

30-150116620/230/34642_
3.321610.03.24322.33
5.152.102.201billing.self.com.ge:443NULL

31-15091690/142/34485_
2.28162450.02.15339.36
185.115.5.63euroins.self.ge:443GET /status/skardava@euroins.ge/?t=1716643449229 HTTP/1.1

32-150234610/97/34573_
1.391740.00.50323.56
217.147.236.164billing.self.com.ge:443NULL

33-150307280/9/34270_
0.0817140.00.03303.12
217.147.236.164billing.self.com.ge:443NULL

34-150254940/56/34694_
0.651760.00.21354.14
217.147.236.164thermorum.self.ge:443GET /cron/pool.php HTTP/1.1

35-15053610/259/34370_
12.7817100.01.48312.05
217.147.236.164tiflispalace.self.ge:443GET /cron/pool.php HTTP/1.1

36-150277570/15/34404_
0.166440.00.06302.91
141.8.208.20foodservice.self.ge:443POST /api/Device/InsertDeviceData HTTP/1.1

37-150226310/19/34620_
0.231740.00.07342.97
217.147.236.164ve.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

38-150255340/61/34475_
2.62180.01.18321.09
217.147.236.164billing.self.com.ge:443NULL

39-15055690/43/34586_
0.499680.00.21339.12
91.184.120.211magniti.self.ge:443POST /api/App/ReAuthentication/5753cd47-da3b-409c-bbe8-33e4237d

40-15024370/225/34437_
2.911730.02.06335.11
217.147.236.164billing.self.com.ge:443NULL

41-150103920/38/34512_
0.424540.00.15338.34
187.251.143.76billing.self.com.ge:443NULL

42-1508470/82/34616_
3.731730.00.35321.35
217.147.236.164billing.self.com.ge:443NULL

43-15013420/6/34466_
0.091760.00.03325.62
217.147.236.164billing.self.com.ge:443NULL

44-150307290/10/34486_
0.1217220.00.04325.59
217.147.236.164billing.self.com.ge:443NULL

45-150224950/187/34565_
2.411750.00.86325.02
217.147.236.164veziri.self.ge:443GET /cron/pool.php HTTP/1.1

46-150251281/149/34453C
3.650654.31.57340.18
212.72.146.106billing.self.com.ge:443NULL

47-15055890/52/34423_
0.63860.00.69317.71
109.238.233.18tsurgroup.self.ge:443POST /api/App/GetLogo/f271f886-6445-4ab6-a3d1-bc548c883106/6428

48-150-0/0/34372.
0.661400.00.00330.85
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

49-150277580/17/34218_
0.19121300.00.06301.41
217.147.236.164billing.self.com.ge:443NULL

50-150307431/11/34543K
0.1523714.20.04341.92
217.147.236.164ici-paris.self.ge:443GET /cron/sms.php HTTP/1.1

51-150</

Found on 2024-05-27 15:59

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52d670fcf2

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Friday, 24-May-2024 12:33:51 +04
Restart Time: Tuesday, 21-May-2024 04:08:38 +04
Parent Server Config. Generation: 108
Parent Server MPM Generation: 107
Server uptime:  3 days 8 hours 25 minutes 13 seconds
Server load: 6.66 10.16 10.55
Total accesses: 27443794 - Total Traffic: 273.0 GB
CPU Usage: u3558.77 s1615.22 cu0 cs0 - 1.79% CPU load
94.8 requests/sec - 1.0 MB/second - 10.4 kB/request
195 requests currently being processed, 906 idle workers
K_______K_.___K___K__K__._K_K_C_______KK______K_K__K__K_.K_KC_C_
_W______________K_.__C________K_________________C_______K_R_____
_CKK___________KC____C_________K___.W______K_C____K_____K_______
___K________K_____C__________K______K__C_________KK___________K_
_C____.__.___K_K______K____.___KK_____R_____RC__C____R_.K_K_K___
___K__K______K______.__________K____C___._______K__K____K_______
____._C___C_______K________._K___KK__CK______C_K_____K__KC_K___K
__C________K____K_____.___K_.KC______K__________________R______K
_____.R___.K____C__C__.__.______KK_____________K_K_________C____
_K_____C___C__.__C__________.___C___K_____________K___.____C___K
___K_______.____C__R_____._RCK._______K__________R___C_._K_K____
_._.._K____C___._____.____K._____C.___________R___C__C._____K_C_
____________C.__.____C_.__....__..__.___.__K______.__.__K__.___K
W____C_.C__C.______.__K______K__._C__C___.CK___C__.__K_.__K_K.__
W_K_______.K____C._._________.K__._____._W__.__C.__.._._K______K
_K____K_______.____KK____.__.._K__..KK._K_____.___C_._____K_KC._
_.K_____..__.____..___C_.._.________.___.C______._________._K_W_
.___K_K_.___W.__._____C___.__C_KC...___K__.C______K________..__.
.___...__.___.C....._._................_.__.._K_......_W_......_
......._.._......K_....R...K_.........._...._.._...._....._...K.
..._._..._......._..._.._.K.._._....._.........._...K.._......._
.._......................................................_......
................................................................
.........................................R......................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-107210441/181/26203K
6.592544.11.63250.31
81.16.240.38globalerty.self.ge:443GET /status/01008060683/?t=1716539630053 HTTP/1.1

1-107132160/56/26194_
0.9316570.00.48259.67
178.134.3.225billing.self.com.ge:443NULL

2-10780290/170/25964_
4.7510660.01.01238.85
80.241.253.62billing.self.com.ge:443NULL

3-107183620/162/26199_
2.67580.03.27250.85
217.147.236.164billing.self.com.ge:443NULL

4-107218040/89/26190_
4.9716650.01.46254.67
109.238.237.82billing.self.com.ge:443NULL

5-10749310/174/26265_
5.08080.02.51240.74
217.147.236.164billing.self.com.ge:443NULL

6-107300790/41/26272_
0.582660.00.15259.98
178.134.89.58spar.self.ge:443POST /api/Device/InsertDeviceData/3f4adad1d54fa251 HTTP/1.1

7-107255980/383/26297_
6.1312510.02.21258.14
31.146.188.250billing.self.com.ge:443NULL

8-107303221/197/26439K
6.430562.73.14270.06
92.241.76.10lazikacapital.self.ge:443GET /status/61009031573/?t=1716539630984 HTTP/1.1

9-107132620/55/26182_
0.976580.00.22271.17
92.54.229.246coffeelab.self.ge:443POST /api/App/RegisterLink/b02b00f5-3259-42a1-9aa9-c91b71ccfbde

10-107-0/0/26083.
0.243500.00.00244.48
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

11-107285080/137/25970_
2.678520.01.37292.68
31.146.131.226spar.self.ge:443POST /api/Device/InsertDeviceData/0cdddd9f89abc38f HTTP/1.1

12-107132630/52/26037_
0.8751920.00.28234.87
217.147.236.164billing.self.com.ge:443NULL

13-10771020/114/26176_
2.767440.02.19260.44
109.238.225.246medi.self.ge:443POST /api/reader/ HTTP/1.1

14-107285421/124/26121K
1.850903.90.67263.77
217.147.236.164unimedi.self.ge:443GET /cron/sms.php HTTP/1.1

15-107243600/244/26256_
4.422100.03.19248.04
217.147.236.164billing.self.com.ge:443NULL

16-107218520/41/26090_
0.61131670.00.15251.52
217.147.236.164billing.self.com.ge:443NULL

17-107108230/9/25943_
0.136560.00.03250.14
37.131.231.106billing.self.com.ge:443NULL

18-10771041/124/26025K
2.121664.11.20258.86
5.152.14.2dhl.self.ge:443GET /status/555264242/?t=1716539626464 HTTP/1.1

19-10739590/68/26022_
1.3816580.00.28259.66
212.72.147.242billing.self.com.ge:443NULL

20-107165750/44/26013_
0.838610.00.26245.64
178.134.43.74serpens.self.ge:443GET /api/cards/ HTTP/1.1

21-107305481/228/26173K
3.47283.91.96262.10
217.147.236.164tca.self.ge:443GET /cron/sms.php HTTP/1.1

22-1079380/16/26222_
0.2211590.00.06257.10
5.152.102.201billing.self.com.ge:443NULL

23-107270600/35/25962_
0.5661200.00.31254.86
185.115.6.101magniti.self.ge:443POST /api/App/GetWorkingStatus/01ded85e-1ffb-454c-a5f4-3597e63a

24-107-0/0/25894.
2.211800.00.00257.17
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

25-107166520/220/25916_
6.668380.00.98237.29
212.72.128.170billing.self.com.ge:443NULL

26-107108551/8/25681K
0.120554.20.03258.57
92.51.83.198westinvest.self.ge:443GET /status/01024017899/?t=1716539631852 HTTP/1.1

27-107132530/104/25686_
1.741520.01.26232.26
94.43.99.254spar.self.ge:443POST /api/Device/InsertDeviceData/1e3830204cc82beb HTTP/1.1

28-107301561/31/25968K
0.431522431.51.20252.84
178.134.71.194pragma.self.ge:443GET /buffer/tmp/pragma/RenderPhoto/481-user_photo_800_268c5e0ef

29-107184550/96/25818_
1.99200.00.79244.05
80.241.251.210billing.self.com.ge:443NULL

30-107218271/103/25951C
2.0303714.11.05246.04
217.147.236.164billing.self.com.ge:443NULL

31-10711830/224/25803_
8.801680.01.68259.73
185.115.6.248billing.self.com.ge:443NULL

32-107136330/266/25914_
9.482550.03.55249.09
178.134.43.30spar.self.ge:443POST /api/Device/InsertDeviceData/0120dc6c3249e6eb HTTP/1.1

33-107275480/230/25700_
4.493520.01.77234.24
37.131.224.34gulf.self.ge:443POST /api/App/GetWorkingStatus/ded275eb-1ae1-4fc7-8953-c980a856

34-10799900/62/25864_
1.434470.01.45272.68
213.131.51.150spar.self.ge:443POST /api/Device/InsertDeviceData/cc2ac98e99b3fa34 HTTP/1.1

35-10739850/68/25726_
1.248130.00.39249.50
217.147.236.164billing.self.com.ge:443NULL

36-107185070/96/25574_
1.737440.00.65223.19
109.238.225.246medi.self.ge:443POST /api/reader/ HTTP/1.1

37-107132920/65/25901_
1.010740.00.61273.44
209.198.153.53billing.self.com.ge:443NULL

38-107108561/8/25793K
0.1301553.90.03247.27
217.147.236.164tzd.self.ge:443GET /cron/sms.php HTTP/1.1

39-10714144/173/25914K
3.90289.51.22260.23
185.49.166.250betlive.self.ge:443POST /?option=profile&task=keepAlive HTTP/1.1

40-10781130/161/25781_
2.62500.00.73256.99
127.0.0.1billing.self.com.ge:80GET /server-status?auto HTTP/1.1

41-107240000/36/25857_
0.5322580.00.16260.60
217.147.236.164billing.self.com.ge:443NULL

42-107148180/206/25927_
6.45780.02.68243.81
185.115.6.101magniti.self.ge:443POST /api/App/GetLogo/01ded85e-1ffb-454c-a5f4-3597e63a4821/c092

43-107260760/352/25880_
5.6015550.03.69257.80
176.221.255.62billing.self.com.ge:443NULL

44-10769700/65/25851_
4.436540.01.42249.03
92.241.77.162billing.self.com.ge:443NULL

45-107207890/47/25899_
0.6761400.00.57246.00
185.115.6.37ittech.self.ge:443POST /api/App/RegisterLink/3d972d7d-d0a4-4e02-8297-d62bd2a61690

46-10770801/13/25829K
0.192545.80.05266.41
212.72.147.242geocredit.self.ge:443GET /status/28001112665/?t=1716539628882 HTTP/1.1

47-107312250/74/25714_
1.262570.00.64246.79
92.241.69.54billing.self.com.ge:443NULL

48-1079701/21/25787K
0.272584.20.09255.40
92.241.65.50nagemo.self.ge:443GET /status/novikevich.a/?t=1716539629526 HTTP/1.1

49-10799910/61/25550_
1.0110610.00.34228.47
92.241.69.54billing.self.

Found on 2024-05-24 08:33

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52d9639cf4

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Thursday, 23-May-2024 06:54:13 +04
Restart Time: Tuesday, 21-May-2024 04:08:38 +04
Parent Server Config. Generation: 58
Parent Server MPM Generation: 57
Server uptime:  2 days 2 hours 45 minutes 34 seconds
Server load: 1.21 0.82 0.77
Total accesses: 16905426 - Total Traffic: 169.4 GB
CPU Usage: u2357.58 s1034.16 cu0 cs0 - 1.86% CPU load
92.5 requests/sec - 0.9 MB/second - 10.5 kB/request
44 requests currently being processed, 976 idle workers
______________________________K_________________________________
___________________________W__________________K____R___K________
________________________________________________________________
_______________K__________________K___________________R_________
___________________________K_______K____________________________
_______________________________C____C______________._______.____
________.____._._______K.___.__..___._______._______________....
___.______.____.._______.____.__.________._._______K___.____._._
__..____.R.______R_.._______._K.______________.____R.K_____.__._
______.K_.._._...___.__._______________C_._._________.__K._.____
_W_____.____RC____..______._______.________.__.________._.______
____._K__.________._____W_.__.._K_____.__..________.__.._______.
__K__________..C_____._.__._.____._______.K.__._____._________._
._______.._____.____.__._.__._______K__.___.___._________._____.
_K_.__K__.___._____..W___K___.____.K__._______._.____.___K__..__
__________.____________.______K..._____.___________.__K____K__..
__._______._________.._..___________________________.___________
___._..____________..R_.______.._____________..________K__..____
_K___._...._..._._..............................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-57238630/148/16274_
1.721370.00.59152.82
217.147.236.164billing.self.com.ge:443NULL

1-57315630/96/16267_
1.170190.00.38160.91
217.147.236.164billing.self.com.ge:443NULL

2-5741940/49/16008_
0.52160.00.20145.55
217.147.236.164billing.self.com.ge:443NULL

3-5723880/85/16246_
0.89030.00.34160.21
217.147.236.164billing.self.com.ge:443NULL

4-57137320/37/16327_
0.3801420.00.15158.87
217.147.236.164billing.self.com.ge:443NULL

5-57254180/64/16343_
0.790480.00.26157.72
217.147.236.164tolia.self.ge:443GET /cron/controllers_data.php HTTP/1.1

6-57128070/2/16359_
0.030660.00.01168.57
217.147.236.164billing.self.com.ge:443NULL

7-57315820/99/16320_
1.32040.00.40162.21
217.147.236.164billing.self.com.ge:443NULL

8-5750850/201/16237_
2.5703980.01.10156.34
178.134.55.54billing.self.com.ge:443NULL

9-57177560/153/16280_
2.17030.00.62171.97
217.147.236.164billing.self.com.ge:443NULL

10-57254250/65/16214_
0.671150.00.26155.06
217.147.236.164billing.self.com.ge:443NULL

11-579890/52/16086_
0.58030.00.21197.84
217.147.236.164billing.self.com.ge:443NULL

12-57233760/74/16253_
0.850330.00.29151.68
217.147.236.164billing.self.com.ge:443NULL

13-57162460/73/16271_
3.480610.00.31162.89
217.147.236.164schirnhofer.self.ge:443GET /cron/controllers_data.php HTTP/1.1

14-57309270/23/16183_
0.27150.00.22155.82
217.147.236.164billing.self.com.ge:443NULL

15-57276350/23/16423_
0.24040.00.09162.35
217.147.236.164billing.self.com.ge:443NULL

16-57137440/34/16241_
3.450830.00.15154.20
217.147.236.164billing.self.com.ge:443NULL

17-5723980/92/16106_
0.930200.00.37161.45
217.147.236.164billing.self.com.ge:443NULL

18-57276750/26/16116_
0.38050.00.10159.36
217.147.236.164billing.self.com.ge:443NULL

19-5772350/48/16174_
0.5204080.00.19169.94
217.147.236.164pc.self.ge:443GET /cron/controllers_data.php HTTP/1.1

20-5793380/125/16181_
1.810480.00.50153.02
31.146.188.178spar.self.ge:443POST /api/Device/InsertDeviceData/3c3af4cbd756b858 HTTP/1.1

21-57128150/2/16269_
0.02160.00.01163.41
217.147.236.164zgvaludi.self.ge:443GET /cron/pool.php HTTP/1.1

22-57128160/2/16209_
0.02170.00.01161.40
217.147.236.164wyndham.self.ge:443GET /cron/pool.php HTTP/1.1

23-57310050/17/16114_
0.1803940.00.07159.76
217.147.236.164billing.self.com.ge:443NULL

24-57285050/61/16121_
0.6101080.00.24163.51
217.147.236.164billing.self.com.ge:443NULL

25-57135160/118/16136_
1.44190.00.47155.55
217.147.236.164billing.self.com.ge:443NULL

26-5742090/49/15981_
0.531220.00.19166.44
217.147.236.164billing.self.com.ge:443NULL

27-5788660/672/15991_
14.930840.02.73142.22
217.147.236.164billing.self.com.ge:443NULL

28-57267070/257/16075_
3.460490.01.05154.92
217.147.236.164billing.self.com.ge:443NULL

29-57128230/3/15939_
0.040780.00.01147.69
217.147.236.164support.self.ge:443GET /cron/controllers_data.php HTTP/1.1

30-5742101/52/16047K
0.56104.60.21150.08
185.163.3.4td.self.ge:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

31-5766320/9/16134_
0.11160.00.04162.27
217.147.236.164zpa-360.self.ge:443GET /cron/pool.php HTTP/1.1

32-5755160/86/16184_
0.99050.00.33157.20
217.147.236.164billing.self.com.ge:443NULL

33-57215720/30/15930_
0.300840.00.12148.22
217.147.236.164x2.self.ge:443GET /cron/controllers_data.php HTTP/1.1

34-57245950/26/16118_
0.3003590.00.11167.09
217.147.236.164billing.self.com.ge:443NULL

35-57177630/138/16017_
4.310360.00.55152.24
217.147.236.164billing.self.com.ge:443NULL

36-5766480/8/15864_
0.08040.00.03144.33
217.147.236.164zgvaludi.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

37-57128240/4/15959_
0.05160.00.02167.41
217.147.236.164zoommer.self.ge:443GET /cron/car_lead.php HTTP/1.1

38-57119990/82/16013_
0.83160.00.33152.93
217.147.236.164billing.self.com.ge:443NULL

39-5723990/93/16073_
0.981320.00.37161.80
217.147.236.164billing.self.com.ge:443NULL

40-57162660/81/15951_
0.8211170.00.34153.07
80.241.243.66enterprise.self.ge:443GET /api/cards/?R=II-1-d2-r2_out HTTP/1.1

41-57185560/34/16078_
0.3803380.00.13164.78
217.147.236.164billing.self.com.ge:443NULL

42-57130430/267/16155_
6.840270.01.09149.95
217.147.236.164billing.self.com.ge:443NULL

43-5772430/45/16060_
0.4501110.00.19151.07
217.147.236.164billing.self.com.ge:443NULL

44-5785970/87/16022_
4.630970.00.41155.58
217.147.236.164billing.self.com.ge:443NULL

45-57246030/25/15968_
0.25070.00.10147.02
217.147.236.164billing.self.com.ge:443NULL

46-575580/161/15969_
5.1911170.00.69156.60
31.146.188.26spar.self.ge:443POST /api/Device/InsertDeviceData/ce191addc621ab9f HTTP/1.1

47-57285060/60/15949_
0.701240.00.23156.96
217.147.236.164billing.self.com.ge:443NULL

48-57276890/19/15994_
0.1903730.00.07151.61
217.147.236.164billing.self.com.ge:443NULL

49-57276900/23/15763_
2.91180.00.42136.54
217.147.236.164billing.self.com.ge:443NULL

50-57276910/23/15988_
0.241820.00.09159.06
31.146.160.22spar.self.ge:443POST /api/Device/InsertDeviceData/3a2843c799bcc642 HTTP/1.1

51-57135220/119/16137_
6.660750.01.86164.94
217.147.236.164billing.self.com.ge:443NULL

52-57137450/41/16000_
0.480<

Found on 2024-05-23 02:53

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc52392c0af4

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Monday, 13-May-2024 01:04:57 +04
Restart Time: Wednesday, 01-May-2024 08:04:53 +04
Parent Server Config. Generation: 376
Parent Server MPM Generation: 375
Server uptime:  11 days 17 hours 4 seconds
Server load: 5.57 8.13 7.82
Total accesses: 87592121 - Total Traffic: 767.7 GB
CPU Usage: u2356.49 s1084.76 cu0 cs0 - .34% CPU load
86.6 requests/sec - 0.8 MB/second - 9.2 kB/request
31 requests currently being processed, 966 idle workers
_________._.____.K______K_________________K___________C_________
________________________________________._____________._._._____
___W____K___________W_____________________C_____._______________
.____._________._______.C_______.__._K____.________________K____
______.____________.__________.___________.__C____._____._______
________________________________________________________________
___.______.___________________K_W___________________________C___
_______________.__.________C__._____________..____.______.____._
____.K.__________.______._.________.______________W._______.____
..__.___.________._______._._____C.____._____K________._____.___
__.__._K_____._____._._______.__________._.__._C______________._
._________.____.________________________.__..__....____._______K
_______..________...__._________.____.________..._________._R_._
_.________.________._K.__________.__.__.__._______.____.________
._._____.______________.__._____.____.____._.__._.._____.__.____
_____.__________._.R._.__.____W__K_._._____._______.___.________
__._..___._..__._______..K_.__..________._.________________.____
___________.____C_.____.___C____.__....____.________............
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-37551420/29/87359_
0.361090.00.12735.97
217.147.236.164billing.self.com.ge:443NULL

1-375229660/89/87074_
1.4026600.00.35763.56
178.134.42.58spar.self.ge:443POST /api/Device/InsertDeviceData/eeae7909b0c353d3 HTTP/1.1

2-375173140/57/87046_
0.8514590.00.23778.75
178.134.105.38spar.self.ge:443POST /api/Device/InsertDeviceData/b571ad9149859374 HTTP/1.1

3-375126140/139/86535_
2.324700.00.56801.71
217.147.236.233dhl.self.ge:443GET /api/Cards/AllCards HTTP/1.1

4-375140760/60/86565_
0.823600.00.54716.04
31.146.61.82spar.self.ge:443POST /api/Device/InsertDeviceData/a097bda58e8ac354 HTTP/1.1

5-375202610/16/86756_
0.20131620.00.07772.27
217.147.236.164billing.self.com.ge:443NULL

6-375164470/101/86582_
2.551510610.00.50767.55
217.147.236.164billing.self.com.ge:443NULL

7-37586830/64/86303_
1.7019720.00.26729.97
80.83.141.66billing.self.com.ge:443NULL

8-375236830/47/86484_
0.5751260.00.31743.94
149.3.104.150spar.self.ge:443POST /api/Device/GetDiffPins/d69aa6fa5942a68b HTTP/1.1

9-375-0/0/86173.
0.843700.00.00755.52
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

10-37519130/33/86426_
0.4124110.00.13756.98
217.147.236.164billing.self.com.ge:443NULL

11-375-0/0/85812.
0.041500.00.00695.48
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

12-375309880/42/86510_
0.55282660.00.17762.68
217.147.236.164billing.self.com.ge:443NULL

13-375109110/314/86420_
8.022790.01.59756.50
217.147.236.164billing.self.com.ge:443NULL

14-375118210/22/86185_
0.284600.00.09739.44
178.134.69.146spar.self.ge:443POST /api/Device/InsertDeviceData/e9151e454907cb46 HTTP/1.1

15-37551550/31/86003_
0.5920100.00.12736.94
217.147.236.164billing.self.com.ge:443NULL

16-375-0/0/86112.
0.321000.00.00739.60
127.0.0.1billing.self.com.ge:80OPTIONS * HTTP/1.0

17-375279651/83/86158K
0.92204.50.32738.17
92.223.120.15td.self.ge:443GET /debug/default/view?panel=config HTTP/1.1

18-37583920/27/85976_
0.3515670.00.11760.96
94.43.1.74spar.self.ge:443POST /api/Device/InsertDeviceData/3d71750dc9090d90 HTTP/1.1

19-375173190/58/86317_
1.423720.00.26773.37
94.240.207.252navne.self.ge:443POST /api/App/GetWorkingStatus/58974fed-caba-4257-bbc5-b8b0da6b

20-375303040/3/86102_
0.0532820.00.01713.64
94.43.85.222spar.self.ge:443POST /api/Device/InsertDeviceData/5112aaedcf9e7819 HTTP/1.1

21-37587060/71/85918_
0.9918100.00.61749.67
217.147.236.164billing.self.com.ge:443NULL

22-37551560/30/85921_
0.381640.00.12750.59
178.134.200.122spar.self.ge:443POST /api/Device/InsertDeviceData/bb6836d5d15c067b HTTP/1.1

23-37587070/62/85669_
0.752990.00.28721.31
217.147.236.164billing.self.com.ge:443NULL

24-3753051/242/86142K
7.83234.51.27775.23
92.223.120.12td.self.ge:443GET /v2/_catalog HTTP/1.1

25-375216110/206/85643_
9.8033110.00.84718.71
217.147.236.164billing.self.com.ge:443NULL

26-375270810/7/85933_
0.090690.00.03725.62
31.146.176.198spar.self.ge:443POST /api/Device/InsertDeviceData/a0773584e2ef4603 HTTP/1.1

27-37556900/146/85603_
2.051700.00.59734.55
217.147.236.164billing.self.com.ge:443NULL

28-37567250/270/85401_
8.03102490.01.52714.04
217.147.236.164billing.self.com.ge:443NULL

29-375268850/45/85618_
0.51161800.00.28746.25
193.228.126.87

30-37567370/268/85400_
9.0422600.01.70731.21
212.72.146.106billing.self.com.ge:443NULL

31-375203100/14/85537_
0.1618570.00.06737.09
77.92.233.170spar.self.ge:443POST /api/Device/InsertDeviceData/1e8d56ebf62f5e1a HTTP/1.1

32-37512110/114/85474_
1.585860.00.46715.50
109.238.230.214aversiclinic.self.ge:443GET /api/cards/ HTTP/1.1

33-37522780/77/85207_
0.87011640.00.30742.39
217.147.236.164billing.self.com.ge:443NULL

34-37556910/146/85544_
1.9232750.00.58755.49
45.9.32.21billing.self.com.ge:443NULL

35-37583990/23/85394_
3.70202920.00.12712.61
217.147.236.164billing.self.com.ge:443NULL

36-375105620/276/85704_
3.6723100.01.58743.25
217.147.236.164billing.self.com.ge:443NULL

37-375141310/59/85575_
0.762590.00.62747.16
217.147.236.164billing.self.com.ge:443NULL

38-37573600/188/85130_
2.952370.00.82736.00
217.147.236.164billing.self.com.ge:443NULL

39-375119470/27/85600_
0.334610.00.30735.49
178.134.155.230spar.self.ge:443POST /api/Device/InsertDeviceData/86d8da76682efb00 HTTP/1.1

40-37584000/28/85275_
0.68103810.00.11728.63
217.147.236.164billing.self.com.ge:443NULL

41-37584140/27/85366_
0.4225600.00.11747.86
31.146.219.250spar.self.ge:443POST /api/Device/InsertDeviceData/6d02162e4837f6bf HTTP/1.1

42-37551641/29/85218K
0.37210484.10.11741.33
217.147.236.164mirmedica.self.ge:443GET /cron/holidays.php HTTP/1.1

43-375196710/99/85733_
1.2324620.01.71758.63
176.221.166.198spar.self.ge:443POST /api/Device/InsertDeviceData/4255c41ce2d6df7d HTTP/1.1

44-375236910/50/85348_
0.6618750.00.20755.08
212.58.120.45magniti.self.ge:443POST /api/App/GetWorkingStatus/3defce6a-414b-42ab-aa2c-889279ca

45-375294640/326/84826_
5.40311130.01.39752.30
92.51.102.210spar.self.ge:443POST /api/Device/InsertDeviceData/8f5c4a2e31ae1787 HTTP/1.1

46-375173200/57/85376_
0.8517250.00.22732.11
63.143.42.252enterprise.self.ge:443HEAD / HTTP/1.1

47-37519200/31/85395_
0.6933660.00.34735.33
37.232.90.74spar.self.ge:443POST /api/Device/InsertDeviceData/e33b12053b4137a6 HTTP/1.1

48-37541730/198/85450_
3.571670.00.80758.54
92.51.119.218spar.self.ge:443POST /api/Device/InsertDeviceData/6e43a3684e7b7ed7 HTTP/1.1

49-375112050/360/85253_
4.867780.01.43733.43
185.49.166.250billing.self.com.ge:443NULL

Found on 2024-05-12 21:04

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f5cabc52f5cabc5227ff8f75

Apache Status

Apache Server Status for td.self.ge (via 217.147.236.164)

Server Version: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jan 27 2023 17:36:29

Current Time: Monday, 06-May-2024 18:38:18 +04
Restart Time: Wednesday, 01-May-2024 08:04:53 +04
Parent Server Config. Generation: 85
Parent Server MPM Generation: 84
Server uptime:  5 days 10 hours 33 minutes 24 seconds
Server load: 0.93 1.05 1.35
Total accesses: 40242754 - Total Traffic: 335.0 GB
CPU Usage: u3120.56 s1606.39 cu0 cs0 - 1.01% CPU load
85.6 requests/sec - 0.7 MB/second - 8.7 kB/request
99 requests currently being processed, 828 idle workers
_____________KC____R___________________________________KKK___K__
K____C___________________K_________.___________C___K____________
__________K______R__R_______________________R__________C______R_
______________K__________K__________K_____________C___________C_
_________________________K__C__R______C____C_________K__K_______
____K________K.K____C__K__.C___C________K________R_K_______K____
____K_________K_________________________R____________K__________
_________C__C___K____________C__________________________C___C___
___W_C________K______W__K_C________C_________CC_________________
K_KK_C____________K____________________K__C___________K_________
K_K___________________.__._..__._._...____.___.K_..____._R.____.
___..___.__K__K..._.C_.__....____.___._.____.K_.K.___K____...R__
.._.._.____._K__._.___..__.K____..__R____._.._R..KK_._.K___..___
._..____.__._..__..__..KK______._______.____..____.._._______._.
.___...___.___.._____._._._._K__._.___.__K_C_.._.__.___C__.____.
_..._._..__K___.._.__._._....._...._.__._..__......_______......
.....R........_.__...._.._...........C..._........._............
..K..._...._....._....K_._.......___....__._.....K._....._....._
_........._._.................._._....._.._......_..........._..
...C_............_...._......__.................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-8428950/136/39871_
1.812800.00.91317.90
37.232.70.107air.self.ge:443POST /api/App/GetMenu/8198d2e1-562b-4ed6-8b09-b0972485476d/d280

1-84321120/21/40025_
0.251690.00.09331.77
178.134.88.110spar.self.ge:443POST /api/Device/InsertDeviceData/b70564b9c9bd5aab HTTP/1.1

2-84173720/119/39706_
1.60480.01.01336.57
217.147.236.164thearthouse.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

3-84170870/163/39775_
2.70440.00.88355.53
217.147.236.164billing.self.com.ge:443NULL

4-84177740/76/39778_
7.79440.00.35304.57
217.147.236.164vevees.self.ge:443GET /cron/controllers_data.php HTTP/1.1

5-8476880/8/39830_
0.104720.00.03342.99
92.51.102.210spar.self.ge:443POST /api/Device/InsertDeviceData/8f5c4a2e31ae1787 HTTP/1.1

6-8429420/52/39782_
3.5641560.00.47329.30
217.147.236.164billing.self.com.ge:443NULL

7-84206230/116/39573_
1.8441740.00.67310.43
217.147.236.164billing.self.com.ge:443NULL

8-84280980/107/39543_
1.561670.00.43333.28
31.192.49.94magniti.self.ge:443POST /api/App/GetMenu/c49e7e4e-cecb-4d89-afbb-28e32a74cc43/0619

9-8477080/7/39510_
0.09440.00.03336.59
217.147.236.164tzd.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

10-84256470/26/39690_
0.484850.00.11326.35
217.147.236.164scroll.self.ge:443GET /cron/controllers_data.php HTTP/1.1

11-84126200/46/39169_
1.24300.00.19301.37
92.223.63.7billing.self.com.ge:80NULL

12-84173850/121/40002_
2.0641340.01.41345.20
217.147.236.164billing.self.com.ge:443NULL

13-84275753/149/39387K
2.350511366.01.70324.80
185.70.52.244kirurgia.self.ge:443GET /buffer/tmp/kirurgia/RenderPhoto/44-user_photo_3129?v=17150

14-84243221/66/39532C
0.79116112.20.37318.49
62.168.190.234billing.self.com.ge:443NULL

15-84211300/68/39371_
0.804910.00.27323.37
217.147.236.164smash.self.ge:443GET /cron/controllers_data.php HTTP/1.1

16-84277670/54/39538_
4.052190.00.48333.04
217.147.236.164ultra.self.ge:443GET /cron/poolDevice.php HTTP/1.1

17-84109590/2/39470_
0.044790.00.01313.57
217.147.236.164billing.self.com.ge:443NULL

18-84307720/183/39525_
2.272100.01.25330.18
217.147.236.164tiflispalace.self.ge:443GET /cron/poolDevice.php HTTP/1.1

19-84224070/32/39685R
0.3651980.00.13336.37
178.134.55.54

20-84321240/17/39448_
0.19090.00.07316.84
217.147.236.164billing.self.com.ge:443NULL

21-8460030/55/39614_
0.6641560.00.22329.76
217.147.236.164zodi.self.ge:443GET /cron/controllers_data.php HTTP/1.1

22-84288290/19/39583_
0.294690.00.07340.46
217.147.236.164billing.self.com.ge:443NULL

23-84141330/118/39476_
1.47450.00.47328.84
217.147.236.164silkdevelopment.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

24-84224240/30/39658_
0.341930.00.12362.07
37.232.46.122billing.self.com.ge:443NULL

25-8442420/12/39503_
0.173670.00.05319.53
31.146.32.34tsiskvili.self.ge:443GET /api/cards/ HTTP/1.1

26-84109710/3/39737_
0.050610.00.01328.07
94.43.236.82spar.self.ge:443POST /api/Device/InsertDeviceData/6cd3c0f1300af624 HTTP/1.1

27-84243230/77/39517_
0.97260.00.68314.06
217.147.236.164usa2georgia.self.ge:443GET /cron/poolDevice.php HTTP/1.1

28-84211390/74/39449_
5.9801410.00.90310.24
45.9.44.171billing.self.com.ge:443NULL

29-8429510/59/39476_
0.72440.00.78322.74
217.147.236.164select.self.ge:443GET /cron/controllers_data.php HTTP/1.1

30-84224250/36/39458_
0.414160.00.39335.11
217.147.236.164billing.self.com.ge:443NULL

31-84288300/20/39528_
0.24440.00.07334.81
217.147.236.164billing.self.com.ge:443NULL

32-8442430/11/39406_
0.1641550.00.04314.62
217.147.236.164billing.self.com.ge:443NULL

33-84211470/75/39205_
0.914970.00.30320.71
217.147.236.164pragma.self.ge:443GET /cron/controllers_data.php HTTP/1.1

34-84126870/41/39359_
0.492110.00.16321.47
217.147.236.164win-win.self.ge:443GET /cron/poolDevice.php HTTP/1.1

35-8432060/298/39574_
7.8241040.02.20320.27
217.147.236.164ve.self.ge:443GET /cron/controllers_data.php HTTP/1.1

36-8420790/309/39586_
7.21440.04.67328.17
217.147.236.164ve.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

37-84318080/98/39394_
2.254270.00.89317.64
217.147.236.164billing.self.com.ge:443NULL

38-84318130/102/39185_
1.18270.00.43315.20
217.147.236.164seraltech.self.ge:443GET /cron/poolDevice.php HTTP/1.1

39-84241420/148/39415_
2.034230.00.64306.09
217.147.236.164tbsrv.self.ge:443GET /cron/car_lead.php HTTP/1.1

40-84318330/104/39336_
1.76250.00.81315.67
217.147.236.164select.self.ge:443GET /cron/poolDevice.php HTTP/1.1

41-8493210/46/39356_
0.54440.00.19317.80
217.147.236.164savse.self.ge:443GET /cron/controllers_data.php HTTP/1.1

42-84288440/23/39329_
0.352120.00.31320.11
217.147.236.164tsiskvili.self.ge:443GET /cron/poolDevice.php HTTP/1.1

43-8477090/8/39451_
0.09440.00.03327.53
217.147.236.164wendys.self.ge:443GET /cron/fix/rmduplicates.php?l=1 HTTP/1.1

44-8427570/99/39326_
2.904360.00.85296.59
217.147.236.164billing.self.com.ge:443NULL

45-8442650/12/38851_
0.172190.00.05325.89
217.147.236.164unison.self.ge:443GET /cron/poolDevice.php HTTP/1.1

46-84109720/2/39261_
0.034850.00.01312.71
217.147.236.164billing.self.com.ge:443NULL

47-8477180/7/39330_
0.08260.00.03323.83
217.147.236.164zodi.self.ge:443GET /cron/poolDevice.php HTTP/1.1

48-84224390/32/39722_
0.512110.00.39345.23
217.147.236.164ve.self.ge:443GET /cron/poolDevice.php HTTP/1.1

49-84104060/47/39322_
0.594170.00.19309.24
217.147.236.164billing.self.com.ge:443NULL

50-8429530/55/39335_
<

Found on 2024-05-06 14:38

Create report

Laravel development panel enabled
The application has Laravel development panel enabled.

It enables an attacker to access the following sensitive content :

System configuration

Request log, including POST request with credentials and/or api keys
IP: 81.28.12.12
Domain: blog.homaaa.ir
Port: 443
URL: https://blog.homaaa.ir

First seen 2024-10-09 02:31
Last seen 2024-11-22 06:26
Open for 44 days
- Fingerprint: 3ae8115d762f12d0636a8358636a8358636a8358636a8358636a8358636a8358
```
Laravel Telescope enabled at https://blog.homaaa.ir
```
  Found on 2024-11-22 06:26
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdnimg.magimg.com
Port: 80
URL: http://cdnimg.magimg.com

First seen 2022-12-10 03:58
Last seen 2024-11-22 04:57
Open for 713 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b711329ff4234c0331bac33aee3d476238

Found 128 files trough .DS_Store spidering:

/a.html
/ads.txt
/css.css
/favicon.ico
/files
/index.html
/upload.php
/uploads
/uploads/00210fe7.jpeg
/uploads/00260f6a.jpeg
/uploads/00262.jpeg
/uploads/010-Editor.GIF
/uploads/010-editor.png
/uploads/1349188.jpg
/uploads/1512988469_acrok-video-converter_01.jpg
/uploads/16502.jpg
/uploads/17690.jpg
/uploads/17797.jpeg
/uploads/18-strings.png
/uploads/1click-duplicate-finder.jpeg
/uploads/1password.jpg
/uploads/1password.png
/uploads/2.png
/uploads/2284.jpg
/uploads/24-hour-wallpaper.jpg
/uploads/25631.png
/uploads/27391.jpg
/uploads/2do.jpg
/uploads/32-lives.jpg
/uploads/32318.png
/uploads/36467.png
/uploads/36705.jpg
/uploads/3d-coat.jpg
/uploads/3d-lut-creator.jpg
/uploads/3dimmaker.jpg
/uploads/3dweather.jpg
/uploads/40014.png
/uploads/404bypass.png
/uploads/44972.png
/uploads/464920.jpeg
/uploads/4678.jpg
/uploads/4ddig.jpg
/uploads/4k-slideshow-maker.jpg
/uploads/4k-stogram.jpg
/uploads/4k-video-downloader.jpg
/uploads/4k-youtube-to-mp3.jpg
/uploads/4kstogram.jpg
/uploads/4mekey.jpg
/uploads/4ukey-password-manager.jpg
/uploads/5.png
/uploads/512900.jpg
/uploads/54091.png
/uploads/6e016c.png
/uploads/7-days-to-die.jpg
/uploads/80-days.jpg
/uploads/86687.png
/uploads/87663.png
/uploads/87666.jpg
/uploads/8dio-studio-saxophones.jpg
/uploads/935368.jpg
/uploads/9452.jpg
/uploads/a-better-finder-attributes.png
/uploads/a-better-finder-rename.jpg
/uploads/a-case-of-distrust.jpg
/uploads/a-game-of-thrones.jpg
/uploads/a-monsters-expedition.jpg
/uploads/aad2014 .png
/uploads/abandon-ship.jpg
/uploads/abbyy-lingvo-european.png
/uploads/ABetterFinderAttributes.jpg
/uploads/ableton-live.jpg
/uploads/ableton-live.png
/uploads/accdb-mdb-explorer.jpg
/uploads/acdsee-photo-studio.jpg
/uploads/acdsee-photo-studio.png
/uploads/acdsee-pro-3.jpg
/uploads/acemovi.png
/uploads/acorn.jpg
/uploads/acoustica.jpg
/uploads/acrobat-pro.jpg
/uploads/acrobat-pro.png
/uploads/acrok-hd-video-converter.jpg
/uploads/acrok-mts-converter.jpeg
/uploads/acrok-mxf-converter.jpeg
/uploads/acrok-video-converter-ultimate.jpg
/uploads/acrok-video-converter.jpeg
/uploads/Acronis_True_Image.jpg
/uploads/activedock.png
/uploads/addism.jpg
/uploads/adguard.jpg
/uploads/adjust.jpg
/uploads/adjust.png
/uploads/adobe-acrobat-pro.jpeg
/uploads/adobe-acrobat-pro.jpg
/uploads/adobe-acrobat-pro.png
/uploads/adobe-acrobat-reader.jpg
/uploads/adobe-acrobat-xi.jpeg
/uploads/adobe-after-effects.jpg
/uploads/adobe-animate-cc-2019.jpg
/uploads/adobe-animate-cc.jpeg
/uploads/adobe-audition-cc-2019.jpg
/uploads/adobe-bridge-cc-2018.png
/uploads/adobe-bridge-cc-2019.jpg
/uploads/adobe-bridge.jpg
/uploads/adobe-camera-raw.png
/uploads/Adobe-Captivate.jpg
/uploads/Adobe-Captivate_7.jpg
/uploads/adobe-character-animator.jpg
/uploads/adobe-dimension-cc-2018.jpg
/uploads/adobe-dimension.jpg
/uploads/adobe-dng-converter.jpg
/uploads/adobe-illustrator-cc.jpg
/uploads/adobe-incopy-cc-2019.jpg
/uploads/adobe-indesign-cc.jpg
/uploads/adobe-master-collection.png
/uploads/adobe-muse-cc-2017.jpg
/uploads/adobe-photoshop-cc-2019.jpg
/uploads/adobe-photoshop-elements.jpg
/uploads/adobe-prelude.jpg
/uploads/adobe-premiere-elements-2021.jpg
/uploads/adobe-premiere-elements.jpg
/uploads/adobe-premiere-pro-.jpg
/uploads/adobe-premiere-pro-cc.jpg
/uploads/adobe-premiere-pro.jpg
/uploads/Adobe-SpeedGrade.jpg
/uploads/adobe-zii-2021.jpg
/uploads/adobe-zii-2021.png
/uploads/adobe-zii-patcher.jpg

Found on 2024-11-22 04:57

Severity: low
Fingerprint: 5f32cf5d6962f09c4239b3d84239b3d8dd643d99dbef6ec8bcf316cb34ec718c

Found 8 files trough .DS_Store spidering:

/a.html
/ads.txt
/css.css
/favicon.ico
/files
/index.html
/upload.php
/uploads

Found on 2024-07-14 19:36

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: gcore.tkz.cloudns.org
Port: 443
URL: https://gcore.tkz.cloudns.org

First seen 2024-10-13 15:09
Last seen 2024-11-22 04:38
Open for 39 days

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad987fa08b4

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "73e0d4d4c681bcebb38fc202287ac51695ed79fd9b8b042dd87eafd24d1b937c91f6b5d7cfb22dc1e900117349c80d40",
        "clientHandshake": "4ee1253fbe063b72e831ea61dca1844d4b8e1abbf22589b9b5aba608795c7957db41a12f261a717667436936f62709b0",
        "serverHandshake": "4475bc337f8d87d14eaae515ac632e73a8a84911544bbe69aa37a172c6b872ece2478914b6a1fad07423df3a4fbf908b",
        "serverFinished": "28d5c2db9788eb4484eebdcd421ab20b9a8897f8e71c74a5c570167bd1772303ce54476cca5c484ab3c844b5e2fa2355"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "331",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "/OYnZ9aWGCTLiN/+D2/sBtjJUo5IZZPCCmJRbcBxYsM=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-22 04:38

Fingerprint: b18befd9dd6536aa30550de50413a8abd5cc41267633c86f0cc7e3ad3205db19

{
    "clientTcpRtt": 0,
    "longitude": "8.62950",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "69736d6c683a8e854b26651600a4119f38cf37fb4e5058c9caefec88ccbb718ad35f78f9ab1c367b4b31db328ad711bf",
        "clientHandshake": "739e9e1c8dd8f2de98a9449c6a1054077e250ff5cacfb929b088f81fef6f5f3bd460c8be724f25deb3ad58ead4f1d301",
        "serverHandshake": "b08b5f6bc8b7949592de1ff7187c9434a35a1910fba5d5f07e213260d3fda40b3e3aaa17bec3858dac965214aa034db1",
        "serverFinished": "12faf41a7720b89d66cfc242f20e0058a5d2ddb772e87cff4b075d4cdcfb2ddd81c75cbffd30c65a13c46849d9b82fc2"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "331",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "us+dUbBfeLU8nnQQatJKi9Bawrb5YGIVwm1LxqhHAAk=",
    "region": "Hesse",
    "latitude": "50.10490",
    "postalCode": "60326",
    "regionCode": "HE",
    "asOrganization": "G-Core Labs SA",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-11-18 21:04

Fingerprint: b18befd9dd6536aa30550de50113a3e2fa12d84e63d2fde71f12dfd5ba2b3570

{
    "clientTcpRtt": 7,
    "longitude": "-121.79460",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "a78b7a2b8ad0a21e9f3a4c6a02605799594a3fba0edcd4f9761e1e61f8a8dc27105ee66c0fc4ded2e3c18d520c5fb821",
        "clientHandshake": "91d312bb0f8ed14dfebf0c72943d8278f6549256223229ecf4c0142db8f1994bdf9f9d22b6c42e533c1e460b37de662e",
        "serverHandshake": "c3ad6833c35d83b955f8de4bc22a2f17d8f4b9e0ae307badf420c179b2b83ac29e35c61dc553c3de913e5a00985d6398",
        "serverFinished": "2265d86bd7de9b8adf528a79a9099bb4c713a7486713dbf589d06c10565402d56fc5ee571306e69cc5cb333a423605ec"
    },
    "tlsVersion": "TLSv1.3",
    "city": "San Jose",
    "timezone": "America/Los_Angeles",
    "colo": "SJC",
    "tlsClientHelloLength": "331",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "95119",
    "region": "California",
    "latitude": "37.23790",
    "requestPriority": "",
    "regionCode": "CA",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "807",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "IyrSp20CfQVR3i51+FhO5LlSLb1JbrXQD/r3GE0mTm0="
}

Found on 2024-11-16 21:36

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9fa27894a

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "57a39badd56df6925c0841a815868fafe89a45a2401199a0ae804444815d835c901beb8cc87e77f5bf04404ca1c528c7",
        "clientHandshake": "1b228b20a08c0259deff0b4b109e27ddc52a512e5bab04d1234f336ea8aab44827aa982fd8c52a5dba33726666eed32e",
        "serverHandshake": "32fe85280a3a0b0163d5b2e7da4c41408e3b30c9daa84c36f213a330f299f4d67a5cca2345d196289332a15c4570abbb",
        "serverFinished": "d84ccb9b6eaf2d6c79a63ce705833c275bc424e6a17d217b132fff153d4b07bb7eb89f26057766839b967b58f697bdea"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "331",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "AqxwjCRa6V+wtmC1DR09fhsGnSVW0eFHTIHEoIZtcrI=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-14 19:45

Fingerprint: b18befd9dd6536aa30550de50313a6d81d1544c3794af1005be69f3238a65641

{
    "clientTcpRtt": 1,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "b70c47bf4cba278143b68a1184ea2e79c75d677ab55703acbc2c0ceb302e3b72ad0c6605b3f3ee113dd54df3bffc719f",
        "clientHandshake": "fd41a87016cf38d103896e5126a7655fe389f2b0f4e65affd8927f4cd2104cb97603ae8b7c15c9adbe218945d5feb4c1",
        "serverHandshake": "62d0a34e57011b2554be8e963193dea0fccdeb2296db37ef5861aa01d878555f1758ab04f7c672a52dfae010cd5b7c3c",
        "serverFinished": "3aef42aff5bf81d9344aa37a8f4c721a7cf20ce6b2449d16c1412b6dac581ce54a69295767b04ea9cc468484aa9d9b8c"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "331",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "UbrwpSmxAuqTYkxRVOyJ9NRhWdZAdxLORt4rCPFMYHs="
}

Found on 2024-11-12 23:27

Fingerprint: b18befd9dd6536aa30550de50613ab817e6134ec6611bd4114eb7fdb35916365

{
    "clientTcpRtt": 2,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "f2b495bb5449398e8441d17a34a262aa599e1f81b7def558a1db497fb7adf34aa8f3ce5a520b633b630646cf869c485c",
        "clientHandshake": "a0ce993f0596ab4020218b66745143523654ecdc91487db0fd28305049fa47b941036d7e1499de03fa00b12167f32ab3",
        "serverHandshake": "0350ee4d6903f0351940ac9b5bbcbdf513d3b4500850cc8c10025d9f3a5d772668a6ac93c853222617c982c4280b7e3e",
        "serverFinished": "63711c5f54b3b89331e2efedb816d524219eaaff36fcf7c9105d57a90645631d060b8ce455454618572d8de310d349b2"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "331",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "VDyyCKQ4AnxAiYJcPQ2nd8T64jAE8sgHHLck61c0zmU="
}

Found on 2024-11-10 20:27

Fingerprint: b18befd9dd6536aa30550de50413a8abd5cc41267633c86f0cc7e3ad16718b05

{
    "clientTcpRtt": 0,
    "longitude": "8.62950",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "3b4ebcc6647fc48ad0b39c31c23e2beeef1715faa82f25b217cb495e702f2fe828dfe1c75b85bbd39bb562d0c4257333",
        "clientHandshake": "41fea64356a72ac24ce21ddda0e614a2781c6bcdfcb9dc03bbd21a36da45facb3d3eec459d08c9aec5459a0aefafa012",
        "serverHandshake": "32eb628534609c5b5a17885075d9ae69c173d9a4682865fe1d4769a5c9387a70deac5c453c7e7e9dcc54412d7bde6431",
        "serverFinished": "bcddb58ecfc60fd68132b82cd882c53b565c8ddd318565feeb3b007152999791bb82be814e98e9a8948c4bb2dc9b8d1f"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "331",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "Unz+DEbCOVZHUlfN8vqwTFnH+i5DaYRUaGEiD1o3Xcw=",
    "region": "Hesse",
    "latitude": "50.10490",
    "postalCode": "60326",
    "regionCode": "HE",
    "asOrganization": "G-Core Labs SA",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-11-08 19:02

Fingerprint: b18befd9dd6536aa30550de50313a6d81f867ea979bcfcd2f43b9148e585cea1

{
    "clientTcpRtt": 1,
    "longitude": "103.78360",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "AS",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "SG",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "verifiedBotCategory": "",
    "tlsExportedAuthenticator": {
        "clientFinished": "2559e09a59b8f0b509dcce200bbec031a072800a0e750949c00d7cc1fedabade09cab04861cef9f8494368f25b5cb244",
        "clientHandshake": "d93f8567f130ec0391a4cb3d613ad260aa9496f17a623340d002a09d7262064b420cd091c7e4d7881c744ee1f409bfda",
        "serverHandshake": "f549cbb6743c97be5bdb3e4d4347aaf3e32993f329d2f2c4aa1b883f107413cf15ed5fa393be90e616dfd6a04a6d9361",
        "serverFinished": "6b95db8b87acd6de25b03aaf5b738726e7c824c4d5fd8ef9090bba5b291cd0be2c60dfefaab19dbf8b3d724ca0238636"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Singapore",
    "timezone": "Asia/Singapore",
    "colo": "SIN",
    "tlsClientHelloLength": "331",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "13",
    "latitude": "1.29820",
    "requestPriority": "",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "6eZA/I8u+CQ0LfCLrzuO++LkKZk2vAhnGChC0umETnk="
}

Found on 2024-11-06 18:34

Fingerprint: b18befd9dd6536aa30550de50513aa36048d1ef9f8d7474255a3c2d83843df0c

{
    "clientTcpRtt": 3,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "1dacee227704505a86c0fb8259001288062e0d3eac03232ebada9b6b2d59957b8945f859fe72d02ea6091adebd0e7403",
        "clientHandshake": "2d83f65ba3641ea946b1b49f53eaa9f8cb21721edcf06be7dd1516590b572b95d4d376a60a04e696a8481c42c93a0a4a",
        "serverHandshake": "93b510b5368304862b11d01d33c42b1c2ed06d6e5d01aaab8d5ee1150827d100c63d191db20e49cd6a99642eb0b4d20c",
        "serverFinished": "224ca2ccadc04844c199b6a9b590a2063192d61291515b63f2d75833f0a104cdd59c9005095a718159bd85483fd8b8c4"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "331",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "UtwMEsQygacz8tYbHAHnDWx/5Omh5DZh546eg0DHK5Q="
}

Found on 2024-11-04 20:28

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9f412abf1

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "760f7ba63fa0b4d425a0ad28c9cb90fce1733210962d7b0cab1d071529b8b83a7715ad2540443a9404bff7671503d76e",
        "clientHandshake": "8c1f777e9bad76ba06863c82f5a7aa7411a7fafa16b60e67208433d3c80f195927665eb5c607c8225f82e3c6828ae5ab",
        "serverHandshake": "b131e0154030060fbc1fb19ad80aa3c87b307c1c4e692fbc303d45d24d85b2301771813cd0f6d7df20e1861ba1b90c43",
        "serverFinished": "308c489e839397fc187e8d4bed296dda3db234bfdd874dcb69096c6bd14a59f7ec689cb9b48479f81b3244352652f717"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "331",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "zkmfUd1gfgSMIzKLIqQRM2bwe/CpvUA3cDWh/L3EzcA=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-03 00:15

Fingerprint: b18befd9dd6536aa30550de50313a6d81d1544c3794af1005be69f3245e2dc0b

{
    "clientTcpRtt": 1,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "b0b6ab69c28e10c2ca7bbbdf0d3c76fc06b7d4ff7af9bdddb12637cac5c2dd8dfd3746a69fff920827749f032f13db54",
        "clientHandshake": "980018cd771f829487b7e71470f00ee7108b90f0c83ec2fd0a6ed3dc9791d1f85a0f050d3cb20a3335ba047cede803ac",
        "serverHandshake": "37ed843457ea77a1e080bbdd6f8220fa68e49513590e9cc8474ab46e6fb956c8ce9631db2e84b6c7f20cb1a73b2f9084",
        "serverFinished": "7512d94afd6fa9113a5e81233ffc39e0d51f7a378ea16570af7a362df71950aaa711dc0139c805877d1ea4e6191255c1"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "331",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "EOAIhnKLEcYFto/WsLB4e8KvoESwxFq8Sk/Jwmyut9s="
}

Found on 2024-11-01 19:40

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9b68e2d85

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "eae4f6f7486fc7d7305885ca9c268e6d4dcbe203074516d4bc146e4b0ade8b26bef37bd3a1a4a7cb5bd1c7e397eabd06",
        "clientHandshake": "6914d9d16ed7d5a29bc908ba70cbb34576ceb9a5465ab49aadaa6f4949400c015fcf9868ba6256c86eb4dcb3e1f8190e",
        "serverHandshake": "058c40cb620ee433e33007559f2263b5d77769e47a77ff180a762ccf47ab5aef8404c42a1af01091d24b7feb23fad54b",
        "serverFinished": "929e365dff6cfff9422f2c27a8066a2e2e33c9b5257887d540dad6365e7985c5be3063af8df04bcab46e0a70d08ce42d"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "331",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "NCG85gK0w0bqtW5cnOLhKB96Bh1UbvWoewfKZTOlmZs=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-26 21:40

Fingerprint: b18befd9dd6536aa30550de50213a54dca0da4bf4def1034ef8c550e1ccbf2ae

{
    "clientTcpRtt": 6,
    "longitude": "-79.38920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "CA",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "5a2369330d92fe543c584b6b44fe77f8e56c4c6b4b57fc86a36cd2f2e6525bcc35a756d81380d65413353231acf607be",
        "clientHandshake": "5d9ba8ee5556d69ad6a8451aa360a62f208881a213668c34653bfa1709f28e5e8b8239e8836e94584b2473b5496784cf",
        "serverHandshake": "896f6600c46b819fc200cf319a8f1bc69ad44bcaa21729951d42e61c8622399b9cfe42eb0505d9424203875d0185475b",
        "serverFinished": "270fd6ac3973375e683dd8dfd75ca5c4c740dae2923e408c0e9265e8bf0810f092c7c8438b3e239230244d866f3bef73"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Toronto",
    "timezone": "America/Toronto",
    "colo": "YYZ",
    "tlsClientHelloLength": "331",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "M5J",
    "region": "Ontario",
    "latitude": "43.62270",
    "requestPriority": "",
    "regionCode": "ON",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "f+cy0F2uK5G9pgM4q0QZEzr4GNqEhF3W2RzaxEYnvKI="
}

Found on 2024-10-24 21:03

Fingerprint: b18befd9dd6536aa30550de50613ab81c4d7262abbf5b58b5f3e6d319d4de347

{
    "clientTcpRtt": 2,
    "longitude": "103.78360",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "AS",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "SG",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "verifiedBotCategory": "",
    "tlsExportedAuthenticator": {
        "clientFinished": "68aa62533ebed3a294d8a5ff4296f5eaef3ccf8f4e2ee39146b1cff9e54a57366439903b13109d70478aecc53f68564d",
        "clientHandshake": "ed4626e4340f555b08b3f60bec8d9e18f83bf3862be442df58fb2c7fab75f9eed770e98759ddfd55c14a23f82be026f3",
        "serverHandshake": "8aabdfe93fc4ef44aee698722c1ef660ce83c003be0ac3742b1ead20c7b3d70dcb9ebad61a409a143745e204f460c31b",
        "serverFinished": "ed78ffdd4b441591be720da8b8a070c0d501771db7793b8e8e33fed5fe85d3fe47d5a800787dc570afef3d711f96fa06"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Singapore",
    "timezone": "Asia/Singapore",
    "colo": "SIN",
    "tlsClientHelloLength": "331",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "13",
    "latitude": "1.29820",
    "requestPriority": "",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "xr10ZekahY9PWhL7Fi5veVQ79KW7vBy+QWoAL2iAjHo="
}

Found on 2024-10-22 17:17

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad93e59a75f

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "1581d3cdc66f4b4e786c8b949e2c5bae21a87da84506b2c6cbd88fa2793aa3aa8e3ba95b8e11a4558e94be05c11d732d",
        "clientHandshake": "d8bee9f3c120e72bca0a996febaa9ce98b6c329324f8c6470a819f853fc34c3f790aca334e93c50cc63ee9ca1a6e4e0f",
        "serverHandshake": "1df1d32af2c73413897642cd7458842e60a6c5e3fa5bf9375be8d3547a45e4bd1cdc5ee3c6225226dca45f1e05c0bae3",
        "serverFinished": "03750506e43cd197df29fd5fc3d845a8fd8348863a1b2238d17b84718f6c27eff05c98138868aa90ad35c0c4d2678ba0"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "331",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "U+3VzSKz0q3XZhN1goacB6Ksjg5XN656x2H2jJUKr7s=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-20 22:21

Fingerprint: b18befd9dd6536aa30550de50313a6d81d1544c3794af1005be69f322a6bcb9c

{
    "clientTcpRtt": 1,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "d5f00dd3c9f4381d152c0f1a999a6b27b2575ec36de4478465a478413529b233ea4295d3e7185b132b2ac2228298ea81",
        "clientHandshake": "48d6fbfab84c5eab8b424fad50dc8f303481d49679073efb7b5566e19545442d1a44020afccf55fd821938efc325537c",
        "serverHandshake": "ca2b4944f0c2fbf28ae9a605f606dfd71d113c940442f9f011565644afc54dcabb6e151fe1a00c31122079faa7c185d5",
        "serverFinished": "2200321b1a50f7fae2c9f67567d2a5674dac45067071b37149e608e3b0cfa20cdca671fc70b688fb7579a88a82276b88"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "331",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "OQGHwgXvcDdgP/Pqj/5ILN7BPQcgjPbJ0Fk/ARwU6M8="
}

Found on 2024-10-19 00:10

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad95db59824

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "c2d1837b5446f2f9400d19ecaebb35916493df07ec367b92d0b01dc35bf932ecb704e0978475fefbfc41fec045ae3a40",
        "clientHandshake": "c07e733ff7b495a6d38df94b74e26fbedc6c4df79f67180a76a0bccc54da1cca5ee8e018d130d5f622dc7898b51ef5d1",
        "serverHandshake": "ff9d985a385689915ea2501d8a0467dedddf5d5300d9e9ef8e3a8cb899132952fa276a9f968d652ab45cd07e7555743a",
        "serverFinished": "1424e66b3ced9c92d2ca7b15dd4f05fd30aa6391d1c94d620119b133f03e3bcb93716e1b69d9edc62df54c1b2d5a3ecf"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "331",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "pdeHE8xv+TSS0oeIvdgGLAJTm41GjC7tq5QvVCSl2rE=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-17 03:34

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad93725ba52

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "939449a37204d2d255cbce4a9dce56eedd4f5d4324175c2129286d4a372ebe306983bc0ad0334078897786cae731532f",
        "clientHandshake": "81547e4a21fcb00a19f3b65c929ac30b6434e9be3d0a568cec47d660bded4282f67a37cc1fe857bdb15eab7db04e699e",
        "serverHandshake": "d48280dc64918fec8135078fe367c8eb6d5c88b3e0d5ce3f5f6f0731cafc67c5b8b831bf3115547dde58407b381ba542",
        "serverFinished": "f421eeb58dbf3eb57f2cc927eeec3506be90e3041374d526104a870eef2cce68d9c3a66cccc820d0fa6b3607d8306d3f"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "331",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "YSkMnOTlklxuuGA2p7wPS/cPkfiqTTHwURNUw2S5Qg8=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-15 02:25

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: t2.chujia.cf
Port: 443
URL: https://t2.chujia.cf

First seen 2024-09-09 19:37
Last seen 2024-11-22 04:33
Open for 73 days

Fingerprint: b18befd9dd6536aa30550de5ff13a084df8d0bbe47ab65f7b6bc99c58463e8aa

{
    "clientTcpRtt": 5,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "7e5849a5a4d9d337f93c66984aeb1bffaca91572ddf9cfccc16c0e2c03bf3b66c582d68475e6b9bc7a9bdc7815dd4619",
        "clientHandshake": "9c2db1329a94dbf939d109567294a08756e3ff18eee5ba0b2a7751c46f3d75c1debd74ae2c8100f89192cf1175149f1a",
        "serverHandshake": "db4b1f4de72d41f807dacd93616ac4ed3a6dd9fff8d0b9e03765f91cc92b405e2972a0e520995f23a3f993943c7a3822",
        "serverFinished": "5cf182ae089b1bdf85441e0168b5fd9b223c92209c04c104410da4ab94e6792a515aeac43d61f5d43bc0adccfd0b1087"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "Lobypwceu2jktRI/xLlGjuNOtqiiYE+ahAWkX51GvW4=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-22 04:33

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9069c03b1

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "42b036f668cff4e550c21c7bdec26437ead868fa9e4a149dc1c68801ed8c1f0061db5d8164230154c3815e048ca7e36c",
        "clientHandshake": "b492407a77a2a4198269ed6ea9915cb9bde50d395a5b38ed3913fa56c9824900e3a7bed18843bdf37597dbae907531bc",
        "serverHandshake": "04ea10abebd2f7f77f9510e335c5595e66bce2fe50b2ecc46af4d467f20867d05cd90389fce1c1f5bba6ff6a4b903886",
        "serverFinished": "36ec8e1c7cc08f667c1ad4d011f292c796efbea9e2b7f3171ae1082c653848c7e944b41f35dc319ae3a1b89cd8b19ef6"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "zcVxFqJK5a0NmDqvGaxn3sIjOJeYphT4K/znDy1e8Ro=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-20 09:55

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9262c774c

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "0ddb3cc9fd4994cc64ccd834c75225b64ad473ce3e3d1e1432fcaff9ea50ae521bd36acfa8bda2aa524983fc87995380",
        "clientHandshake": "9d79a85af0185f0594c19788ed93a602b355991631f8ed2bf95361b0f8f0cb26b243566b27fff910eccefc3ad444a947",
        "serverHandshake": "356c194b4a27281d4fb853dbf21c84ef9503fc091f44528ce920c781ff74536abf87c3631121cac2a242150a3b0de183",
        "serverFinished": "4b05a10b211ce0d9d171a66081edf0c6ec9e1208f05e05768e62150cf6cf51b78208e431b019350a920ed9999aeba5e8"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "NBaBltt/Li6pxCwtOhFYN9GGqXX7RhvlKqYSByVoO/E=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-18 06:47

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9c02bc638

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "2db6bb6280dcdeb15be8959c98828a0a9c98a6600acda4fa664312752d8eb5b81214e953ca8c1b222520cb499a1b3b46",
        "clientHandshake": "fed8944c8ba22d6de7a2ebb4d62c3f3433e6e9ee24401eda81e292b517b5d0fb9a36ab6d6eed00de2858a86908728a4f",
        "serverHandshake": "7f100f8dc025ad4d50c4e4ce05d5c3f620fb047724ddfa3288a6333ddedaba85a29d780d729745ee66a6b3e61178bd5d",
        "serverFinished": "79061c170af4f2309b475d6229c9394d7a4f1f9f44197e45c2225663c58454d55631cffcb2d3a1138d8c5b3390b550b6"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "Rs6t+m9g9i6fCFVh9moL27ad1VDNLgt8rBNQHKw7xa0=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-16 09:03

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9eb7c6f8f

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "b3e9af3f60018de6da5e838fee5851a075988e1f7b4fdc93f74b5e634352732c09ed97d3c0a8893163ce56d0811c0f9b",
        "clientHandshake": "ea1a2eeed4aec3b8c5f5b051746122693e31e7edddf7cf690c9906ab9f01a9adc34c47c540ce29c1ef616b105966812e",
        "serverHandshake": "e157a272c4f23349dc49a6d731b2c5a1413e5f54417c5989b8bfc7668e610e01b2935c3a6dc9a4905ab59524f20fcdc1",
        "serverFinished": "51bdcfd41cf1b17a46f98f1acbe3b54a27c0aad1f11568e13cdd41c6ca0eb6f19ee48dc826feb0c02b4c12e588769023"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "dhdydC4E2LptAZm0wBngDyuFDk2vE0wPhyUq7niFmVE=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-12 21:44

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9b79c4188

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "de4e3953b317a676c7e6d9f8a4dc94793ce474dc96e2202a67f4c04530d405a7a26deb00a52d8cd474667c7739d67a79",
        "clientHandshake": "9b6bd970e78d1ef98633e5bb04d154269a667e07e3c1e6185b8756509b98d393d62399398165a5a72d04f10fd7cf7dc2",
        "serverHandshake": "775953be1fd1826c4ff275e9d0a136f7e6f829d0f242c937e1ff8f62495e8d43f589e03daf448f4af2a542c9103666a6",
        "serverFinished": "6b0db2dea01f8ca3d74975f869684b81f1231356409d0220476fe6246b95c5284024d2956b6879ffe5a75eb732b28515"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "mHA2sdqmDIqH7iT4693ClBMXkwu3B9a+nQ92B0HpBVo=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-10 20:41

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9a4021783

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "34b918d017685322708649e2497fcb5d990a5f4586dd09a33a139222560ffecf8c867d3c6bfa92aeb381c2d8c6724d9b",
        "clientHandshake": "0bca6fb42ce90be410b720dafa40810ff58f6819c12f19392d050a53ee3a23509611871660a29de4b66d47f8b2142b11",
        "serverHandshake": "92e9faee5422912ac43e9c6458bbc079282a6418da2d571ea57a72367ff235afa2b999d0f3ea59def55cc19afda9013f",
        "serverFinished": "631b4aeee596b12969c9c85c1201ea86403ebd485e78d4e4aeacbd3792e2f39e6c67445b8fc58afad38e990af92592d0"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "6OrhzmOrv2Vw4gfepBiE3hZGcWqsPJ7cj5Ct+jyGbbQ=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-08 18:00

Fingerprint: b18befd9dd6536aa30550de50313a6d81d1544c3794af1005be69f3201193c60

{
    "clientTcpRtt": 1,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "20b017e4fccae97f324aac01da311ab7d58b2a485b7a4fdf51248c5d84fa792079c82bc4738cb623c38d8ba746223d64",
        "clientHandshake": "9841b60ef651ba5e656f1a7f58028f23bbc78988117afad00abf60f6966efd909d9d7590230771e8c7c95c44d6f107c5",
        "serverHandshake": "473cac36d00cda4a92a8d649192f469e97e03642cff2520b518811d67efabf8e1e00f1f14173df5f699459678719a0fc",
        "serverFinished": "9d247e2351575634dfef370ce9653e1b03aa9ad50d5f66d40d2d324629611f30c0e3cba944c7e9c66577880c5d4a53ae"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "E6JxDUt0G1Q+qbqaEDoummyqC0PUV5epaap3sDFAmp8="
}

Found on 2024-11-06 11:43

Fingerprint: b18befd9dd6536aa30550de50313a6d81f867ea979bcfcd2f43b9148919943d6

{
    "clientTcpRtt": 1,
    "longitude": "103.78360",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "AS",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "SG",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "verifiedBotCategory": "",
    "tlsExportedAuthenticator": {
        "clientFinished": "ca0ac517cf8f3a40bb3dcda1e36ab5d71f7d51fa10526c05325c768ba9ce4852bb5f41ac9d3ce2e7fc16695a38bd35da",
        "clientHandshake": "ecb386d26a500c62b727be00a2e5ad6839b9c4cf314d0ddf032c37eebb1a33e7d60af68d4f6b7bd3723cafc431bb266c",
        "serverHandshake": "126880b7e39fc72d79d5da89f616c34db62fcad4bf0a8de60c0fba7f091129060f4c91fd415fbe5cf4b76bfa8c58c8f1",
        "serverFinished": "0f8db36b2644c3b53629495189dad642a6de9615c6d407da65fcb7b1c8e8da852949c023a8b087b3f853ab9dfb46b2d3"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Singapore",
    "timezone": "Asia/Singapore",
    "colo": "SIN",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "13",
    "latitude": "1.29820",
    "requestPriority": "",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "PbmRjZtYEfR5QxI1CVsSpudAVPX21xHG7daZt17GqgE="
}

Found on 2024-11-04 11:07

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e2386527c8d8bf2fc

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "512801cee85cee415cf0e107d81575e4a49096efd01708ff23c856de1975205a2b9c6fc9a7c17faafa3b3240e40043de",
        "clientHandshake": "dddde66ccf7cce410f26fe8320785973f81c36aa30bdf08d127c41f54287ed3c00d9a6e9d188f6a2816c544c3377746e",
        "serverHandshake": "052b8642f7e04f303a187b78e85655b981be7646d9a1f8efc3d8b59fa3d1d8962ec7f015bee572d73b0751251c4c6720",
        "serverFinished": "ff35e5fd5cca1c9078ce334c623c5304a4852beea4cf9ec579aa2c6caf68bd30cbed055b766d8c9fc9cd585fe1141a8d"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "msKqk6PBUqyQr+vR7/vhX/2qIAqOurhsFnNMri/XiRU=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-02 09:06

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad916795a17

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "d095220a8570d2372e013a5f414423e453acfc79743b23d7ab4264ba329ecec63e5bab8c5452ccb53ba82c09df3aa0ce",
        "clientHandshake": "7c5cf9cadbf92a39f5a6c3b2e4bee1d9d2f58238bf8542eccad8538860947a45a44627852974b4c3e712fda65c7d4bd6",
        "serverHandshake": "6df192dcfa546c6d15dfcf2f27323be197266bd140674ae363370c5a8d244445dd686bc2a0025fcbcd8a7645bf1b71c8",
        "serverFinished": "ea78e2b0b543847e6032e55f233996615f5051d7f99ddf64b05147511c5500064a309217a09339d012ce815872f5c50b"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "ULGzrjv1oDcC5LuzsuCjsDUgWEzNQWFoBTf8JqMUT8U=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-31 01:57

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e2386527c7645da19

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "2586e7bd8bbf89e8a7cc504797c2ced578ce0edfb45e9a9370b7734191c75ef758ab0eeb386b4658f88456e232ab793f",
        "clientHandshake": "7e3496c5ba51c13a506965b62d12324ec73ad6dd32892dadfbe3db505395d6d337222ebd56ae2c0bf239cb8b35d6ea20",
        "serverHandshake": "7756ed667acb42f3c31490e3c56e496168c84f6741fdfcb9f307a7672298b5ea7e3618abfa8a1fbd26be4d84507fb650",
        "serverFinished": "b05b1704620515b2d2657cc4eb89686d226c5f2b65476140bf515c906dc56c917905da3d0bf3b7ae934cbcb079c6ac64"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "u3TdIDmyLByL0qricu/J04iJbvUTgGcI/F0QjuyL40I=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-28 11:36

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e2386527c3ad5d624

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "b588c92b11d2f0353f007a0a20848b65ab72b1f90a5a51c5af3b760cdd2b19f2076eba99be97f9a81b33e0f7f9559ced",
        "clientHandshake": "ece622e38db44d74e0b787ca0d86e4e161277da778c3dbbf05a04c0df8180cc4e3e5e7d33ecb919c28e8cbe32ed5ab85",
        "serverHandshake": "f34652e7351ab192fc01ef92d31534b1821e9b1079a10862fb3ce8adb43f9b2bd4b9e019d9c30aef20338aa8f229cab7",
        "serverFinished": "27fb827dae6b8b949fff05e5d712bf46c1021baf538dccb8bafb81433fdfaa8c110f7eeb2b3eac9ff10972f97a9869b6"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "N9FhvP+Mq35Uyix6ZzrcANa354plTyI5o2UKKHqHGKs=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-26 08:24

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9c921cb84

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "b50283ebc9fdfea8f35a0fcdce358915f0d69ff8977d2e1fe639c670ec0995288d30cc3ce8752321293491000f7c1ee5",
        "clientHandshake": "e03177cfe03542912e8d56a831ba444b1c77601975ac284cc2d4918e3254b8cd9987c1ef20cbb79d1e3dbdafb8c71e93",
        "serverHandshake": "d2f035245fc8346a76a7397ccff1391f72fa30ed935c020436bacbfa57e16374df9ceb18880e4780ec73577b900c9691",
        "serverFinished": "331460d9875f52b21bae81502ca6c40c43e14d22fc37c3ca4bc494c2f83bf7ef29904fba929b22dffe06c61da51bec89"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "PjlpOb4s2yQNaifB0+6mlCguMhzUY2PhVdldqbUwggk=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-24 09:00

Fingerprint: b18befd9dd6536aa30550de50513aa364b8758e8907bbbb5eec79d574bff3e51

{
    "clientTcpRtt": 3,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "70d78aae6dd9cc3aff52762069c3b8654ee47a3644416547ff4f963c50f328ab619ad720a5ddca09426430c3bd035ffd",
        "clientHandshake": "bc8d3083fd41e0567dc8d8bee505759d83c55af8d11b07ef011d131a78977293cd7bf0472fbadc528403a45be5bf454b",
        "serverHandshake": "1fdc26e33b92560ebe5828027a381b8803ee5b71e36cb7961d5c0322b6cbaccddbb0a7ac02fe03f86eb0d539feeb45b2",
        "serverFinished": "6cfcdc29b6874c6cfd7fdb7a27f10b2e24e8cec65d7ecc70148ad15fcb6d43e55acedffc0df37691af9446a00022d3a2"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "pXR5G6Exgtlck0qsNvqM8h+dNzlf6oYKae25uB2cgaI=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-22 10:19

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e2386527c61a2d96f

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "347a4590ffc021209aa0444ee2d575010c407ae2226b469cf8b54708250b01b22785cdfd6ac6fa03d7d34e2cd342ffb9",
        "clientHandshake": "6091d2dc23a4dfb95230ee247c0c0af40666c5fc290c34a7311df5397c035eb87f581a93543b02fc9a415e13e3f31852",
        "serverHandshake": "14a243566e171e66dacaab572d7382390de719e48b54a9237fcd45cc2aad36575227da0c299b9bf4e6185e4579dc1b1c",
        "serverFinished": "8aaa7d7e6e03cc51848abd2c02037759b91b3e0af2a4715402fac91a3f7a7955ebf066fe60631146d3227d0adcc67aae"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "uUOjaUiRs6RQz0ytdp4kNdJQ8gwtzvrP8YW42c76JGA=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-18 07:29

Fingerprint: b18befd9dd6536aa30550de50613ab81c4d7262abbf5b58b5f3e6d31f6f8c9a9

{
    "clientTcpRtt": 2,
    "longitude": "103.78360",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "AS",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "SG",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "verifiedBotCategory": "",
    "tlsExportedAuthenticator": {
        "clientFinished": "8634ae7d8830b0637276efff2d2cffdcd63cb42338575c4c74749890f7b030ea9df4ac2ff5dc3ebd490637ae2f4bba8e",
        "clientHandshake": "87ebcdca42897de39e240723c2acb3792f77dfc419609d6ab8e2efad809582b83928f1f097325cb02472258ffadb8df7",
        "serverHandshake": "c1860a9c20aee43b8d7ad581d3e6452a489381af42b32687e4d2a077ac2623ac1e5059bda39dd7fa457c153a2c908303",
        "serverFinished": "3d5ed2f6bcf1c5af7ab6f665b84125fab52029815048251d12afba2805dc7cbf47d850fbf215550530cabdd8415a8d13"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Singapore",
    "timezone": "Asia/Singapore",
    "colo": "SIN",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "13",
    "latitude": "1.29820",
    "requestPriority": "",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "FJr62Q3Vj2383S7loNKZro2NPdK+n1VFSg8olaTdGA0="
}

Found on 2024-10-14 15:17

Fingerprint: b18befd9dd6536aa30550de50313a6d851ffcd24a470f2297749ec93b0d5e061

{
    "clientTcpRtt": 1,
    "longitude": "-121.79460",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "730fe1bb24b96167948c23a08d0f41ae8a3b4dd129e5f0ea8329acd549148b5f32c41a5ddb46ed879e21f290ac8a0e52",
        "clientHandshake": "4f033c8ddf65d25f463eba8d4c970b03cbe43d5f166d2783e8cdac02d4a4a1d6f9ab3d7a52d66adf36a5f1d008350b80",
        "serverHandshake": "da4ff829a243948fa65fa05afa0cd22c8f453b15c892d1a01302a4c862b88095f47c99b7b7784e091225116b0731046a",
        "serverFinished": "1701c054d5553a4aa9dd531621e7874bde4f58683a632b12481968b5f285e70e1787e9297cbb554a440fba2008af046b"
    },
    "tlsVersion": "TLSv1.3",
    "city": "San Jose",
    "timezone": "America/Los_Angeles",
    "colo": "SJC",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "95119",
    "region": "California",
    "latitude": "37.23790",
    "requestPriority": "",
    "regionCode": "CA",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "807",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "HhIBX5oNWYc+IuS6ll4AXYAj4voU7BxiOShlfPctaN8="
}

Found on 2024-10-12 16:34

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad95571406b

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "9def0fdd71ed685a7db7a170102e2e1acd74a629877290791dd5d94f2068f84c910271a0fb66bce657bc460cc216f2b1",
        "clientHandshake": "58391f9d1f2976ca46c79892a23a32e3a29638aec60a91af0995f6117dcfcc8d5e38fb5cd1a6bbaf9b06524f55e9675c",
        "serverHandshake": "26abe82ad76e2903c58263e5e8842f6691e2532edb8831c7e1930cb73eebcb32ab1ed1ad6426c761957c5876ced1ac03",
        "serverFinished": "6d04417f3289db611024954746cf95dd0a0b1279b050c0450f357d5fcf8676b753bc52e24aaaf5a76756479c5672724f"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "532I35hphxpF+h7Pt2148qZJWwVWEZgxWgIzdp8WjAU=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-10 17:11

Fingerprint: b18befd9dd6536aa30550de50513aa36048d1ef9f8d7474255a3c2d8d5db8ede

{
    "clientTcpRtt": 3,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "8cf71b547321003567feeebda5383869c270d2df6e8dd5ad361f90e18c68253146280724fe5f6cdb34aedc6b0b86a482",
        "clientHandshake": "ba22c944ad95ebcbd4b7b8de8dc203f40340890334b4665afc5670cb9f7400f77907499a2f4069c5c47c5bf6de52e3be",
        "serverHandshake": "af15b62a09fdbd1d46265b8455833d911e5ace53d0fc103f0305b11d6b09a7b585e68040e8e993c45d91c86d6a1f4a05",
        "serverFinished": "2787f2b58449d7c36a70062fe7db1e84ae139102e001a554151362d2e3afadd3e9194da26f3a1424333aa27636636ca9"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "53+bjhglxCHM9IBrkA6FkHD32ejFkOs4jyLqHN/NJ10="
}

Found on 2024-10-08 19:00

Fingerprint: b18befd9dd6536aa30550de50513aa36048d1ef9f8d7474255a3c2d8bcbf346f

{
    "clientTcpRtt": 3,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "ead171180b9bd518ba6c37e72b9b8680196708f7ad363fd769f0e8797c6182b8fb5fdb279e2e97503f5722f8aeebb6d8",
        "clientHandshake": "08b4db7aa858da8e854a71e7f62005f299253b4852669b0eb0229c60e669457b75bcad082f6695251b05e91ad03794a7",
        "serverHandshake": "89a3ac929dcce1e7b8391fd0ea80b6650cb6d1b26cd16e312126963a7dc6d0e67657a9c2adbec49f6a3d8f6ab8a288f9",
        "serverFinished": "de2c9cf902dd81566e8578f3ff47fa42ec51b4b333137af925f61dd4d5c052b6ccfcc60a3f69813e7297a699d764ef8c"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "u4gtvjT1HsBTlEdEOTGAyGe0ReSWNkySd+3yAmQ9w6U="
}

Found on 2024-10-06 16:16

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e2386527ccdf50bb0

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "29bdc421b570913a63e510240d0b276b4161527dcde91d4aca75119f6506e0ae03387478ac2bd3d39987b7ffd0fe750b",
        "clientHandshake": "f740e5007c14d5dfbd4dcfcf833c5d76801e7843661fb86d04ff8f35fd9859ad8678db31f16b3100e3617a0b84890241",
        "serverHandshake": "e3d9b85e020c36382028030db1711dd5c2668c7ecac866646fbbca1cd12f0628d9ce38efe8679466acbfb3a58e1cdb89",
        "serverFinished": "72443cbf361708767ce7413d0cc938887839faf295b738edede06a18a04b1fdb13806a83681769d747bbf6cb557fb6e9"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "0lI+Qo22Mrm4+K92n0LicAn03omgix5JG7r0/2rbBvw=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-04 14:37

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad92278fab2

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "b5a92eb652fcb8d60c4f05996e25d984601b22c903b6fd748a61d513406c0abe7f79097343f70113e36a207a27419e20",
        "clientHandshake": "60e4178fcd237c0ad592e170ab1197a25489804ba7b317e35ba5e9e8bd135486a1f544590aeba30ba45e29364dcd9f59",
        "serverHandshake": "02f79da1ad2db0e34ac85d3d276fa5b4b63fc37762f38550edbae724cc3716ff6128dd6e8862ddd25d0536c5aef7c0f2",
        "serverFinished": "75e10be3d57ceb0b52fbcd59d698d71d89840ef9d72576b7a3c715d7237de5f5bfeea3e5b7a876401634c38a3e30fdc3"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "ObExbjK2unBPICErH/QsRTzGQdqX3eyO28cbrvcsie0=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-02 12:21

Fingerprint: b18befd9dd6536aa30550de50513aa364b8758e8907bbbb5eec79d5791cd353e

{
    "clientTcpRtt": 3,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "108c8bb7984ec4143d7c5083e19b4cde6bca4e213ef74bdd3103855cd1165e7448df2e1a9f6bd4ac1fdb49665f0163be",
        "clientHandshake": "f345abeef490f8e8e9af53b984c0936d798d1f0dd663e752b49f4bd1fc2343e5d8eb139d8e5ceefdec8f11bf16961fe9",
        "serverHandshake": "08598a40077df5ebc4c0cf6ec27612f947de3fd60a27fc6c9eab80a465118696985c0d634bdbe53ef412e7783e6e43ee",
        "serverFinished": "d82d198401596dbf010b8b5434578fa17240bea8e9e6d770135e73b4c724629a0917393c2f30563a05863959192b265d"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "3+VOqCRSf53ui4SClroQRUvYr9WdLTPlQ9pmCCtZar0=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-28 06:59

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad97183f1e2

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "4805c2d95978361130d0b65bfcc0eba10b079bcea0d09fbcd41cabb90a8a266cbe8d97df8524901c06f7ec3d370ae1d7",
        "clientHandshake": "9defbe3deab3ae5408e27bd898f683eb8823f4b3292f2e4f4c2c3d5d4ea985a177e3c5a7044be6a81a9ae0001db8f103",
        "serverHandshake": "a1ca7388c8a5acdab53fd6b4ba6d20e4c1881e4404cb43e5cd61d445614848a1a19fb9f609e8542fa9bb1998b84ae5ab",
        "serverFinished": "9e2cf3161c25009dd635d03a3fe3234a7ea0f58934060adc5127a41575e0f9e390317f135791c1a95e6c2e15b66b3e79"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "WjNWnM4ieMd554kd1rAOn3m9TmrsLv2/Tf1X4f3jM0o=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-25 00:54

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9dd929c73

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "445c79b4435bea3727c877c21707f984248d7b0a9906a6dc3cce07b53e3982eee2cd8a9be30c9371e660abae95dcea96",
        "clientHandshake": "b5f81e8b5d2b89d0eae1289192c14c58613fd72ae0f4a1b6ceba7c46fd209d93cc9e22b7b98a616cc32214c19d2cb602",
        "serverHandshake": "bd92caa2151907af7ac2d537ef98b2f93a2db2aa80dc1a3ce136bd70edf8f87a00a45c631fd3fb1a5ed26c55bda2ea2f",
        "serverFinished": "479cffcf184727198f265b38f5f026dda768e35e5eedbaedd103144cfaba2ff2e01a4db577e2151b00dec7af5400def4"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "Vy8YmEi7V/q2/EOh0HeTBJdrUzbpNlleTj0LlSCRF/A=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-22 20:23

Fingerprint: b18befd9dd6536aa30550de50513aa364b8758e8907bbbb5eec79d57969fb539

{
    "clientTcpRtt": 3,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "dc7c61cf2b22351f36824bce316a43d3913cfe1c0483b2263984d1c49367ae05ca0dce70428e4cc57d8d9a143a978f7c",
        "clientHandshake": "98cb0cd9a304321d7503a364e7918492d972c2e06de3e314e3b166102552bd7d46a3a4541183f7ec80939ef9d36df1d1",
        "serverHandshake": "e467e671e979a076df26e249e30a036c8cff8a51534971a7fb969d777806c92b56db7c7bfcb96156a249d14eecdf2c5e",
        "serverFinished": "929beef46b30ed576e599b50ba04ba18824021941e925d8b1c0597f6974322e39b80a0a01970f9086f905ea2819e2163"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "ZQFLB3LKTW5yELh0PEQU0orvmh4GepmU/vYjzUTa1r0=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-20 19:16

Fingerprint: b18befd9dd6536aa30550de50213a54dca0da4bf4def1034ef8c550e9752fc65

{
    "clientTcpRtt": 6,
    "longitude": "-79.38920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "CA",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "c7dd741e126d14bde2953285a3f400c5fdf28361bf41032005ae13db66fbe7e7bfc379f44d43595b1e77a5ad57ef0a68",
        "clientHandshake": "ec79463a22cde75aa305edec0697b39eb0455e124eca3742365d2ef5cf99049cbabf621778988b76c744cfb08984b71a",
        "serverHandshake": "0adf95637304d91a1db67bb96ed3be3666f1634f8bc0f10306ef66f4159648d4ae2542c4abfc0f5d4af518fc583fb57e",
        "serverFinished": "a7345e821b4878beb5a4dfa05e06992596224112649285b8b158e2a941328960b398e2185d64048c2f121587ea701b98"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Toronto",
    "timezone": "America/Toronto",
    "colo": "YYZ",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "M5J",
    "region": "Ontario",
    "latitude": "43.62270",
    "requestPriority": "",
    "regionCode": "ON",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "/nrbEm7g7psnoz4lpUHdovnLRodyYOmjPEwifslC440="
}

Found on 2024-09-18 04:21

Fingerprint: b18befd9dd6536aa30550de50513aa36f736f6e26e4583b3f9146bc965aa35ae

{
    "clientTcpRtt": 3,
    "longitude": "-121.79460",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "6df13ea861f2a6dff15d816d6790bbfe69e2d01db1c6051d8b7fcfdbb78af3359d47a7bc1e7ee2ba635a10fa296ccac0",
        "clientHandshake": "d2358cb429f59b2d0deee928993556c40fa7a07d7868c1dd5f6b1b9ada26edb717cd07eda70b541da161f73c13396fc9",
        "serverHandshake": "c1f8dec4136d7c86b4e1a5eeccfa5ae79f69d801a79f208277b113764c78c581187429a247b6c69b12890edcf425ea89",
        "serverFinished": "b473a5ae5be725a922ee58a1c7ba2f6d9d4e181610dec3c121cd2b6a3241662ced2fc5edfeb5d667b87485b86e043d22"
    },
    "tlsVersion": "TLSv1.3",
    "city": "San Jose",
    "timezone": "America/Los_Angeles",
    "colo": "SJC",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "95119",
    "region": "California",
    "latitude": "37.23790",
    "requestPriority": "",
    "regionCode": "CA",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "807",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "rHuh4czatg2qMJhLgfRqhaoON4/H1juiCG2AJ/F5JlA="
}

Found on 2024-09-16 22:53

Fingerprint: b18befd9dd6536aa30550de50213a54da7be1939dd2c8002ef352a98edc432f4

{
    "clientTcpRtt": 6,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "81fc641a8be76b824fecce96a2bede25d8fdf9d68c9408731cd4ab6fa0fe477ec721a73a7f0f8851af76ff028fc8e6eb",
        "clientHandshake": "a8c0552a79bcaab75c12318a461b2e297341a1423ce9245d896d640547177a1d0bbb5a51ff397906ad6b124154848855",
        "serverHandshake": "fff024c6c2a346212a4a23037e96b0ab04f86ac0118a9afbbb6c1273fae53f2c6d2213f97cc04b06dbdc4da30837596e",
        "serverFinished": "2c33335ef02c810c46830ff0730a6b7e637c4f682f0061a83153e3cc659643617c8c1da2a365e99c8d67fdc6456d0bba"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "uMmpBJCbsDGSW7nGW1VVkCrx0hVlrY7d2oZ8IY9lU0k=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "FRA",
    "country": "NL"
}

Found on 2024-09-14 21:24

Fingerprint: b18befd9dd6536aa30550de50313a6d838380dcfba70b2645f9b8ede69d75cd5

{
    "clientTcpRtt": 1,
    "longitude": "72.88560",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "AS",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "IN",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "3a927b61f769b4bd8dcfa07c33eb1647ead480acb8a8244122352ffb6e5cddc8d9cc4710f552c93e66084cff0e42dff9",
        "clientHandshake": "8bb197ed7549ce299b6e7f8a73e1cb70bf844e3889edf8757150a3805aa4ed7d112a7562f3b5a01464be5d0d0f3602ba",
        "serverHandshake": "8d533c92d79078c7bba5b95933357d75d9b0f3d28b3e34104220a17888e6406b120d0f92cd74d75465ebc956b1f7da57",
        "serverFinished": "841fdeb7f6c36086602b4af5d351cbfb6a6655f64bf1f518dabf105e4589571d8d91b1a6052cf74240b5a880f37848b5"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Mumbai",
    "timezone": "Asia/Kolkata",
    "colo": "BOM",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "400017",
    "region": "Maharashtra",
    "latitude": "19.07480",
    "requestPriority": "",
    "regionCode": "MH",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "9nj9Q/F0dFxR9S67MN/NkeO6XIh4YOdHHi1VpW9xRQ4="
}

Found on 2024-09-13 00:25

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad93d4aa54d

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "7ac4392b5caba2399427dbd28185729e03007b496f351c83cda2242c326f2bed9deb6a429ca098e5928769370cddc09e",
        "clientHandshake": "fff7c2ce4ef0fbdfd7a41f504f51625999a835dc91107d97bec657c910b268011db9491a43aba159fd6dbdd1a48fb782",
        "serverHandshake": "e6fb8cce1e6f57aa59381895b95169fe00ac4a121812f21d0afa9dc9cce40f9723842b9a36517b61e3e424a655dc9b72",
        "serverFinished": "303483992b09aa16781ee82eaedd60f5a30903a1bb9baf5f057e7ae87c0ec2f09e3147fe463b246b6cf3d36138a93d34"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "3QDCB3oj4Wrl5X/ae4DofYCBy/4faGai71mU1m5VCRA=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-11 04:01

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: t1.chujia.cf
Port: 443
URL: https://t1.chujia.cf

First seen 2024-09-09 19:36
Last seen 2024-11-22 04:32
Open for 73 days

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad983466ea8

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "8b548bd468f3a019d1d65e857d00e1d1a2284ea89e0e2b278909a59151757963342f335513370137f7a4f94fda6fc205",
        "clientHandshake": "97403c2600a3b17f992028eaf830f50e252d5fa0fdc0c8624c7c9d329e14ad06094f3e2743cbaf75c2af5faad782f336",
        "serverHandshake": "a1ee0d66e769fcd97b5fb0d3f9a321c2c30f4c93e330e25b863f7c30d1992f86980daf98e2fcc02e933d24744a65fc3b",
        "serverFinished": "35e4beaa1f744a9612036a5f1c1b57ff32038b1a963674ed97ac881ac5130cd66715e6b3823344b689168ca3f851e6cc"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "QhD88MEIPifVIoWslEcz7M4BAdC528lNCA0PMkos0zQ=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-22 04:32

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad91dcda9d9

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "96354413e37be7b20b92af77a9c0ef184e93e9a1a94cc96d2ab8210f70d6cd5619261e98ebe2f57de74b0f6d15e3064b",
        "clientHandshake": "196ce37d2485a758fd60049ccc41259d833e75b77c81c6c4766818845d63cd5573e4eb5314f010a0545d42e4a0225f3b",
        "serverHandshake": "3eeaa90f70cfa9fb3e41def9010eae4c6d81be7a3c5bc58b31a4219dfc9aa6a5c43cd9d81f8bcf466a6e592b26c19a0f",
        "serverFinished": "42db7ab1ea296fed2a203f49be9fcc0fd74b08610a2a50816c0ddb185ff368895483ee2191322836e1dc0736a4dedd23"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "0E8mfxg6jlUSX+wuZ8a+NqrPg9O2t6mKRbO/bCT/lWs=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-20 09:56

Fingerprint: b18befd9dd6536aa30550de50613ab816ba1da0d2ef568aec64ab1bc47bcc399

{
    "clientTcpRtt": 2,
    "longitude": "-121.79460",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "2365cae90d46eebdafb5e7809392db788923d84522ffb6232f1c81aec32dcdc1d887bea6eb897e0789a7a4cba4e8bbe3",
        "clientHandshake": "9da8307804d67843e9e6fa813dfe72a9d4879036e8c4a07ab820aa5b328f13effa00ea6f2ebb132d082dd25ad8d1227a",
        "serverHandshake": "6b0bbb03e063c0900c42dcf52907bda334da4a2468858a6b32e7834b2ec128541654ba2c8999622dca393983a9829602",
        "serverFinished": "45d7bd7c098a6eb005ee9a6992ffecd022e466aa4c6212b88f2d8388a9f48cb05f568145c57dd38e478912bc6534396d"
    },
    "tlsVersion": "TLSv1.3",
    "city": "San Jose",
    "timezone": "America/Los_Angeles",
    "colo": "SJC",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "95119",
    "region": "California",
    "latitude": "37.23790",
    "requestPriority": "",
    "regionCode": "CA",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "807",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "od+7IKRPRFnBJE5n8mhfr4uoj4QsalecNsiOzjiITAA="
}

Found on 2024-11-18 06:46

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad97cf85e23

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "d0db2fc07d0e0c691688b066a5d6c3ccc1a4cde056e0d2f52cdf4806760abda5f0394d763b8fbff517890c74118a1581",
        "clientHandshake": "5619bc1d7ba3fda3afa1b3e8fdfab27d76aea54dd96ffd1fa7569e514f0ee6719f8ad6232cc2a435bee5963aebe59b89",
        "serverHandshake": "dde9effeb9fccc88095455c0b5d80447754ef84f09d0bbae80218274d529c4023ba2fe276b839263201c1555f9c9d95b",
        "serverFinished": "2a4ce07842dda09cd236c825a79ed9f1d610fcec1e8deb06abaf98eac5a374ae95210c516f5c3042c2545d09b90e1c8e"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "NMnzh4qaREWnkoB+3LWa1ylAquFSl0o9h80nv58hFq8=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-16 09:03

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad93c8e5726

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "6960c836945e4d473345eb409fdf5e79979452ed6d722faf09d5091a6038cd4adad99ce5c2b69037e1d6a06651608a42",
        "clientHandshake": "e420dfc50f0f8e9f4c83d00f9e78cadfc52fb042d5f145d56a6599452afaeb7adae9d38fe640a667ef3db55a9773af96",
        "serverHandshake": "e54d3f1d05ed01e229f0078b707cc93c07c7a4f9e80ee1b7d56c25d8cdfe233d8de9aa7d7ab70cb826f68d45bdabb0ad",
        "serverFinished": "3430d7d3a343e4812b34a1b41e7886c573905ee24dab54acc19050a202f71e51a3f8c5334f0451ffa50465a28f63c692"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "ZYSqOUwZJGGHOw9a3GLrPnKyBcZsYwm6LjoOWOz21fw=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-12 21:44

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad95566b795

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "6f09e0daa296c8288ab4ba668896e63c85fcf7409ef1df9ca877af32edb996888890582acac2deeb3dda30d040606173",
        "clientHandshake": "0b15fe10826dcd29d270b58c01157e3fcf3a9c97e221fdf0a8ba2ae4681d106d826f4cffc0f3a2c17e788304960f4661",
        "serverHandshake": "eb6ad0edfccd6c2369e3681793b630fb2d9e849b09af7798d6b03d89529555586333f5602c0698fc0e9039748aca8605",
        "serverFinished": "28dc4f47cc1444f2b45948e4ea7ba762e70875314faf139d5168dd1bbe943bcc5232661b1054324c22d1a035f1519023"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "FmoX6hVEx+02/sHYVsFCQrUhzDSFbDcRzArbJLFq3nU=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-10 20:40

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e2386527cb71a5760

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "bdb3b078e0888e590d4780f7f7d82711cd239ab48780a2feb7f87f5bde9e43331efc4c120ed79605517d6d2fe521f1c5",
        "clientHandshake": "df8ac6ea83170c7f9ea4f2f1e6d4bbd1191be9d0dff9f0f40c69d03d941a7337c9dcb23e8f3aa9113f86b5a2b1012963",
        "serverHandshake": "865f32a37bbe56effaa5f4366701123d186ff611b604d09be62cec6087275d234bc12db0dc75708aa60f7bcf85f8f07a",
        "serverFinished": "a8f19802922b65e92a1bed3e69a2c2d39546194b818c76d096a353cdc92a1bff784f3e303ddc99b6ee47cfb301f9523d"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "97OU2jQK70SF3lMEnfDcp5wbdH9ebJKzlQKRSSK7HMQ=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-08 17:02

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e2386527c87fc9502

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "fc87fc4d01f0c1201bf19286d94f55b26f80176385e4e41ed68a96e73a38c05893161c2aef50ec4487880e32d861fe2a",
        "clientHandshake": "7ba31127d5faa76d17f4c56e6848ead9f7cf3eab3cb09590fcec5de315012f6fb7caf108c2db5f7ceca78c92c172f874",
        "serverHandshake": "85d1ab73dbf3d825db0dcdfad5277cd871d1e73f9918de95f02a899da6d7d4e44dba12705f0ea54c8a61f77494318319",
        "serverFinished": "b1bfb88ad06a45259b438fec08863c36e6ac1654bd00286d74ef6e6bfbe41968c0335fe39b0e77d05dff5497ba172c9e"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "o8oHJoDrBqbKbidhJFnBVZVYh9Xw5fztkc7Y74+7utI=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-06 14:24

Fingerprint: b18befd9dd6536aa30550de50313a6d81d1544c3794af1005be69f32fd19f3ee

{
    "clientTcpRtt": 1,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "c258c8a97ac3fac4bb4444d36c22199928daf30cba1eeb60114c0cf9bff0fb8c4e982e41f2a0f115a81e94ff045fe8b7",
        "clientHandshake": "8cbb9b96a752e953f13b44d5a8b91101ee8ad773d9b2b52e9b29b16da0e83265daf7290f989b11270bc87660612cb226",
        "serverHandshake": "7d1d357aebc35d0699d067a6c732fbd06cccfc2e209a90db84b439531fa20fe8a069e525e548fccb916c44701c11b022",
        "serverFinished": "6678932483d4579bc8e88b3b34029f6489759b271cbda1e2e5348073e6f417b7de1f1189d3b74be8ec555c40f5294d39"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "Hna8SZAkobwX2ipkSUTZaQ277Ss3UtFBOQI+HKzRHKY="
}

Found on 2024-11-04 16:01

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e2386527c50999815

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "507db0ba274a75a6cc78a88a5333c64602d7b3c42619f59774d6cf3b079d306f7abf13c1ac1993818028cc905a54b2a0",
        "clientHandshake": "97154d7f3aea5b488cb350da3b2d7baaeb4f8dcaeaeb9afb8bd3ba7dd3124e375b8d620897eb900d0d1a52d2f3a12958",
        "serverHandshake": "31fba01b9a33bbdf637bc2d862b8bec3c096716c381428d07cc9863b282f74237e7eb7cf8237cec11f32e5805d9281ff",
        "serverFinished": "f10f8b0ac2a4fc6c672d98a3936e1a3fa724d65ec3cff9bf3e2046f598fefc358123175494a7ef6d95d08a8ab2bcecc3"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "XpF1+uQOSJBqGI6AfDZ+IlMt3PwgIurpFXmA1NJq374=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-02 14:47

Fingerprint: b18befd9dd6536aa30550de50613ab81c4d7262abbf5b58b5f3e6d31fc8f36c6

{
    "clientTcpRtt": 2,
    "longitude": "103.78360",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "AS",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "SG",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "verifiedBotCategory": "",
    "tlsExportedAuthenticator": {
        "clientFinished": "2d90e51f9d547510a9723573daee55c0d68001e0ed5fd5d612f33e6b7f0a5e014d95549d21bcaba48494038461caffae",
        "clientHandshake": "158d0fd898c58aa30f14b74624d611b827e25c95b8bf8c3e49ddd7183e0c08d7b4910ce6b4de1c5b020704ac5ce7940d",
        "serverHandshake": "dac6ce6dfeef38d1b4c701596ea7d5b186766576368f0dcbaba7aac88233fb561ae58912374f517937863a5040ce2a49",
        "serverFinished": "5bbde6c117bde090093f230836ef6457c60b082a707e523cf66e1db8ce12c9e0b2f01ab91c0dceea5cd1787c4cabfae0"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Singapore",
    "timezone": "Asia/Singapore",
    "colo": "SIN",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "13",
    "latitude": "1.29820",
    "requestPriority": "",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "CHPruLlsNoj3HaGBLC3nT5tBARIw8+abMpHLgyhr4w0="
}

Found on 2024-11-01 08:58

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e2386527c13b09c6d

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "8e9a20754ba481210bbc5d158f9af77caf527dabc8cdfd021f2ec0a36e5a16b9960a9eaa2b687f14e0354ab7e983b755",
        "clientHandshake": "6a05289a9cc70565aeafe95143eb9e7d86c00aa6afc4dd2cfa3da854993fbb819f0a1c9313debd7cfaecad81cb2c8fd4",
        "serverHandshake": "f7f50791351fa719439a066ea52b0ab755ed361a661a0ad193a1b72a0347c581db26441b7f96e221b025c44557243d69",
        "serverFinished": "44650e70a98443884f4b082eec8f08ddb5d904e1881c9caaa22f79988268ca63d7ad555cfd8e71259b3a0fc9cd63b5a9"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "8B+fYfUhhB0kii5iard8OhZAt40MGOY+DsK+G+alNO4=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-30 11:06

Fingerprint: b18befd9dd6536aa30550de50113a3e282eea2e44517a6691b40c8d370d6145d

{
    "clientTcpRtt": 7,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "9a6f0bcef0980e1a7b327b28032d0e97ef1b7e3ebb507827c1978bee37aeebff00b5729ec192948c94c25713b0586a64",
        "clientHandshake": "0cc712b936c1ae35963421cc4ea10facee510481fe40172f54bbf614492032cf3531fa1e95dd034f5fb0aeb3f41a6cd8",
        "serverHandshake": "126c84a209e07b79b2de791679de22b456737da88ccaf742c200e7194c364500b0c87d4322f08f4625d6f9d494052c9d",
        "serverFinished": "f3f54c16c28ff2a946746dbcebe7a66ca4a53f1388540a04c4bae0a2d4cfa4a020e941dfc84c26e4eb38417bb6281cbb"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "2sQVK6EcYTwOdRAIdaKARP9AYLWXxGiWSkISFzxO9po=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-28 08:53

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e2386527c622bbbb6

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "5b7c893312ab0c817a540c781765ec0110cc5040217a119e9f193daa2298dee88ac5776442985de29b5ee38d0ceac0a0",
        "clientHandshake": "a61efaace6816b228d1ae7af05bc055085551a874828b20fc171297f45b6f5aaf5c647ae4dbf5dce55f0a089f9875189",
        "serverHandshake": "ad927b6cdaca0760ce87996045afae01dc8c70ace4bd9bef26aea5e78fbf771248492766a553bc6dd2670531f365d6e5",
        "serverFinished": "f0316462d0cbb6130f73663e20a2e11d6d8336dad96acf39049e0ae83bc23fb3ad0b5c4b0df98b1f2939d554b68a6202"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "TTwMtAFoP0YM4SVoUILSlfzNkKpvUsE+rE25W8dfYLc=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-26 07:55

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad964c28f59

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "724be831ce997258e4454747a7a1ef98e8b434e9521dd4b796129d24e87793e412b39e52babc1964dd1653fb614c1c34",
        "clientHandshake": "0bcd3d51c1655d815455095cfe9f6d81628c72ac8d121427c9a7366f6ff3664f5f6088a6f3996f04ad005cb297d7c6c3",
        "serverHandshake": "c4e1a948967bd91fe97f87bb43d37a4eed089f0b5d070a4c75c3298472b1ce7b3770869fca223f7dc9269759f94d25e7",
        "serverFinished": "84ee01b996ca39b6eb8e9db5854f1da97ff36c4ff9e6d695fc675ec0d71e439006a0a1be040bc430754da17410cf93c9"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "nqbr0ubj80157n33zm7W+r/xgLuXoRLLE9edFiFDzTA=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-24 10:02

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad98af67443

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "e62a484a4aa974b0f515ce303f52b28c749e642df8f8052d82c40f05e4d907ef41c92d348835281d0f1d21f92c9845b9",
        "clientHandshake": "1dc32a67c427c9940b8f0b9ff209d41164bcb9e1b6897bf340e3f45ef31991d38f977ef983a8d89782feb4b74dffaa6e",
        "serverHandshake": "5f02a4484e51bcae97d115f6c503f98369c9c9b08558ee5aeaa6a69478218e1e3445537119c70492ca75602a9a126e9f",
        "serverFinished": "90009aacb3987f755a72a828bb684aab387f17bbe3e2277d78299d8c0bc8e5babecb613847fcbabc05b875c935b4da3b"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "z7xqBTSXAIlMGi9+EldSqj8q2am82uupFL83iGncuC0=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-22 14:37

Fingerprint: b18befd9dd6536aa30550de50413a8abdcc81a27c00390ccf92301b62900c96e

{
    "clientTcpRtt": 0,
    "longitude": "139.79150",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "AS",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "JP",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "db4cddceddeb88ffca191da32a8ae2d4174e7518681100070b314c5451a9cd0738e3c2e8ba43b1963f8f58ab64f63f91",
        "clientHandshake": "bf58736544644ed2550b3f067278f1de89535930d67134502cb376155972077c291a24dce7bd9f194888eecb135cb6f6",
        "serverHandshake": "c623558509f7cc905dabeb4108127064e6119ec7cf0742db016136b40309b910cc1a6d3cf9796b10d5bd8ef72813425b",
        "serverFinished": "34d681b5249383c5750aaf390044e00938fe0d9251d33764ca720d46b2525243b9bc1bb6e469e85d147a0673d7279a3c"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Tokyo",
    "timezone": "Asia/Tokyo",
    "colo": "NRT",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "135-0061",
    "region": "Tokyo",
    "latitude": "35.62890",
    "requestPriority": "",
    "regionCode": "13",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "lxp54uLRKSJia49DCPDHx3p1lk41bNS1jMIKq+oc3qk="
}

Found on 2024-10-18 17:41

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e2386527c2a6de99c

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "1027138b57434d8c886a10cf4c36a08658bfed61a301f3b82789f6c632d95493b4df677f57ae76159d43cf254ca910f2",
        "clientHandshake": "d038ce64df6b16d7c830e5a9c05478bcb4359a2d83cd3d7248716a80bafd29469dffd93a647eb4e2403f8bde9c1b69a2",
        "serverHandshake": "1b2faafa103563fd0670260fc8cd085a9458cd88ee4d0ba1f03ecc81de4800e62c1a8e4ec628ba234bc3c2f2ae892882",
        "serverFinished": "711a1950821496bd35b7cc817eb8c5a8b2925353d576fcac89ae596b0f80c99e8980622136d86c5ac0fd60cf79d259ac"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "NUtuKxBZBxZShYL9kTOM9Rb9hgcz8ltUtp3qWs5KY7c=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-16 23:42

Fingerprint: b18befd9dd6536aa30550de50313a6d86b7e92acdad1c281097f6e1b7a5d2eb4

{
    "clientTcpRtt": 1,
    "longitude": "-79.38920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "CA",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "71547af3f8fb4f9547ddde10837e985e47f7e8094623109097dcc73cceae8e8b74adc5634f138b0177c174d5fef3722f",
        "clientHandshake": "f3196cccfa8ef6cf09688490860644ebb7daef536c2f8c55009a96dcb09f741b301e953a68645f48ef5d52c95f3e7450",
        "serverHandshake": "92fb25e811dcdf040a64e0b0bb5da1a0455882eefc6781f1d837d0ad388087a57571b5b725b002f291ef11a5f37db353",
        "serverFinished": "779da8554a67780f7ed189e1b977e82a7e94f65b6a50e6f9fa6d21868e25aa52ac5e6cf276621f11ef2d506927a1253d"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Toronto",
    "timezone": "America/Toronto",
    "colo": "YYZ",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "M5J",
    "region": "Ontario",
    "latitude": "43.62270",
    "requestPriority": "",
    "regionCode": "ON",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "ZXDGd3Ti92idw1hQTN/hTZOGtfVsFZ2jTWNBpEBVhlY="
}

Found on 2024-10-14 21:32

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9f81e64ad

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "42ed51563b63a52ae159e058d79265ba7b547675364fcaad4796cebb5207d2207779c1cf59d5565d5f72533270d63c75",
        "clientHandshake": "20fc451ed617ab4d000ec22db89dcb4d5900f758a87d6781b98ee3e66e9c12b1d390965319850257c4cfa12bb9b777c9",
        "serverHandshake": "cd627ab8690eabf8183ffdc833a2f3266d0e27864ed77b2e0ea05856b996beed46af475513605ff340d0202cb7a13112",
        "serverFinished": "0f3c4876b508f3607e7ccf0d110e3f6ba7051dbd330869095a9e501257e2862d0e759d63c7d73cb242c5a5e310d6e021"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "jfx81CAvG2MG75YmiUvKJaVVFOEexa18tkW5cd3Wbk4=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-12 20:10

Fingerprint: b18befd9dd6536aa30550de5ff13a08467bc060796ae6f6c86ea8b56d73263b8

{
    "clientTcpRtt": 5,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "9e2d3de0b3357316cd9732f08a330b8816030ba425daeb1e656326cfc82da4cc3fef25eb15ab4a8b61d7259121041623",
        "clientHandshake": "c6d10f42994dc2fae39f57a5ac003000705c240cc3c5f50f315ecb15510ced3dae562d0341d98bceb8ca636f705d1417",
        "serverHandshake": "a26c98a3e03cb7f3326d69922dd88d0af16c5fb3b63fcc31b643ee3eb826c00a94b5f67dcbf23e8d4141d1356064bbff",
        "serverFinished": "61e6890b5ab79199a82f3d5b7a4ee5c8a215788356ea1610bbb2214bea4dc0f7e054bceb33b6e79dd5e40693d8de2c92"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "5iFyhm3gIIGwSSQl13FC5kwQhGgO2wMp7yuQC9Hm30Y="
}

Found on 2024-10-10 19:55

Fingerprint: b18befd9dd6536aa30550de50613ab81d1bc4fda6caa511b6181cae10fdafa05

{
    "clientTcpRtt": 2,
    "longitude": "72.88560",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "AS",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "IN",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "89b0a1bd57635f5aa738dc1e4895e74b0515145a38b5178d062831c70978298dae83172ba55a218d574be4b3c4c91c6a",
        "clientHandshake": "ca7067f709c204f2d8c44d496240a5614876dfbbb5d63b0169927d603af491b8a085d83520b1021cd0e67f729307ac5b",
        "serverHandshake": "4a133ca45615fd2a85ea5648c0bf45139edbca0867104378a03cebace049276bcc7b32ca23005eb4d8e0a6ab89706277",
        "serverFinished": "d35946364f66a673230be2bf43ea625c70c7d1de80bceb1cf6e46e55b28c813e0e06a0eddbb4a6853a43ee6ac306b6c1"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Mumbai",
    "timezone": "Asia/Kolkata",
    "colo": "BOM",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "400017",
    "region": "Maharashtra",
    "latitude": "19.07480",
    "requestPriority": "",
    "regionCode": "MH",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "Gn3sNWqAPwcTQv8+keB+iHt4FDanQfmAdjNmWL0zM4w="
}

Found on 2024-10-08 19:49

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e2386527caafaf8a7

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "ffdf54e212dae9021910222197246e43ee63d7e3d24279d46c4f822768c34ff5f53c97d17420976b5c701ecd61531501",
        "clientHandshake": "521ad2962d4cb996f7b5d89581ee38e4465eebed0a934a75181689737b172734c87627f6cf9016266aba4e2772830450",
        "serverHandshake": "c69145d4670f01f69140db9dc09a5112e6db33e7d4f0ff8b9a5da2dcca7eae1df36e551b1e7c20242fc6f0aea8bd0874",
        "serverFinished": "7ce222c17bd3fa764ed7402654a62641701332237b3830af794bfac1c880e04b517ce7f8c51163e4f17f7f025e43dd89"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "RF1URhwbtYY7kZw8nTkTZRVQpPnvx4B5EPk/Pqenj+g=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-06 14:18

Fingerprint: b18befd9dd6536aa30550de50313a6d81f867ea979bcfcd2f43b91485271d54d

{
    "clientTcpRtt": 1,
    "longitude": "103.78360",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "AS",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "SG",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "verifiedBotCategory": "",
    "tlsExportedAuthenticator": {
        "clientFinished": "e16d5c1ca74a7439c04a04b9b12e3e4fdf57ecbcee0aad55b5554ae08c588dc4d484612bfd69f9a4bcf1c0aaf56971b4",
        "clientHandshake": "e48251acc760960b5fc99716d451f84bfc82fdac865f4606f46ee78d4820a6f1ace6936579073fb107b430fd1eff7e51",
        "serverHandshake": "be29693d59eb062cf3770c8200500779d288cef78cfa4360b8593e3186d37621089b27fca0d747131138b3ccb0c50f57",
        "serverFinished": "ecd2eb6903dbedc6bc663805938d48866a6d33ab0be28493574207aed72c713c6b34505511c102feb33331d5c6793bf5"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Singapore",
    "timezone": "Asia/Singapore",
    "colo": "SIN",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "13",
    "latitude": "1.29820",
    "requestPriority": "",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "oRv9lO6QFoD8Y8ZqUKeDJb72JXMPFupAY4FyJ7Z7sIw="
}

Found on 2024-10-04 12:01

Fingerprint: b18befd9dd6536aa30550de50313a6d81d1544c3794af1005be69f32215d7a16

{
    "clientTcpRtt": 1,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "21d5a8e74742940f48bedf3dc649fdc29b84b6db217460d1bad8014adc49e95274eb891b4b6820c803bb8a30315a986e",
        "clientHandshake": "8dbdd9f6249cc7b74e62c911d561f2fb84b8bf37ffca600ddc31b8e954988b9d8b02a191def39cea806601b7a79b51a5",
        "serverHandshake": "50cd137ed7380d6efc64c38a033d41e0ed836953d6f81e7a37012e2737bec82f2e09cec4940088f741e7b255b14d2079",
        "serverFinished": "bf831d2f7ed4715a6b5b088879b38cd902b62010695a73911f6dd71e03c3e5ca3a60814e1cbf43b7243bef60ce15904f"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "BVQ9Ur0dBjPPv+D0t8RfRgOE2wPIzYa820/o6005Zco="
}

Found on 2024-10-02 10:06

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e2386527cda69dffa

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "b19846e516f579b60fb054bc907abdf97319ef73bf72b037c52b18ffff5c832883d94eb61b658113505c308069a5c261",
        "clientHandshake": "92847062c4e1c1560e40bf78f1e1f5af9f59767f5c84c9eda15d8132cefbff8cf1f01f28657ee8bb4ea6b59980f67089",
        "serverHandshake": "7f0285b1ca112a20a14b00a6913bd21e1a75b901f18f6441976dd67c07e14525976b9445bf917adaef986a1eca19d6a1",
        "serverFinished": "27bb54674c004685d25da2d6ba24601c6959fa678a7d6e9c3212c309ac21f994729a98b53af4259bebfc95da7e799a61"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "1XN3MIHsgBucEZc3WLOY1obMUVkjUWJbrCs1XDTTcJE=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-30 07:22

Fingerprint: b18befd9dd6536aa30550de50313a6d86b7e92acdad1c281097f6e1bef480327

{
    "clientTcpRtt": 1,
    "longitude": "-79.38920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "CA",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "776a65c3e967495d2649cf95c221f02775d0e35c66444ede62fa928be83799f501691e6400bf30eed54f7c83d20a76d0",
        "clientHandshake": "cf66f4a431a33cbe089063996db8a5bbde1afaa95901ee0800dd13b183894ebf24dee9986a3662da8b963f34c91f86bb",
        "serverHandshake": "0e90c0bf5a885bed15a5a32da43561ac4981002b11392b8650c66eb25134f20bf51d76a39e14d05d970ea29c7bccb2d2",
        "serverFinished": "57d1279d368332a19f08759777fc264ad750cb2e210c58cbe06cc31b329ea125ea264e2c5eb3ef67cfbe4a9a4701a59e"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Toronto",
    "timezone": "America/Toronto",
    "colo": "YYZ",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "M5J",
    "region": "Ontario",
    "latitude": "43.62270",
    "requestPriority": "",
    "regionCode": "ON",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "lJRo1Hqe8j1MBtB82KyikvD41H4o8ybOr7vAST9w4y8="
}

Found on 2024-09-28 06:59

Fingerprint: b18befd9dd6536aa30550de50213a54da7be1939dd2c8002ef352a9800ebc9c3

{
    "clientTcpRtt": 6,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "b1a43d96cf44f0813cb3bd8d7d2b4813ba962fd4ef1017d7507bf8c8a96e239aadd52b3763db1aaffa8638dcd14fe06c",
        "clientHandshake": "53e6451c5d459a38b488919d9b8e9fcca7649ec214ec7414427787fa32892fc6584f677dea6e1088e27db82ca596eda3",
        "serverHandshake": "b3bd098108fb2372b127f19f5b5c28ade3404ee06d5e75d40e9f5547338739563ffe315af2e14effcb263014165dce49",
        "serverFinished": "73800cbfe0d37bed550cea04dbbabe208b736b01ed2456a8392fc3b60de086de4753200666a30bd80e56879e4d76ec5c"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "xGH+/dwRzFQcNOBsZ+PzW+TLq/dZq3jYd0FLDCNg1tQ=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "FRA",
    "country": "NL"
}

Found on 2024-09-26 22:55

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e2386527c43f917f0

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "b613a72ae2e023e1ce5c2a311ed99d62583a96a78726135c197c46108a61adadb51e0da3c0feb95b37ccd9c66af6793b",
        "clientHandshake": "9e5a822113c6e31c6d25d7b24d101afabeef2db505f72ef9431e995194a659eae1101d13943d643868cdf8068d0a75fc",
        "serverHandshake": "999b7db3d5801a5ce65180d04e658f33e34868b51c299952fa8cb525cceae88e7c965d28814dbdb1bcb42736c0cea23a",
        "serverFinished": "3106bc91c210bd0697d8f5630d69a31c035aa318c33ac96d68afc7d867bd0804ff43b0c91ed39912a0ed261f45ff3a43"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "2iXvJsBGZ3Q4lcQ5g3Wx6fy/jW+/jrWLPPmf1zDMAXc=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-25 00:54

Fingerprint: b18befd9dd6536aa30550de50513aa364b8758e8907bbbb5eec79d57a38019ab

{
    "clientTcpRtt": 3,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "89cf23174efdc1dd541016df3f5c26bd45a104e7d0578c7538542b9b9bf0b43c8e1412ab758a0820e0b7f5befd89ce6b",
        "clientHandshake": "0e0a0c952f97e266643ef2ae0e465bb3117c120bed1284bbc902cdd664ed1a2867532f98040ff2f6e084e541053af46e",
        "serverHandshake": "3b7dbe1d89745dcd752dd9bb11bc0dbb47d3765b28e199866469b5cf325d7c29bcc982fe8387acc8c60a88f6aa115347",
        "serverFinished": "4d1fced9ba8b7908cd9ffa8d7b16ff99804e6a2a7bac555f25b668160d65270e87188a3a2241aaa3a50741c193c5df63"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "qi7ecEm0mhaQAKIbZL5i0Gys7Qa58SH8wf4RtYdZhfI=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-22 20:23

Fingerprint: b18befd9dd6536aa30550de50513aa364b8758e8907bbbb5eec79d57504a019d

{
    "clientTcpRtt": 3,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "e22bd31acaa4b74771a1b575ef3abd96fb21187b3f66b21d39504eea802ef6d5cdad229e23d043dc3e9206f27bcf923b",
        "clientHandshake": "0cb5b0ca7d3cd56ae356cfa8a558e1e8bad44e9b0bf79091d6c140e3718fa17f447c111c0086e55f50258f4e585d6c63",
        "serverHandshake": "9217b7ade068d4d2158cb07d930f0bcd1401a1ed00e3e61d709437b6519a398cb7596f08741dce27340ea20da9d482e4",
        "serverFinished": "0877f20efa1094786ccb4ea24b326bbc3703f53d0355d49620e791188199b7f52fbc0641866b29f87c7b283f58ef190b"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "M1h1BjdoU4JMRJOHHvaDxf2c37bGk6sxOA4kuZpFw0M=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-20 19:16

Fingerprint: b18befd9dd6536aa30550de50413a8abdcc81a27c00390ccf92301b6128c0b8e

{
    "clientTcpRtt": 0,
    "longitude": "139.79150",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "AS",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "JP",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "04f6388260122792ce6ec742aba2e371f27b3d00b8c44b2ebfd51a02b4fe591f35702a8e76cf47f08d0ac65502a96318",
        "clientHandshake": "5551bd585c60194cad8d1db505ef9ffb85f0ccfded22f5607a5e0879ecc8ddc92424de5d2c19149ab5d7046f1cdf137b",
        "serverHandshake": "17d7904bbc34601b6dcb82da1819625d6eb1cc241d2b0e668fdeb7afdd9c90f21ea431324689156790652d849c930c47",
        "serverFinished": "24e2d414f8ebce84628b15f26858c406955f872529d4afc6bc07aa2ec56d62f9ce1d7b75cc3cd67282eed1e3bad4520a"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Tokyo",
    "timezone": "Asia/Tokyo",
    "colo": "NRT",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "135-0061",
    "region": "Tokyo",
    "latitude": "35.62890",
    "requestPriority": "",
    "regionCode": "13",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "aCpSKgKcgGxc3xfx1jvDs8uBPRoIOMobtt/AEKjeVe0="
}

Found on 2024-09-18 04:21

Fingerprint: b18befd9dd6536aa30550de50313a6d81d1544c3794af1005be69f32282416e2

{
    "clientTcpRtt": 1,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "1694d7dda192351132d2f13fc83ff64711847b7425a0ffb639cc5ced6a6660b0e4727b72ee34d8ea4016732279e0fcd3",
        "clientHandshake": "8d160706e74820d68e4270c1a953ca6978b410cddf69ed7799368f24a18112e73192f2887e76b49f6d8e55844f6d5b5d",
        "serverHandshake": "413a55c3caab523c6c750d4995d6f88626482ba3fdb8c0f8cf3bff2721a81b3f0020ee606828277283eebd3c0682346e",
        "serverFinished": "9970eefc0eb01d15e5e8ee5f5160f27d3bcf4a3c21c9a7772bbac8f76336efcc755b3923c7884af2d45bc34980dd1217"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "LuuPj90/XLiN94WnGBYHToT7OGPGTFtww/+ol61/UpY="
}

Found on 2024-09-16 22:52

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e2386527c8f5f28a5

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "6f20afe79fc39b36f4a8a8f42fa5e1a1209b687d6740f32e1da6130ec3590cbce31ae22b17b193639c60d1477d847e8c",
        "clientHandshake": "ef17b17f11c158563e465d0cd0e4305f7fe3aece85cf2e98c6626af4ca42e5f525d167d57eec42ba71bd14aafaf4ba6b",
        "serverHandshake": "019f820f3c1d59b39927913ebecf0e59918be7399da632840e4538b7732c27310f782160e18fa0125b9909f2a35e766e",
        "serverFinished": "58f21942eae294eb25da071b98e9a04f428a54286e37f23113c524fd59bbc4e31069f8095e8212b0aa5121ea681bda61"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "T7Qrk1hJNjgA0jnyYklBjoM+frnE4ro8WImYErrZk1s=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-14 21:24

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad95eb64871

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "7cfb55f7e455b3e2df174c96b8dbc58bcbf9e6bfd668fb7f2e1bb618e8face15a90910d6abf8e1b03fbbb200c4a23ecd",
        "clientHandshake": "a6580960c093e91d9dbc54639e59b4f76933c2a59ce1583c70e2ff25656520cf4c53120800a9301cc51ad5ef081248e9",
        "serverHandshake": "217141532c95909df3ae5fee0ccf94f0f62ecb3897321047711ef87b8961d9f39987114e2531284ae6fe367a8c045199",
        "serverFinished": "187dc3056020ed0dc1c9b91f22948fcd413f20f365c37f294f4e4a266618dd893e42e7417217a576b8130d9dd602b250"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "w9pB6VWgbGAhRfkdAmq3eC1i7JhT9c2yyO4OBUngKtM=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-13 00:25

Fingerprint: b18befd9dd6536aa30550de50613ab817e6134ec6611bd4114eb7fdbd7b2491e

{
    "clientTcpRtt": 2,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "4bec37c40a74c3f37c3998bdac748edf0e4b4d1f30b2d71b4c1ea16e229f8dc9233a41d70f8c1d4ffba8e260cd1297af",
        "clientHandshake": "aa6a054f43c88c30fe9500e13badf2bec315cea020fd9d82146ac47a2aab5ae3613d393aed290d8f13ca37cb087921a0",
        "serverHandshake": "1d6a42b0d93c93282160c6887c4a0d419540c6671494d01961d9069cf517eca9c7ffb3fec380015a824f6bc3f1edc0ec",
        "serverFinished": "75d5672144147b6873b616a34d0cd784d23372b227d83d2b38f177511b3e6025208af76a56a93b8b56803bb2ef62e167"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "324",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "gzxI7Y2SBPbFWGaKIjsF5VhmZJL9adD4JoOUQuOtOsE="
}

Found on 2024-09-11 04:02

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e2386527c58e88823

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "c05a5a825a5a4ee5fdce7fec7db13098f49b9f54a859defd8abd457376d45794022af61cd0b1f4c1b5471f410982dc1e",
        "clientHandshake": "002251e54a039e00a35d2157d153549768a67b04422f55984b30dc202794501b267b4dac1a202ec7f3ae23e3dd332c08",
        "serverHandshake": "a7eda1bd7464f8264755dc07fff6dc26ec3de476760a60c239b6018e262e683bfd97a9451f321a049c4010f32d9f4319",
        "serverFinished": "a7c2c40cb9c150e49d27c04b07e8b0e8ab592169c38441bfd8d7e29c8fc7b46f21a8156c9d1339967a71b6dc530146a0"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "324",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "m+udPS8vnL8KazfwBJx1+etR/HPreSCL6XHR/foeorU=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-09 19:36

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: pjp.qqnews.link
Port: 80
URL: http://pjp.qqnews.link

First seen 2023-12-01 08:59
Last seen 2024-11-22 04:04
Open for 356 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522d0e51ab3
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/grahamnscp/tetris-web.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-11-22 04:04
  
  314 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: pjp.qqnews.us.kg
Port: 443
URL: https://pjp.qqnews.us.kg

First seen 2024-10-14 17:09
Last seen 2024-11-18 18:42
Open for 35 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522d0e51ab3
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/grahamnscp/tetris-web.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-11-18 18:42
  
  314 Bytes
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: gco.donpau.com
Port: 443
URL: https://gco.donpau.com

First seen 2024-05-17 01:24
Last seen 2024-11-18 16:05
Open for 185 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec46d1468c

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Monday, 18-Nov-2024 16:05:31 UTC
Restart Time: Monday, 18-Nov-2024 15:08:05 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  57 minutes 26 seconds
Server load: 0.00 0.01 0.00
Total accesses: 3242 - Total Traffic: 64.9 MB - Total Duration: 16267523
CPU Usage: u2.87 s3.03 cu0 cs0 - .171% CPU load
.941 requests/sec - 19.3 kB/second - 20.5 kB/request - 5017.74 ms/request
14 requests currently being processed, 0 workers gracefully restarting, 61 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
0637no0yes1024000
1638no1yes1024000
2998no15yes12013031
Sum3016 14061031

____________W_________________________W___________WW__WWW_W_W__W
_____W_WW_W.....................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-06370/5/5_
0.24732012360.00.000.00
127.0.0.1http/1.1

0-06370/5/5_
0.247600208330.00.000.00
127.0.0.1http/1.1

0-06370/3/3_
0.247330106380.00.000.00
127.0.0.1http/1.1

0-06370/5/5_
0.247590313880.00.000.00
127.0.0.1http/1.1

0-06370/4/4_
0.2272301484890.05.615.61
127.0.0.1http/1.1

0-06370/5/5_
0.247510307910.00.000.00
127.0.0.1http/1.1

0-06370/7/7_
0.2571520410444720.00.010.01
127.0.0.1http/1.1

0-06370/3/3_
0.247330336330.00.000.00
127.0.0.1http/1.1

0-06370/3/3_
0.247480106360.00.000.00
127.0.0.1http/1.1

0-06370/4/4_
0.24745000.00.000.00
127.0.0.1http/1.1

0-06370/3/3_
0.227240328880.00.000.00
127.0.0.1http/1.1

0-06370/4/4_
0.2471650052601480.00.000.00
127.0.0.1http/1.1

0-06371/5/5W
0.243801532250.00.420.42
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-06370/6/6_
0.227110325150.00.000.00
127.0.0.1http/1.1

0-06370/2/2_
0.226990106510.00.000.00
127.0.0.1http/1.1

0-06370/4/4_
0.22462000.00.000.00
127.0.0.1http/1.1

0-06370/5/5_
0.22638000.00.000.00
127.0.0.1http/1.1

0-06370/4/4_
0.224700104170.00.000.00
127.0.0.1http/1.1

0-06370/2/2_
0.22459000.00.000.00
127.0.0.1http/1.1

0-06370/2/2_
0.22273000.00.000.00
127.0.0.1http/1.1

0-06370/3/3_
0.242080101000.00.000.00
127.0.0.1http/1.1

0-06370/3/3_
0.23208012470.00.000.00
127.0.0.1http/1.1

0-06370/5/5_
0.261451240235520.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-06370/5/5_
0.25751242128790.00.000.00
127.0.0.1http/1.1

0-06370/4/4_
0.24690117770.00.010.01
127.0.0.1http/1.1

1-06380/46/46_
2.094302989990.00.060.06
127.0.0.1http/1.1hub.paotung.org:8443GET /vendor/phpunit/Util/PHP/eval-stdin.php HTTP/1.1

1-06380/57/57_
2.094102025580.01.041.04
127.0.0.1http/1.1hub.paotung.org:8443GET /phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1

1-06380/49/49_
1.973124723443580.00.980.98
127.0.0.1http/1.1

1-06380/54/54_
2.01501134613117960.01.581.58
127.0.0.1http/1.1

1-06380/50/50_
2.094703120530.00.070.07
127.0.0.1http/1.1hub.paotung.org:8443GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.

1-06380/41/41_
2.094202366800.00.060.06
127.0.0.1http/1.1hub.paotung.org:8443GET /vendor/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php 

1-06380/55/55_
2.0234100851992180.011.0711.07
127.0.0.1http/1.1

1-06380/62/62_
2.094102728120.00.100.10
127.0.0.1http/1.1hub.paotung.org:8443GET /phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1

1-06380/42/42_
1.9131432593886590.00.040.04
127.0.0.1http/1.1

1-06380/48/48_
1.993412323756480.00.170.17
127.0.0.1http/1.1

1-06380/67/67_
2.093901993720.00.050.05
127.0.0.1http/1.1hub.paotung.org:8443GET /lib/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1

1-06380/41/41_
2.094303779560.00.060.06
127.0.0.1http/1.1hub.paotung.org:8443GET /vendor/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1

1-06380/32/32_
2.093902862500.07.927.92
127.0.0.1http/1.1hub.paotung.org:8443GET /lib/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1

1-06381/0/0W
0.003441000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-06380/46/46_
2.094802462780.02.052.05
127.0.0.1http/1.1hub.paotung.org:8443POST /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_

1-06380/53/53_
2.093904180180.05.055.05
127.0.0.1http/1.1hub.paotung.org:8443GET /lib/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1

1-06380/37/37_
1.996106363840110.00.210.21
127.0.0.1http/1.1

1-06380/56/56_
2.093903220920.00.720.72
127.0.0.1http/1.1hub.paotung.org:8443GET /lib/phpunit/Util/PHP/eval-stdin.php HTTP/1.1

1-06380/43/43_
2.094202458570.00.140.14
127.0.0.1http/1.1hub.paotung.org:8443GET /phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1

1-06380/51/51_
2.0649524093239560.00.050.05
127.0.0.1http/1.1

1-06380/67/67_
2.093903046430.00.040.04
127.0.0.1http/1.1hub.paotung.org:8443GET /phpunit/Util/PHP/eval-stdin.php HTTP/1.1

1-06380/39/39_
2.094302482200.00.020.02
127.0.0.1http/1.1hub.paotung.org:8443GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1

1-06380/35/35_
2.094204456110.00.030.03
127.0.0.1http/1.1hub.paotung.org:8443GET /vendor/phpunit/phpunit/LICENSE/eval-stdin.php HTTP/1.1

1-06380/44/44_
2.09802650550.00.060.06
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

1-06380/50/50_
2.01621136621981040.00.090.09
127.0.0.1http/1.1

2-09981/94/94W
3.25002680590.00.040.04
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1

2-09981/68/68W
3.049403643160.00.050.05
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-09980/83/83_
3.230103892352310.00.050.05
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

2-09980/89/89_
3.200106462552380.00.890.89
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-09981/76/76W

Found on 2024-11-18 16:05

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ecb3d16f5f

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Saturday, 16-Nov-2024 20:16:41 UTC
Restart Time: Sunday, 10-Nov-2024 04:42:28 UTC
Parent Server Config. Generation: 6
Parent Server MPM Generation: 5
Server uptime:  6 days 15 hours 34 minutes 12 seconds
Server load: 0.00 0.00 0.00
Total accesses: 417910 - Total Traffic: 3.5 GB - Total Duration: 1937756080
CPU Usage: u63.21 s67.4 cu302.63 cs249.43 - .119% CPU load
.727 requests/sec - 6.4 kB/second - 8.8 kB/request - 4636.78 ms/request
6 requests currently being processed, 0 workers gracefully restarting, 44 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
0101035no9yes4021041
3100982no1yes2023000
Sum2010 6044041

__W_______W____W_____W___.......................................
..........._____________W___W_______............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-51010350/2282/10702_
84.1310363818300.01.3923.56
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=TmABAAABAAAAAAAAA250cANvcmcAAAEAAQ HTTP/2.0

0-51010350/2225/10637_
84.1100359704900.01.4164.07
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

0-51010351/2187/10633W
84.0800358446980.01.7098.64
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-51010350/2210/10499_
84.13510087371870840.01.3582.07
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

0-51010350/1244/9633_
84.06110654638753170.02.6957.95
127.0.0.1http/1.1

0-51010350/2159/10556_
84.1111236347988660.02.1451.65
127.0.0.1h2chub.paotung.org:8443[0/0] init

0-51010350/2048/10763_
84.1310399972530.01.9094.80
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-51010350/2193/10861_
84.09310648371719300.01.4630.28
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

0-51010350/2263/10611_
84.13110116374610000.01.45206.82
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-51010350/2360/10871_
84.10010649357899640.030.9998.60
127.0.0.1h2chub.paotung.org:8443[1/1] done

0-51010351/2196/10497W
84.04530356530120.015.54870.53
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-51010350/2206/10523_
84.13310101357703650.01.3444.33
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-51010350/2290/10647_
84.10010651361998860.01.5030.21
127.0.0.1h2chub.paotung.org:8443[0/0] init

0-51010350/2210/10711_
84.1340343624640.01.4165.13
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

0-51010350/2227/10613_
84.11010651351301420.01.4787.52
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

0-51010351/2225/10733W
84.1110365392510.01.3239.03
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-51010350/2222/10727_
84.07010636353818240.01.38104.48
127.0.0.1h2chub.paotung.org:8443[0/0] init

0-51010350/2200/10690_
84.07110632362378540.01.3346.97
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

0-51010350/2284/10739_
84.09310650351815970.01.4377.24
127.0.0.1h2chub.paotung.org:8443[1/1] done: stream 1, GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3

0-51010350/2259/9554_
84.11001062161760.01.3455.43
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

0-51010350/2249/10421_
84.11010651362242230.01.3468.20
127.0.0.1h2chub.paotung.org:8443POST /dns-query HTTP/2.0

0-51010351/2231/10379W
84.1120387653970.01.3663.39
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-51010350/2270/10745_
84.1100349053560.029.84121.72
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

0-51010350/2193/10682_
84.11110097372848490.01.45101.60
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-51010350/2218/10589_
84.13010636349303020.01.3671.96
127.0.0.1h2chub.paotung.org:8443POST /dns-query HTTP/2.0

1-2-0/0/2647.
0.0012275232527127320240.00.001.67
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

1-2-0/0/2704.
0.0012275232541111487150.00.001.63
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

1-2-0/0/2661.
0.0012275210650121771560.00.001.66
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

1-2-0/0/2823.
0.0012275281394118665800.00.001.73
127.0.0.1h2chub.paotung.org:8443[4/4] done: stream 5, GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3

1-2-0/0/2721.
0.0012275210102121807860.00.0016.78
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-2-0/0/2765.
0.0012275210110107683110.00.001.68
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-2-0/0/1339.
0.001227521585538661711075750.00.009.57
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-2-0/0/2671.
0.0012275210089112314660.00.001.60
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-2-0/0/2673.
0.0012275210108120625560.00.001.68
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-2-0/0/2760.
0.0012275210655124739920.00.001.66
127.0.0.1http/1.1

1-2-0/0/2735.
0.0012275210101116624850.00.001.81
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-2-0/0/2668.
0.0012275210105119596650.00.001.63
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

1-2-0/0/2786.
0.0012275210643115735490.00.001.70
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-2-0/0/2710.
0.0012275210115118152400.00.001.99
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-2-0/0/2709.
0.0012275210065119477370.00.001.60
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

1-2-0/0/2682.
0.0012275231559123863730.00.0015.90
127.0.0.1http/1.1127.0.0.1:80\xf5$\x01

1-2-0/0/2743.
0.0012275231548126075450.00.001.68
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-2-0/0/2810.
0.0012275210639120339860.00.0027.94
127.0.0.1h2chub.paotung.org:8443[0/0] init

1-2-0/0/2601.
0.0012275231758128277930.00.0033.63
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-2-0/0/2759.
0.0012275281394123388160.00.001.68
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-2-0/0/2562.
0.0012275233463151552040.00.001.86
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-2-0/0/2713.
0.0012275281192124566570.00.001.87
127.0.0.1http/1.1

1-2-0/0/2742.
0.0012275210105117950500.00.001.84
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-2-0/0/2778.
0.0012275210108120653460.00.001.81
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dy

Found on 2024-11-16 20:16

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec46a546b3

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Tuesday, 12-Nov-2024 23:25:42 UTC
Restart Time: Sunday, 10-Nov-2024 04:42:28 UTC
Parent Server Config. Generation: 2
Parent Server MPM Generation: 1
Server uptime:  2 days 18 hours 43 minutes 14 seconds
Server load: 0.00 0.00 0.00
Total accesses: 149473 - Total Traffic: 3.0 GB - Total Duration: 495423061
CPU Usage: u51.28 s43.72 cu81.1 cs70.29 - .103% CPU load
.622 requests/sec - 13.1 kB/second - 21.0 kB/request - 3314.47 ms/request
6 requests currently being processed, 0 workers gracefully restarting, 44 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
026995no6yes6019011
226996no0yes0025000
Sum206 6044011

W__W________W_W____W___R_.........................______________
___________.....................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1269951/2331/5681W
74.4680165035350.01.0220.57
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-1269950/2339/5738_
74.46752815154586200.015.2761.09
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-1269950/2401/5802_
74.49010656157690070.00.9695.31
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-1269951/2358/5607W
74.4800178294570.01.0479.04
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-1269950/2358/5599_
74.4901243182873660.01.0052.43
127.0.0.1h2chub.paotung.org:8443[0/0] init

0-1269950/2328/5606_
74.44110649158171430.01.0347.87
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

0-1269950/2471/5933_
74.4871242143943550.01.0591.15
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

0-1269950/2424/5838_
74.4971250169187950.01.0227.22
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-1269950/2405/5636_
74.48710641181075890.01.20189.54
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-1269950/2384/5790_
74.4920158640930.01.5166.07
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-1269950/2362/5664_
74.42010647161610630.09.65838.65
127.0.0.1h2chub.paotung.org:8443[2/2] done: stream 3, GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3

0-1269950/2327/5568_
74.47910650161094510.00.9841.39
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

0-1269951/2377/5652W
74.44370158904300.06.6926.94
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-1269950/2425/5706_
74.46110651153382600.01.0647.85
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-1269951/2321/5667W
74.4900155231640.01.1970.26
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1

0-1269950/2420/5760_
74.4960154563440.01.0536.08
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

0-1269950/2364/5760_
74.45121257166114840.01.44101.35
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

0-1269950/2357/5800_
74.451210642165179540.00.9844.12
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

0-1269950/2375/5802_
74.491110641155344820.015.2259.97
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-1269951/1168/4534W
36.61320330112451770.00.3247.68
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-1269950/2277/5398_
74.4891251171539700.01.0165.18
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-1269950/2321/5516_
74.49120183500140.00.9960.47
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

0-1269950/2422/5787_
74.49910648156532140.01.0976.06
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-1269950/2376/5720R
74.471381190174131120.01.0198.53
127.0.0.1h2chub.paotung.org:8443[4/2] schedule: stream 7, GET /dns-query?dns=AAABAAABAAAAAAAAF2

0-1269950/2333/5668_
74.43710648150860620.01.0568.97
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-0-0/0/12.
0.002271741931911961590.00.000.03
127.0.0.1http/1.1

1-0-0/0/10.
0.002271741504601914790.00.000.04
127.0.0.1http/1.1

1-0-0/0/8.
0.00227174799595690.00.000.02
127.0.0.1http/1.1

1-0-0/0/2.
0.0022717425693935760.00.000.03
127.0.0.1http/1.1

1-0-0/0/6.
0.0022717421221160470.00.000.89
127.0.0.1http/1.1

1-0-0/0/4.
0.002271741214981214980.00.000.01
127.0.0.1http/1.1

1-0-0/0/8.
0.0022717414791810750.00.000.02
127.0.0.1http/1.1

1-0-0/0/7.
0.0022717424772514860.00.000.04
127.0.0.1h2chub.paotung.org:8443[1/1] done: stream 1, GET /dns-query?dns=AAABAAABAAAAAAAABGMtan

1-0-0/0/5.
0.0022717435386353860.00.000.01
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAABGMtanAHdGVyYWJveANjb20AAAEA

1-0-0/0/4.
0.00227174420142010.00.000.00
127.0.0.1http/1.1

1-0-0/0/6.
0.002271742439368893560.00.000.03
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-0-0/0/6.
0.002271742194154310.00.000.02
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-0-0/0/5.
0.002271742366865950.00.000.02
127.0.0.1http/1.1

1-0-0/0/4.
0.00227174885481263570.00.000.20
127.0.0.1http/1.1

1-0-0/0/5.
0.0022717421243389510.00.000.03
127.0.0.1http/1.1

1-0-0/0/11.
0.00227174612596403680.00.000.04
127.0.0.1http/1.1

1-0-0/0/4.
0.0022717467741711280.00.000.01
127.0.0.1http/1.1

1-0-0/0/4.
0.002271741759541759540.00.0012.04
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-0-0/0/2.
0.002271743949404007210.00.0032.10
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-0-0/0/9.
0.002271741226301273360.00.000.03
127.0.0.1http/1.1

1-0-0/0/10.
0.00227174147814780.00.000.01
127.0.0.1http/1.1

1-0-0/0/7.
0.00227174223528590.00.000.01
127.0.0.1http/1.1

1-0-0/0/11.
0.00227174014560.00.000.00
127.0.0.1http/1.1

1-0-0/0/8.
0.002271741100342240960.00.000.07
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-0-0/0/3.
0.002271747807800.00.000.00
127.0.0.1http/1.1

2-1269960/62/289_
3.241401012933834750.00.058.04
127.0.0.1http/1.1127.0.0.1:80\x1f\x18\x01

2-1269960/64/313_
3.328030837270.00.0465.55
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

Found on 2024-11-13 00:04

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ecc70a47ba

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-10-04T15:21:08

Current Time: Sunday, 10-Nov-2024 16:39:27 UTC
Restart Time: Sunday, 10-Nov-2024 04:42:28 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  11 hours 56 minutes 58 seconds
Server load: 0.01 0.04 0.00
Total accesses: 38963 - Total Traffic: 2.0 GB - Total Duration: 344504667
CPU Usage: u36.89 s41.24 cu.41 cs.67 - .184% CPU load
.906 requests/sec - 48.2 kB/second - 53.2 kB/request - 8841.84 ms/request
2 requests currently being processed, 0 workers gracefully restarting, 73 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
0646no0yes1024000
21887no0yes1024000
32309no1yes0025000
Sum301 2073000

_______________________W_.........................R_____________
____________________________________............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-06460/1363/1363_
59.0112275097634850.018.9818.98
127.0.0.1http/1.1

0-06460/1317/1317_
59.052095472010.035.6035.60
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

0-06460/1401/1401_
59.0413097736010.093.8393.83
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-06460/1238/1238_
58.91548073120561790.069.7469.74
127.0.0.1http/1.1

0-06460/1256/1256_
59.0590118192610.050.9050.90
127.0.0.1http/1.1hub.paotung.org:8443GET /Public/home/js/check.js HTTP/1.1

0-06460/1336/1336_
59.0422319091958150.046.2946.29
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

0-06460/1410/1410_
59.04176672791024310.085.5885.58
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

0-06460/1417/1417_
59.053098391770.017.9317.93
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

0-06460/1258/1258_
59.0500120761940.0184.26184.26
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-06460/1394/1394_
58.982735081101199110.055.2355.23
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

0-06460/1322/1322_
59.0272471597277440.026.7426.74
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAABG50cDIGYWxpeXVuA2NvbQAAHAAB

0-06460/1246/1246_
59.05123283104176110.039.9039.90
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

0-06460/1264/1264_
59.0530101208730.019.7019.70
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

0-06460/1331/1331_
59.042247396673850.039.8239.82
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

0-06460/1336/1336_
59.04170104597300.067.5667.56
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

0-06460/1435/1435_
59.0560104198250.031.4731.47
127.0.0.1http/1.1hub.paotung.org:8443GET /static/admin/javascript/hetong.js HTTP/1.1

0-06460/1365/1365_
59.02716577104640830.052.7152.71
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

0-06460/1398/1398_
59.042614403103639750.042.4542.45
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

0-06460/1379/1379_
59.051098748750.033.5233.52
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

0-06460/1370/1370_
59.03279352103593840.046.8446.84
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

0-06460/1158/1158_
59.0510116428380.058.8658.86
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

0-06460/1199/1199_
59.0512288113483650.058.1658.16
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

0-06460/1419/1419_
59.0540100963690.074.4774.47
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-06461/1293/1293W
58.9800111667330.088.7588.75
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1

0-06460/1339/1339_
59.0173276890639070.067.3067.30
127.0.0.1http/1.1

1-0-0/0/12.
0.00299981931911961590.00.000.03
127.0.0.1http/1.1

1-0-0/0/10.
0.00299981504601914790.00.000.04
127.0.0.1http/1.1

1-0-0/0/8.
0.0029998799595690.00.000.02
127.0.0.1http/1.1

1-0-0/0/2.
0.002999825693935760.00.000.03
127.0.0.1http/1.1

1-0-0/0/6.
0.002999821221160470.00.000.89
127.0.0.1http/1.1

1-0-0/0/4.
0.00299981214981214980.00.000.01
127.0.0.1http/1.1

1-0-0/0/8.
0.002999814791810750.00.000.02
127.0.0.1http/1.1

1-0-0/0/7.
0.002999824772514860.00.000.04
127.0.0.1h2chub.paotung.org:8443[1/1] done: stream 1, GET /dns-query?dns=AAABAAABAAAAAAAABGMtan

1-0-0/0/5.
0.002999835386353860.00.000.01
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAABGMtanAHdGVyYWJveANjb20AAAEA

1-0-0/0/4.
0.0029998420142010.00.000.00
127.0.0.1http/1.1

1-0-0/0/6.
0.00299982439368893560.00.000.03
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-0-0/0/6.
0.00299982194154310.00.000.02
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-0-0/0/5.
0.00299982366865950.00.000.02
127.0.0.1http/1.1

1-0-0/0/4.
0.0029998885481263570.00.000.20
127.0.0.1http/1.1

1-0-0/0/5.
0.002999821243389510.00.000.03
127.0.0.1http/1.1

1-0-0/0/11.
0.0029998612596403680.00.000.04
127.0.0.1http/1.1

1-0-0/0/4.
0.002999867741711280.00.000.01
127.0.0.1http/1.1

1-0-0/0/4.
0.00299981759541759540.00.0012.04
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-0-0/0/2.
0.00299983949404007210.00.0032.10
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-0-0/0/9.
0.00299981226301273360.00.000.03
127.0.0.1http/1.1

1-0-0/0/10.
0.0029998147814780.00.000.01
127.0.0.1http/1.1

1-0-0/0/7.
0.0029998223528590.00.000.01
127.0.0.1http/1.1

1-0-0/0/11.
0.0029998014560.00.000.00
127.0.0.1http/1.1

1-0-0/0/8.
0.00299981100342240960.00.000.07
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-0-0/0/3.
0.00299987807800.00.000.00
127.0.0.1http/1.1

2-018870/202/202R
13.6040644651830155280.07.957.95
127.0.0.1http/1.1

2-018870/222/222_
13.64258227326674810.0

Found on 2024-11-10 16:39

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ecbaa545b2

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Wednesday, 06-Nov-2024 12:22:39 UTC
Restart Time: Wednesday, 06-Nov-2024 12:20:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  2 minutes 32 seconds
Server load: 0.22 0.07 0.02
Total accesses: 75 - Total Traffic: 23 kB - Total Duration: 5
CPU Usage: u.15 s.04 cu0 cs0 - .125% CPU load
.493 requests/sec - 154 B/second - 314 B/request - .0666667 ms/request
5 requests currently being processed, 0 workers gracefully restarting, 5 idle workers
K_K__R_KW_......................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-03394141/15/15K
0.032000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

1-03394150/13/13_
0.041000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

2-03394161/1/1K
0.004000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

3-03394170/14/14_
0.030000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

4-03394180/14/14_
0.035010.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

5-03394275/5/5R
0.0196001.30.000.00
127.0.0.1h2cccs.paotung.org:8443[7/7] read: stream 0,  

6-03394290/12/12_
0.023000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

7-03394811/1/1K
0.001001.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

8-03394830/0/0W
0.000000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-11-06 12:22

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec600bbeb2

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Monday, 04-Nov-2024 09:44:49 UTC
Restart Time: Monday, 04-Nov-2024 09:40:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 minutes 41 seconds
Server load: 0.00 0.00 0.00
Total accesses: 129 - Total Traffic: 67 kB - Total Duration: 544942
CPU Usage: u.18 s.12 cu0 cs0 - .107% CPU load
.459 requests/sec - 244 B/second - 531 B/request - 4224.36 ms/request
14 requests currently being processed, 0 workers gracefully restarting, 5 idle workers
WWWWWWKWWKW_WR_K___.............................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-02064170/0/0W
0.00281000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-02064180/0/0W
0.00281000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-02064190/14/14W
0.0300595070.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1

3-02064200/0/0W
0.00280000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

4-02064210/2/2W
0.02230000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

5-02064270/9/9W
0.02104010.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

6-02064291/9/9K
0.022023370.90.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

7-02064300/0/0W
0.00274000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

8-02064330/12/12W
0.03204000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

9-02064341/2/2K
0.00104830901.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

10-02064350/0/0W
0.00253000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

11-02064360/21/21_
0.034010.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

12-02064430/0/0W
0.00230000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

13-02064510/28/28R
0.0338000.00.010.01
127.0.0.1h2cccs.paotung.org:8443[2/0] read: stream 0,  

14-02064700/5/5_
0.0210000.00.000.00
127.0.0.1http/1.1

15-02064771/16/16K
0.024000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

16-02064790/4/4_
0.000010.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

17-02064800/7/7_
0.022010.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-11-04 09:44

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec726787f5

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Friday, 01-Nov-2024 18:52:11 UTC
Restart Time: Friday, 01-Nov-2024 18:50:08 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  2 minutes 2 seconds
Server load: 0.00 0.00 0.00
Total accesses: 66 - Total Traffic: 20 kB - Total Duration: 5
CPU Usage: u.08 s.07 cu0 cs0 - .123% CPU load
.541 requests/sec - 167 B/second - 310 B/request - .0757576 ms/request
6 requests currently being processed, 0 workers gracefully restarting, 5 idle workers
_K_LK_KK_W_.....................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0436880/15/15_
0.031000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

1-0436891/16/16K
0.014000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

2-0436900/13/13_
0.021000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

3-0436916/6/6L
0.02122001.20.000.00
127.0.0.1h2chub.paotung.org:8443GET /dns-query?dns=AAABAAABAAAAAAAAF2dyM3VvbXR0Z3IzMWhjanRnYXpk

4-0436921/13/13K
0.023000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

5-0436990/1/1_
0.004010.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

6-0437521/1/1K
0.002000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

7-0437541/1/1K
0.000001.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

9-0437570/0/0W
0.000000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-11-01 18:52

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846eced85b446

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Thursday, 31-Oct-2024 01:19:23 UTC
Restart Time: Thursday, 31-Oct-2024 01:15:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 minutes 16 seconds
Server load: 0.00 0.01 0.00
Total accesses: 8 - Total Traffic: 9 kB - Total Duration: 7
CPU Usage: u.02 s.04 cu0 cs0 - .0234% CPU load
.0313 requests/sec - 36 B/second - 1152 B/request - .875 ms/request
4 requests currently being processed, 0 workers gracefully restarting, 5 idle workers
_K_KK_W__.......................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-03768070/1/1_
0.001010.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

1-03768082/2/2K
0.002011.80.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

2-03768090/2/2_
0.002000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

3-03768101/1/1K
0.003010.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

4-03768111/1/1K
0.011001.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

5-03768340/1/1_
0.004120.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

6-03768870/0/0W
0.000000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-10-31 01:19

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ecf522973d

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Saturday, 26-Oct-2024 17:14:27 UTC
Restart Time: Saturday, 26-Oct-2024 17:10:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 minutes 19 seconds
Server load: 0.00 0.02 0.00
Total accesses: 103 - Total Traffic: 38 kB - Total Duration: 4876
CPU Usage: u.14 s.11 cu.02 cs.02 - .112% CPU load
.398 requests/sec - 150 B/second - 377 B/request - 47.3398 ms/request
6 requests currently being processed, 0 workers gracefully restarting, 4 idle workers
__WR.KKK_K_.....................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-01266210/20/20_
0.030000.00.010.01
127.0.0.1http/1.1

1-01266220/11/11_
0.020023060.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

2-01266230/11/11W
0.030010.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1

3-01266242/15/15R
0.035001.00.010.01
127.0.0.1h2cccs.paotung.org:8443[2/2] read: stream 0,  

4-0-0/0/9.
0.00138000.00.000.00
::1http/1.1ccs.paotung.org:8443OPTIONS * HTTP/1.0

5-01266391/16/16K
0.033025650.90.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

6-01266901/1/1K
0.012000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

7-01267091/1/1K
0.013000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

8-01267120/3/3_
0.010000.00.000.00
127.0.0.1http/1.1

9-01267191/1/1K
0.010001.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

10-01267210/14/14_
0.022000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

11-0-0/0/1.
0.00141000.00.000.00
::1http/1.1ccs.paotung.org:8443OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-10-26 17:14

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ecddbadd57

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Thursday, 24-Oct-2024 17:54:56 UTC
Restart Time: Thursday, 24-Oct-2024 17:50:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 minutes 48 seconds
Server load: 0.03 0.05 0.00
Total accesses: 16 - Total Traffic: 10 kB - Total Duration: 6
CPU Usage: u.05 s.04 cu0 cs0 - .0313% CPU load
.0556 requests/sec - 35 B/second - 640 B/request - .375 ms/request
4 requests currently being processed, 0 workers gracefully restarting, 6 idle workers
_KK___KW__......................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-064290/7/7_
0.022000.00.000.00
127.0.0.1h2cccs.paotung.org:8443[10/10] The timeout specified has expired

1-064301/1/1K
0.004000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

2-064311/1/1K
0.002000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

3-064320/3/3_
0.012000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

4-064330/2/2_
0.000020.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

5-064720/1/1_
0.011000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

6-065051/1/1K
0.001001.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

7-065070/0/0W
0.000000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-10-24 17:54

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec1afc0833

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Tuesday, 22-Oct-2024 19:36:13 UTC
Restart Time: Tuesday, 22-Oct-2024 19:35:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 minute 5 seconds
Server load: 0.00 0.00 0.00
Total accesses: 8 - Total Traffic: 9 kB - Total Duration: 33
CPU Usage: u0 s.02 cu0 cs0 - .0308% CPU load
.123 requests/sec - 141 B/second - 1152 B/request - 4.125 ms/request
3 requests currently being processed, 0 workers gracefully restarting, 7 idle workers
__K___K_W_......................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-012159970/1/1_
0.003010.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

1-012159980/1/1_
0.00313270.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-012159991/2/2K
0.003000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

3-012160000/1/1_
0.001010.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

4-012160010/1/1_
0.001010.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

5-012160070/1/1_
0.000000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

6-012160261/1/1K
0.001001.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

8-012160290/0/0W
0.000000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-10-22 19:36

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec8599cae7

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Friday, 18-Oct-2024 16:40:35 UTC
Restart Time: Friday, 18-Oct-2024 16:40:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  28 seconds
Server load: 0.02 0.02 0.00
Total accesses: 8 - Total Traffic: 12 kB - Total Duration: 22202
CPU Usage: u.01 s.03 cu0 cs0 - .143% CPU load
.286 requests/sec - 438 B/second - 1536 B/request - 2775.25 ms/request
8 requests currently being processed, 0 workers gracefully restarting, 7 idle workers
WWWWW__W__KW___.................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-09623100/0/0W
0.0027000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-09623110/0/0W
0.0027000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-09623120/0/0W
0.0027000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

3-09623130/0/0W
0.0026000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

4-09623140/0/0W
0.0026000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

5-09623200/1/1_
0.00811085221700.00.000.00
127.0.0.1http/1.1ccs.paotung.org:8443GET / HTTP/1.1

6-09623220/3/3_
0.0000280.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

7-09623230/0/0W
0.0017000.00.000.00
127.0.0.1http/1.1ccs.paotung.org:8443GET / HTTP/1.1

10-09623282/2/2K
0.001011.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

11-09623292/2/2W
0.000011.80.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-10-18 16:40

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec37038cc9

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-07-18T05:29:16

Current Time: Monday, 14-Oct-2024 11:02:02 UTC
Restart Time: Sunday, 13-Oct-2024 08:06:56 UTC
Parent Server Config. Generation: 2
Parent Server MPM Generation: 1
Server uptime:  1 day 2 hours 55 minutes 6 seconds
Server load: 0.00 0.00 0.00
Total accesses: 5775 - Total Traffic: 1.4 GB - Total Duration: 111621542
CPU Usage: u2.25 s3.51 cu7.26 cs14.3 - .0282% CPU load
.0596 requests/sec - 15.4 kB/second - 258.9 kB/request - 19328.4 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
09025no0yes1024000
19026no0yes0025000
Sum200 1049000

_____W____________________________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-190250/0/8_
0.0013130773340.00.000.03
127.0.0.1http/1.1

0-190250/2/8_
0.01131401112510.00.000.04
127.0.0.1http/1.1ccs.kozow.com:8443GET /.env.production HTTP/1.1

0-190250/0/6_
0.0026238057150.00.000.01
127.0.0.1http/1.1

0-190250/1/6_
0.012623801084770.00.000.03
112.64.213.32http/1.1localhost:80GET / HTTP/1.1

0-190250/0/6_
0.00280252647951470.00.001.04
127.0.0.1http/1.1

0-190251/0/4W
0.0000711690.00.000.02
127.0.0.1http/1.1ccs.kozow.com:8443GET /server-status HTTP/1.1

0-190250/1/5_
0.011696915297350.00.000.52
127.0.0.1http/1.1ccs.kozow.com:8443POST / HTTP/1.1

0-190250/0/5_
0.0056216811201550.00.000.38
127.0.0.1http/1.1

0-190250/0/6_
0.001696818441105550.00.000.03
127.0.0.1http/1.1

0-190250/1/6_
0.01128630877400.00.000.13
34.169.50.147http/1.1localhost:80GET /favicon.ico HTTP/1.1

0-190250/1/5_
0.01128610182360.00.000.10
34.169.50.147http/1.1localhost:80GET / HTTP/1.1

0-190250/0/5_
0.001286332611450160.00.000.03
127.0.0.1http/1.1

0-190250/0/4_
0.00128622785104740.00.000.02
127.0.0.1http/1.1

0-190250/1/6_
0.0148331007406130.00.000.02
127.0.0.1h2cccs.kozow.com:8443GET /.env HTTP/2.0

0-190250/0/6_
0.0048330457970.00.000.51
152.32.247.22http/1.1localhost:8443GET /robots.txt HTTP/1.1

0-190250/0/5_
0.004833061970.00.000.02
127.0.0.1h2cccs.kozow.com:8443[0/0] init

0-190250/0/4_
0.00561811576727170.00.000.06
127.0.0.1http/1.1

0-190250/1/5_
0.01562131723369570.00.000.03
147.185.132.88http/1.1localhost:80\x16\x03\x01

0-190250/0/6_
0.001286014414973940.00.008.98
127.0.0.1http/1.1

0-190250/0/3_
0.0012861154414280540.00.000.03
127.0.0.1http/1.1

0-190250/0/3_
0.0026171247644730.00.000.01
127.0.0.1http/1.1

0-190250/0/4_
0.0042330249020.00.002.41
127.0.0.1http/1.1

0-190250/0/3_
0.004828222162990.00.000.01
127.0.0.1http/1.1

0-190250/0/6_
0.0048283218433400.00.000.02
127.0.0.1http/1.1

0-190250/0/3_
0.004833424952930770.00.0015.72
127.0.0.1http/1.1

1-190260/9/234_
0.29527035518640.00.0048.17
127.0.0.1http/1.1

1-190260/8/236_
0.311042322840.00.0051.88
127.0.0.1http/1.1ccs.kozow.com:8443GET /debug/default/view?panel=config HTTP/1.1

1-190260/12/202_
0.311044836120.00.0197.65
127.0.0.1http/1.1ccs.kozow.com:8443GET /about HTTP/1.1

1-190260/8/191_
0.312048693520.00.0062.28
127.0.0.1http/1.1ccs.kozow.com:8443GET /.vscode/sftp.json HTTP/1.1

1-190260/13/220_
0.312036682260.00.0132.03
127.0.0.1http/1.1ccs.kozow.com:8443GET /server HTTP/1.1

1-190260/7/250_
0.2741038496470.00.0046.52
127.0.0.1http/1.1

1-190260/9/208_
0.30310033484700.00.0046.08
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-190260/15/140_
0.310049386280.00.0152.10
127.0.0.1http/1.1ccs.kozow.com:8443GET /v2/_catalog HTTP/1.1

1-190260/6/218_
0.310039437240.00.0058.24
127.0.0.1http/1.1ccs.kozow.com:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-190260/8/197_
0.29527046205880.00.0070.93
127.0.0.1http/1.1

1-190260/8/221_
0.28527039439770.00.0042.12
127.0.0.1http/1.1

1-190260/11/146_
0.29527047036210.00.0181.05
127.0.0.1http/1.1

1-190260/6/251_
0.28527047443450.00.0074.63
127.0.0.1http/1.1

1-190260/12/171_
0.29527041420120.00.0172.68
127.0.0.1http/1.1

1-190260/7/242_
0.28527029998820.00.0025.03
127.0.0.1http/1.1

1-190260/8/232_
0.28527036041880.00.0049.26
127.0.0.1http/1.1

1-190260/10/234_
0.30402037623650.00.0031.76
127.0.0.1http/1.1ccs.kozow.com:8443GET /favicon.ico HTTP/1.1

1-190260/7/162_
0.29401041395510.00.0050.76
127.0.0.1http/1.1

1-190260/10/229_
0.30332037672420.00.0039.39
35.203.210.138http/1.1localhost:80GET / HTTP/1.1

1-190260/10/260_
0.29332037682180.00.0148.84
35.203.210.138http/1.1

1-190260/13/180_
0.25309041628970.00.0180.03
127.0.0.1http/1.1

1-190260/10/198_
0.29178040739840.00.0148.28
127.0.0.1http/1.1

1-190260/13/183_
0.3142038779340.00.0126.82
127.0.0.1http/1.1ccs.kozow.com:8443GET /geoserver/web/ HTTP/1.1

1-190260/9/231_
0.27177040832600.00.0056.19
127.0.0.1http/1.1

1-190260/10/228_
0.29177034715480.00.0157.77
127.0.0.1http/1.1

2-0-0/0/13.
0.003971102448270.00.003.21
127.0.0.1http/1.1

2-0-0/0/17.
0.003971132927794120.00.000.06
127.0.0.1http/1.1

2-0-0/0/16.
0.003971103646510.00.005.13
162.142.125.223http/1.1localhost:80GET /favicon.ico HTTP/1.1

2-0-0/0/13.
0.003971142662281900.00.003.91
127.0.0.1http/1.1

2-0-0/0/17.
0.003971101531610.00.003.28
165.232.187.209http/1.1localhost:80GET /password.php HTTP/1.1

2-0-0/0/19.
0.003971103504290.00.002.92
152.32.247.22http/1.1localhost:8443GET /favicon.ico HTTP/1.1

2-0-0/0/14.
0.0039711

Found on 2024-10-14 11:01

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ecd86bf07f

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-07-18T05:29:16

Current Time: Saturday, 12-Oct-2024 12:23:34 UTC
Restart Time: Tuesday, 01-Oct-2024 00:00:21 UTC
Parent Server Config. Generation: 12
Parent Server MPM Generation: 11
Server uptime:  11 days 12 hours 23 minutes 12 seconds
Server load: 0.16 0.03 0.01
Total accesses: 123251 - Total Traffic: 143.6 GB - Total Duration: 5186974017
CPU Usage: u21.54 s36.55 cu617.12 cs1651.32 - .234% CPU load
.124 requests/sec - 151.3 kB/second - 1.2 MB/request - 42084.6 ms/request
2 requests currently being processed, 0 workers gracefully restarting, 73 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
1121152no3yes0025000
2124818no5yes2023000
3124871no0yes0025000
Sum308 2073000

.........................___________________________W_________W_
____________________________________............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-11-0/0/1455.
0.00179514353659898480.00.002033.86
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1554.
0.001795125411626500540.00.001823.09
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1492.
0.001795124666621304690.00.001603.17
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1494.
0.001795124778634109270.00.001833.77
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1459.
0.001795125468638695790.00.002270.68
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1448.
0.001795124635643260980.00.001705.45
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1494.
0.001795120781642067620.00.001883.23
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1507.
0.001795124430619867300.00.002445.85
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1493.
0.0017951449636691150.00.001394.12
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1479.
0.0017955445640433260.00.001711.67
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1515.
0.001795125455594580210.00.002100.22
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1513.
0.001795141170619305080.00.001573.23
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1515.
0.001795124621635357520.00.002091.37
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1520.
0.001795124758658837690.00.001585.51
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1524.
0.001795120031633019170.00.001578.05
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1514.
0.0017953216630152470.00.001253.12
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1478.
0.001795120665641021060.00.002366.74
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1484.
0.001795121148603341230.00.001972.20
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1461.
0.001795120344649651390.00.001835.27
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1467.
0.001795124744632908300.00.001621.57
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1484.
0.0017951190644003560.00.001580.06
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1490.
0.001795120301608242470.00.001957.74
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1447.
0.00179515275615732790.00.001966.81
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1478.
0.001795120988677960320.00.001860.04
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-11-0/0/1493.
0.001795124774653563360.00.001881.83
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/14/1373_
2.011951123295586472450.00.623180.27
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/12/1369_
2.011951124312570802970.00.193653.66
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/13/1402_
2.011951125405585055240.00.912416.51
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/15/1393_
1.9920311195638820680.00.173635.83
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/15/1416_
2.011808242801577563010.00.463572.86
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/12/1441_
2.011951124770593462750.00.312847.05
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/14/1343_
2.011951123432609848230.00.173217.08
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/11/1393_
2.011951123660581880790.00.762847.59
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/15/1451_
2.011951123642577794270.00.352982.70
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/14/1361_
2.0020318984586923650.01.492280.13
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/14/1333_
2.0019518454599904960.00.192445.34
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/15/1403_
2.0020319123568721620.00.652595.11
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/14/1403_
2.0020311253563963390.02.102867.50
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/11/1401_
2.011951124291596189280.00.183018.87
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/13/1352_
2.011951125429569068240.00.762952.53
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/12/1344_
2.011951124319599719030.01.552678.25
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/12/1390_
2.0020311205616138860.074.382676.29
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/13/1351_
2.011951123675615851920.00.512578.42
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/13/1388_
2.011951124306600189840.00.772565.58
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/13/1429_
2.001951125431588114060.00.203113.68
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/14/1378_
2.011881187340701284350.05.872800.12
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/15/1384_
2.011881188667582643750.00.182793.04
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/13/1355_
2.011951124138635731620.00.092875.34
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/14/1369_
2.011951123601583068160.00.302499.35
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-111211520/15/1366_
2.00203120331567189590.01.832981.91
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

2-111248180/8/645_

Found on 2024-10-12 12:23

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec405705eb

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-07-18T05:29:16

Current Time: Thursday, 10-Oct-2024 12:05:15 UTC
Restart Time: Tuesday, 01-Oct-2024 00:00:21 UTC
Parent Server Config. Generation: 10
Parent Server MPM Generation: 9
Server uptime:  9 days 12 hours 4 minutes 53 seconds
Server load: 0.00 0.00 0.00
Total accesses: 109625 - Total Traffic: 136.9 GB - Total Duration: 4614931996
CPU Usage: u42.33 s102.48 cu561.84 cs1512.68 - .27% CPU load
.134 requests/sec - 174.9 kB/second - 1.3 MB/request - 42097.4 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
097678no0yes0025000
197560no0yes1024000
497472no0yes0025000
Sum300 1074000

______________________________W___________________..............
...................................._________________________...
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-9976780/0/1283_
0.00712560584581796660.00.001993.89
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-9976780/1/1348_
0.09685130596550347780.00.001801.38
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-9976780/1/1303_
0.06706261847550153790.00.001557.45
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-9976780/1/1304_
0.096942181688564894560.04.051820.03
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-9976780/1/1286_
0.06708638621563828690.04.052223.38
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-9976780/1/1291_
0.1054480574269880.00.001661.56
165.154.120.29http/1.1localhost:80GET /favicon.ico HTTP/1.1

0-9976780/1/1315_
0.09672765805567400510.00.011865.95
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-9976780/1/1333_
0.0967276475549297430.00.012399.95
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-9976780/1/1311_
0.0967242221556365450.00.011338.31
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-9976780/1/1303_
0.09665571240571728040.00.011681.27
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-9976780/1/1333_
0.096645852525643760.00.002068.94
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-9976780/1/1310_
0.10549530609547435830.00.001527.35
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-9976780/1/1334_
0.1054741836568711880.00.002041.74
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-9976780/0/1303_
0.0054434131709600956680.00.001532.26
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-9976780/0/1337_
0.00544260679563332780.00.001560.71
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-9976780/0/1317_
0.003390630295570839550.00.001215.38
167.94.138.126h2clocalhost:8443[0/0] init

0-9976780/0/1290_
0.0033901294164577194490.00.002299.23
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-9976780/0/1277_
0.00339044058535265040.00.001960.08
167.94.138.126h2clocalhost:8443[0/0] done

0-9976780/0/1303_
0.00306060683567878250.00.001759.00
80.66.83.49http/1.1

0-9976780/0/1291_
0.0030602371096565337860.00.001568.26
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-9976780/0/1328_
0.00712560611563557640.00.001519.89
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-9976780/0/1310_
0.0071251395058525202500.00.001925.85
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-9976780/0/1279_
0.00712560626538862170.00.001932.94
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-9976780/0/1292_
0.00712573918602225930.00.001831.92
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-9976780/0/1311_
0.00712560692585703980.00.001853.06
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-9975600/57/1118_
97.643930456275070.0323.133020.43
2001:470:1:c84::26http/1.1localhost:80GET / HTTP/1.1

1-9975600/60/1099_
97.6500449197950.0440.493430.59
127.0.0.1http/1.1ccs.kozow.com:8443GET /v2/_catalog HTTP/1.1

1-9975600/57/1120_
97.6343651266460525840.0268.742259.68
83.97.73.245http/1.1localhost:8443\x16\x03\x01

1-9975600/56/1120_
97.641050514091190.0365.003464.29
2001:470:1:332::15http/1.1localhost:80GET /favicon.ico HTTP/1.1

1-9975600/46/1148_
97.634360453098080.074.863374.19
185.191.126.213http/1.1localhost:80GET / HTTP/1.1

1-9975602/52/1139W
97.6300480715820.0207.292689.13
127.0.0.1http/1.1ccs.kozow.com:8443GET /server-status HTTP/1.1

1-9975600/44/1066_
97.35121736405489211510.0130.022949.97
80.66.83.49http/1.1

1-9975600/56/1115_
97.611044819468903860.0270.952704.31
2001:470:1:332::15http/1.1

1-9975600/59/1159_
97.6420462308630.0364.132842.87
127.0.0.1http/1.1ccs.kozow.com:8443GET /.vscode/sftp.json HTTP/1.1

1-9975600/43/1082_
97.6139080789470579620.0115.842152.96
2001:470:1:332::18http/1.1

1-9975600/52/1054_
97.6039393313479776990.0314.242276.90
2001:470:1:c84::26http/1.1

1-9975600/59/1132_
97.6510444923540.0354.022403.74
127.0.0.1http/1.1ccs.kozow.com:8443GET /about HTTP/1.1

1-9975600/52/1130_
97.643900446675930.0205.952627.39
2001:470:1:332::18http/1.1localhost:80GET / HTTP/1.1

1-9975600/52/1107_
97.6430480013510.0213.972737.26
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-9975600/62/1079_
97.6500455623830.0343.262726.33
127.0.0.1http/1.1ccs.kozow.com:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-9975600/33/1056_
97.643410479765680.0310.262476.01
5.8.11.202http/1.1localhost:80GET / HTTP/1.0

1-9975600/59/1119_
97.641730491635200.0270.642427.80
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-9975600/26/1069_
97.616060488456840.072.112372.92
127.0.0.1http/1.1

1-9975600/70/1090_
97.623410492155190.0265.142289.04
127.0.0.1http/1.1

1-9975600/52/1118_
97.63654648473919070.0329.322847.67
83.97.73.245http/1.1localhost:8443\x16\x03\x01

1-9975600/57/1098_
97.639080581608900.0293.222647.55
80.66.83.49http/1.1localhost:80CONNECT 80.66.83.49:80 HTTP/1.1

1-9975600/57/1111_
97.631710458796910.0245.472671.72
127.0.0.1http/1.1

1-9975600/46/1099_
97.626530502818620.0263.032629.09
127.0.0.1http/1.1

1-9975600/42/1079_
97.6510466976000.0112.402210.49
127.0.0.1http/1.1ccs.kozow.com:8443GET /debug/default/view?panel=config HTTP/1.1

1-9975600/51/1080_
97.639080454758060.0262.022811.38
83.97.73.245http/1.1localhost:8443\x16\x03\x01

2-9-0/0/604.
0.0054741468900197354390.00.00345.48
127.0.0.1http/1.1ccs.kozow.com:8443

Found on 2024-10-10 12:05

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ecb3324b33

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-07-18T05:29:16

Current Time: Tuesday, 08-Oct-2024 13:55:27 UTC
Restart Time: Tuesday, 01-Oct-2024 00:00:21 UTC
Parent Server Config. Generation: 8
Parent Server MPM Generation: 7
Server uptime:  7 days 13 hours 55 minutes 5 seconds
Server load: 0.00 0.00 0.00
Total accesses: 82594 - Total Traffic: 24.2 GB - Total Duration: 3439227266
CPU Usage: u16.01 s28.52 cu147.06 cs321.26 - .0783% CPU load
.126 requests/sec - 38.7 kB/second - 307.2 kB/request - 41640.2 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
076704no2yes1024000
177278no0yes0025000
376647no0yes0025000
Sum302 1074000

_W________________________________________________..............
..........._________________________............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-7767040/27/987_
5.713292170435431540.02.47155.32
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7767041/27/1029W
5.7000399548220.012.48251.26
127.0.0.1http/1.1ccs.kozow.com:8443GET /server-status HTTP/1.1

0-7767040/27/1003_
5.7128860630401261340.01.35162.87
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7767040/30/1009_
5.7220403962690.01.07483.33
127.0.0.1http/1.1ccs.kozow.com:8443GET /.vscode/sftp.json HTTP/1.1

0-7767040/24/994_
5.7040974205430743030.068.63300.88
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7767040/23/992_
5.72292322432659140.02.93169.00
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7767040/31/1019_
5.681332422426246260.05.1548.52
127.0.0.1http/1.1

0-7767040/28/1014_
5.711342332421959830.028.80292.41
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7767040/25/1035_
5.681363528390259200.086.09104.27
127.0.0.1http/1.1

0-7767040/29/1019_
5.7230423707950.010.98163.22
127.0.0.1http/1.1ccs.kozow.com:8443GET /server HTTP/1.1

0-7767040/28/1021_
5.7138497343391964390.00.35252.06
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7767040/21/1010_
5.72311152413128600.06.31126.14
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7767040/25/1024_
5.72301697437856820.090.93359.22
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7767040/20/1020_
5.7135331415426693280.024.81117.87
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7767040/30/1020_
5.72301731424921960.03.1377.50
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7767040/33/1008_
5.72301114436585460.00.4379.84
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7767040/23/995_
5.7230414981940.03.07416.66
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7767040/25/972_
5.7200402044080.00.4744.47
127.0.0.1http/1.1ccs.kozow.com:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-7767040/25/1004_
5.7210419626910.09.00183.06
127.0.0.1http/1.1ccs.kozow.com:8443GET /v2/_catalog HTTP/1.1

0-7767040/28/1008_
5.7210405461140.05.53308.91
127.0.0.1http/1.1ccs.kozow.com:8443GET /debug/default/view?panel=config HTTP/1.1

0-7767040/27/1026_
5.711343233417301890.00.7490.24
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7767040/30/1010_
5.7220385808110.00.5654.14
127.0.0.1http/1.1ccs.kozow.com:8443GET /about HTTP/1.1

0-7767040/23/986_
5.7132032399394581830.029.25273.76
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7767040/34/992_
5.7138431393439450620.03.1764.24
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7767040/31/1011_
5.7040993151454680110.03.8064.67
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7772780/2/475_
0.16301126198231610.00.0045.33
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7772780/1/463_
0.01131261535190501060.00.0055.60
127.0.0.1http/1.1

1-7772780/3/450_
0.153301085209141840.00.1576.20
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7772780/1/480_
0.01131380876247119220.00.01166.55
127.0.0.1http/1.1

1-7772780/1/453_
0.004381548188392000.00.0015.57
127.0.0.1http/1.1

1-7772780/2/453_
0.14144429414219218410.00.0127.60
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7772780/1/466_
0.01131928464209841440.00.048.54
127.0.0.1http/1.1

1-7772780/2/456_
0.141359747199512120.00.0039.73
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7772780/1/459_
0.0114411747199016160.00.0043.55
127.0.0.1http/1.1

1-7772780/1/484_
0.03131229932198773660.00.009.76
127.0.0.1http/1.1

1-7772780/1/423_
0.05319887918214440340.03.019.85
127.0.0.1http/1.1

1-7772780/1/468_
0.0313082210197347310.00.016.74
127.0.0.1http/1.1

1-7772780/1/470_
0.0312942598175497420.00.0173.54
127.0.0.1http/1.1

1-7772780/1/439_
0.0312722908209244220.00.0128.37
127.0.0.1http/1.1

1-7772780/1/443_
0.111069299719199068230.07.9021.84
127.0.0.1http/1.1

1-7772780/0/424_
0.00120260636199531000.00.0022.76
127.0.0.1http/1.1

1-7772780/0/432_
0.00104260712221407590.00.0057.19
127.0.0.1http/1.1

1-7772780/1/432_
0.1110400209285960.00.0025.38
127.0.0.1http/1.1

1-7772780/1/445_
0.1499531706226077310.00.0046.99
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7772780/3/440_
0.159301103202825410.00.0171.04
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7772780/0/434_
0.0074260660320290100.00.0034.15
127.0.0.1http/1.1

1-7772780/0/426_
0.0073360680196065230.00.0019.99
127.0.0.1http/1.1

1-7772780/1/425_
0.11123788049228670110.00.0012.22
127.0.0.1http/1.1

1-7772780/1/448_
0.1373255284191702390.02.0111.15
127.0.0.1http/1.1

1-7772780/1/440_
0.156301657179897550.00.0122.03
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

2-7-0/0/583.
0.004640143098170639020.00.00297.66
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

2-7-0/0/588.
0.00464028898197194260.00.00685.36
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

2-7-0/0/584.
0.00464061613205192380.00.00304.00
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

Found on 2024-10-08 13:55

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ecf0420a73

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-07-18T05:29:16

Current Time: Sunday, 06-Oct-2024 10:23:15 UTC
Restart Time: Tuesday, 01-Oct-2024 00:00:21 UTC
Parent Server Config. Generation: 6
Parent Server MPM Generation: 5
Server uptime:  5 days 10 hours 22 minutes 53 seconds
Server load: 0.00 0.00 0.00
Total accesses: 52051 - Total Traffic: 1.7 GB - Total Duration: 2046142280
CPU Usage: u13.35 s23.58 cu37.55 cs51.14 - .0268% CPU load
.111 requests/sec - 3869 B/second - 34.1 kB/request - 39310.3 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
033720no0yes0025000
230048no0yes0025000
330049no2yes1024000
Sum302 1074000

_________________________.........................______________
____________________________W_______............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-5337200/8/805_
0.3829061069325588150.00.1010.91
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5337200/7/845_
0.343080578330481800.00.0410.43
45.61.146.152http/1.1

0-5337200/5/844_
0.405061647312582690.00.048.18
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5337200/6/832_
0.3730810333889510.00.0718.00
45.61.146.152http/1.1localhost:80GET /.env HTTP/1.1

0-5337200/8/852_
0.3730800334569790.00.046.28
45.61.146.152http/1.1localhost:80GET /debug/default/view?panel=config HTTP/1.1

0-5337200/7/825_
0.398151044357660470.03.1032.02
164.52.24.188http/1.1localhost:80\x16\x03\x01\x02

0-5337200/6/840_
0.391509610352919420.00.149.32
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5337200/6/848_
0.40213548342674650.01.389.75
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5337200/7/856_
0.382592590313807790.00.058.00
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5337200/7/848_
0.36815577327506640.00.0319.49
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5337200/5/842_
0.3920061082318344230.00.20158.16
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5337200/7/823_
0.391650600345414070.00.104.75
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5337200/6/849_
0.343080614329293340.00.047.26
45.61.146.152http/1.1

0-5337200/7/852_
0.392230675347771900.00.5515.79
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5337200/6/830_
0.4037534202361593050.00.097.02
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5337200/6/832_
0.3730810359877100.00.139.48
45.61.146.152http/1.1localhost:80GET /?%3Cplay%3Ewithme%3C/%3E HTTP/1.1

0-5337200/5/823_
0.392471662337887100.00.039.79
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5337200/6/802_
0.402061062329794130.00.0218.27
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5337200/7/830_
0.392113596344995510.00.0330.71
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5337200/7/839_
0.3917061564336194670.00.528.04
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5337200/6/850_
0.373094558351900160.02.327.73
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5337200/7/832_
0.39693547323721170.00.3512.05
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5337200/7/838_
0.3829071616314260570.00.2414.59
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5337200/7/810_
0.392494565355202230.00.0612.51
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5337200/5/839_
0.263081590354158520.00.3013.21
45.61.146.152http/1.1

1-3-0/0/305.
0.0012351281356129135640.00.003.22
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/292.
0.0012351232428132729030.00.005.29
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/294.
0.0012351231259137574150.00.0014.94
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/310.
0.0012351232420136864290.00.004.75
198.235.24.50http/1.1

1-3-0/0/283.
0.0012351231703131916090.00.0011.79
127.0.0.1http/1.1

1-3-0/0/273.
0.0012351232417148369050.00.004.22
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/277.
0.0012351231404139491330.00.003.30
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/290.
0.0012351232394144378180.00.003.31
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/293.
0.0012351231709142074800.00.0021.52
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/318.
0.0012351232420130590070.00.001.74
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/248.
0.0012351232416147608510.00.001.15
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/289.
0.00123512300794147857500.00.004.41
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/304.
0.001235121077124471170.00.002.68
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/291.
0.0012351262323128425500.00.004.87
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/270.
0.001235121084137447950.00.003.91
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/275.
0.0012351232403132981000.00.002.66
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/273.
0.0012351231401151639570.00.002.41
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/280.
0.0012351231403146770980.00.002.53
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/267.
0.0012351232416139380200.00.007.53
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/286.
0.00123512130782136275970.00.008.14
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/261.
0.001235120238753370.00.004.23
198.235.24.50http/1.1localhost:80GET / HTTP/1.1

1-3-0/0/274.
0.00123512300803128096800.00.005.21
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/270.
0.00123512692151308020.00.003.67
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/290.
0.001235120127824320.00.003.63
127.0.0.1http/1.1ccs.kozow.com:8443POST /ajax HTTP/1.1

1-3-0/0/276.
0.00123512300884115949740.00.005.58
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

2-5300480/11/336_
0.332307104549811310.00.0515.75
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

2-5300480/7/328_
0.34811052422260.00.462.25
164.52.24.188http/1.1localhost:80

Found on 2024-10-06 10:23

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846eceb17242d

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-07-18T05:29:16

Current Time: Friday, 04-Oct-2024 07:23:49 UTC
Restart Time: Tuesday, 01-Oct-2024 00:00:21 UTC
Parent Server Config. Generation: 4
Parent Server MPM Generation: 3
Server uptime:  3 days 7 hours 23 minutes 27 seconds
Server load: 0.00 0.00 0.00
Total accesses: 30552 - Total Traffic: 169.7 MB - Total Duration: 1199464112
CPU Usage: u6.06 s10.81 cu20.66 cs26.01 - .0222% CPU load
.107 requests/sec - 622 B/second - 5.7 kB/request - 39259.8 ms/request
11 requests currently being processed, 0 workers gracefully restarting, 64 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
020647no2yes9016000
320594no0yes2023000
620536no0yes0025000
Sum302 11064000

___WW_WW___W____W__W__WW_.......................................
...........__________WW_____________............................
......................_________________________
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-3206470/18/682_
0.615331431272637650.00.062.31
127.0.0.1http/1.1

0-3206470/14/713_
0.6310261694340.00.072.59
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3206470/17/706_
0.628831396258547350.00.043.39
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3206471/16/707W
0.591040270387390.00.045.55
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3206471/16/710W
0.572540274282910.00.062.21
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3206470/17/715_
0.632631428276934930.00.042.29
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3206471/14/710W
0.61240294021730.00.033.20
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3206471/18/713W
0.61110286229750.00.052.44
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3206470/16/721_
0.6211931411254017630.00.042.68
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3206470/18/722_
0.6300248732050.00.022.61
127.0.0.1http/1.1ccs.kozow.com:8443GET /about HTTP/1.1

0-3206470/14/713_
0.61531151263811900.00.042.33
127.0.0.1http/1.1

0-3206471/15/708W
0.61110282956870.00.042.36
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3206470/15/718_
0.565231506271645520.00.082.75
127.0.0.1http/1.1

0-3206470/15/709_
0.6400271837360.00.042.33
127.0.0.1http/1.1ccs.kozow.com:8443GET /debug/default/view?panel=config HTTP/1.1

0-3206470/17/695_
0.6400296252240.00.042.41
127.0.0.1http/1.1ccs.kozow.com:8443GET /v2/_catalog HTTP/1.1

0-3206470/15/711_
0.61531665276427250.00.322.76
127.0.0.1http/1.1

0-3206471/16/692W
0.60690265916660.00.052.78
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3206470/16/678_
0.6310260757160.01.263.41
127.0.0.1http/1.1ccs.kozow.com:8443GET /server HTTP/1.1

0-3206470/16/697_
0.635731405278382340.00.068.66
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3206471/14/695W
0.5900286231140.00.132.29
127.0.0.1http/1.1ccs.kozow.com:8443GET /server-status HTTP/1.1

0-3206470/15/717_
0.63443075276857500.00.973.24
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3206470/17/698_
0.6310262197350.00.062.37
127.0.0.1http/1.1ccs.kozow.com:8443GET /.vscode/sftp.json HTTP/1.1

0-3206471/15/715W
0.61130249700070.00.032.42
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3206471/14/708W
0.591050277386980.00.052.23
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3206470/13/714_
0.61520284095640.00.072.38
127.0.0.1http/1.1

1-3-0/0/118.
0.00518812022039460170.00.000.38
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/109.
0.0051887248544609090.00.000.95
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/115.
0.00518812032346543940.00.000.38
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/113.
0.00518810077048826510.00.000.46
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/110.
0.0051884687835371000.00.000.36
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/109.
0.0051887564345307450.00.000.72
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/117.
0.00518817202933965080.00.000.39
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/115.
0.00518812021955414710.00.000.42
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/118.
0.00518812027747292480.00.000.47
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/120.
0.00518887840647750.00.000.48
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/106.
0.0051888560946189610.00.000.43
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/107.
0.0051887793545664860.00.000.37
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/125.
0.00518812027941171890.00.000.44
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/105.
0.00518812035636214950.00.002.09
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/112.
0.0051887951242959520.00.000.40
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/113.
0.00518812034236095880.00.000.43
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/107.
0.0051887794548398900.00.000.99
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/109.
0.0051888036749200580.00.000.57
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/103.
0.00518810099337687320.00.001.29
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/117.
0.00518814835536371180.00.000.45
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/109.
0.0051887568637936470.00.000.41
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/109.
0.0051887224940988380.00.002.95
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/106.
0.0051887568848444570.00.000.39
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/117.
0.0051887004839586140.00.000.92
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/105.
0.00518812036331054170.00.000.41
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

2-3-0/0/76.
0.00494630087218275430.00.0014.46
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

2-3-0/0/83.
0.0049463240420464070.00.000.42
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

Found on 2024-10-04 07:23

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec6539f7c2

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-07-18T05:29:16

Current Time: Wednesday, 02-Oct-2024 21:48:28 UTC
Restart Time: Tuesday, 01-Oct-2024 00:00:21 UTC
Parent Server Config. Generation: 2
Parent Server MPM Generation: 1
Server uptime:  1 day 21 hours 48 minutes 6 seconds
Server load: 0.00 0.00 0.00
Total accesses: 15823 - Total Traffic: 67.9 MB - Total Duration: 646828343
CPU Usage: u8.18 s12.15 cu5.64 cs7.04 - .02% CPU load
.096 requests/sec - 431 B/second - 4500 B/request - 40879 ms/request
4 requests currently being processed, 0 workers gracefully restarting, 46 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
25207no1yes0025000
35208no4yes4021000
Sum205 4046000

..................................................______________
__________________WW_________W_W____............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0-0/0/295.
0.0078389101896132824390.00.000.90
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/300.
0.0078389300841133661250.00.001.20
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/298.
0.007838960161121520430.00.000.93
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/302.
0.007838931408110202190.00.000.86
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/308.
0.0078389300731130921750.00.000.87
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/302.
0.007838960173144360060.00.001.02
154.213.187.244http/1.1

0-0-0/0/307.
0.0078389300824130627790.00.001.77
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/307.
0.007838932410139908340.00.001.00
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/312.
0.007838932404123720400.00.001.20
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/317.
0.007838965118116801930.00.001.04
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/302.
0.007838931425129052960.00.000.95
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/304.
0.007838981216141295600.00.000.92
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/316.
0.0078389723126439370.00.001.30
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/306.
0.007838931188128651920.00.000.88
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/300.
0.007838931408141835510.00.001.04
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/304.
0.00783890128796440.00.000.89
154.213.187.244http/1.1localhost:80CONNECT google.com:443 HTTP/1.1

0-0-0/0/297.
0.007838932397122863950.00.000.91
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/302.
0.007838981346113301030.00.000.82
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/295.
0.007838932419131465410.00.000.88
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/294.
0.007838931399136871290.00.000.89
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/311.
0.007838931411137865160.00.000.93
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/297.
0.007838931416115915430.00.001.02
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/309.
0.0078389300735112597960.00.000.97
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/307.
0.007838911553133665510.00.000.86
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-0-0/0/307.
0.007838931563134253530.00.001.08
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/25.
0.0078434323932281480.00.000.05
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/23.
0.007843416814768720.00.000.06
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/23.
0.0078434645943564360.00.000.05
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/23.
0.0078434324016415280.00.000.06
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/22.
0.007843411589597870.00.000.05
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/22.
0.00784343008856387750.00.000.07
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/24.
0.0078434314002801920.00.000.06
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/28.
0.007843411046930730.00.000.06
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/26.
0.0078434315705583770.00.000.05
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/22.
0.007843411257661380.00.000.05
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/23.
0.007843410962619720.00.000.05
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/23.
0.0078434308742180110.00.000.06
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/26.
0.007843428076474030.00.000.07
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/22.
0.007843416067382080.00.000.09
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/24.
0.0078434313975857750.00.000.07
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/25.
0.00784347386873770.00.000.06
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/25.
0.007843410533751380.00.000.07
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/20.
0.00784347339934870.00.000.08
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/18.
0.0078434721745490.00.000.04
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/21.
0.0078434817028911120.00.000.07
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/20.
0.007843410712880040.00.000.05
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/23.
0.007843416731705210.00.000.05
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/27.
0.00784341018903271210.00.000.05
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/25.
0.007843410832342190.00.000.04
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-0-0/0/21.
0.007843416322858930.00.000.05
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

2-152070/24/24_
0.82263121213116940.00.030.03
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

2-152070/25/25_
0.83203210401079760.00.060.06
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

2-152070/22/22_
0.81323118215396390.00.060.06
127.0.0.1

Found on 2024-10-02 21:48

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec2afdee02

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-07-18T05:29:16

Current Time: Monday, 30-Sep-2024 19:34:18 UTC
Restart Time: Sunday, 22-Sep-2024 17:37:13 UTC
Parent Server Config. Generation: 8
Parent Server MPM Generation: 7
Server uptime:  8 days 1 hour 57 minutes 5 seconds
Server load: 0.03 0.02 0.00
Total accesses: 131824 - Total Traffic: 48.2 GB - Total Duration: 5884563870
CPU Usage: u16.23 s26.41 cu225.12 cs466.41 - .105% CPU load
.189 requests/sec - 72.4 kB/second - 383.3 kB/request - 44639.6 ms/request
5 requests currently being processed, 0 workers gracefully restarting, 70 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
175804no1yes0025000
375857no0yes0025000
775748no4yes5020000
Sum305 5070000

........................._________________________..............
..........._________________________............................
......................___W________W_W___WW_____
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-7-0/0/1458.
0.00913183145575212590.00.00624.97
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1414.
0.00913184995612870470.00.00428.65
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1343.
0.00913148841656154550.00.00428.64
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1434.
0.009131120447597798960.00.00541.04
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1419.
0.00913182896634094250.00.00394.71
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1432.
0.00913110958612808080.00.00559.45
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1500.
0.00913180070594811000.00.00570.92
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1452.
0.00913111062593984150.00.00495.90
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1410.
0.00913178212631526850.00.00545.12
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1416.
0.00913176551585995470.00.00617.94
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1376.
0.00913143595607959690.00.00482.06
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1394.
0.00913165124676027060.00.00620.44
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1373.
0.00913165399591167480.00.00514.88
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1388.
0.00913149394591704800.00.00478.71
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1395.
0.00913162203650485110.00.00510.34
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1469.
0.0091315796596094130.00.00561.44
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1428.
0.0091314740627051990.00.00536.09
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1373.
0.00913165761646188700.00.00574.38
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1361.
0.00913184857605176850.00.00435.02
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1399.
0.00913160065597747910.00.00682.72
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1337.
0.00913161904654281640.00.00489.51
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1377.
0.0091314750261654057640.00.00570.52
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1370.
0.00913163726631441580.00.00569.98
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1393.
0.0091312117608133760.00.00500.04
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-7-0/0/1402.
0.009131119399643996150.00.00620.54
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7758040/4/927_
0.08680132031364316570.00.01331.48
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7758040/4/875_
0.088228688514956430.00.01331.01
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7758040/1/900_
0.079131111605377197680.00.01373.74
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7758040/1/891_
0.07913194911408215110.00.01277.80
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7758040/2/937_
0.09166531405460577520.00.01373.95
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7758040/2/951_
0.1011891128393602690.00.01327.45
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7758040/3/851_
0.105780450031740.00.01334.12
5.181.188.158http/1.1localhost:80POST /php-cgi/php-cgi.exe?%ADd+cgi.force_redirect%3D0+%ADd+disa

1-7758040/3/888_
0.0790041861431721900.00.00248.47
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7758040/2/943_
0.0871882840353909720.00.01296.66
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7758040/3/892_
0.0835901142387478220.00.01261.42
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7758040/2/888_
0.07913194682430600760.00.01297.68
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7758040/2/946_
0.0589973716388715980.00.00354.66
167.94.138.123h2clocalhost:80[0/0] done

1-7758040/3/946_
0.07858466680527072070.00.00336.31
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7758040/4/922_
0.1054464629376047680.00.01350.06
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7758040/4/851_
0.083725587426240010.00.01184.63
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7758040/3/868_
0.0877864172418630720.00.00337.99
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7758040/3/834_
0.0917891107434720650.00.01321.02
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7758040/3/951_
0.08509632409382759880.00.00324.35
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7758040/2/929_
0.08356932522384121780.00.00254.46
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7758040/1/945_
0.0589971281330783220.00.00263.63
167.94.138.123h2clocalhost:80[0/0] init

1-7758040/1/879_
0.0589971851439035790.00.00257.59
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7758040/2/921_
0.105891100372329450.00.01397.96
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7758040/1/890_
0.0757895092370289930.00.01378.74
5.181.188.158http/1.1

1-7758040/1/916_
0.07913194974370713670.00.01328.31
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-7758040/1/903_
0.07913194936396680030.00.01319.34
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

2-7-0/0/345.
0.009131185466142162720.00.00182.29
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

2-7</

Found on 2024-09-30 19:34

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ecdec25b74

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-07-18T05:29:16

Current Time: Saturday, 28-Sep-2024 22:28:36 UTC
Restart Time: Sunday, 22-Sep-2024 17:37:13 UTC
Parent Server Config. Generation: 6
Parent Server MPM Generation: 5
Server uptime:  6 days 4 hours 51 minutes 22 seconds
Server load: 0.00 0.00 0.00
Total accesses: 99780 - Total Traffic: 42.6 GB - Total Duration: 4309397219
CPU Usage: u19.61 s32.45 cu176.38 cs382.25 - .114% CPU load
.186 requests/sec - 83.4 kB/second - 448.1 kB/request - 43189 ms/request
10 requests currently being processed, 0 workers gracefully restarting, 65 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
056066no0yes1024000
256010no0yes0025000
356119no7yes9016000
Sum307 10065000

___________W_____________.........................______________
___________WWWWWW____W______W_____W_............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-5560660/18/861_
0.978521573339747570.00.08491.37
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5560660/23/845_
0.9832160163365522850.00.11316.26
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5560660/20/765_
0.922504752425045140.00.18375.48
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5560660/22/818_
0.952190557347172650.01.91486.25
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5560660/19/860_
0.9695189928370760410.00.08377.08
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5560660/26/843_
0.9614531100348505890.00.46492.07
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5560660/25/889_
0.92250431760333443570.00.09470.95
127.0.0.1h2cccs.kozow.com:8443[0/0] done

0-5560660/25/884_
0.9810333319140.00.06367.50
127.0.0.1http/1.1ccs.kozow.com:8443GET /server HTTP/1.1

0-5560660/20/825_
0.961454754342511380.00.55500.53
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5560660/23/852_
0.96871544338574560.00.07506.01
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5560660/21/832_
0.96171797718334875810.00.06441.29
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5560662/18/833W
0.9200393652190.00.58545.41
127.0.0.1http/1.1ccs.kozow.com:8443GET /server-status HTTP/1.1

0-5560660/26/799_
0.952310586343557140.00.07474.84
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5560660/24/811_
0.975531076360522310.01.84384.02
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5560660/26/807_
0.97751553385259700.00.10460.19
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5560660/23/879_
0.961165300793347313900.00.06468.78
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5560660/22/854_
0.97553755368478260.00.09482.98
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5560660/21/809_
0.982521719370164280.00.62480.68
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5560660/18/806_
0.931761748348709000.00.08400.33
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5560660/22/826_
0.9311651035341789530.00.09535.09
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5560660/17/830_
0.9614521643346270640.02.98425.08
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5560660/24/792_
0.961761300836362728200.00.74441.14
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5560660/25/806_
0.9620521577387592560.01.35455.14
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-5560660/22/838_
0.91291550356464790.00.06484.27
127.0.0.1http/1.1

0-5560660/26/846_
0.978531068386067150.00.23565.46
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/817.
0.0032310224752319556110.00.00322.68
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/787.
0.00323101267473490690.00.00321.72
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/778.
0.0032310120197331712840.00.00366.45
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/794.
0.0032310242669357521510.00.00261.78
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/824.
0.0032310242042308091910.00.00357.43
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/825.
0.0032310497705345117610.00.00314.32
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/742.
0.0032310301706404719350.00.00315.42
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/769.
0.0032310301269388308060.00.00245.59
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/826.
0.0032310124332315040500.00.00286.48
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/773.
0.0032310120219342584120.00.00257.89
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/768.
0.0032310300861382820930.00.00280.19
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/818.
0.0032310121487335081610.00.00346.92
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/834.
0.0032310242076366360010.00.00312.03
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/816.
0.00323102954332230290.00.00347.83
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/735.
0.0032310224504386569860.00.00179.70
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/756.
0.00323103223663376389040.00.00334.10
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/729.
0.003231062494396449550.00.00315.52
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/843.
0.0032310104693333209200.00.00317.12
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/818.
0.0032310181539341572340.00.00250.23
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/812.
0.0032310295569295593260.00.00241.26
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/770.
0.00323103732658397542940.00.00254.09
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/808.
0.0032310122975332665040.00.00379.31
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/770.
0.0032310247010325070720.00.00368.36
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/798.
0.00323102276326058680.00.00306.65
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-5-0/0/784.
0.0032310568354098500.00.00311.95
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

2-5560100/7/299_
0.97261862125434660.00.01174.32
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

2-556010

Found on 2024-09-28 22:28

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec517212d1

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-07-18T05:29:16

Current Time: Thursday, 26-Sep-2024 22:05:52 UTC
Restart Time: Sunday, 22-Sep-2024 17:37:13 UTC
Parent Server Config. Generation: 4
Parent Server MPM Generation: 3
Server uptime:  4 days 4 hours 28 minutes 38 seconds
Server load: 0.00 0.00 0.00
Total accesses: 71004 - Total Traffic: 40.0 GB - Total Duration: 2828196693
CPU Usage: u13.6 s22.84 cu150.08 cs340.57 - .146% CPU load
.196 requests/sec - 115.9 kB/second - 0.6 MB/request - 39831.5 ms/request
4 requests currently being processed, 0 workers gracefully restarting, 71 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
038107no0yes0025000
238616no0yes0025000
338669no3yes4021000
Sum303 4071000

_________________________.........................______________
_________________W____W________W_W__............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-3381070/43/791_
2.74886300802309640810.03.63491.01
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3381070/46/766_
2.7224961650344116150.00.54315.55
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3381070/42/694_
2.7221951684398280700.00.63374.98
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3381070/36/750_
2.7239961113317388760.02.40408.96
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3381070/43/785_
2.7221473200327352000.02.09376.45
205.210.31.97http/1.1localhost:80\x16\x03\x01

0-3381070/45/769_
2.702147744321276080.03.16491.27
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3381070/45/812_
2.7236961104303051410.011.94470.43
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3381070/47/809_
2.7318961066300096030.00.49364.01
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3381070/47/754_
2.7242961113313937930.03.20499.40
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3381070/39/781_
2.7236971082304524950.00.35496.43
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3381070/37/762_
2.732088300747307265570.01.71435.98
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3381070/37/764_
2.6888661389367932110.03.54528.89
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3381070/37/730_
2.7021441137312137550.010.34441.23
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3381070/43/738_
2.67179031263333665340.01.02381.91
127.0.0.1http/1.1

0-3381070/42/732_
2.723097692356894460.00.93437.09
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3381070/47/806_
2.731790300880317889940.00.50468.35
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3381070/46/784_
2.746961070339573640.00.25482.64
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3381070/29/738_
2.722497713340456140.01.21479.41
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3381070/33/737_
2.702088108135320779180.06.84399.51
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3381070/48/757_
2.75942701309907670.00.46524.50
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3381070/37/763_
2.681111302324337660.02.99416.83
127.0.0.1http/1.1

0-3381070/31/717_
2.7224951696330996450.00.22429.33
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3381070/40/729_
2.684630751349279870.00.20444.22
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3381070/38/767_
2.7227961186338935120.018.60482.41
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-3381070/47/771_
2.7412951957360231920.00.43565.00
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/484.
0.00306122387159263760.00.00318.79
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/484.
0.003061231459181771490.00.00285.31
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/472.
0.0030612200379155546350.00.00304.31
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/485.
0.00306123343174334940.00.00243.00
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/488.
0.00306127695156811240.00.00349.17
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/494.
0.003061263578174984820.00.00247.72
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/459.
0.00306123738206621760.00.00312.16
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/448.
0.003061211266230549690.00.00216.57
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/506.
0.003061211261164338510.00.00263.98
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/458.
0.003061211201184841670.00.00226.80
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/462.
0.00306122793214287080.00.00259.11
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/472.
0.003061211252185543430.00.00320.83
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/510.
0.00306123092201140920.00.00287.49
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/484.
0.003061211027176377140.00.00319.99
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/433.
0.003061220026194483280.00.00157.80
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/465.
0.00306122876162203800.00.00331.39
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/419.
0.00306121588214150510.00.00283.69
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/508.
0.0030612902176535800.00.00289.55
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/481.
0.00306121583175188540.00.00228.55
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/458.
0.003061262895169832460.00.00215.15
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/447.
0.003061211273195823080.00.00222.77
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/482.
0.00306123342181802420.00.00310.89
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/456.
0.00306121395164603240.00.00294.18
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/465.
0.00306126182170272850.00.00303.40
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-3-0/0/462.
0.0030612343699179116850.00.00295.44
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

2-3386160/11/291_
0.60139531762123175410.00.07174.31
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

2-3386160/13/326_
0.601861

Found on 2024-09-26 22:05

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec8487be9c

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-07-18T05:29:16

Current Time: Wednesday, 25-Sep-2024 03:02:04 UTC
Restart Time: Sunday, 22-Sep-2024 17:37:13 UTC
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  2 days 9 hours 24 minutes 50 seconds
Server load: 0.00 0.00 0.00
Total accesses: 44319 - Total Traffic: 33.2 GB - Total Duration: 1582580422
CPU Usage: u5.35 s8.85 cu115.87 cs272.41 - .195% CPU load
.214 requests/sec - 168.4 kB/second - 0.8 MB/request - 35708.8 ms/request
11 requests currently being processed, 0 workers gracefully restarting, 64 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
027813no2yes1024000
127998no10yes10015000
627586yes3no000000
727639no1yes0025000
Sum4116 11064000

__________________W________W__W_W_W_____WWWW___W_W..............
................................................................
......................GGG_________________________
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2278130/1/504_
0.02108823755183485950.00.01438.77
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/1/495_
0.02108820674198663860.00.01266.79
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/1/432_
0.0211091812259564580.00.01358.34
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/1/481_
0.02100231450193707220.00.00332.75
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/1/498_
0.02108820351203572440.00.01370.09
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/1/489_
0.0210651582191539440.00.00360.87
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/1/507_
0.0210663030174587020.00.01398.50
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/1/531_
0.0210571992177650900.00.01347.66
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/1/489_
0.0210741090195471250.00.01484.10
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/1/500_
0.02108815620196006410.00.01481.52
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/1/492_
0.0461462471186320590.00.03418.79
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/1/487_
0.0458592327230076920.00.02490.80
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/1/483_
0.047823203187772520.00.00369.04
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/1/465_
0.0476861539202961400.00.00351.19
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/1/466_
0.0476368092227190420.00.01432.18
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/1/515_
0.0383567287204468480.00.01437.61
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/1/505_
0.039811458207755180.00.00425.27
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/0/489_
0.001114307376188495950.00.00442.20
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278131/0/487W
0.002680189828730.00.00382.85
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/1/481_
0.054731719183529770.00.00499.12
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/1/476_
0.054732167206008680.00.01342.77
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/1/454_
0.0557797970196245600.00.08410.38
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/1/460_
0.05556119294218909410.00.01381.29
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/1/519_
0.0540582076205673400.00.01392.71
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-2278130/0/490_
0.00111431399198136330.00.00343.17
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-2279980/9/351_
0.46513141396214830.00.04303.87
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-2279980/4/357_
0.481832463115091520.00.03264.18
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-2279981/7/336W
0.4424097258810.00.21273.58
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-2279980/10/344_
0.4830109163200.00.28187.65
127.0.0.1http/1.1ccs.kozow.com:8443GET /server HTTP/1.1

1-2279980/9/345_
0.4810102804650.00.05339.86
127.0.0.1http/1.1ccs.kozow.com:8443GET /v2/_catalog HTTP/1.1

1-2279981/3/341W
0.43730117700160.00.47239.99
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-2279980/9/320_
0.4820148098150.00.05260.47
127.0.0.1http/1.1ccs.kozow.com:8443GET /about HTTP/1.1

1-2279981/8/319W
0.44180143877590.00.05199.02
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-2279980/8/364_
0.4830104019200.00.04261.35
127.0.0.1http/1.1ccs.kozow.com:8443GET /.vscode/sftp.json HTTP/1.1

1-2279981/6/308W
0.391930127951120.00.07223.58
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-2279980/2/327_
0.4647358776135936030.00.01241.50
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-2279980/8/329_
0.43473174125592160.09.64313.16
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-2279980/11/356_
0.481932446139577220.00.11261.13
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-2279980/6/342_
0.4840115719450.00.03292.01
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-2279980/5/286_
0.4820138571680.00.02135.07
127.0.0.1http/1.1ccs.kozow.com:8443GET /debug/default/view?panel=config HTTP/1.1

1-2279981/6/336W
0.44170111446540.00.03323.94
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-2279981/4/296W
0.392140135834360.00.02206.26
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-2279981/9/353W
0.4600121506120.00.03270.76
127.0.0.1http/1.1ccs.kozow.com:8443GET /server-status HTTP/1.1

1-2279981/7/340W
0.43340113790610.00.03198.30
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-2279980/5/329_
0.465031439110977900.00.04196.30
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-2279980/10/325_
0.46313170131405500.00.04175.02
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-2279980/8/339_
0.481273015130747750.00.04277.56
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-2279981/2/312W
0.382150112707810.00.19288.65
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

1-2279980/3/325_
0.4800106249940.00.30256.15
127.0.0.1http/1.1ccs.kozow.com:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-2279981/1/324W
0.391910112680930.00.01293.82
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1

Found on 2024-09-25 03:01

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec60276298

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.62 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-07-18T05:29:16

Current Time: Sunday, 22-Sep-2024 17:47:29 UTC
Restart Time: Sunday, 22-Sep-2024 17:37:13 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  10 minutes 15 seconds
Server load: 0.00 0.00 0.00
Total accesses: 18 - Total Traffic: 13 kB - Total Duration: 1772
CPU Usage: u.02 s.05 cu0 cs0 - .0114% CPU load
.0293 requests/sec - 21 B/second - 739 B/request - 98.4444 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
0547no0yes1024000
1548no0yes0025000
Sum200 1049000

__________W_______________________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-05470/2/2_
0.032000.00.000.00
127.0.0.1http/1.1ccs.kozow.com:8443GET /about HTTP/1.1

0-05470/1/1_
0.0334000.00.000.00
52.189.76.2http/1.1localhost:8443\x16\x03\x01

0-05470/1/1_
0.0191000.00.000.00
127.0.0.1http/1.1

0-05470/1/1_
0.0134000.00.000.00
127.0.0.1h2cccs.kozow.com:8443GET / HTTP/2.0

0-05470/1/1_
0.033000.00.000.00
127.0.0.1http/1.1ccs.kozow.com:8443GET /server HTTP/1.1

0-05470/1/1_
0.032000.00.000.00
127.0.0.1http/1.1ccs.kozow.com:8443GET /.vscode/sftp.json HTTP/1.1

0-05470/1/1_
0.031000.00.000.00
127.0.0.1http/1.1ccs.kozow.com:8443GET /debug/default/view?panel=config HTTP/1.1

0-05470/2/2_
0.031000.00.000.00
127.0.0.1http/1.1ccs.kozow.com:8443GET /v2/_catalog HTTP/1.1

0-05471/1/1W
0.010000.00.000.00
127.0.0.1http/1.1ccs.kozow.com:8443GET /server-status HTTP/1.1

0-05470/1/1_
0.03150000.00.000.00
127.0.0.1h2cccs.kozow.com:8443GET / HTTP/2.0

0-05470/1/1_
0.01145000.00.000.00
127.0.0.1http/1.1

0-05470/1/1_
0.00140110.00.000.00
127.0.0.1http/1.1

0-05470/2/2_
0.03136176917700.00.000.00
127.0.0.1http/1.1ccs.kozow.com:8443GET / HTTP/1.1

0-05470/1/1_
0.01137000.00.000.00
127.0.0.1http/1.1

1-05480/1/1_
0.010000.00.000.00
127.0.0.1http/1.1ccs.kozow.com:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-09-22 17:47

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec74f97d09

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.61 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-07-07T12:08:26

Current Time: Friday, 20-Sep-2024 20:54:09 UTC
Restart Time: Sunday, 01-Sep-2024 00:00:20 UTC
Parent Server Config. Generation: 20
Parent Server MPM Generation: 19
Server uptime:  19 days 20 hours 53 minutes 48 seconds
Server load: 0.00 0.00 0.00
Total accesses: 218754 - Total Traffic: 135.6 GB - Total Duration: 6150266663
CPU Usage: u39.03 s67.68 cu479.87 cs1156.8 - .102% CPU load
.127 requests/sec - 82.8 kB/second - 0.6 MB/request - 28115 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
0203461no0yes0025000
1204086no0yes1024000
2203460no0yes0025000
Sum300 1074000

____________________________W___________________________________
___________.....................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-192034610/3/1800_
0.05269560635933610.00.001576.82
141.98.11.114http/1.1localhost:80GET /st HTTP/1.1

0-192034610/3/1731_
0.06269560635959750.00.011356.95
141.98.11.114http/1.1localhost:80GET /cable.sh HTTP/1.1

0-192034610/3/1715_
0.06135530678945200.00.001517.58
141.98.11.114http/1.1localhost:80GET /grandstream.sh HTTP/1.1

0-192034610/4/1758_
0.071200610010681411860.00.011713.60
185.213.175.171http/1.1localhost:80POST / HTTP/1.1

0-192034610/3/1733_
0.05269570651107790.00.041775.36
141.98.11.114http/1.1localhost:80GET /11.exe HTTP/1.1

0-192034610/4/1732_
0.06120060673576570.00.011402.26
141.98.11.114http/1.1localhost:80GET /usa.sh HTTP/1.1

0-192034610/2/1868_
0.06269550678165750.00.001530.51
141.98.11.114http/1.1localhost:80GET /sony.sh HTTP/1.1

0-192034610/2/1709_
0.05269550672718770.00.00984.06
141.98.11.114http/1.1localhost:80GET /cn HTTP/1.1

0-192034610/2/1744_
0.06269540713562490.00.002222.88
141.98.11.114http/1.1localhost:80GET /seagate.sh HTTP/1.1

0-192034610/4/1717_
0.05269540686709250.00.001672.22
141.98.11.114http/1.1localhost:80GET /buf HTTP/1.1

0-192034610/2/1771_
0.06269530658703720.00.002169.90
141.98.11.114http/1.1localhost:80GET /sack.sh HTTP/1.1

0-192034610/4/1745_
0.05269530672382810.00.001829.03
141.98.11.114http/1.1localhost:80GET /poco HTTP/1.1

0-192034610/2/1743_
0.06269520649079810.00.001323.20
141.98.11.114http/1.1localhost:80GET /li.sh HTTP/1.1

0-192034610/3/1725_
0.05269520657571590.00.001454.04
141.98.11.114http/1.1localhost:80GET /af HTTP/1.1

0-192034610/2/1745_
0.07269500697802190.00.001725.72
141.98.11.114http/1.1localhost:80GET /tell.sh HTTP/1.1

0-192034610/4/1745_
0.07135580646350090.00.001529.10
54.88.179.33http/1.1ccs.linkpc.net:80GET / HTTP/1.1

0-192034610/2/1761_
0.06152860666203470.00.001157.73
141.98.11.114http/1.1localhost:80GET /hell.sh HTTP/1.1

0-192034610/4/1726_
0.07152870650865080.00.002137.45
115.231.78.15http/1.1localhost:80GET /favicon.ico HTTP/1.1

0-192034610/2/1746_
0.05164650676194460.00.001969.68
141.98.11.114http/1.1localhost:80GET /n3881.sh HTTP/1.1

0-192034610/3/1784_
0.07164650633922810.00.001722.32
167.71.133.68http/1.1localhost:8443\x16\x03\x03\x01\xa7\x01

0-192034610/2/1813_
0.05269480680845420.00.001452.38
141.98.11.114http/1.1localhost:80GET /skidb.sh HTTP/1.1

0-192034610/2/1730_
0.07269490651737350.00.001850.38
141.98.11.114http/1.1localhost:80GET /bcm.sh HTTP/1.1

0-192034610/4/1701_
0.05269500664309070.00.001100.34
141.98.11.114http/1.1localhost:80GET /vbn HTTP/1.1

0-192034610/2/1768_
0.07269500666497570.00.001774.19
141.98.11.114http/1.1localhost:80GET /vio.sh HTTP/1.1

0-192034610/3/1756_
0.05269500612437650.00.001964.43
141.98.11.114http/1.1localhost:80GET /zm HTTP/1.1

1-192040860/30/673_
0.7330384580440.00.01528.53
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-192040860/26/791_
0.733590403334070.00.01338.09
127.0.0.1http/1.1

1-192040860/30/934_
0.7319000451229100.00.02442.75
194.38.23.16http/1.1localhost:80GET /assets/global/plugins/ckeditor/elfinder/php/connector.php 

1-192040861/35/706W
0.7000411110100.00.02673.64
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server-status HTTP/1.1

1-192040860/35/739_
0.7320383610730.00.03792.27
127.0.0.1http/1.1ccs.linkpc.net:8443GET /about HTTP/1.1

1-192040860/24/743_
0.7300448363780.04.04542.13
127.0.0.1http/1.1ccs.linkpc.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-192040860/30/786_
0.7330387071010.00.02531.53
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server HTTP/1.1

1-192040860/31/746_
0.7320375289190.00.03487.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET /.vscode/sftp.json HTTP/1.1

1-192040860/31/759_
0.7310430876480.00.05828.85
127.0.0.1http/1.1ccs.linkpc.net:8443GET /v2/_catalog HTTP/1.1

1-192040860/26/698_
0.691820412896560.00.01530.75
127.0.0.1h2cccs.linkpc.net:8443[0/0] init

1-192040860/32/776_
0.7224640399063090.00.02411.79
127.0.0.1h2cccs.linkpc.net:8443GET /telescope/requests HTTP/2.0

1-192040860/31/717_
0.7018990402090210.00.01482.08
194.38.23.16http/1.1

1-192040860/23/655_
0.7313800418446530.00.01612.81
92.249.48.213http/1.1localhost:80GET / HTTP/1.1

1-192040860/28/641_
0.716473458268390.00.02301.97
127.0.0.1http/1.1

1-192040860/25/730_
0.6713800428927140.00.01456.12
92.249.48.213http/1.1

1-192040860/30/667_
0.693590411391350.00.01631.02
127.0.0.1http/1.1

1-192040860/31/681_
0.731870404038120.00.01777.21
185.191.126.213http/1.1localhost:80GET / HTTP/1.1

1-192040860/25/714_
0.713590371401800.00.01635.41
127.0.0.1http/1.1

1-192040860/27/709_
0.693590371966370.00.01429.88
127.0.0.1http/1.1

1-192040860/34/695_
0.736480466227480.00.02560.22
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-192040860/25/718_
0.683590392693770.00.01526.30
127.0.0.1http/1.1

1-192040860/31/684_
0.683590399856630.00.02833.58
127.0.0.1http/1.1

1-192040860/21/692_
0.703580375004920.00.01381.29
127.0.0.1http/1.1

1-192040860/28/683_
0.711820390556910.00.01370.50
127.0.0.1h2cccs.linkpc.net:8443GET /.git/config HTTP/2.0

1-192040860/30/723_
0.7310384357590.00.02837.84
127.0.0.1http/1.1ccs.linkpc.net:8443GET /debug/default/view?panel=config HTTP/1.1

2-192034600/9/1942_
0.4824710230706280.00.01806.88
127.0.0.1h2cccs.linkpc.net:8443[0/0]

Found on 2024-09-20 20:54

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec7c5ebe5b

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-04-05T12:02:26

Current Time: Tuesday, 16-Jul-2024 01:16:36 UTC
Restart Time: Saturday, 13-Jul-2024 13:58:07 UTC
Parent Server Config. Generation: 4
Parent Server MPM Generation: 3
Server uptime:  2 days 11 hours 18 minutes 28 seconds
Server load: 0.00 0.00 0.00
Total accesses: 10673 - Total Traffic: 1.3 GB - Total Duration: 599010734
CPU Usage: u5.72 s9.94 cu13.83 cs24.83 - .0254% CPU load
.05 requests/sec - 6.5 kB/second - 130.0 kB/request - 56123.9 ms/request
3 requests currently being processed, 0 workers gracefully restarting, 72 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
032123no2yes3022000
232176no0yes0025000
432233no0yes0025000
Sum302 3072000

_________W____W____W_____.........................______________
___________........................._________________________...
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-3321230/11/41_
0.5197025307900.00.184.93
127.0.0.1http/1.1ccs.linkpc.net:8443POST /api/experimental/dags/example_trigger_target_dag/dag_runs

0-3321230/29/70_
0.51101017474240.00.131.33
127.0.0.1http/1.1ccs.linkpc.net:8443GET /api/experimental/dags/example_trigger_target_dag/paused/fa

0-3321230/10/47_
0.506482819515540.00.141.70
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-3321230/6/37_
0.5364021573080.00.026.88
127.0.0.1http/1.1ccs.linkpc.net:8443GET /Devices-Config.php?sta=%22%3E%3Cimg%20src%3Dx%20onerror%3D

0-3321230/3/40_
0.536695421392010.00.028.44
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-3321230/6/29_
0.5097024015990.00.030.49
127.0.0.1http/1.1ccs.linkpc.net:8443GET /secure/QueryComponent!Default.jspa HTTP/1.1

0-3321230/9/56_
0.530045214740.00.056.31
127.0.0.1http/1.1ccs.linkpc.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-3321230/15/46_
0.516926799731657100.00.090.41
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-3321230/5/37_
0.530075246560.00.031.03
127.0.0.1http/1.1ccs.linkpc.net:8443GET /v2/_catalog HTTP/1.1

0-3321231/17/37W
0.500027964990.00.095.49
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server-status HTTP/1.1

0-3321230/8/36_
0.526926762025866640.00.0418.15
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-3321230/7/28_
0.531025604480.00.256.81
127.0.0.1http/1.1ccs.linkpc.net:8443GET /debug/default/view?panel=config HTTP/1.1

0-3321230/15/35_
0.516926442242520770.00.061.03
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-3321230/9/38_
0.5077028548640.00.053.13
127.0.0.1http/1.1ccs.linkpc.net:8443GET /secure/ViewUserHover.jspa HTTP/1.1

0-3321231/4/31W
0.5064025133200.00.033.11
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-3321230/5/39_
0.536876321099140.00.0412.28
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-3321230/6/40_
0.532024504670.00.067.45
127.0.0.1http/1.1ccs.linkpc.net:8443GET /.vscode/sftp.json HTTP/1.1

0-3321230/10/55_
0.50101023532730.00.059.81
194.169.175.56http/1.1localhost:8443\x16\x03\x01

0-3321230/10/34_
0.532024146000.00.064.16
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server HTTP/1.1

0-3321231/17/46W
0.5068018922580.00.086.92
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-3321230/13/55_
0.532012848730.00.637.82
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-3321230/10/45_
0.5177024126560.00.070.96
127.0.0.1http/1.1ccs.linkpc.net:8443GET /Devices-Config.php?sta=%22%3E%3Cimg%20src%3Dx%20onerror%3D

0-3321230/4/25_
0.5010746792828438380.00.031.52
127.0.0.1http/1.1

0-3321230/13/48_
0.536478820126760.00.064.55
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-3321230/13/37_
0.532025800110.00.127.40
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/113.
0.00784186958419420.00.0017.47
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/113.
0.00784136854741520.00.0036.63
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/100.
0.0078412036666727970.00.0023.39
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/70.
0.0078412039267403750.00.008.80
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/89.
0.007841868082869670.00.008.39
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/132.
0.007842345848930700.00.0017.62
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/109.
0.00784138053252010.00.0013.77
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/86.
0.007841837969018360.00.0010.77
127.0.0.1h2cccs.linkpc.net:8443GET / HTTP/2.0

1-3-0/0/117.
0.007844649265283920.00.0016.37
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/88.
0.007841844470425190.00.0014.66
127.0.0.1h2cccs.linkpc.net:8443[0/0] init

1-3-0/0/85.
0.0078412041470093980.00.0013.03
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/107.
0.007841160658266030.00.0012.25
127.0.0.1h2cccs.linkpc.net:8443GET / HTTP/2.0

1-3-0/0/99.
0.0078415621767005120.00.0015.77
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/102.
0.0078411931380497100.00.0010.88
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/86.
0.007846034366546590.00.0045.98
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/102.
0.0078412041463873930.00.0021.83
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/108.
0.0078412043456322670.00.0022.71
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/97.
0.007842039959784360.00.0011.16
127.0.0.1h2cccs.linkpc.net:8443[1/1] done

1-3-0/0/79.
0.0078466769859632160.00.0013.43
127.0.0.1http/1.1

1-3-0/0/112.
0.0078420718458930180.00.0015.15
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/93.
0.007841517061774480.00.0029.90
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/82.
0.007841838366811540.00.0012.13
127.0.0.1h2cccs.linkpc.net:8443[1/1] done

1-3-0/0/105.
0.0078411920756888130.00.0022.58
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/114.
0.0078411943653192510.00.0026.26
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/132.
0.0078412044256931220.00.0013.18
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

2-3321760/3/134_
0.22429333262154040.00.029.63
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

Found on 2024-07-16 01:16

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec47f94f9e

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-04-05T12:02:26

Current Time: Friday, 12-Jul-2024 12:19:02 UTC
Restart Time: Wednesday, 03-Jul-2024 14:10:40 UTC
Parent Server Config. Generation: 10
Parent Server MPM Generation: 9
Server uptime:  8 days 22 hours 8 minutes 21 seconds
Server load: 0.01 0.01 0.00
Total accesses: 34448 - Total Traffic: 6.3 GB - Total Duration: 1926243297
CPU Usage: u19.75 s36.95 cu63.26 cs115.87 - .0306% CPU load
.0447 requests/sec - 8.5 kB/second - 190.4 kB/request - 55917.4 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
4107993no0yes0025000
5107994no0yes1024000
Sum200 1049000

................................................................
....................................____________________________
__________W___________
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-8-0/0/395.
0.00443330171186710.00.0065.98
127.0.0.1http/1.1

0-8-0/0/352.
0.00443330193213250.00.0059.76
127.0.0.1http/1.1

0-8-0/0/374.
0.00443330169062450.00.0028.47
127.0.0.1http/1.1

0-8-0/0/352.
0.00443330189467950.00.0032.38
127.0.0.1http/1.1

0-8-0/0/345.
0.00443330191190510.00.00288.05
127.0.0.1http/1.1

0-8-0/0/346.
0.00443330195605880.00.00103.43
127.0.0.1http/1.1

0-8-0/0/354.
0.00443330171926190.00.0060.91
127.0.0.1http/1.1

0-8-0/0/380.
0.00443330175342870.00.0060.42
127.0.0.1http/1.1

0-8-0/0/335.
0.00443330169876050.00.00203.87
127.0.0.1http/1.1

0-8-0/0/333.
0.00443330181499090.00.0073.84
127.0.0.1http/1.1

0-8-0/0/350.
0.00443330171585900.00.0024.75
127.0.0.1http/1.1

0-8-0/0/332.
0.00443330177535700.00.0035.70
127.0.0.1http/1.1

0-8-0/0/371.
0.00443330150725250.00.0045.42
127.0.0.1http/1.1

0-8-0/0/335.
0.00443334178997980.00.0045.99
127.0.0.1http/1.1

0-8-0/0/358.
0.00443330165851130.00.0063.23
127.0.0.1http/1.1

0-8-0/0/297.
0.00443331206293630.00.0069.02
127.0.0.1http/1.1

0-8-0/0/282.
0.00443330198026760.00.00119.88
127.0.0.1http/1.1

0-8-0/0/332.
0.00443330189706190.00.0041.88
127.0.0.1http/1.1

0-8-0/0/330.
0.00443330174909880.00.00145.53
127.0.0.1http/1.1

0-8-0/0/375.
0.00443330163055060.00.0037.78
127.0.0.1http/1.1

0-8-0/0/338.
0.00443330178362950.00.0030.77
127.0.0.1http/1.1

0-8-0/0/319.
0.00443330191745390.00.0039.34
127.0.0.1http/1.1

0-8-0/0/328.
0.00443330181096980.00.0037.01
127.0.0.1http/1.1

0-8-0/0/326.
0.00443330175972110.00.00119.85
127.0.0.1http/1.1

0-8-0/0/320.
0.00443330196646310.00.0027.66
127.0.0.1http/1.1

1-8-0/0/302.
0.0083992303355153518860.00.0020.68
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/297.
0.0083992104634148873290.00.0026.25
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/288.
0.00839922312158194990.00.00125.51
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/289.
0.0083992120420149323720.00.0056.82
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/294.
0.008399210043138697270.00.0039.04
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/322.
0.00839923887140383390.00.0019.48
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/327.
0.008399286722149918480.00.0028.67
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/278.
0.00839923942161694000.00.0052.47
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/286.
0.008399232051160449100.00.00134.27
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/284.
0.00839921638142980820.00.0029.21
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/310.
0.008399220278147726330.00.0017.62
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/289.
0.0083992119967158838770.00.0089.17
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/318.
0.0083992118385147700670.00.0026.08
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/315.
0.0083992108158174713260.00.0022.23
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/338.
0.0083992120169142829750.00.0030.66
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/262.
0.0083992119907175710410.00.0043.44
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/292.
0.0083992104448145868310.00.0035.82
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/303.
0.0083992301648149496370.00.00106.41
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/279.
0.0083992117787170504340.00.00110.26
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/300.
0.0083992120383148104060.00.00103.44
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/313.
0.0083992121935145582240.00.00129.52
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/289.
0.0083992120410162921470.00.0034.48
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/339.
0.0083992120335153278170.00.00127.53
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/301.
0.0083992174174139833600.00.0034.97
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-8-0/0/308.
0.0083992149730177514970.00.00125.76
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

2-8-0/0/287.
0.0083934119366181702750.00.0037.34
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

2-8-0/0/293.
0.0083934898188196410.00.0089.80
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

2-8-0/0/274.
0.00839343449170038810.00.0060.94
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

2-8-0/0/316.
0.0083934120389171696780.00.0045.38
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

2-8-0/0/314.
0.008393460003179812540.00.0039.42
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

2-8-0/0/295.
<

Found on 2024-07-14 00:03

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec64cdea89

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-04-05T12:02:26

Current Time: Wednesday, 10-Jul-2024 09:13:00 UTC
Restart Time: Wednesday, 03-Jul-2024 14:10:40 UTC
Parent Server Config. Generation: 8
Parent Server MPM Generation: 7
Server uptime:  6 days 19 hours 2 minutes 19 seconds
Server load: 0.05 0.04 0.00
Total accesses: 27064 - Total Traffic: 5.5 GB - Total Duration: 1485016475
CPU Usage: u17.89 s33.5 cu47.44 cs86.67 - .0316% CPU load
.0461 requests/sec - 9.8 kB/second - 211.9 kB/request - 54870.5 ms/request
19 requests currently being processed, 0 workers gracefully restarting, 56 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
084130yes7no000000
184658no20yes1708000
284362no1yes0025000
384544no0yes2023000
Sum4128 19056000

...............G........._W_WWW_WWWW_WW_WW_WW_W_WW______________
________________________W__W________............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-7-0/0/362.
0.0041016177150786610.00.0065.78
127.0.0.1http/1.1

0-7-0/0/321.
0.00410120441175652620.00.0059.55
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-7-0/0/338.
0.004101374154482860.00.0026.04
127.0.0.1http/1.1

0-7-0/0/318.
0.00133508094168044300.00.0028.97
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-7-0/0/313.
0.00138540404177402320.00.00275.53
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-7-0/0/318.
0.00133536686177010870.00.00101.42
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-7-0/0/322.
0.0041015553156577850.00.0057.88
127.0.0.1http/1.1

0-7-0/0/349.
0.004108007156969720.00.0053.94
127.0.0.1http/1.1

0-7-0/0/311.
0.00133469877154650150.00.00194.80
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-7-0/0/299.
0.004102331169402340.00.0069.62
127.0.0.1http/1.1

0-7-0/0/318.
0.004104649153696680.00.0021.63
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-7-0/0/302.
0.00410120353158148070.00.0032.37
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-7-0/0/341.
0.0041017371131824950.00.0042.33
127.0.0.1http/1.1

0-7-0/0/309.
0.00410120414162398280.00.0044.87
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-7-0/0/326.
0.00280242023153825840.00.0061.37
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-7841301/43/264G
9.309270175511780.017.4068.72
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-7-0/0/254.
0.00290272361169967480.00.00116.31
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-7-0/0/303.
0.00258420414175094130.00.0041.30
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-7-0/0/300.
0.00392302951159313810.00.00138.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-7-0/0/342.
0.00392302938148162410.00.0037.36
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-7-0/0/303.
0.00392302871167998020.00.0029.72
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-7-0/0/291.
0.00392302714176709930.00.0039.23
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-7-0/0/302.
0.00410120360163074340.00.0036.52
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-7-0/0/300.
0.00405241514159996430.00.00119.03
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-7-0/0/291.
0.00393302588168766740.00.0025.35
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-7846580/8/227_
0.5500108614370.00.0814.16
127.0.0.1http/1.1ccs.linkpc.net:8443GET /v2/_catalog HTTP/1.1

1-7846581/5/219W
0.361760115823730.00.0621.85
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-7846580/6/225_
0.5500115654410.00.05120.65
127.0.0.1http/1.1ccs.linkpc.net:8443GET /debug/default/view?panel=config HTTP/1.1

1-7846581/3/222W
0.431290114708430.00.0352.70
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-7846581/6/233W
0.49460104325340.00.3332.99
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-7846581/8/254W
0.51120108978750.00.0916.87
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-7846580/4/247_
0.5500117242010.00.0322.60
127.0.0.1http/1.1ccs.linkpc.net:8443GET /about HTTP/1.1

1-7846581/3/207W
0.431250127972150.00.0347.14
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-7846581/2/209W
0.431210119599590.00.01127.45
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-7846581/3/210W
0.351810106688590.00.2820.21
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-7846581/9/249W
0.47730112873590.00.5116.50
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-7846580/6/228_
0.5510120126340.00.2387.67
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server HTTP/1.1

1-7846581/8/236W
0.5400114799080.00.0619.24
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server-status HTTP/1.1

1-7846581/7/240W
0.45790138457480.00.1211.82
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-7846580/10/262_
0.5600111334260.00.4826.72
127.0.0.1http/1.1ccs.linkpc.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-7846581/6/204W
0.331900121290500.00.0541.28
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-7846581/4/229W
0.401320106807680.00.0227.93
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-7846580/4/234_
0.554121747109228310.00.0598.37
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-7846581/7/226W
0.421290124088840.00.5293.93
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-7846581/7/230W
0.51120113411010.00.2298.24
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-7846580/4/231_
0.5510107369550.01.17127.49
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-7846581/6/219W
0.46760125053150.00.0619.99
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-7846580/9/249_
0.5510114938300.00.08122.21
127.0.0.1http/1.1ccs.linkpc.net:8443GET /.vscode/sftp.json HTTP/1.1

1-7846581/6/226W
0.45510103934300.00.0526.97
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-7846581/4/241W
0.351700123008610.00.03116.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

2-7843620/2/185_
0.087143439112195720.00.1126.38
127.0.0.1http/1.1

2-784362

Found on 2024-07-10 09:12

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ecdf63466b

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-04-05T12:02:26

Current Time: Monday, 08-Jul-2024 12:26:08 UTC
Restart Time: Wednesday, 03-Jul-2024 14:10:40 UTC
Parent Server Config. Generation: 6
Parent Server MPM Generation: 5
Server uptime:  4 days 22 hours 15 minutes 27 seconds
Server load: 0.00 0.00 0.00
Total accesses: 16526 - Total Traffic: 4.3 GB - Total Duration: 930892943
CPU Usage: u10.66 s19.63 cu33.19 cs61.33 - .0293% CPU load
.0388 requests/sec - 10.6 kB/second - 273.5 kB/request - 56329 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
359576no0yes0025000
459629no0yes0025000
559684no0yes1024000
Sum300 1074000

................................................................
..........._____________________________________________________
_________________W____
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-5-0/0/167.
0.001896511623778609430.00.0030.09
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/153.
0.0018965794474102479180.00.0035.37
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/175.
0.001896511727182368360.00.009.43
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/165.
0.001896511960385201300.00.009.52
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/163.
0.001896511982693474500.00.00253.63
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/165.
0.001896511710789961240.00.0084.85
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/170.
0.001896511985482589150.00.0032.77
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/163.
0.001896511614887385990.00.0025.52
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/161.
0.001896511873880266240.00.00175.09
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/161.
0.001896512982292289470.00.0047.10
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/172.
0.001896511873785176290.00.0011.11
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/147.
0.001896511583580981600.00.0016.60
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/171.
0.001896511962472521080.00.006.39
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/149.
0.001896511958382757720.00.0018.20
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/170.
0.001896513077485413870.00.0044.49
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/154.
0.001896512025795248670.00.0039.94
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/151.
0.001896511623085943890.00.0093.29
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/179.
0.001896511727891735780.00.0021.49
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/155.
0.00189654418378724200.00.00115.58
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/179.
0.001896511879181081900.00.007.47
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/154.
0.001896511922789933210.00.0017.35
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/160.
0.001896511626279106730.00.0014.10
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/156.
0.001896511628091892510.00.0013.98
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/157.
0.001896511927575359170.00.0096.89
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-5-0/0/172.
0.001896511683985237800.00.0010.20
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/145.
0.001945812005467389120.00.0011.74
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/120.
0.001945811968074807950.00.008.09
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/133.
0.001945811998072005040.00.00109.98
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/134.
0.001945811997275265140.00.0038.30
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/143.
0.001945811626168997930.00.0029.12
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/163.
0.001945815621164254290.00.009.45
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/161.
0.001945830237672287130.00.0012.91
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/111.
0.001945813763381880030.00.0041.61
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/127.
0.001945811998777415530.00.00122.34
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/131.
0.001945811618866955570.00.0017.41
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/141.
0.001945811879575901280.00.006.98
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/137.
0.001945811425575481980.00.0084.20
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/125.
0.001945811978777893270.00.0013.44
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/148.
0.001945811980885370260.00.005.14
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/158.
0.001945811880763531090.00.0015.95
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/114.
0.001945811729479616650.00.0036.23
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/154.
0.001945811969470709340.00.0019.44
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/145.
0.001945812022363743220.00.0093.38
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/123.
0.001945811923379678930.00.0084.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/144.
0.001945812020474638150.00.0093.37
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/146.
0.001945811782864528670.00.00114.80
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/129.
0.001945811879576073520.00.0011.24
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/144.
0.001945811969674940760.00.00117.82
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/146.
0.001945812017265524190.00.0020.44
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-5-0/0/150.
0.001945811993578005320.00.00105.29
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

2-5-0/0/111.
0.001960012003671787620.00.0011.06
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

2-5-0/0/108.
0.0019600119

Found on 2024-07-08 12:26

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec3c4fe06b

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-04-05T12:02:26

Current Time: Saturday, 06-Jul-2024 14:26:57 UTC
Restart Time: Wednesday, 03-Jul-2024 14:10:40 UTC
Parent Server Config. Generation: 4
Parent Server MPM Generation: 3
Server uptime:  3 days 16 minutes 16 seconds
Server load: 0.00 0.00 0.00
Total accesses: 5906 - Total Traffic: 2.9 GB - Total Duration: 360065325
CPU Usage: u7.66 s13.97 cu13.21 cs25.67 - .0233% CPU load
.0227 requests/sec - 11.5 kB/second - 506.1 kB/request - 60966 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
032928no0yes1024000
332151no0yes0025000
532204no0yes0025000
Sum300 1074000

_____________________W___.......................................
..........._________________________.........................___
______________________
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-3329280/10/85_
3.150052193730.00.0325.90
127.0.0.1http/1.1ccs.linkpc.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-3329280/11/71_
3.141052235680.00.1129.97
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-3329280/13/79_
3.131361043443510.00.602.06
127.0.0.1http/1.1ccs.linkpc.net:8443GET /.env HTTP/1.1

0-3329280/15/83_
3.13865047507540.00.064.97
45.148.10.174http/1.1localhost:80GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&co

0-3329280/14/91_
3.150048582900.00.76244.35
127.0.0.1http/1.1ccs.linkpc.net:8443GET /v2/_catalog HTTP/1.1

0-3329280/11/71_
3.12347049795890.00.1378.03
127.0.0.1http/1.1

0-3329280/13/86_
3.141050508880.00.1920.34
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server HTTP/1.1

0-3329280/11/85_
3.140048907810.022.8923.58
127.0.0.1http/1.1ccs.linkpc.net:8443GET /about HTTP/1.1

0-3329280/17/85_
3.14349044022060.00.10143.32
127.0.0.1http/1.1ccs.linkpc.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-3329280/15/81_
3.131359042777890.07.2643.15
127.0.0.1http/1.1ccs.linkpc.net:8443POST / HTTP/1.1

0-3329280/8/86_
3.031368047186660.00.447.32
103.114.104.201http/1.1

0-3329280/16/80_
3.12400043104680.00.1312.71
127.0.0.1http/1.1

0-3329280/12/87_
3.12304042122240.00.354.45
91.92.247.56http/1.1localhost:80GET /secure/.env HTTP/1.1

0-3329280/6/68_
3.11305734747292220.00.076.67
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-3329280/9/88_
3.03859246460650.00.3633.26
127.0.0.1http/1.1

0-3329280/13/81_
3.13864053850800.00.2032.32
45.148.10.174http/1.1localhost:80GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&co

0-3329280/13/77_
3.140043674190.01.172.22
127.0.0.1http/1.1ccs.linkpc.net:8443GET /debug/default/view?panel=config HTTP/1.1

0-3329280/11/72_
3.131365049787880.00.6414.81
103.114.104.201http/1.1localhost:80POST / HTTP/1.1

0-3329280/15/76_
3.11860048774430.01.50107.26
141.98.83.197http/1.1localhost:80GET / HTTP/1.1

0-3329280/10/103_
3.14310046721650.00.464.10
141.98.83.197http/1.1localhost:80GET / HTTP/1.1

0-3329280/11/81_
3.121356052226860.04.095.00
52.76.71.100http/1.1localhost:80GET /favicon.ico HTTP/1.1

0-3329281/11/81W
3.130043389710.00.266.11
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server-status HTTP/1.1

0-3329280/9/89_
3.111357046991940.00.034.07
127.0.0.1http/1.1

0-3329280/12/78_
3.121364040962480.00.0789.37
103.114.104.201http/1.1

0-3329280/13/89_
3.111356035479870.00.422.22
78.153.140.177http/1.1localhost:80GET /.env HTTP/1.1

1-3-0/0/64.
0.001684118042431704840.00.005.74
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/60.
0.0016841484637935480.00.004.05
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/62.
0.00168416753633724850.00.0095.86
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/64.
0.001684112037639773180.00.0019.14
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/56.
0.0016841692035665420.00.0020.65
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/56.
0.001684126822833868220.00.000.90
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/61.
0.001684126821239957420.00.005.41
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/41.
0.001684124253642147980.00.0037.53
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/56.
0.0016841557345751660.00.00112.08
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/52.
0.0016841693436988430.00.001.75
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/49.
0.001684124157539557990.00.000.65
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/59.
0.001684124227742056970.00.0077.96
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/51.
0.001684124247844756650.00.006.23
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/53.
0.001684112016937635260.00.002.53
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/58.
0.001684124227430791510.00.003.02
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/50.
0.001684126821243300290.00.0028.13
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/65.
0.001684124221939312980.00.006.41
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/64.
0.0016841528133202100.00.0081.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/52.
0.0016841043443830.00.0070.57
127.0.0.1http/1.1ccs.linkpc.net:8443GET /favicon.ico?v=2.0 HTTP/1.1

1-3-0/0/64.
0.001684112042841543160.00.0085.70
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/67.
0.001684112008633060730.00.00106.93
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/58.
0.00168411064541994380.00.002.08
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/66.
0.001684124200836385800.00.00116.53
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/64.
0.001684124257134303980.00.006.03
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3-0/0/67.
0.00168411261238382030.00.00101.41
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

2-3-0/0/54.
0.002327511784541552050.00.007.61
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

2-3-0/0/55.
0.00232751182313864685

Found on 2024-07-06 14:26

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec80a6d628

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-04-05T12:02:26

Current Time: Tuesday, 02-Jul-2024 04:58:09 UTC
Restart Time: Monday, 01-Jul-2024 03:02:24 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 day 1 hour 55 minutes 44 seconds
Server load: 0.00 0.00 0.00
Total accesses: 683 - Total Traffic: 500 kB - Total Duration: 93206
CPU Usage: u3.67 s6.81 cu0 cs0 - .0112% CPU load
.00732 requests/sec - 5 B/second - 749 B/request - 136.466 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
0524no0yes0025000
1525no0yes1024000
Sum200 1049000

_________________________________________W________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-05240/7/7_
0.355288000.00.000.00
127.0.0.1http/1.1

0-05240/1/1_
0.3313794000.00.000.00
127.0.0.1http/1.1

0-05240/2/2_
0.425146000.00.000.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET /favicon/favicon.ico HTTP/1.1

0-05240/4/4_
0.42529308120.00.000.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET /zabbix/favicon.ico HTTP/1.1

0-05240/3/3_
0.331377409270.00.000.00
127.0.0.1http/1.1

0-05240/8/8_
0.355141025820.00.010.01
127.0.0.1http/1.1

0-05240/6/6_
0.331363609210.00.000.00
127.0.0.1http/1.1

0-05240/5/5_
0.2413798020.00.000.00
127.0.0.1http/1.1

0-05240/1/1_
0.06137758178170.00.000.00
127.0.0.1http/1.1

0-05240/1/1_
0.04137746356350.00.000.00
127.0.0.1http/1.1

0-05240/1/1_
0.035288125012500.00.000.00
127.0.0.1http/1.1

0-05240/4/4_
0.3613773010750.00.010.01
127.0.0.1http/1.1

0-05240/2/2_
0.3613773000.00.000.00
127.0.0.1http/1.1

0-05240/4/4_
0.331532608600.00.000.00
127.0.0.1http/1.1

0-05240/6/6_
0.39129796846850.00.000.00
127.0.0.1http/1.1

0-05240/3/3_
0.3613533000.00.000.00
127.0.0.1http/1.1

0-05240/1/1_
0.3513531000.00.000.00
127.0.0.1http/1.1

0-05240/2/2_
0.4112979107910790.00.000.00
127.0.0.1http/1.1

0-05240/5/5_
0.1613453000.00.000.00
127.0.0.1http/1.1

0-05240/3/3_
0.361379406980.00.000.00
127.0.0.1http/1.1

0-05240/3/3_
0.4212980000.00.000.00
147.185.132.138http/1.1localhost:8443\x16\x03\x01

0-05240/2/2_
0.291379208300.00.000.00
127.0.0.1http/1.1

0-05240/2/2_
0.4013801110.00.000.00
127.0.0.1http/1.1

0-05240/2/2_
0.35626000.00.000.00
127.0.0.1http/1.1

1-05250/28/28_
2.19631042170.00.020.02
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-05250/25/25_
2.18626033530.00.020.02
127.0.0.1http/1.1

1-05250/21/21_
2.200039960.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-05250/21/21_
2.201031280.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /debug/default/view?panel=config HTTP/1.1

1-05250/29/29_
2.2030105740.00.030.03
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server HTTP/1.1

1-05250/25/25_
2.18628026680.00.020.02
127.0.0.1http/1.1

1-05250/24/24_
2.20214049020.00.020.02
127.0.0.1http/1.1ccs.linkpc.net:8443GET /index.asp HTTP/1.1

1-05250/27/27_
2.202036510.00.020.02
127.0.0.1http/1.1ccs.linkpc.net:8443GET /.vscode/sftp.json HTTP/1.1

1-05250/23/23_
2.20629042240.00.020.02
127.0.0.1http/1.1ccs.linkpc.net:8443GET /robots.txt HTTP/1.1

1-05250/29/29_
2.18627034490.00.020.02
127.0.0.1http/1.1

1-05250/23/23_
2.18625030620.00.010.01
127.0.0.1http/1.1

1-05250/23/23_
2.201025370.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /v2/_catalog HTTP/1.1

1-05250/22/22_
2.18628129850.00.010.01
127.0.0.1http/1.1

1-05250/21/21_
2.204037570.00.020.02
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-05250/23/23_
2.14626024700.00.020.02
127.0.0.1http/1.1

1-05250/23/23_
2.12628137170.00.020.02
127.0.0.1http/1.1

1-05251/16/16W
2.15008140.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server-status HTTP/1.1

1-05250/33/33_
2.14630049180.00.020.02
127.0.0.1http/1.1ccs.linkpc.net:8443GET /identity HTTP/1.1

1-05250/23/23_
2.18214015590.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-05250/26/26_
2.18631016150.00.020.02
127.0.0.1h2cccs.linkpc.net:8443GET / HTTP/2.0

1-05250/21/21_
2.202010570.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /about HTTP/1.1

1-05250/19/19_
2.20630016520.00.020.02
127.0.0.1http/1.1ccs.linkpc.net:8443GET /favicon.ico HTTP/1.1

1-05250/29/29_
2.15629025360.00.020.02
127.0.0.1http/1.1ccs.linkpc.net:8443GET /sitecore/shell/sitecore.version.xml HTTP/1.1

1-05250/21/21_
2.16627023920.00.010.01
127.0.0.1http/1.1

1-05250/30/30_
2.1462707790.00.020.02
127.0.0.1http/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-07-04 17:11

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ece3475f0e

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-04-05T12:02:26

Current Time: Sunday, 30-Jun-2024 19:12:03 UTC
Restart Time: Sunday, 30-Jun-2024 09:47:30 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  9 hours 24 minutes 32 seconds
Server load: 0.05 0.03 0.00
Total accesses: 722 - Total Traffic: 92.5 MB - Total Duration: 26495999
CPU Usage: u3.43 s6.13 cu0 cs0 - .0282% CPU load
.0213 requests/sec - 2864 B/second - 131.2 kB/request - 36698.1 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
0548no0yes0025000
1549no0yes0025000
22080no0yes1024000
Sum300 1074000

____________________________________________________W___________
___________.....................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-05480/4/4_
0.6810339323195760.00.160.16
127.0.0.1http/1.1

0-05480/5/5_
1.0310340320085610.00.020.02
143.110.182.33http/1.1localhost:8443\x16\x03\x01\x01\xb6\x01

0-05480/5/5_
0.80104002355108450.00.030.03
127.0.0.1http/1.1

0-05480/4/4_
0.68103402642662050.00.030.03
127.0.0.1http/1.1

0-05480/5/5_
1.034269069290.00.020.02
36.99.136.128http/1.1localhost:8443GET /favicon.ico HTTP/1.1

0-05480/5/5_
0.961042356442410980.03.413.41
127.0.0.1http/1.1

0-05480/6/6_
0.9710342818104370.00.020.02
127.0.0.1http/1.1

0-05480/3/3_
0.811042302633780.026.8526.85
127.0.0.1http/1.1

0-05480/5/5_
1.0310340306876320.00.020.02
143.110.182.33http/1.1localhost:8443\x16\x03\x01\x01\x9f\x01

0-05480/4/4_
0.76104152227705110.00.320.32
127.0.0.1http/1.1

0-05480/4/4_
0.69104592498687110.00.040.04
127.0.0.1http/1.1

0-05480/4/4_
0.68426914392409370.00.040.04
36.99.136.128http/1.1

0-05480/6/6_
1.03103421016631093000.00.020.02
143.110.182.33http/1.1localhost:8443\x16\x03\x03\x01\x9b\x01

0-05480/6/6_
0.68735930341308960.00.070.07
185.238.132.196http/1.1

0-05480/4/4_
0.81104591634661943040.00.030.03
127.0.0.1http/1.1

0-05480/4/4_
0.811041904902290.00.020.02
127.0.0.1http/1.1

0-05480/8/8_
0.891041926353282240.00.070.07
127.0.0.1http/1.1

0-05480/3/3_
0.68103443195693730.00.150.15
127.0.0.1http/1.1

0-05480/4/4_
0.77104155527216199200.02.602.60
127.0.0.1http/1.1

0-05480/2/2_
0.70104591367582023680.00.060.06
127.0.0.1http/1.1

0-05480/4/4_
0.87104196741906830.00.080.08
127.0.0.1http/1.1

0-05480/5/5_
0.851041920424124520.00.280.28
127.0.0.1http/1.1

0-05480/6/6_
0.691046012353579280.00.070.07
127.0.0.1http/1.1

0-05480/6/6_
0.791031322262617110.00.070.07
127.0.0.1http/1.1

0-05480/6/6_
1.03103443176733120.00.060.06
143.110.182.33http/1.1localhost:8443\x16\x03\x03\x01\xa7\x01

1-05490/2/2_
0.1110433265742710.00.010.01
127.0.0.1http/1.1

1-05490/2/2_
0.0710343147814790.00.000.00
127.0.0.1http/1.1

1-05490/4/4_
0.40103447371324610.00.280.28
143.110.182.33http/1.1localhost:8443\x16\x03\x03\x01\xa7\x01

1-05490/1/1_
0.173982203520350.00.000.00
127.0.0.1http/1.1

1-05490/2/2_
0.403987012410.00.000.00
45.148.10.174http/1.1localhost:80GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&co

1-05490/1/1_
0.077359122412240.00.000.00
185.238.132.196http/1.1

1-05490/1/1_
0.061042368947689470.00.280.28
127.0.0.1http/1.1

1-05490/1/1_
0.061042265207652070.00.010.01
127.0.0.1http/1.1

1-05490/2/2_
0.1410423223743680.00.030.03
127.0.0.1http/1.1

1-05490/1/1_
0.0610501222722270.00.010.01
127.0.0.1http/1.1

1-05490/2/2_
0.22103889641737420.00.010.01
127.0.0.1http/1.1

1-05490/1/1_
0.1110418154015400.00.000.00
127.0.0.1http/1.1

1-05490/1/1_
0.0610383143814380.00.010.01
127.0.0.1http/1.1

1-05490/1/1_
0.0610350236423640.00.010.01
127.0.0.1http/1.1

1-05490/4/4_
0.4010341054590.00.020.02
143.110.182.33http/1.1localhost:8443\x16\x03\x01\x01\xa9\x01

1-05490/1/1_
0.0710340310731070.00.010.01
127.0.0.1http/1.1

2-020800/25/25_
4.681425014559050.01.441.44
36.99.136.129http/1.1

2-020800/22/22_
4.72195207062260.00.620.62
127.0.0.1http/1.1ccs.linkpc.net:8443GET /aspera/faspex/ HTTP/1.1

2-020801/23/23W
4.72007227920.03.723.72
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server-status HTTP/1.1

2-020800/29/29_
4.75006712420.00.400.40
127.0.0.1http/1.1ccs.linkpc.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

2-020800/25/25_
4.741016956410.04.384.38
127.0.0.1http/1.1ccs.linkpc.net:8443GET /.vscode/sftp.json HTTP/1.1

2-020800/24/24_
4.75008022660.00.140.14
127.0.0.1http/1.1ccs.linkpc.net:8443GET /debug/default/view?panel=config HTTP/1.1

2-020800/26/26_
3.941956010076000.02.812.81
36.99.136.137http/1.1

2-020800/20/20_
4.75005604510.02.472.47
127.0.0.1http/1.1ccs.linkpc.net:8443GET /v2/_catalog HTTP/1.1

2-020800/20/20_
4.11194709691900.01.231.23
36.99.136.136http/1.1

2-020800/16/16_
4.0514257736067380.07.527.52
36.99.136.136http/1.1

2-020800/28/28_
4.731301010616260.01.541.54
141.98.83.197http/1.1localhost:80GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&co

2-020800/22/22_
4.696307036650.017.3417.34
54.74.75.52http/1.1

2-020800/21/21_
4.70129605977740.02.292.29
45.148.10.174http/1.1localhost:80GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&co

2-020800/15/15_
4.70194706651480.00.380.38
36.99.136.136http/1.1localhost:8443GET / HTTP/1.1

2-020800/26/26_
4.731301015508390.00.940.94
141.98.83.197http/1.1l

Found on 2024-06-30 19:12

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846eca11e3be8

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-04-05T12:02:26

Current Time: Friday, 28-Jun-2024 08:17:28 UTC
Restart Time: Friday, 28-Jun-2024 03:03:55 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  5 hours 13 minutes 33 seconds
Server load: 2.79 2.47 2.28
Total accesses: 1513 - Total Traffic: 1143.0 GB - Total Duration: 20092163
CPU Usage: u64.42 s4778.36 cu0 cs0 - 25.7% CPU load
.0804 requests/sec - 62.2 MB/second - 0.8 GB/request - 13279.7 ms/request
24 requests currently being processed, 0 workers gracefully restarting, 51 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
0525no2yes1024000
1526no16yes1024000
29314no7yes2203000
Sum3025 24051000

____________W___________________________W_________WWWWW_W_WWWWWW
WWWW_WWWWWW.....................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-05250/1/1_
28.312003660115080.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-05250/1/1_
17.042004446110660.00.010.01
127.0.0.1http/1.1

0-05250/2/2_
31.97931283631351190.00.020.02
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-05250/2/2_
22.312011040281040280.01024.011024.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-05250/1/1_
13.48201000.01024.001024.00
127.0.0.1http/1.1

0-05250/3/3_
31.97931210491308510.00.020.02
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-05250/2/2_
16.9620070090700900.01024.031024.03
127.0.0.1http/1.1

0-05250/3/3_
27.4820194624188590.00.050.05
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-05250/2/2_
28.112012269656340.00.020.02
127.0.0.1http/1.1

0-05251/1/1W
9.32001538830.00.020.02
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-05250/3/3_
17.04199164335600.00.020.02
127.0.0.1http/1.1

0-05250/1/1_
16.991693903900.00.000.00
127.0.0.1http/1.1

0-05250/2/2_
31.979362081647810.00.150.15
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-05250/1/1_
9.3119137913790.00.000.00
127.0.0.1http/1.1

0-05250/4/4_
28.31193334979260.00.050.05
127.0.0.1http/1.1

0-05250/2/2_
28.3120199092454690.00.080.08
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-05250/1/1_
27.61201000.01024.001024.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET /1GB.bin HTTP/1.1

0-05250/1/1_
22.28201130313030.01024.001024.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET /1GB.bin HTTP/1.1

0-05250/2/2_
22.29201216144420.00.040.04
127.0.0.1http/1.1

0-05250/2/2_
31.96200323032300.01024.031024.03
127.0.0.1http/1.1ccs.linkpc.net:8443GET /1GB.bin HTTP/1.1

0-05250/2/2_
22.30201222222220.01024.021024.02
127.0.0.1http/1.1

1-05260/57/57_
4771.95931216816996390.041984.1341984.13
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-05260/52/52_
4771.9410810260615573110.041987.7041987.70
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-05260/49/49_
4771.94137768262918220.041984.0741984.07
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-05260/67/67_
4770.42142645755254250.057344.0957344.09
127.0.0.1http/1.1

1-05260/53/53_
4771.95931172709904980.039936.2939936.29
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-05260/57/57_
4771.941101019784657400.047104.1147104.11
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-05260/61/61_
4771.96781395466469150.055300.9655300.96
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-05260/68/68_
4769.32143628877549860.057344.2057344.20
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-05260/60/60_
4771.967613224610813680.045056.1345056.13
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-05260/54/54_
4771.95931368386557890.044032.3244032.32
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-05260/61/61_
4759.75143311913694580.047107.1947107.19
127.0.0.1http/1.1ccs.linkpc.net:8443GET /1GB.bin HTTP/1.1

1-05260/63/63_
4769.8272610274908210.050176.2150176.21
127.0.0.1http/1.1

1-05260/43/43_
4771.96931127398006330.030722.0430722.04
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-05260/76/76_
4771.959311930412578010.057345.6457345.64
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-05260/56/56_
4771.95931176308815510.039936.2239936.22
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-05261/48/48W
4769.82005257860.038912.0538912.05
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-05260/48/48_
4771.94143621403598570.039937.9739937.97
127.0.0.1http/1.1ccs.linkpc.net:8443GET /1GB.bin HTTP/1.1

1-05260/53/53_
4766.4314340936348900.041984.1941984.19
127.0.0.1http/1.1ccs.linkpc.net:8443GET /1GB.bin HTTP/1.1

1-05260/68/68_
4768.56143621596898580.054273.1254273.12
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-05260/70/70_
4771.95931347005463530.054272.4454272.44
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-05260/59/59_
4771.9593668642445510.052224.0952224.09
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-05260/62/62_
4756.98143184983555230.046080.1646080.16
127.0.0.1http/1.1

1-05260/57/57_
4771.95938639211346150.044036.8444036.84
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-05260/61/61_
4771.96751020969727000.045057.0245057.02
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-05260/53/53_
4771.94117626515453020.041984.3041984.30
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

2-093141/1/1W
31.35301243660.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

2-093141/0/0W
0.000000.00.000.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

2-093141/0/0W
0.001000.00.000.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

2-093141/0/0W
0.001012180.00.000.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

2-093141/0/0W
0.000000.00.000.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server-status HTTP/1.1

2-093140/1/1_
37.140000.00.000.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

2-093141/0/0W
0.001500

Found on 2024-06-28 08:17

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec24cf27cc

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-04-05T12:02:26

Current Time: Wednesday, 26-Jun-2024 05:40:44 UTC
Restart Time: Monday, 24-Jun-2024 16:16:18 UTC
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  1 day 13 hours 24 minutes 25 seconds
Server load: 7.08 5.05 4.29
Total accesses: 2584 - Total Traffic: 1.8 GB - Total Duration: 131214198
CPU Usage: u6.59 s15.31 cu6.79 cs17.9 - .0346% CPU load
.0192 requests/sec - 14.3 kB/second - 0.7 MB/request - 50779.5 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
055734no0yes1024000
155735no0yes0025000
257284no0yes0025000
Sum300 1074000

________________W_______________________________________________
___________.....................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2557340/2/6_
0.1117503490724103840.01.451.46
127.0.0.1http/1.1

0-2557340/1/3_
0.081888837753274070.00.020.03
127.0.0.1http/1.1

0-2557340/1/2_
0.211778110.00.000.00
127.0.0.1http/1.1

0-2557340/2/5_
0.111750090.00.000.00
127.0.0.1http/1.1

0-2557340/0/4_
0.0016632830210.00.000.05
127.0.0.1http/1.1

0-2557340/3/4_
0.221694131066640.00.010.02
127.0.0.1http/1.1

0-2557340/1/4_
0.131380248670080.00.010.02
127.0.0.1http/1.1

0-2557340/2/6_
0.131380235943160.00.010.02
127.0.0.1http/1.1

0-2557340/2/4_
0.34138363121043460.00.012.11
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-2557340/2/4_
0.13166622767269270.00.010.03
127.0.0.1http/1.1

0-2557340/0/3_
0.003773007953320130.00.000.03
127.0.0.1http/1.1

0-2557340/1/3_
0.0314210725000.00.000.06
127.0.0.1http/1.1

0-2557340/1/5_
0.2413692725030.00.000.01
127.0.0.1http/1.1

0-2557340/1/4_
0.031121000.00.000.00
127.0.0.1http/1.1

0-2557340/0/4_
0.00979010.00.000.00
127.0.0.1http/1.1

0-2557340/1/3_
0.041250261856880.00.020.03
127.0.0.1http/1.1

0-2557341/2/5W
0.27004528210.00.010.08
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server-status HTTP/1.1

0-2557340/2/8_
0.276390752330.00.010.06
127.0.0.1http/1.1

0-2557340/1/7_
0.041322295158230.00.010.03
127.0.0.1http/1.1

0-2557340/1/6_
0.051751886951621400.00.010.08
127.0.0.1http/1.1

0-2557340/1/5_
0.051897971631032170.00.010.02
127.0.0.1http/1.1

0-2557340/1/4_
0.07182511238156770.00.020.07
127.0.0.1http/1.1

0-2557340/2/7_
0.231876262775780.00.010.02
127.0.0.1http/1.1

0-2557340/2/5_
0.211771290451880.00.010.02
127.0.0.1http/1.1

0-2557340/2/6_
0.21177897509994820.00.080.09
127.0.0.1http/1.1

1-2557350/8/37_
0.866502277822505060.00.0511.47
127.0.0.1http/1.1

1-2557350/4/30_
0.7817185366833672940.03.8788.33
127.0.0.1http/1.1

1-2557350/9/43_
1.471420118821849990.00.0772.84
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-2557350/4/41_
0.7818883304925145080.00.9379.22
127.0.0.1http/1.1

1-2557350/7/48_
0.851369868433758130.04.8427.90
127.0.0.1http/1.1

1-2557350/7/51_
0.9313802275718365450.00.0813.60
127.0.0.1http/1.1

1-2557350/7/36_
0.8541412278536691140.00.04125.30
127.0.0.1http/1.1

1-2557350/5/40_
0.93136925124426184630.00.032.65
127.0.0.1http/1.1

1-2557350/8/42_
0.961421026178740.00.066.34
127.0.0.1http/1.1

1-2557350/6/40_
1.45144618872635752790.038.4680.83
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-2557350/5/53_
0.772000905921616190.00.097.12
127.0.0.1http/1.1

1-2557350/5/45_
0.774210491425871830.00.045.12
127.0.0.1http/1.1

1-2557350/6/46_
0.921718132823350.00.0652.32
127.0.0.1http/1.1

1-2557350/5/50_
0.90639380520477300.00.091.07
127.0.0.1http/1.1

1-2557350/5/36_
0.93377970920497940.00.1366.40
127.0.0.1http/1.1

1-2557350/4/44_
0.851380253635419470.00.026.64
127.0.0.1http/1.1

1-2557350/7/38_
0.9313692279826974400.00.048.28
127.0.0.1http/1.1

1-2557350/6/41_
0.8513802275729256360.00.047.14
127.0.0.1http/1.1

1-2557350/4/37_
0.909981587826737640.00.034.24
127.0.0.1http/1.1

1-2557350/9/40_
0.961421125078060.05.5615.28
127.0.0.1http/1.1

1-2557350/5/42_
0.771854507311994550.00.0514.25
127.0.0.1http/1.1

1-2557350/7/50_
1.471420124832804510.00.0320.89
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-2557350/6/39_
1.481383629625525690.00.0643.44
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-2557350/7/43_
0.8613691981121882250.00.548.94
127.0.0.1http/1.1

1-2557350/6/38_
0.8612502275126365000.00.062.47
127.0.0.1http/1.1

2-2572840/21/56_
6.683776184129744380.065.97160.36
127.0.0.1http/1.1

2-2572840/18/56_
6.71132175834465690.05.0113.87
127.0.0.1http/1.1

2-2572840/17/63_
6.68650385722700710.00.3230.66
127.0.0.1http/1.1

2-2572840/24/62_
6.73364429601110.01.725.68
46.174.191.29http/1.1localhost:80GET / HTTP/1.0

2-2572840/16/56_
6.753228246700.08.0334.82
127.0.0.1http/1.1ccs.linkpc.net:8443GET /.vscode/sftp.json HTTP/1.1

2-2572840/25/64_
6.752027004060.00.3949.22
127.0.0.1http/1.1ccs.linkpc.net:8443GET /about HTTP/1.1

2-2572840/20/58_
6.751018145960.00.1946.22
127.0.0.1http/1.1ccs.linkpc.net:8443GET /v2/_catalog HTTP/1.1

2-2572840/24/64_
6.750218754870.048.6688.62
127.0.0.1

Found on 2024-06-26 05:40

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec1ebcc656

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-04-05T12:02:26

Current Time: Monday, 24-Jun-2024 05:21:02 UTC
Restart Time: Sunday, 23-Jun-2024 15:31:41 UTC
Parent Server Config. Generation: 2
Parent Server MPM Generation: 1
Server uptime:  13 hours 49 minutes 20 seconds
Server load: 0.00 0.00 0.00
Total accesses: 336 - Total Traffic: 4.1 MB - Total Duration: 130792
CPU Usage: u2.37 s4.19 cu.25 cs.32 - .0143% CPU load
.00675 requests/sec - 87 B/second - 12.6 kB/request - 389.262 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
03878no0yes0025000
13879no0yes1024000
Sum200 1049000

____________________________W_____________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-138780/1/7_
0.031993130.00.000.00
127.0.0.1http/1.1

0-138780/0/7_
0.004397020.00.000.00
127.0.0.1http/1.1

0-138780/0/8_
0.001973020.00.000.00
127.0.0.1http/1.1

0-138780/0/8_
0.004241019460.00.000.01
127.0.0.1http/1.1

0-138780/0/9_
0.004370012140.00.000.01
127.0.0.1http/1.1

0-138780/0/5_
0.001991020.00.000.00
127.0.0.1http/1.1

0-138780/0/9_
0.001963074840.00.000.01
127.0.0.1http/1.1

0-138780/0/9_
0.001866020.00.000.01
127.0.0.1http/1.1

0-138780/3/13_
0.231864059170.00.000.01
127.0.0.1http/1.1

0-138780/1/11_
0.21196206940.00.000.01
127.0.0.1http/1.1

0-138780/0/6_
0.00382208600.00.000.00
127.0.0.1http/1.1

0-138780/1/9_
0.121865010.00.000.01
127.0.0.1http/1.1

0-138780/0/8_
0.001697066040.00.000.01
127.0.0.1http/1.1

0-138780/0/10_
0.0051530133250.00.000.01
127.0.0.1http/1.1

0-138780/0/6_
0.005183091690.00.000.01
127.0.0.1http/1.1

0-138780/0/10_
0.0019920111550.00.000.01
127.0.0.1http/1.1

0-138780/1/9_
0.291992065070.00.000.01
127.0.0.1http/1.1

0-138780/1/10_
0.233816057280.00.000.01
127.0.0.1http/1.1

0-138780/1/7_
0.311979062720.00.000.00
127.0.0.1http/1.1

0-138780/0/6_
0.001991015800.00.000.01
127.0.0.1http/1.1

0-138780/0/7_
0.005039030.00.000.00
127.0.0.1http/1.1

0-138780/0/6_
0.0049840109420.00.003.89
127.0.0.1http/1.1

0-138780/0/9_
0.001970033400.00.000.01
127.0.0.1http/1.1

0-138780/0/4_
0.001988012620.00.000.01
127.0.0.1http/1.1

0-138780/0/7_
0.001970048980.00.000.00
127.0.0.1http/1.1

1-138790/3/5_
0.881853014610.00.000.00
127.0.0.1http/1.1

1-138790/6/6_
1.840010.00.000.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET /debug/default/view?panel=config HTTP/1.1

1-138790/7/7_
1.80186609080.00.010.01
127.0.0.1http/1.1

1-138791/4/4W
0.860020.00.000.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server-status HTTP/1.1

1-138790/6/7_
1.840040.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-138790/5/5_
1.840010.00.000.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET /v2/_catalog HTTP/1.1

1-138790/6/7_
1.801865020.00.000.00
127.0.0.1http/1.1

1-138790/5/5_
0.911698159635560.00.000.00
127.0.0.1http/1.1

1-138790/7/8_
1.791865010.00.000.00
127.0.0.1http/1.1

1-138790/2/2_
1.791865000.00.000.00
127.0.0.1http/1.1

1-138790/7/7_
1.801865031660.00.010.01
127.0.0.1http/1.1

1-138790/7/7_
0.9118549079080.00.010.01
127.0.0.1http/1.1

1-138790/4/5_
0.861854042780.00.000.00
127.0.0.1http/1.1

1-138790/5/5_
1.77124019410.00.000.00
127.0.0.1http/1.1

1-138790/7/7_
1.841010860.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server HTTP/1.1

1-138790/5/5_
1.831015130.00.000.00
71.6.232.25http/1.1localhost:80GET / HTTP/1.1

1-138790/1/1_
1.741854110.00.000.00
127.0.0.1http/1.1

1-138790/4/4_
1.831245046680.00.000.00
185.242.226.10http/1.1localhost:80GET / HTTP/1.1

1-138790/7/7_
0.86186691718130.00.010.01
127.0.0.1http/1.1

1-138790/4/4_
1.801866030910.00.000.00
127.0.0.1http/1.1

1-138790/7/7_
1.840017800.00.000.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET /about HTTP/1.1

1-138790/3/3_
0.771240000.00.000.00
127.0.0.1http/1.1

1-138790/4/4_
1.842116160.00.000.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-138790/8/8_
1.841016390.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /.vscode/sftp.json HTTP/1.1

1-138790/6/6_
1.77101509300.00.000.00
71.6.232.25http/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-24 05:20

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ecce7e92f1

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-04-05T12:02:26

Current Time: Saturday, 22-Jun-2024 07:27:28 UTC
Restart Time: Thursday, 20-Jun-2024 10:27:50 UTC
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  1 day 20 hours 59 minutes 37 seconds
Server load: 0.00 0.00 0.00
Total accesses: 2739 - Total Traffic: 443.4 MB - Total Duration: 27446010
CPU Usage: u6.91 s14.41 cu2.3 cs3 - .0164% CPU load
.0169 requests/sec - 2870 B/second - 165.8 kB/request - 10020.4 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
026414no0yes0025000
126415no0yes1024000
227161no0yes0025000
Sum300 1074000

______________________________W_________________________________
___________.....................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2264140/1/64_
0.0927880209680.00.000.04
127.0.0.1http/1.1

0-2264140/0/66_
0.002281057740.00.000.03
127.0.0.1http/1.1

0-2264140/1/71_
0.092285012170.00.000.03
127.0.0.1http/1.1

0-2264140/2/80_
0.26116491460910.00.000.04
127.0.0.1http/1.1

0-2264140/0/71_
0.001338090.00.000.04
127.0.0.1http/1.1

0-2264140/3/78_
0.26116076083040.00.000.05
127.0.0.1http/1.1

0-2264140/0/70_
0.004000246883060.00.000.03
127.0.0.1http/1.1

0-2264140/1/76_
0.23344392625100.00.000.04
127.0.0.1http/1.1

0-2264140/1/67_
0.1150502682382725310.00.010.05
127.0.0.1http/1.1

0-2264140/1/70_
0.091158062480.00.000.04
127.0.0.1http/1.1

0-2264140/3/69_
0.22229129557335320.00.010.05
127.0.0.1http/1.1

0-2264140/2/77_
0.302301944139580.00.000.05
127.0.0.1http/1.1

0-2264140/1/75_
0.072788079780.00.000.04
127.0.0.1http/1.1

0-2264140/1/67_
0.11284283934952420.00.010.05
127.0.0.1http/1.1

0-2264140/1/79_
0.2691171664480.00.000.05
127.0.0.1http/1.1

0-2264140/2/77_
0.11911158048840.00.010.05
127.0.0.1http/1.1

0-2264140/1/68_
0.092788017540.00.000.04
127.0.0.1http/1.1

0-2264140/1/57_
0.222287145355640.00.010.03
127.0.0.1http/1.1

0-2264140/2/84_
0.2216372473482490680.00.090.14
127.0.0.1http/1.1

0-2264140/1/73_
0.26229174289100.00.000.05
127.0.0.1http/1.1

0-2264140/3/72_
0.272295084610.00.000.05
127.0.0.1http/1.1

0-2264140/3/77_
0.19229531620371880.07.447.49
127.0.0.1http/1.1

0-2264140/1/71_
0.092293059960.00.000.04
127.0.0.1http/1.1

0-2264140/2/70_
0.22229229551351310.00.450.48
127.0.0.1http/1.1

0-2264140/1/68_
0.2214112494912562700.00.010.05
127.0.0.1http/1.1

1-2264150/24/31_
6.84217113996240.020.2520.26
127.0.0.1http/1.1

1-2264150/28/33_
6.7391118768830.09.689.69
127.0.0.1http/1.1

1-2264150/24/31_
6.37911011700530.061.5261.52
127.0.0.1http/1.1

1-2264150/26/31_
6.80217011592170.06.016.01
127.0.0.1http/1.1

1-2264150/28/35_
6.79911412929310.00.120.12
127.0.0.1http/1.1

1-2264151/27/37W
6.780012456430.087.4087.41
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server-status HTTP/1.1

1-2264150/26/30_
6.7291213377582800.08.808.80
127.0.0.1http/1.1

1-2264150/25/32_
6.5691087412540680.010.6310.63
127.0.0.1http/1.1

1-2264150/27/32_
6.870014047750.041.2941.29
127.0.0.1http/1.1ccs.linkpc.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-2264150/27/35_
6.8091008441930.016.4016.40
127.0.0.1http/1.1

1-2264150/31/36_
6.8091106549120.029.9129.92
127.0.0.1http/1.1

1-2264150/36/44_
6.873015814000.00.150.15
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server HTTP/1.1

1-2264150/30/39_
6.8090908133150.022.2722.28
127.0.0.1http/1.1

1-2264150/25/35_
6.872010238510.00.130.13
127.0.0.1http/1.1ccs.linkpc.net:8443GET /.vscode/sftp.json HTTP/1.1

1-2264150/33/38_
6.871010684520.046.6646.66
127.0.0.1http/1.1ccs.linkpc.net:8443GET /v2/_catalog HTTP/1.1

1-2264150/24/33_
6.872013760870.01.461.47
127.0.0.1http/1.1ccs.linkpc.net:8443GET /about HTTP/1.1

1-2264150/30/37_
6.864110687480.01.231.24
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-2264150/32/40_
6.8091117985050.04.474.48
127.0.0.1http/1.1

1-2264150/26/32_
6.8622208600370.04.494.49
104.209.34.230http/1.1localhost:80GET /manager/html HTTP/1.1

1-2264150/30/39_
6.7891104468080.09.979.98
127.0.0.1http/1.1

1-2264150/34/45_
6.6783716972660.06.006.00
127.0.0.1http/1.1

1-2264150/25/32_
6.70909010947630.015.0115.01
127.0.0.1http/1.1

1-2264150/32/42_
6.8091108321550.00.430.44
127.0.0.1http/1.1

1-2264150/36/43_
6.7891209742250.013.6713.67
127.0.0.1http/1.1

1-2264150/34/44_
6.87107267890.015.8615.86
127.0.0.1http/1.1ccs.linkpc.net:8443GET /debug/default/view?panel=config HTTP/1.1

2-2271610/2/2_
0.0922932420333645160.00.050.05
127.0.0.1http/1.1

2-2271610/2/2_
0.0922882496983110040.00.040.04
127.0.0.1http/1.1

2-2271610/2/2_
0.09310111703730260.00.010.01
127.0.0.1http/1.1

2-2271610/1/1_
0.031442210921090.00.000.00
127.0.0.1http/1.1

2-2271610/2/2_
0.0833852094343110.00.070.07
127.0.0.1http/1.1

2-2271610/1/1_
0.142295185718570.00.000.00
127.0.0.1http/1.1

2-2271610/1/1_
0.041036117811780.00.000.00
127.0.0.1http/1.1

2-2271610/1/1_
0.134240225622560.00.010.01
127.0.0.1http/1.1<

Found on 2024-06-22 07:27

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec6e70d07a

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Thursday, 20-Jun-2024 08:34:34 UTC
Restart Time: Thursday, 20-Jun-2024 08:30:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 minutes 26 seconds
Server load: 0.00 0.00 0.00
Total accesses: 10 - Total Traffic: 10 kB - Total Duration: 7
CPU Usage: u.02 s.04 cu0 cs0 - .0226% CPU load
.0376 requests/sec - 38 B/second - 1024 B/request - .7 ms/request
8 requests currently being processed, 0 workers gracefully restarting, 1 idle workers
KKKKKKKW_.......................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-06364241/2/2K
0.001000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

1-06364251/1/1K
0.001010.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

2-06364261/2/2K
0.000000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

3-06364271/2/2K
0.001010.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

4-06364281/1/1K
0.002013.40.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

5-06365061/1/1K
0.000000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

6-06365081/1/1K
0.000001.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

7-06365100/0/0W
0.000000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-20 08:34

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec8b177cf8

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Tuesday, 18-Jun-2024 04:41:07 UTC
Restart Time: Tuesday, 18-Jun-2024 04:40:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 minute
Server load: 0.02 0.01 0.00
Total accesses: 6 - Total Traffic: 5 kB - Total Duration: 5
CPU Usage: u.01 s.02 cu0 cs0 - .05% CPU load
.1 requests/sec - 85 B/second - 853 B/request - .833333 ms/request
7 requests currently being processed, 0 workers gracefully restarting, 5 idle workers
KKKKKK_W____....................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-05245661/1/1K
0.002000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

1-05245671/1/1K
0.001000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

2-05245681/1/1K
0.001010.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

3-05245691/1/1K
0.003000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

4-05245701/1/1K
0.002000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

5-05245961/1/1K
0.000001.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

7-05245990/0/0W
0.000000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-18 04:41

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846eceda73c69

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Sunday, 16-Jun-2024 05:31:22 UTC
Restart Time: Sunday, 16-Jun-2024 05:30:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 minute 14 seconds
Server load: 0.00 0.00 0.00
Total accesses: 8 - Total Traffic: 9 kB - Total Duration: 9
CPU Usage: u0 s.03 cu0 cs0 - .0405% CPU load
.108 requests/sec - 124 B/second - 1152 B/request - 1.125 ms/request
8 requests currently being processed, 0 workers gracefully restarting, 0 idle workers
KKKKKKWK........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-04159821/1/1K
0.001123.40.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-04159831/2/2K
0.000000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

2-04159841/1/1K
0.001010.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

3-04159851/1/1K
0.001010.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

4-04159861/1/1K
0.000010.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

5-04160081/1/1K
0.000000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

6-04160100/0/0W
0.000000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1

7-04160111/1/1K
0.000001.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-16 05:31

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec91689c69

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Wednesday, 12-Jun-2024 06:21:18 UTC
Restart Time: Wednesday, 12-Jun-2024 06:20:08 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 minute 10 seconds
Server load: 0.01 0.01 0.00
Total accesses: 7 - Total Traffic: 9 kB - Total Duration: 9
CPU Usage: u.01 s.03 cu0 cs0 - .0571% CPU load
.1 requests/sec - 131 B/second - 1316 B/request - 1.28571 ms/request
8 requests currently being processed, 0 workers gracefully restarting, 4 idle workers
KKKKKKWK____....................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-01909381/1/1K
0.002000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

1-01909391/1/1K
0.002000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

2-01909401/1/1K
0.003133.40.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

3-01909411/1/1K
0.001000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

4-01909421/1/1K
0.001000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

5-01909751/1/1K
0.000000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

6-01909770/0/0W
0.000000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1

7-01909781/1/1K
0.000011.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-12 06:21

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec9b901b82

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Monday, 10-Jun-2024 02:14:00 UTC
Restart Time: Monday, 10-Jun-2024 02:10:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 minutes 53 seconds
Server load: 0.03 0.01 0.00
Total accesses: 18 - Total Traffic: 13 kB - Total Duration: 7037
CPU Usage: u.02 s.05 cu0 cs0 - .03% CPU load
.0773 requests/sec - 57 B/second - 739 B/request - 390.944 ms/request
7 requests currently being processed, 0 workers gracefully restarting, 4 idle workers
KKKKKK_W___.....................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0585211/6/6K
0.022000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

1-0585221/3/3K
0.003031440.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

2-0585231/2/2K
0.002010.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

3-0585241/2/2K
0.001016670.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

4-0585251/3/3K
0.000022221.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

5-0585701/1/1K
0.000000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

7-0585730/1/1W
0.000000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-10 02:13

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec5298f859

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Saturday, 08-Jun-2024 03:33:34 UTC
Restart Time: Saturday, 08-Jun-2024 03:30:08 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 minutes 25 seconds
Server load: 0.00 0.00 0.00
Total accesses: 7 - Total Traffic: 9 kB - Total Duration: 10
CPU Usage: u.01 s.03 cu0 cs0 - .0195% CPU load
.0341 requests/sec - 44 B/second - 1316 B/request - 1.42857 ms/request
7 requests currently being processed, 0 workers gracefully restarting, 5 idle workers
K_KKKKWK____....................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-03526121/1/1K
0.004010.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

1-03526130/1/1_
0.000240.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-03526141/1/1K
0.004000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

3-03526151/1/1K
0.003000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

4-03526161/1/1K
0.003000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

5-03526771/1/1K
0.001000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

6-03526790/0/0W
0.000000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1

7-03526801/1/1K
0.000001.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-08 03:33

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ecb1e1c99a

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Thursday, 06-Jun-2024 01:18:34 UTC
Restart Time: Thursday, 06-Jun-2024 01:15:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 minutes 26 seconds
Server load: 0.00 0.00 0.00
Total accesses: 7 - Total Traffic: 9 kB - Total Duration: 7
CPU Usage: u.02 s.03 cu0 cs0 - .0243% CPU load
.034 requests/sec - 44 B/second - 1316 B/request - 1 ms/request
8 requests currently being processed, 0 workers gracefully restarting, 4 idle workers
KKKKKKWK____....................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-01609951/1/1K
0.003123.40.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-01609961/1/1K
0.002000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

2-01609971/1/1K
0.001000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

3-01609981/1/1K
0.002000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

4-01609991/1/1K
0.001010.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

5-01611211/1/1K
0.000000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

6-01611230/0/0W
0.000000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1

7-01611241/1/1K
0.000001.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-06 01:18

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ece872ce0f

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Tuesday, 04-Jun-2024 18:01:50 UTC
Restart Time: Tuesday, 04-Jun-2024 18:00:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 minute 42 seconds
Server load: 0.00 0.00 0.00
Total accesses: 7 - Total Traffic: 9 kB - Total Duration: 6
CPU Usage: u0 s.03 cu0 cs0 - .0294% CPU load
.0686 requests/sec - 90 B/second - 1316 B/request - .857143 ms/request
7 requests currently being processed, 0 workers gracefully restarting, 1 idle workers
KKWKKK_K........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0834571/1/1K
0.001013.40.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-0834581/1/1K
0.000000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

2-0834591/1/1W
0.000000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1

3-0834601/1/1K
0.001000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

4-0834611/1/1K
0.000000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

5-0834921/1/1K
0.000000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

7-0834961/1/1K
0.000011.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-04 18:01

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec443d47db

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Saturday, 01-Jun-2024 12:21:21 UTC
Restart Time: Saturday, 01-Jun-2024 12:20:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 minute 13 seconds
Server load: 0.00 0.00 0.00
Total accesses: 6 - Total Traffic: 5 kB - Total Duration: 5
CPU Usage: u.01 s.02 cu0 cs0 - .0411% CPU load
.0822 requests/sec - 70 B/second - 853 B/request - .833333 ms/request
7 requests currently being processed, 0 workers gracefully restarting, 5 idle workers
KKKKKK_W____....................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0231181/1/1K
0.002000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

1-0231191/1/1K
0.003010.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

2-0231201/1/1K
0.002000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

3-0231211/1/1K
0.001000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

4-0231221/1/1K
0.001000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

5-0231431/1/1K
0.000001.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

7-0231460/0/0W
0.000000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-02 18:38

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec6f77929b

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Thursday, 30-May-2024 11:36:20 UTC
Restart Time: Thursday, 30-May-2024 11:35:08 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 minute 12 seconds
Server load: 0.00 0.00 0.00
Total accesses: 7 - Total Traffic: 8 kB - Total Duration: 6
CPU Usage: u.02 s.02 cu0 cs0 - .0556% CPU load
.0972 requests/sec - 113 B/second - 1170 B/request - .857143 ms/request
8 requests currently being processed, 0 workers gracefully restarting, 0 idle workers
KKKKKKKSW.......................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-01402221/1/1K
0.010001.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-01402231/1/1K
0.001000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

2-01402241/1/1K
0.001003.40.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

3-01402251/1/1K
0.001010.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

4-01402261/1/1K
0.001000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

5-01402501/1/1K
0.001000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

6-01402521/1/1K
0.001110.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

7-01402540/0/0S
0.001717068980000.00.000.00


8-01402550/0/0W
0.000000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-30 11:36

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec05ac1447

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Saturday, 25-May-2024 12:14:33 UTC
Restart Time: Saturday, 25-May-2024 12:10:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 minutes 25 seconds
Server load: 0.00 0.00 0.00
Total accesses: 6 - Total Traffic: 5 kB - Total Duration: 8
CPU Usage: u.03 s.02 cu0 cs0 - .0189% CPU load
.0226 requests/sec - 19 B/second - 853 B/request - 1.33333 ms/request
7 requests currently being processed, 0 workers gracefully restarting, 5 idle workers
KKKKKKW_____....................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-05128931/1/1K
0.003230.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

1-05128941/1/1K
0.002010.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

2-05128951/1/1K
0.002000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

3-05128961/1/1K
0.001000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

4-05128971/1/1K
0.001000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

5-05129691/1/1K
0.000001.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

6-05129710/0/0W
0.000000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-29 14:50

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec2d933be4

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Friday, 24-May-2024 10:32:50 UTC
Restart Time: Friday, 24-May-2024 10:30:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  2 minutes 43 seconds
Server load: 0.00 0.00 0.00
Total accesses: 7 - Total Traffic: 8 kB - Total Duration: 7
CPU Usage: u.02 s.03 cu0 cs0 - .0307% CPU load
.0429 requests/sec - 50 B/second - 1170 B/request - 1 ms/request
7 requests currently being processed, 0 workers gracefully restarting, 0 idle workers
KKKKKKSW........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-04644481/1/1K
0.001010.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

1-04644491/1/1K
0.000010.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

2-04644501/1/1K
0.001000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

3-04644511/1/1K
0.001123.40.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

4-04644521/1/1K
0.001000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

5-04644932/2/2K
0.000011.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

6-04644970/0/0S
0.001716546770000.00.000.00


7-04644980/0/0W
0.000000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-24 10:32

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec5a1631ad

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Thursday, 23-May-2024 18:23:56 UTC
Restart Time: Thursday, 23-May-2024 18:20:08 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 minutes 47 seconds
Server load: 0.00 0.00 0.00
Total accesses: 13 - Total Traffic: 10 kB - Total Duration: 8
CPU Usage: u.02 s.05 cu0 cs0 - .0308% CPU load
.0573 requests/sec - 45 B/second - 787 B/request - .615385 ms/request
8 requests currently being processed, 0 workers gracefully restarting, 5 idle workers
KKKKKKK_W____...................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-04320651/7/7K
0.010000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

1-04320661/1/1K
0.003123.40.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-04320671/1/1K
0.002010.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

3-04320681/1/1K
0.002010.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

4-04320691/1/1K
0.001000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

5-04321121/1/1K
0.001010.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

6-04321291/1/1K
0.000001.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

8-04321320/0/0W
0.000000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-23 18:23

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ecd9947a15

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Friday, 17-May-2024 01:24:45 UTC
Restart Time: Friday, 17-May-2024 01:20:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 minutes 37 seconds
Server load: 0.00 0.00 0.00
Total accesses: 11 - Total Traffic: 15 kB - Total Duration: 55
CPU Usage: u.03 s.01 cu0 cs0 - .0144% CPU load
.0397 requests/sec - 55 B/second - 1396 B/request - 5 ms/request
5 requests currently being processed, 0 workers gracefully restarting, 4 idle workers
K_KK__KW_.......................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0520791/2/2K
0.002030.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

1-0520800/1/1_
0.005010.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-0520812/3/3K
0.013011.80.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

3-0520821/2/2K
0.001011.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

4-0520830/1/1_
0.005010.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

5-0521210/1/1_
0.00122450.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

6-0521541/1/1K
0.004000.90.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

7-0521560/0/0W
0.000000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-17 01:24

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: sv.zhke943ac.us.kg
Port: 80
URL: http://sv.zhke943ac.us.kg

First seen 2024-09-18 13:41
Last seen 2024-11-18 14:26
Open for 61 days

Fingerprint: b18befd9dd6536aa30550de50313a6d851ffcd24a470f229c385c88916c0a4a2

{
    "clientTcpRtt": 1,
    "longitude": "-121.79460",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "San Jose",
    "timezone": "America/Los_Angeles",
    "colo": "SJC",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "95119",
    "region": "California",
    "latitude": "37.23790",
    "requestPriority": "",
    "regionCode": "CA",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "807",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": ""
}

Found on 2024-11-18 14:26

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e34454804b15babaef

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-16 14:09

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e08110c3e6aadba58

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-14 12:30

Fingerprint: b18befd9dd6536aa30550de59bef86a0eaddcf1a69341cdb4007d5b34b6f7a02

{
    "clientTcpRtt": 10,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "CDG",
    "country": "NL"
}

Found on 2024-11-10 14:56

Fingerprint: b18befd9dd6536aa30550de50313a6d81d1544c3794af1004edf0b5879deaa59

{
    "clientTcpRtt": 1,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": ""
}

Found on 2024-11-08 17:36

Fingerprint: b18befd9dd6536aa30550de50613ab81c4d7262abbf5b58b6bd9b303821db6ee

{
    "clientTcpRtt": 2,
    "longitude": "103.78360",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "AS",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "SG",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "verifiedBotCategory": "",
    "tlsVersion": "",
    "city": "Singapore",
    "timezone": "Asia/Singapore",
    "colo": "SIN",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "13",
    "latitude": "1.29820",
    "requestPriority": "",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": ""
}

Found on 2024-10-18 13:25

Fingerprint: b18befd9dd6536aa30550de50313a6d86b7e92acdad1c2816e36a9f1fafb8b9b

{
    "clientTcpRtt": 1,
    "longitude": "-79.38920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "CA",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Toronto",
    "timezone": "America/Toronto",
    "colo": "YYZ",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "M5J",
    "region": "Ontario",
    "latitude": "43.62270",
    "requestPriority": "",
    "regionCode": "ON",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": ""
}

Found on 2024-10-06 04:27

Fingerprint: b18befd9dd6536aa30550de59bef86a01bca28bc23f29531e5e93181b40b189a

{
    "clientTcpRtt": 10,
    "longitude": "-121.79460",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "San Jose",
    "timezone": "America/Los_Angeles",
    "colo": "SJC",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "95119",
    "region": "California",
    "latitude": "37.23790",
    "requestPriority": "",
    "regionCode": "CA",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "807",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": ""
}

Found on 2024-10-04 22:12

Fingerprint: b18befd9dd6536aa30550de50513aa364b8758e8907bbbb5deca7a75f1aeb031

{
    "clientTcpRtt": 3,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-30 15:06

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: ygvl.gyty.us.kg
Port: 80
URL: http://ygvl.gyty.us.kg

First seen 2024-09-07 07:29
Last seen 2024-11-17 14:11
Open for 71 days

Fingerprint: b18befd9dd6536aa30550de50413a8abd5cc41267633c86f97f503171ad050fd

{
    "clientTcpRtt": 0,
    "longitude": "8.62950",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "Hesse",
    "latitude": "50.10490",
    "postalCode": "60326",
    "regionCode": "HE",
    "asOrganization": "G-Core Labs SA",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-11-17 14:11

Fingerprint: b18befd9dd6536aa30550de50313a6d815da8ac1f37c263ac84124fada8fce40

{
    "clientTcpRtt": 1,
    "longitude": "8.68420",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "Hesse",
    "latitude": "50.11870",
    "postalCode": "60313",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-11-12 07:57

Fingerprint: b18befd9dd6536aa30550de52cf726b8d3ab3600655b657d8a63e92dafc4ecac

{
    "clientTcpRtt": 21,
    "longitude": "8.68270",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "Hesse",
    "latitude": "50.11840",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "CDG",
    "country": "DE"
}

Found on 2024-11-10 01:55

Fingerprint: b18befd9dd6536aa30550de5a4ef949bfc4a25b93770d182e19a39b2143e8839

{
    "clientTcpRtt": 19,
    "longitude": "8.68270",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "Hesse",
    "latitude": "50.11840",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "CDG",
    "country": "DE"
}

Found on 2024-11-01 01:51

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e34454804b0c8c7660

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "Digital Ocean",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-16 12:17

Fingerprint: b18befd9dd6536aa30550de50313a6d8a399d2e8555a99b59464b875ecc03bb6

{
    "clientTcpRtt": 1,
    "longitude": "103.68180",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "AS",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "SG",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "verifiedBotCategory": "",
    "tlsVersion": "",
    "city": "Singapore",
    "timezone": "Asia/Singapore",
    "colo": "SIN",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "62",
    "latitude": "1.30780",
    "requestPriority": "",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": ""
}

Found on 2024-10-14 09:17

Fingerprint: b18befd9dd6536aa30550de50313a6d8698f36555a38bfa62628f1668f55a54b

{
    "clientTcpRtt": 1,
    "longitude": "8.68370",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "Hesse",
    "latitude": "50.11690",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-09-20 19:24

Fingerprint: b18befd9dd6536aa30550de50613ab81aa8fde659788b6963598523695c1063b

{
    "clientTcpRtt": 2,
    "longitude": "-79.36230",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "NA",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "CA",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Toronto",
    "timezone": "America/Toronto",
    "colo": "YYZ",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "M5A",
    "region": "Ontario",
    "latitude": "43.65470",
    "requestPriority": "",
    "regionCode": "ON",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": ""
}

Found on 2024-09-16 16:09

Fingerprint: b18befd9dd6536aa30550de50613ab81e9d909fb35a76bc8fd563a508bcc978d

{
    "clientTcpRtt": 2,
    "longitude": "-0.67180",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "GB",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Slough",
    "timezone": "Europe/London",
    "colo": "LHR",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "SL1",
    "region": "England",
    "latitude": "51.53680",
    "requestPriority": "",
    "regionCode": "ENG",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": ""
}

Found on 2024-09-11 04:17

Fingerprint: b18befd9dd6536aa30550de50613ab818acd5c32f3026ae34bd2784b98b634e8

{
    "clientTcpRtt": 2,
    "longitude": "-74.45920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "NA",
    "asn": 63949,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Cedar Knolls",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07927",
    "region": "New Jersey",
    "latitude": "40.82290",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "Akamai Connected Cloud",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": ""
}

Found on 2024-09-08 22:51

Fingerprint: b18befd9dd6536aa30550de50313a6d83eeff30667f41b8fbd7f0b77a5ab26ee

{
    "clientTcpRtt": 1,
    "longitude": "-79.36230",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "NA",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "CA",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Toronto",
    "timezone": "America/Toronto",
    "colo": "YYZ",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "M5A",
    "region": "Ontario",
    "latitude": "43.65470",
    "requestPriority": "",
    "regionCode": "ON",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": ""
}

Found on 2024-09-07 07:29

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: gwork.mbahmaee.ir
Port: 443
URL: https://gwork.mbahmaee.ir

First seen 2024-10-13 15:09
Last seen 2024-11-10 11:38
Open for 27 days

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9458457b8

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "9c216e6815051e8b7567796ebf7082f05552d5d6b38e0e9724ac077357b8aeb3633253f10a7b8e0964585e52728a10ca",
        "clientHandshake": "6a3bea6a4b59fb4678e0c4ba55f073b69423a484237dc65a6ab081b9dd8b69e1b5d9f50a2908dbe397ee5d4553ee724f",
        "serverHandshake": "67f7d6ef9c3f51c5c79058fc852ef0e257fd984ee09eff591bdfaadb55fff7ed6335efc085f586d838e10763abaf2410",
        "serverFinished": "7d9725b390a1ee09c88703a6b772eaf8b226dd3577ff97ccaf452e1307d447eedb1447119c548683b26627e6f738932c"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "336",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "WSpnlXaRunqK0pvqnWCPcqbkNWXDlZRDCrIgZYkAaHI=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-10 11:38

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad972730628

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "41224fd42ca76502532e34d797fd7564b2e9fce050721a2ca46feec0707a25c3d587535a7c741f88a9cfa4d4065a8c0f",
        "clientHandshake": "a55942ae10d61611087dafed0f4c2ad7dbdfe967776a2942e769de48012e66bf13ee5a5be23318b5afa16e94393a1b44",
        "serverHandshake": "35dafc8a2d06c13745f891ec184731dfa46dc5ee34f2d0e245d54407a4e8b904bcdfe6ca8d71d847400cedd80ae596a9",
        "serverFinished": "1f5c7c37c1e826472bd0d70ca4d7632ee6d7c71ffe262d83fc834007d713a158d64da5c19f79979111a6e803e582c8ab"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "336",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "qgHD3mPXxxV01Ssr1SV9Fjl6mzzi0h62kYcioHGgx5U=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-08 05:22

Fingerprint: b18befd9dd6536aa30550de50513aa36048d1ef9f8d7474255a3c2d82dabc88c

{
    "clientTcpRtt": 3,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "efc929129eb43a25db60ca6d8386d6faf76f73196f3927f49790d00cf0de8d4b39258d470bd8ef221dd7efd4732d84df",
        "clientHandshake": "66d7fc36e5a837e983f05ce7504371c5b3331dcd79a7c4e863c5f6cde8761c55547a99ca9fd99e7801020fb15ab1b576",
        "serverHandshake": "9861ca36932a5d68c350cbace55b9d7a3fee59063fe70ae13a2f0811f6e539c9e92c13d334253b2f5a6dc64e230508e0",
        "serverFinished": "3d300875800f7fb3cf6b3217b780a281794d7d8da12243b7e344c0d0d21269926aa9d0ea0deccd802ba6ece9a476573a"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "336",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "fdv/w2NCiBkDQCUX9mKuN8qHL/Lpm++tyiEvrMcKHXU="
}

Found on 2024-11-05 01:27

Fingerprint: b18befd9dd6536aa30550de50613ab817e6134ec6611bd4114eb7fdb01a95bb2

{
    "clientTcpRtt": 2,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "9b91a7566b111139e05403c708ceb8fa7e0813d7662d4480417cd8c6c2879f08087b57581cf0721d2ee2c6148b90a75a",
        "clientHandshake": "8e194142e71257d37dd7bfb4bfbf749782a89231e8a64b042e5c47a612f0aceaf488568616ca64e3dc52c389ff83ce72",
        "serverHandshake": "735ede24622c31b631fe90c8a72d29db0f81159ce23a46e5fd979132ddbac36eda960688779bd5d2b708ef0ca3bde300",
        "serverFinished": "745125f51402c13e27a8e4edfcca4db849024abb15f201edce70c13583a5c85eb5689bd9cd3bf2beb810245cfa9d897c"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "336",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "hxmzCrvoLG1OikSW3RPen/BFooLOY1zD/3wjHGajjz8="
}

Found on 2024-11-02 15:10

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad90da5d683

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "ab3ff25e6dbac8499b273ea228ae8dd8dde40e88bc42ca9e9b26d1b212de035dd13a0c89a7696474dad8ee68ce70fef1",
        "clientHandshake": "8347b661e26a7ac6cae0f3f97eee0f8f95513f3a7cf016ac930ef5978cdfef3338299731714628e7c0d12d162eddff28",
        "serverHandshake": "9325c23918127ba665d10b55692b5840d2763734ce26a0ab79eb09c078e6105ab5747519816f6faa02339acaceba1a62",
        "serverFinished": "7dc1ec375160932f1fe850defb0e85d382f86d4f1f486de676d1f4b91ef1cbf52fc0da40dfe66f7e73c65783e34209ad"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "336",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "hcGBigzYid0sGsMgQFN4Vsc0Z856F1/CX6gVciG/LM8=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-11-02 00:09

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9971c41f1

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "d2e1015b1e1ed4a484f05fc58aab9c01b6a2c2726c2586d2beeb2da18c9a3884931bf7df29ea3559a3fc3f7193ceb303",
        "clientHandshake": "1b080cc8a671b6936a93e8b1426d4429912297322e6756c5c558f35fde39194caa3c1395f4abfb0df961ee7378d2fd05",
        "serverHandshake": "a9c40aa8a2bd5860b90d6fc0357ef1270296b7f25496495fed73b1c65e160332214622bc2447c1ff9b1449253b34ef68",
        "serverFinished": "10ec72d4c67d76c2bacc86b571ae0edaf5b9fd229cf6a3e7e2b2697cc988fb849f0326c890906a62997e98a764810ab0"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "336",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "6F6HMT9alzqHRNI7dRjz1UlfTHwja/pzr75WkeGefJA=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-31 01:52

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad90f0148f1

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "4abbeb276a5ca8f9ff39d4a7af75169efeac82048179061b6e4271e63013193aa5d64d1060f960c08def6b6c8f1c7a33",
        "clientHandshake": "a1628a79871ab89c6f8fed241669f5f664424a84718d30fb6911a143434661297484277673c31ebf55817782fc4a3613",
        "serverHandshake": "c32a7452f6139bf348ac904a2badea28904dcd8982a713ed7794ff3f4ba4d05a86327ef11408c099a08398d3a122ad52",
        "serverFinished": "8b90e6610ddbe26c0cee22bb95216c38fe561539cc816c8382c1ab3743f67112893dc5a4ed4711d3f5ae9d39ad5f6497"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "336",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "Xmc1j7XSOJLU6jL/dGqZT3OYKUuctJI7t5HJVz2PL2c=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-26 13:24

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9c173db8f

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "5f996bb4eb67940ec1b97da3f0a5f9be97b516f4e7967f191e97b08ee593713038be56cc933414294bfee3ee8d0ecd01",
        "clientHandshake": "72e5c2f3f17eff86ba67d3072af2a871cdae418089347075b3a11f117cd550c47f1fe693ee95a994ce1976c3e1afe0b2",
        "serverHandshake": "7c8607e4a3935c450bbc67f2f5a8b22d4c6bfe6505119dc7eeec8deb7f60d06f5f57ac28f564780467d57861a5b4b6cf",
        "serverFinished": "b74f10740c12d31e3d25d47d6e0f4704aebed14a984d8a226aea9af9040130dbde41d1a1302de17a4803cddc02b214d2"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "336",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "5qGnR1oVp3BBA2kap50bysYwSPqv0tKvcM+v7G1nsiE=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-24 16:54

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad9cb753b14

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "013f533d812e5ab82051ccbd410dafe6dc4212b121b308b18176d0f42de659d56eb73c26a8f9d6b0203bb9bf9e289a64",
        "clientHandshake": "84d0ce88fbf49550b444cd6589d56c14792833b002f61a06a9cf094e1d69062d1e15ce5154198cdb87ab7da86b27f1b4",
        "serverHandshake": "d61e402576792c3f43c02a61632e45bc776b50fccead7cefdb986ab88365ec018f36b75e6dc3fd53cedb8a5278c552fc",
        "serverFinished": "073113bc4204f9c9f722ed6b2f4304202c2128d883bca0eba2de6a53110dc2511577811c180df7473982d542c0e3792e"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "336",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "Ih79xdgsY8amBaTtDH/MKCVB1EYDhhudKq+uZR8GhyI=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-22 20:51

Fingerprint: b18befd9dd6536aa30550de50313a6d86b7e92acdad1c281097f6e1b16eba95e

{
    "clientTcpRtt": 1,
    "longitude": "-79.38920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "CA",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "5ab5e8df896ac105ee75a98d9bd5205e3706e41aec959d0ab757b9836a47e7b2109a366e5a846b91cd10f22940e211c3",
        "clientHandshake": "8116cd99538f5c79dd0f5639f0dc5c6c266a90ecf421b86d73e23ede6e33ff6a78522b67cbb16d01bdf7de470d78408a",
        "serverHandshake": "1c750502b99d8f82df504da2d6aaf3b6a5f4f586c44bb9f94a86741e9747d160791cd607b85151ac32a5917194b02281",
        "serverFinished": "fb9e7641e11839ee25eb0bc5622329bb0e2d0ddb2bf324ed394c0acdea3b767f0effff892332a999b790f44eb465ec4b"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Toronto",
    "timezone": "America/Toronto",
    "colo": "YYZ",
    "tlsClientHelloLength": "336",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "M5J",
    "region": "Ontario",
    "latitude": "43.62270",
    "requestPriority": "",
    "regionCode": "ON",
    "asOrganization": "G-Core Labs SA",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "c3Kd8mtae2c64U2qHjBq2UnfBVf3yjBEHrElKKWvzZc="
}

Found on 2024-10-20 23:11

Fingerprint: b18befd9dd6536aa30550de50513aa36048d1ef9f8d7474255a3c2d89e4396ca

{
    "clientTcpRtt": 3,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "2e3aa8d43a8f3939056c26f82ba534c53e995a469350f7381afa6ddcafe9b9d8b75e590cf77567a1fdad4c07ef1c0e33",
        "clientHandshake": "4cc7ed86795be454d8bd75b1ef35065f7d44d70c8856486ccbe839d8d04ef0dc75e9ee8ed25279abe9fe020dcbe02ccd",
        "serverHandshake": "61e8fb964faca6f760607fe9ef693526216fcaa7c915675018b95afff85ba1b34fd82274ce1b3a61ba82acf0766109c5",
        "serverFinished": "1e4d490ae0cbb54e4392091b7fddb0f72ee501d3a8063037c8a906c19c0d295fc53a6e2961bda68c50275ac6175825ea"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "336",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "ClX87EZXDrKAm7mqocg/HNVKUrVTRUZADsxsMcb1MYU="
}

Found on 2024-10-19 00:48

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e30868cad949b8a966

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "803c82943a34128c964a8fbd6980c111245d080cc625b852f8b116ad92497d8aa119b86e45643685d93a333a3f7c8bd9",
        "clientHandshake": "35f9c85efe45df8c814bfbf8e9edc21d24c3dd492d559bf529638626a5bcf08b2e6846ca1accec31be8b90b27cebd4ed",
        "serverHandshake": "39ef51c2b2962a55351551b53ed335d207269334a323ceed8c740df175faff411ba6376d78206d8498e270888cb67d28",
        "serverFinished": "1710cbdf037f78be2c61b07ee5fbf6937e4c0d0a321b87a031c6f989dc70975817007f9d9c66c17419ec31b177265706"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "336",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "HT8MdmKISyPASMebH83zDLNc/jbczxDKdh9kLOk4C7I=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-17 04:14

Fingerprint: b18befd9dd6536aa30550de50613ab81b5b5b98002d843fd8391294f9d6141ee

{
    "clientTcpRtt": 2,
    "longitude": "-84.38710",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "a433449031edbf7e378c7b08917ecc6262fd3bb1b50b4d58568db4259507eacf2101c7130193e03b20057d7022d5fbf7",
        "clientHandshake": "584f3a24d6d420e8f51dc207e74594eb2fbc8a4d87aa201ea1eed437293006255057caa6e221b8471f11f6c03cf359cd",
        "serverHandshake": "c25f91c11f458223ead1166c9eafe67e0774297be3abee8f2f8bdbe8e743f2e7b799da7278291ace28ddaec7f91139e5",
        "serverFinished": "9617e5a1557d3600386a7f42baf4f702f95d3a16694b464985823207b1b6c9ace0cf23a96e9c582bd2249695a1c0b0cb"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Atlanta",
    "timezone": "America/New_York",
    "colo": "ATL",
    "tlsClientHelloLength": "336",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "30303",
    "region": "Georgia",
    "latitude": "33.74850",
    "requestPriority": "",
    "regionCode": "GA",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "524",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "tlsClientRandom": "M4aQC0obUeYIkxJC6Ns4aone6gkIIyW2RDfPckCx02w="
}

Found on 2024-10-14 23:40

Fingerprint: b18befd9dd6536aa30550de50213a54da7be1939dd2c8002ef352a9862bbca60

{
    "clientTcpRtt": 6,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "de5de60f307295bce826d4a232739eefe4bce6d54b7479f4f12e2281d74b7d09c97382687672ba869ed79c7247f7adda",
        "clientHandshake": "c3f659844b7dfc29c97d8dde1ea5b97ac6b7e60f32cadce8500f7846f0b6fec422bed106b48f3b3587773a0c1977e7c7",
        "serverHandshake": "b31c35713e1095a8329d1d17998a44f4cd020e4fc27ce4cb5199d6b6dca3bf6616a4208aeb75cb837423f98f4ca38114",
        "serverFinished": "bfef18296ffb95f37c48e72269dfe918552a430109bde4e32f22d82829d2e4405e3a0d57dcc913c713f669a395e812d2"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "336",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "/fF0dnZEhbIiWHWihqxq2ToFiRomx1lzRXAsx0+brEE=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-13 15:09

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: gcore.zxo.biz.id
Port: 80
URL: http://gcore.zxo.biz.id

First seen 2024-10-12 07:18

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e08110c3e6aadba58

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-12 07:18

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: gcore.zxo.biz.id
Port: 443
URL: https://gcore.zxo.biz.id

First seen 2024-10-12 07:18

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e08110c3e6aadba58

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-12 07:18

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: bpip.net
Port: 443
URL: https://bpip.net

First seen 2024-09-04 07:43
Last seen 2024-10-06 09:00
Open for 32 days

Severity: medium
Fingerprint: 5f32cf5d6962f09cdecb5675decb56752c791892b7d92cb6bc6fab87c769cfae

Found 81 files trough .DS_Store spidering:

/apk
/apk/BPIP1000000.apk
/apk/BPIP1000001.apk
/apk/BPIP1000001.wgt
/apk/BPIP1000002.apk
/apk/BPIP1000002.wgt
/index.html
/static
/static/BG.png
/static/floor
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/index/11.jpeg
/static/index/avater.jpeg
/static/index/customer.png
/static/index/head.png
/static/index/hot.png
/static/index/icon1.png
/static/index/icon2.png
/static/index/icon3.png
/static/index/icon4.png
/static/index/loading.png
/static/index/notice.png
/static/index/rental-head.png
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/loading.gif
/static/mine
/static/mine/about.png
/static/mine/avatar.jpg
/static/mine/avatar.png
/static/mine/avatar1.png
/static/mine/avatarleft.png
/static/mine/bank.png
/static/mine/bg.png
/static/mine/bgss.png
/static/mine/cart.png
/static/mine/check.png
/static/mine/down.png
/static/mine/dwon.png
/static/mine/exchangeorder.png
/static/mine/icon1.png
/static/mine/icon2.png
/static/mine/icon3.png
/static/mine/icon4.png
/static/mine/icon5.png
/static/mine/icon6.png
/static/mine/icon7.png
/static/mine/icon8.png
/static/mine/info.png
/static/mine/language.png
/static/mine/logout.png
/static/mine/me-bg.png
/static/mine/me-bg1.png
/static/mine/mine.png
/static/mine/notice.png
/static/mine/phone.png
/static/mine/pwd.png
/static/mine/pwdsafe.png
/static/mine/record.png
/static/mine/revise.png
/static/mine/select.png
/static/mine/service.png
/static/mine/te.png
/static/mine/uppwd.png
/static/mine/version.png
/static/mine/wa.png
/static/mine/walletcard.png
/static/mine/yellow.png
/static/public
/static/shellslogo.png

Found on 2024-10-06 09:00

Severity: medium
Fingerprint: 5f32cf5d6962f09c778888b4778888b41a4b01b34fd7471b152f0edeeec08183

Found 40 files trough .DS_Store spidering:

/apk
/apk/BPIP1000000.apk
/apk/BPIP1000001.apk
/apk/BPIP1000001.wgt
/apk/BPIP1000002.apk
/apk/BPIP1000002.wgt
/index.html
/static
/static/BG.png
/static/floor
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/index/11.jpeg
/static/index/avater.jpeg
/static/index/customer.png
/static/index/head.png
/static/index/hot.png
/static/index/icon1.png
/static/index/icon2.png
/static/index/icon3.png
/static/index/icon4.png
/static/index/loading.png
/static/index/notice.png
/static/index/rental-head.png
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/loading.gif
/static/mine
/static/public
/static/shellslogo.png

Found on 2024-09-10 20:52

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: out.daffacell.me
Port: 443
URL: https://out.daffacell.me

First seen 2024-09-06 22:12
Last seen 2024-10-04 20:40
Open for 27 days

Fingerprint: b18befd9dd6536aa30550de50513aa364b8758e8907bbbb5deca7a75f1aeb031

{
    "clientTcpRtt": 3,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-04 20:40

Fingerprint: b18befd9dd6536aa30550de50313a6d8698f36555a38bfa629553c8c37741f9f

{
    "clientTcpRtt": 1,
    "longitude": "8.68370",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "ea18cca70fb8bed534e96af976705953f6d8b8e4a50da623a0807bffe21264c4",
        "clientHandshake": "fbc2ad6127c9c854aa703f8945bc55e75ea45a7065345823b10bddcad3b25465",
        "serverHandshake": "a0ebff2ff2f3705f8994cf4bf9d91b61ce9a026b1df5abf355f2db747ba04e45",
        "serverFinished": "2638bfca76c8fee577ef24e45b72b5db0e4b334e28ca3b473eb3fc88300f3ba4"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "488",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "/13U0PtFvrUrHDVSW7O1P6Jwizer38HNjYXGaT8N6DY=",
    "region": "Hesse",
    "latitude": "50.11690",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-10-04 04:58

Fingerprint: b18befd9dd6536aa30550de50513aa3676a95b785c092b25b469605750b12355

{
    "clientTcpRtt": 3,
    "longitude": "-0.67180",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "GB",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "afd952105fd16428783110e2e04cf2ca196b65f799e7a16cb71e3de668e731a8",
        "clientHandshake": "0de67720c2aaefd6a91a68c5b90af33cdf9576f800f75321719275d9264543c8",
        "serverHandshake": "c33255b5842feb171df3c12ce9873c207a43f16106347ec0a9a53e08468abf73",
        "serverFinished": "0ed32d05f27afd434f22f6cb42f4f752d064754e635698d61079d741330c39ec"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Slough",
    "timezone": "Europe/London",
    "colo": "LHR",
    "tlsClientHelloLength": "488",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "SL1",
    "region": "England",
    "latitude": "51.53680",
    "requestPriority": "",
    "regionCode": "ENG",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "yXoIk6lytkR/YDItpZnVgQw3Gqp5K+OzHCr8ov5GJek="
}

Found on 2024-10-02 19:24

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e38775b5f17bb27154

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "5846ab3b4afb24f1196614312d875a87b3ff1db70bb08965c6536f2a781df47f",
        "clientHandshake": "edb4df7102a291d8e376bc16eb344d8fa01d6b310080eb882100e2cafd2c6f75",
        "serverHandshake": "f672ffea6e8cc4d0d2bc4fa92a53bf78afb9ccee5a466d6fc6168ce737ff57bd",
        "serverFinished": "407b363d157a33501cd2de5bed27342c1b61380e3e0632bf5b5e2a800f79a279"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "488",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "/TaM8I8AzcgAH8rzj9tbn4tZ6bEeqFpxIyQDB0gGxqU=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "Digital Ocean",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-30 10:32

Fingerprint: b18befd9dd6536aa30550de50313a6d83eeff30667f41b8f599a007d3b63790e

{
    "clientTcpRtt": 1,
    "longitude": "-79.36230",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "NA",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "CA",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "5c6e4fb2f83fdf84687f9b04763e9f49286a7bf7f3550a0a92887ed22df5caad",
        "clientHandshake": "ca1cdfac796112c99717b5605beedaff9d2000b38da221d2fa9558f964bddda3",
        "serverHandshake": "df43eaeca11727bbee711f817c663c9f3664a056e01fa8fb85bb83eab6db5f40",
        "serverFinished": "521f0c90113c61c2d20e5ad7caadfaa2547d4789a7b859333f319fb123ce343c"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Toronto",
    "timezone": "America/Toronto",
    "colo": "YYZ",
    "tlsClientHelloLength": "488",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "M5A",
    "region": "Ontario",
    "latitude": "43.65470",
    "requestPriority": "",
    "regionCode": "ON",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "dIe4FgmJ/DbjokNRi6RI1snUuTe3DUWI+lYCufMEl+E="
}

Found on 2024-09-28 15:33

Fingerprint: b18befd9dd6536aa30550de50313a6d8b3a6b275d49ca986418a7fec252f2c0b

{
    "clientTcpRtt": 1,
    "longitude": "-74.14030",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "NA",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "cd2c5d4f8623e7ba6ebfe0366d7f65c1e124ea33c54559938d9ba25a39d1614b",
        "clientHandshake": "1dfe201c127d17f495c868f595aa98ea15d3122463a8b497f34190591878e513",
        "serverHandshake": "5c64b0c87179e1b675d9dd5c898887f43480d597e06c95223ae8ad20fa804096",
        "serverFinished": "283686c2e50a33cf1c89f268a4bdde871c418a533c3680831291878b9a93de28"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Clifton",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "488",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07014",
    "region": "New Jersey",
    "latitude": "40.83640",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "Digital Ocean",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "yrgurcOhcAUxhp07n0TsYfNbTeg+XMx/poO2jJY6TUk="
}

Found on 2024-09-26 18:22

Fingerprint: b18befd9dd6536aa30550de50313a6d8eae4faca4f1884eb032458c94a62eeab

{
    "clientTcpRtt": 1,
    "longitude": "-74.02470",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "NA",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "1485e856ad1f6492876f1492e2a2b01e480469e27a023b18e110cac99628b9b4",
        "clientHandshake": "e5de5cdfd8c0e089ef908927f34b43ca128a24124b709e76fc4ca36c5b70f863",
        "serverHandshake": "a69ba36753777a1aac6808e949a650e3635484e94dd520b054a34d07d8d14c08",
        "serverFinished": "14abb99dbdec37cfd2580c39e17af2222f294691199e8fda836998739665abee"
    },
    "tlsVersion": "TLSv1.3",
    "city": "North Bergen",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "488",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07047",
    "region": "New Jersey",
    "latitude": "40.79300",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "Digital Ocean",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "RYwLN4fP3ukcjZiTN/y4lBrczz14ZDy5zTapxYN4nUI="
}

Found on 2024-09-24 19:37

Fingerprint: b18befd9dd6536aa30550de50313a6d8698f36555a38bfa629553c8c851cd792

{
    "clientTcpRtt": 1,
    "longitude": "8.68370",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "3afac0fb00734044079f058dcd89f30028249d754618d44b51db03a9d8beb382",
        "clientHandshake": "c9acbc335a8f0a795c1927c90f75a453f53b53c302ae95033353ddbd2700bbda",
        "serverHandshake": "3d1e369549e5697ae7a30616fcc900d20435bb826a404a7cbab808180e496cbe",
        "serverFinished": "b09ab47ce1fc67739d8f6a327993db0ce4bb1a0d84ef8df820e8a3d755e04ffb"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "488",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "c9sPrS7YgcewR5HgsKTwweFrKy0OP6tSzNWB6r5P+1I=",
    "region": "Hesse",
    "latitude": "50.11690",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-09-22 14:35

Fingerprint: b18befd9dd6536aa30550de50313a6d8698f36555a38bfa629553c8c670de9d3

{
    "clientTcpRtt": 1,
    "longitude": "8.68370",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "5336f65757035a53cee4951d5b7a1db6ec031d6bc077cd3516d9599eb317584a",
        "clientHandshake": "d7874467072e5a90ff57f65377bb9a67acda2ed54cf45833702e04fda6cd3783",
        "serverHandshake": "202e36917321b44e0c3f6150c58088b3b172898cb02791e36eea614350f0d241",
        "serverFinished": "7949b6f58d1a4ae4c992d34d8c5d432ccbf59de1451000ff57f4f657dc8f92de"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "488",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "bNI+t+7S+9hKXN+Ri1hXxOePFXrJWcb/PW7dda+yFMI=",
    "region": "Hesse",
    "latitude": "50.11690",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-09-20 16:04

Fingerprint: b18befd9dd6536aa30550de5abde56b707f40a8d3f97862e04aaeae41511ca53

{
    "clientTcpRtt": 86,
    "longitude": "-0.67180",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "GB",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "6e30e16f4133eaa2c212abb16ec98a332f2c2cd53633dd632f7907343035131a",
        "clientHandshake": "00ad53f0ae363e44c124e09cad6687891786971d5d369d3419bf88158ea6559c",
        "serverHandshake": "0ad1ead495fb7a7e85ef104e1ce6add08f33e78fc2ba2be7a00add8b454af12e",
        "serverFinished": "e724363a097b0c9eaf3e34ffe426d927fbc8db8a80c2f9574034858380a63967"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Slough",
    "timezone": "Europe/London",
    "colo": "EWR",
    "tlsClientHelloLength": "488",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "SL1",
    "region": "England",
    "latitude": "51.53680",
    "requestPriority": "",
    "regionCode": "ENG",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "6zUrFhawOnI52ih0ZE5/XCtUN1BjgQJ7mbDTw5Tuwcs="
}

Found on 2024-09-18 18:57

Fingerprint: b18befd9dd6536aa30550de50313a6d8b3a6b275d49ca986418a7fec994d9b27

{
    "clientTcpRtt": 1,
    "longitude": "-74.14030",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "NA",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "9d0978f278e652cc6b90fd72bb9b599015672119cff8b01145a6a4a2eb0bd6ef",
        "clientHandshake": "a791843c11432b988cb48d65222ac49cf321b0de63017ab4faedb030d92ad456",
        "serverHandshake": "fa196acbf118863a00d785c393c4d1ada37f1058e4c52bb9788f3648a0e2e5fb",
        "serverFinished": "939cdf77356134c167dd68ec67753469cfe29bc105a83224891f4ff169237aca"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Clifton",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "488",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07014",
    "region": "New Jersey",
    "latitude": "40.83640",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "Digital Ocean",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "gP2edE74G9u3efZfSNxhSwX965FEcSpq/CPNOtUhvZE="
}

Found on 2024-09-16 19:54

Fingerprint: b18befd9dd6536aa30550de50613ab81e9d909fb35a76bc8401906cafa75e14b

{
    "clientTcpRtt": 2,
    "longitude": "-0.67180",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "GB",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "f7cdbe262451167a103ced1c18eaa028a8ca8628cbb570312f7971039740e8f9",
        "clientHandshake": "301ecf1112aa6d31407dd46b65f119ed03031bea06082b6e35bba8ab17130fdc",
        "serverHandshake": "030e7bad6d1e3aad40042c47c5f1221dd84325dcc170d1bdbda0f77fe2559cc0",
        "serverFinished": "8b7f1c8d8491b044170e4596f8749e5728f72e5c10a497329140b5c1e4a899d2"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Slough",
    "timezone": "Europe/London",
    "colo": "LHR",
    "tlsClientHelloLength": "488",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "SL1",
    "region": "England",
    "latitude": "51.53680",
    "requestPriority": "",
    "regionCode": "ENG",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "jMaYGA/7oxMkxD/brdEIbPhEpoS0UFMJ53vmB42ZSRI="
}

Found on 2024-09-14 17:55

Fingerprint: b18befd9dd6536aa30550de50613ab81244e800a45dee4abb36add89f1468fab

{
    "clientTcpRtt": 2,
    "longitude": "-121.96200",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "NA",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "7f6de57e65bf16beb9ebfa7f926ec7ac445ec8cd772da6b98f363bc68474754b",
        "clientHandshake": "50853582edfb003259e63108090adac886b265295aa3a569fd5d7c2778466ea2",
        "serverHandshake": "20219b70eb72d172b7d75c979ed1b18fb074e0e693d5eee42681618e9ca2ce47",
        "serverFinished": "514b58766fd8dd48689e0d71607bca0d19a14aacf52843a94db860aeb50f2293"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Santa Clara",
    "timezone": "America/Los_Angeles",
    "colo": "SJC",
    "tlsClientHelloLength": "488",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "95054",
    "region": "California",
    "latitude": "37.39310",
    "requestPriority": "",
    "regionCode": "CA",
    "asOrganization": "Digital Ocean",
    "metroCode": "807",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "NQwfJ2+x3aurgvkS0YjwJ/0YZqEn0xy44XOfbC4uhCU="
}

Found on 2024-09-12 23:33

Fingerprint: b18befd9dd6536aa30550de599ef834a00c3c0fc41df6ff1ea7faad39ec94fe4

{
    "clientTcpRtt": 16,
    "longitude": "-79.36230",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "NA",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "CA",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "b87aa2ec0ecc70b1b68dfff2c647be260ea035399eb17e258151188ba11330f4",
        "clientHandshake": "c5b8bdfc10eadae6c0fbb29cc3da97f11225ba336bc73b7645cd3b2dde691233",
        "serverHandshake": "b8a41a5a7c858ea1461866dba7309e3f6de14e8dd35e21be89412a985051be09",
        "serverFinished": "1fad26cbc6bbb13942c0f57ae3a0a99f88d1c1041373eb2b448537a49970444f"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Toronto",
    "timezone": "America/Toronto",
    "colo": "YYZ",
    "tlsClientHelloLength": "488",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "M5A",
    "region": "Ontario",
    "latitude": "43.65470",
    "requestPriority": "",
    "regionCode": "ON",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "7m3DkGxzTKO5daV+cuxw/u3GpPX7fLOR86LOyPHtXyc="
}

Found on 2024-09-11 00:23

Fingerprint: b18befd9dd6536aa30550de50313a6d8698f36555a38bfa629553c8c3e5668c0

{
    "clientTcpRtt": 1,
    "longitude": "8.68370",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "7fa77338e78c58b5c715c00cc228940b1a2d33a89d546c8c5455a9ad1ea09e7f",
        "clientHandshake": "a17c7df5e06030a1bf0b617adf60476f6d444c8b7ad6e4eecc3b9b72bcfbfaff",
        "serverHandshake": "bb30c17b9e4e29f8e961a2bd2f319958532793e1b5ada9e3fd1f9792832ab3ac",
        "serverFinished": "98180c51eba2ed62e960368adf3628c6c9f00d89d3f9fa4584494b4294cac438"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "488",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "36OA5pqFSq0kUB4aWGWjlKwP99ZAlWRRvQYzp3Ietyc=",
    "region": "Hesse",
    "latitude": "50.11690",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-09-08 21:04

Fingerprint: b18befd9dd6536aa30550de50613ab81e9d909fb35a76bc8401906caceef91d5

{
    "clientTcpRtt": 2,
    "longitude": "-0.67180",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "GB",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "d6470d7bb7e10bbbaee3c76bdc9889b06ed84c0a7741b1b52743f32f8446b28c",
        "clientHandshake": "73ec2f6be067aa928d7e60ccb2bfa427f178d1ab8c7e286eff5bb9d8162fc704",
        "serverHandshake": "9261d273ec11cbccf52d875b07d245b86baf6141d3482c151395d8922d5484f7",
        "serverFinished": "abd1555ce214b95a558039ed779f46571619002eced6044250ae166ef1d03b6a"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Slough",
    "timezone": "Europe/London",
    "colo": "LHR",
    "tlsClientHelloLength": "488",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "SL1",
    "region": "England",
    "latitude": "51.53680",
    "requestPriority": "",
    "regionCode": "ENG",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "tlsClientRandom": "P+owTuiTwL+WT5JHDMySPryh1bKh6CGjioo+0NgSZkI="
}

Found on 2024-09-06 22:12

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e38775b5f105259fab

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES128-GCM-SHA256",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "5JPg1Kamo7V8DPpM3zw6xxvw1jU=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "33008615a65a2df228378e46744ac8f28d641b3f96a3470cc2dcecb6d07b9f74",
        "clientHandshake": "23368b673018342a3b2621371f49a1a1ba0044a18aa6739a27cef6d50a335010",
        "serverHandshake": "77fa99d33c86916a212f72f34cb6bbc7d6618290157a9e9bcbe79f351a84000c",
        "serverFinished": "359bae49a94cf3b508b539779049751b361702ce6bc93f880e8467fe766b74be"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "488",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "horlFXCJkkJJEdECx/W5drYIUbtGNpxfeiEktK8cH0Y=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "Digital Ocean",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-06 22:12

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: out.daffacell.me
Port: 80
URL: http://out.daffacell.me

First seen 2024-09-06 22:12
Last seen 2024-10-04 20:40
Open for 27 days

Fingerprint: b18befd9dd6536aa30550de50513aa364b8758e8907bbbb5deca7a75f1aeb031

{
    "clientTcpRtt": 3,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-10-04 20:40

Fingerprint: b18befd9dd6536aa30550de50313a6d8698f36555a38bfa62628f1668f55a54b

{
    "clientTcpRtt": 1,
    "longitude": "8.68370",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "Hesse",
    "latitude": "50.11690",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "FRA",
    "country": "DE"
}

Found on 2024-10-04 20:17

Fingerprint: b18befd9dd6536aa30550de57d166aa61cb665efa39a4d44722539bc30588692

{
    "clientTcpRtt": 234,
    "longitude": "8.68370",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "Hesse",
    "latitude": "50.11690",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "SIN",
    "country": "DE"
}

Found on 2024-10-02 19:15

Fingerprint: b18befd9dd6536aa30550de59cef8833534da42c308d9b01bfb0aa7181fff4db

{
    "clientTcpRtt": 11,
    "longitude": "8.68370",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Frankfurt am Main",
    "timezone": "Europe/Berlin",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "Hesse",
    "latitude": "50.11690",
    "postalCode": "60341",
    "regionCode": "HE",
    "asOrganization": "Digital Ocean",
    "colo": "CDG",
    "country": "DE"
}

Found on 2024-09-28 10:27

Fingerprint: b18befd9dd6536aa30550de50313a6d8a399d2e8555a99b59464b875ecc03bb6

{
    "clientTcpRtt": 1,
    "longitude": "103.68180",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "AS",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "SG",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "verifiedBotCategory": "",
    "tlsVersion": "",
    "city": "Singapore",
    "timezone": "Asia/Singapore",
    "colo": "SIN",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "62",
    "latitude": "1.30780",
    "requestPriority": "",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": ""
}

Found on 2024-09-24 03:14

Fingerprint: b18befd9dd6536aa30550de50313a6d8d2d8cb37ba3c333c2b9d33e473119ba2

{
    "clientTcpRtt": 1,
    "longitude": "-121.96200",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "NA",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Santa Clara",
    "timezone": "America/Los_Angeles",
    "colo": "SJC",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "95054",
    "region": "California",
    "latitude": "37.39310",
    "requestPriority": "",
    "regionCode": "CA",
    "asOrganization": "Digital Ocean",
    "metroCode": "807",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": ""
}

Found on 2024-09-22 08:59

Fingerprint: b18befd9dd6536aa30550de50613ab81e9d909fb35a76bc8fd563a508bcc978d

{
    "clientTcpRtt": 2,
    "longitude": "-0.67180",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "GB",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Slough",
    "timezone": "Europe/London",
    "colo": "LHR",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "SL1",
    "region": "England",
    "latitude": "51.53680",
    "requestPriority": "",
    "regionCode": "ENG",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": ""
}

Found on 2024-09-20 11:21

Fingerprint: b18befd9dd6536aa30550de50313a6d80aa47432f101f2e34454804b0c8c7660

{
    "clientTcpRtt": 1,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "Digital Ocean",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-14 06:10

Fingerprint: b18befd9dd6536aa30550de50613ab81aa8fde659788b6963598523695c1063b

{
    "clientTcpRtt": 2,
    "longitude": "-79.36230",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "NA",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "CA",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Toronto",
    "timezone": "America/Toronto",
    "colo": "YYZ",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "M5A",
    "region": "Ontario",
    "latitude": "43.65470",
    "requestPriority": "",
    "regionCode": "ON",
    "asOrganization": "Digital Ocean",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": ""
}

Found on 2024-09-12 10:08

Fingerprint: b18befd9dd6536aa30550de52af723420bf686b8fb1220e51bf2fd05da430da0

{
    "clientTcpRtt": 27,
    "longitude": "-74.02470",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "NA",
    "asn": 14061,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "North Bergen",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07047",
    "region": "New Jersey",
    "latitude": "40.79300",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "Digital Ocean",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": ""
}

Found on 2024-09-10 11:28

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: lzd888.shop
Port: 443
URL: https://lzd888.shop

First seen 2024-09-11 22:52
Last seen 2024-10-04 13:29
Open for 22 days

Severity: low
Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bcdb1f5f6cda0e0b7dac2f8f06a6219179

Found 22 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/get-test
/layer
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-10-04 13:29

Severity: low
Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea9e9c25fcded8f784e519df79b69805a1d

Found 23 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-09-28 14:34

Severity: low
Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcfd6328a27847d29dc74e393357c1ab310

Found 25 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-09-26 15:12

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: lz-d-666.life
Port: 443
URL: https://lz-d-666.life

First seen 2024-09-28 17:28
Last seen 2024-10-04 11:12
Open for 5 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cf35cbfb3f35cbfb3712d8cfb935c6b30392fd801284f3aed
```
Found 29 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/p_static1/css
/p_static1/img
/p_static1/img1
/p_static1/js
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-10-04 11:12
- Severity: low
  Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcfd6328a27847d29dc74e393357c1ab310
```
Found 25 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-09-30 13:16
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: lz-d-666.shop
Port: 443
URL: https://lz-d-666.shop

First seen 2024-09-28 17:28
Last seen 2024-10-04 11:12
Open for 5 days

Severity: low
Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcfd6328a27847d29dc74e393357c1ab310

Found 25 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-10-04 11:12

Severity: medium
Fingerprint: 5f32cf5d6962f09ca629b8b1a629b8b1cec28965e44f1ea68116dce305d0cb25

Found 34 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/p_static1/css
/p_static1/img
/p_static1/img1
/p_static1/js
/public
/public/css
/public/img
/public/js
/public/js/layer_mobile
/public/js/picker
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-09-30 13:15

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: api.vma.one
Port: 80
URL: http://api.vma.one

First seen 2024-09-28 15:19
Last seen 2024-10-04 06:16
Open for 5 days

Fingerprint: b18befd9dd6536821013888f1013888f1013888f1013888f1013888f1013888f

{"host":{"hostname":"api.gcore.com","ip":"::ffff:10.0.2.100","ips":[]},"http":{"method":"GET","baseUrl":"","originalUrl":"/config.json","protocol":"http"},"request":{"params":{"0":"/config.json"},"query":{},"cookies":{},"body":{},"headers":{"x-cdn-requestor":"sv5-hw-edge-gc27","host":"api.gcore.com","x-forwarded-proto":"http","x-forwarded-host":"api.vma.one","x-forwarded-for":"64.23.218.208","x-forwarded-port":"80","x-cdn-node-addr":"81.28.12.12","x-tcpinfo-rtt":"2397","traceparent":"00-6770a3ad8366f452b16dabebca2aac57-d9d8b985585b68e0-01","user-agent":"Go-http-client/1.1","accept-encoding":"gzip","cdn-loop":"nb1d2; c=09","x-real-ip":"64.23.218.208"}},"environment":{"NODE_VERSION":"20.11.0","YARN_VERSION":"1.22.19","PATH":"/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin","container":"podman","HOME":"/root","HOSTNAME":"2bcbd2e42823"}}

Found on 2024-10-04 06:16

Fingerprint: b18befd9dd653682515dbe96515dbe96515dbe96515dbe96515dbe96515dbe96

{"host":{"hostname":"api.gcore.com","ip":"::ffff:10.0.2.100","ips":[]},"http":{"method":"GET","baseUrl":"","originalUrl":"/config.json","protocol":"http"},"request":{"params":{"0":"/config.json"},"query":{},"cookies":{},"body":{},"headers":{"x-cdn-requestor":"sv5-hw-edge-gc27","host":"api.gcore.com","x-forwarded-proto":"http","x-forwarded-host":"api.vma.one","x-forwarded-for":"146.190.63.48","x-forwarded-port":"80","x-cdn-node-addr":"81.28.12.12","x-tcpinfo-rtt":"3317","traceparent":"00-94aa3ef86de9249b529a92f21389808a-40b203a18c2b2de0-01","user-agent":"Go-http-client/1.1","accept-encoding":"gzip","cdn-loop":"nb1d2; c=09","x-real-ip":"146.190.63.48"}},"environment":{"NODE_VERSION":"20.11.0","YARN_VERSION":"1.22.19","PATH":"/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin","container":"podman","HOME":"/root","HOSTNAME":"2bcbd2e42823"}}

Found on 2024-10-02 07:11

Fingerprint: b18befd9dd653682b69a6f04b69a6f04b69a6f04b69a6f04b69a6f04b69a6f04

{"host":{"hostname":"api.gcore.com","ip":"::ffff:10.0.2.100","ips":[]},"http":{"method":"GET","baseUrl":"","originalUrl":"/config.json","protocol":"http"},"request":{"params":{"0":"/config.json"},"query":{},"cookies":{},"body":{},"headers":{"x-cdn-requestor":"am3-hw-edge-gc54","host":"api.gcore.com","x-forwarded-proto":"https","x-forwarded-host":"api.vma.one","x-forwarded-for":"157.230.19.140","x-forwarded-port":"443","x-cdn-node-addr":"81.28.12.12","x-tcpinfo-rtt":"18853","traceparent":"00-33f6044e943127d34b0333b0c8a4817e-1d052d141ba2ba81-01","user-agent":"Go-http-client/1.1","accept-encoding":"gzip","cdn-loop":"nb1d2; c=09","x-real-ip":"157.230.19.140"}},"environment":{"NODE_VERSION":"20.11.0","YARN_VERSION":"1.22.19","PATH":"/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin","container":"podman","HOME":"/root","HOSTNAME":"2bcbd2e42823"}}

Found on 2024-09-30 21:05

Fingerprint: b18befd9dd6536827dc611867dc611867dc611867dc611867dc611867dc61186

{"host":{"hostname":"api.gcore.com","ip":"::ffff:10.0.2.100","ips":[]},"http":{"method":"GET","baseUrl":"","originalUrl":"/config.json","protocol":"http"},"request":{"params":{"0":"/config.json"},"query":{},"cookies":{},"body":{},"headers":{"x-cdn-requestor":"ny2-hw-edge-gc5","host":"api.gcore.com","x-forwarded-proto":"http","x-forwarded-host":"api.vma.one","x-forwarded-for":"96.126.110.181","x-forwarded-port":"80","x-cdn-node-addr":"81.28.12.12","x-tcpinfo-rtt":"1771","traceparent":"00-4d313826d0e8dc76b1ba913e4c47c84a-d12b8c12fe916941-01","user-agent":"Go-http-client/1.1","accept-encoding":"gzip","cdn-loop":"nb1d2; c=09","x-real-ip":"96.126.110.181"}},"environment":{"NODE_VERSION":"20.11.0","YARN_VERSION":"1.22.19","PATH":"/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin","container":"podman","HOME":"/root","HOSTNAME":"2bcbd2e42823"}}

Found on 2024-09-28 15:19

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: api.vma.one
Port: 443
URL: https://api.vma.one

First seen 2024-09-28 15:19
Last seen 2024-10-04 05:06
Open for 5 days

Fingerprint: b18befd9dd65368261e0aacc61e0aacc61e0aacc61e0aacc61e0aacc61e0aacc

{"host":{"hostname":"api.gcore.com","ip":"::ffff:10.0.2.100","ips":[]},"http":{"method":"GET","baseUrl":"","originalUrl":"/config.json","protocol":"http"},"request":{"params":{"0":"/config.json"},"query":{},"cookies":{},"body":{},"headers":{"x-cdn-requestor":"am3-hw-edge-gc54","host":"api.gcore.com","x-forwarded-proto":"https","if-none-match":"W/\"395-DRxeXdZ74UUZXdYQ9X//rWp2MyU\"","x-forwarded-host":"api.vma.one","x-forwarded-for":"206.81.24.227","x-forwarded-port":"443","x-cdn-node-addr":"81.28.12.12","x-tcpinfo-rtt":"12818","traceparent":"00-6cd259c5ba4bccb51ae69f892cb9498f-f18fbcdc45a2b8c8-01","user-agent":"Go-http-client/1.1","accept-encoding":"gzip","cdn-loop":"nb1d2; c=09","x-real-ip":"206.81.24.227"}},"environment":{"NODE_VERSION":"20.11.0","YARN_VERSION":"1.22.19","PATH":"/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin","container":"podman","HOME":"/root","HOSTNAME":"2bcbd2e42823"}}

Found on 2024-10-04 05:06

Fingerprint: b18befd9dd6536823ab786963ab786963ab786963ab786963ab786963ab78696

{"host":{"hostname":"api.gcore.com","ip":"::ffff:10.0.2.100","ips":[]},"http":{"method":"GET","baseUrl":"","originalUrl":"/config.json","protocol":"http"},"request":{"params":{"0":"/config.json"},"query":{},"cookies":{},"body":{},"headers":{"x-cdn-requestor":"am3-hw-edge-gc54","host":"api.gcore.com","x-forwarded-proto":"http","if-none-match":"W/\"35f-COCvub9XkgRlhXHoUrxpkLEjegs\"","x-forwarded-host":"api.vma.one","x-forwarded-for":"209.38.208.202","x-forwarded-port":"80","x-cdn-node-addr":"81.28.12.12","x-tcpinfo-rtt":"19175","traceparent":"00-7332a36835a001e4c295e90c88859a38-99589303ab3b16fc-01","user-agent":"Go-http-client/1.1","accept-encoding":"gzip","cdn-loop":"nb1d2; c=09","x-real-ip":"209.38.208.202"}},"environment":{"NODE_VERSION":"20.11.0","YARN_VERSION":"1.22.19","PATH":"/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin","container":"podman","HOME":"/root","HOSTNAME":"2bcbd2e42823"}}

Found on 2024-10-02 19:10

Fingerprint: b18befd9dd653682b69a6f04b69a6f04b69a6f04b69a6f04b69a6f04b69a6f04

{"host":{"hostname":"api.gcore.com","ip":"::ffff:10.0.2.100","ips":[]},"http":{"method":"GET","baseUrl":"","originalUrl":"/config.json","protocol":"http"},"request":{"params":{"0":"/config.json"},"query":{},"cookies":{},"body":{},"headers":{"x-cdn-requestor":"am3-hw-edge-gc54","host":"api.gcore.com","x-forwarded-proto":"https","x-forwarded-host":"api.vma.one","x-forwarded-for":"157.230.19.140","x-forwarded-port":"443","x-cdn-node-addr":"81.28.12.12","x-tcpinfo-rtt":"18853","traceparent":"00-33f6044e943127d34b0333b0c8a4817e-1d052d141ba2ba81-01","user-agent":"Go-http-client/1.1","accept-encoding":"gzip","cdn-loop":"nb1d2; c=09","x-real-ip":"157.230.19.140"}},"environment":{"NODE_VERSION":"20.11.0","YARN_VERSION":"1.22.19","PATH":"/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin","container":"podman","HOME":"/root","HOSTNAME":"2bcbd2e42823"}}

Found on 2024-09-30 10:44

Fingerprint: b18befd9dd6536827dc611867dc611867dc611867dc611867dc611867dc61186

{"host":{"hostname":"api.gcore.com","ip":"::ffff:10.0.2.100","ips":[]},"http":{"method":"GET","baseUrl":"","originalUrl":"/config.json","protocol":"http"},"request":{"params":{"0":"/config.json"},"query":{},"cookies":{},"body":{},"headers":{"x-cdn-requestor":"ny2-hw-edge-gc5","host":"api.gcore.com","x-forwarded-proto":"http","x-forwarded-host":"api.vma.one","x-forwarded-for":"96.126.110.181","x-forwarded-port":"80","x-cdn-node-addr":"81.28.12.12","x-tcpinfo-rtt":"1771","traceparent":"00-4d313826d0e8dc76b1ba913e4c47c84a-d12b8c12fe916941-01","user-agent":"Go-http-client/1.1","accept-encoding":"gzip","cdn-loop":"nb1d2; c=09","x-real-ip":"96.126.110.181"}},"environment":{"NODE_VERSION":"20.11.0","YARN_VERSION":"1.22.19","PATH":"/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin","container":"podman","HOME":"/root","HOSTNAME":"2bcbd2e42823"}}

Found on 2024-09-28 15:19

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: lzd666.top
Port: 443
URL: https://lzd666.top

First seen 2024-09-27 14:14
Last seen 2024-10-02 21:39
Open for 5 days

Severity: low
Fingerprint: 5f32cf5d6962f09c81c345f781c345f7da50891f96e15c147c8f04ddc90f5557

Found 32 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/p_static1/css
/p_static1/img
/p_static1/img1
/p_static1/js
/public
/public/css
/public/img
/public/js
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-10-02 21:39

Severity: low
Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcfd6328a27847d29dc74e393357c1ab310

Found 25 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-09-30 22:46

Severity: medium
Fingerprint: 5f32cf5d6962f09c93a25c3a93a25c3ac0712fdeeec9a01ee36621a7affc158d

Found 46 files trough .DS_Store spidering:

/alllang
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/p_static1/css
/p_static1/img
/p_static1/img1
/p_static1/js
/public
/public/css
/public/img
/public/js
/public/js/layer_mobile
/public/js/picker
/red
/red/bootstrap
/red/bootstrap/css
/red/bootstrap/js
/red/swiper
/static
/static/images
/static/myself
/static/plugs
/static/plugs/angular
/static/plugs/awesome
/static/plugs/ckeditor
/static/plugs/echarts
/static/plugs/jquery
/static/plugs/layui
/static/plugs/michat
/static/plugs/require
/static/plugs/socket
/static/plugs/supersized
/static/plugs/ztree
/static/theme
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-09-27 14:14

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: lz-d-666.help
Port: 443
URL: https://lz-d-666.help

First seen 2024-09-28 17:27
Last seen 2024-10-02 14:38
Open for 3 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c20f30ab920f30ab941c1415dd06a4a5e025b336b9361799d

Found 67 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/p_static1/css
/p_static1/img
/p_static1/img1
/p_static1/js
/public
/public/css
/public/img
/public/js
/public/js/layer_mobile
/public/js/picker
/red
/red/bootstrap
/red/bootstrap/css
/red/bootstrap/js
/red/swiper
/static
/static/images
/static/myself
/static/plugs
/static/plugs/angular
/static/plugs/awesome
/static/plugs/ckeditor
/static/plugs/echarts
/static/plugs/jquery
/static/plugs/layui
/static/plugs/michat
/static/plugs/require
/static/plugs/socket
/static/plugs/supersized
/static/plugs/ztree
/static/theme
/static/theme/css
/static/theme/img
/static/theme/img/login
/static/theme/img/wechat
/static_down
/static_down/css
/static_down/images
/static_down/js
/static_down/picture
/static_indonesia
/static_indonesia/headimg
/static_indonesia/img
/static_new
/static_new/css
/static_new/img
/static_new/js
/static_new/mobiscroll
/static_new6
/statics
/upload

Found on 2024-10-02 14:38

Severity: low
Fingerprint: 5f32cf5d6962f09c81c345f781c345f7da50891f96e15c147c8f04ddc90f5557

Found 32 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/p_static1/css
/p_static1/img
/p_static1/img1
/p_static1/js
/public
/public/css
/public/img
/public/js
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-09-30 19:32

Severity: low
Fingerprint: 5f32cf5d6962f09cf35cbfb3f35cbfb3712d8cfb935c6b30392fd801284f3aed

Found 29 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/p_static1/css
/p_static1/img
/p_static1/img1
/p_static1/js
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-09-28 17:27

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: dev.e12.ne.td
Port: 443
URL: https://dev.e12.ne.td

First seen 2024-08-10 11:49
Last seen 2024-09-30 04:10
Open for 50 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522e360bd6e
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@github.com:thepiationesl/ETC-client.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2024-09-30 04:10
  
  264 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: lz-d-666.help
Port: 80
URL: http://lz-d-666.help

First seen 2024-09-28 17:27
- Severity: low
  Fingerprint: 5f32cf5d6962f09cf35cbfb3f35cbfb3712d8cfb935c6b30392fd801284f3aed
```
Found 29 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/p_static1/css
/p_static1/img
/p_static1/img1
/p_static1/js
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-09-28 17:27
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: gcore-cdn.fusiji.site
Port: 443
URL: https://gcore-cdn.fusiji.site

First seen 2024-09-28 10:27
- Fingerprint: b18befd9dd653682dd9b701add9b701add9b701add9b701add9b701add9b701a
```
{"errcode": "011", "errmsg": "invalid token"}
```
  Found on 2024-09-28 10:27
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: www.lzd888.shop
Port: 443
URL: https://www.lzd888.shop

First seen 2024-09-11 22:52
Last seen 2024-09-28 06:47
Open for 16 days

Severity: low
Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcfd6328a27847d29dc74e393357c1ab310

Found 25 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-09-28 06:47

Severity: low
Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea9e9c25fcded8f784e519df79b69805a1d

Found 23 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-09-26 23:03

Severity: medium
Fingerprint: 5f32cf5d6962f09cecc85b04ecc85b040d7e3f04fe70f5156a12066e27c4b9bc

Found 53 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/p_static1/css
/p_static1/img
/p_static1/img1
/p_static1/js
/public
/public/css
/public/img
/public/js
/public/js/layer_mobile
/public/js/picker
/red
/red/bootstrap
/red/bootstrap/css
/red/bootstrap/js
/red/swiper
/static
/static/images
/static/myself
/static/plugs
/static/plugs/angular
/static/plugs/awesome
/static/plugs/ckeditor
/static/plugs/echarts
/static/plugs/jquery
/static/plugs/layui
/static/plugs/michat
/static/plugs/require
/static/plugs/socket
/static/plugs/supersized
/static/plugs/ztree
/static/theme
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-09-25 00:06

Severity: low
Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bcdb1f5f6cda0e0b7dac2f8f06a6219179

Found 22 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/get-test
/layer
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-09-11 22:52

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: lzd.life
Port: 80
URL: http://lzd.life

First seen 2024-09-27 13:56
- Severity: low
  Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcfd6328a27847d29dc74e393357c1ab310
```
Found 25 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-09-27 13:56
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: www.monopolys.top
Port: 443
URL: https://www.monopolys.top

First seen 2024-07-31 19:59
Last seen 2024-09-22 13:24
Open for 52 days

Severity: low
Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bcdb1f5f6cda0e0b7dac2f8f06a6219179

Found 22 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/get-test
/layer
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-09-22 13:24

Severity: medium
Fingerprint: 5f32cf5d6962f09cecc85b04ecc85b040d7e3f04fe70f5156a12066e27c4b9bc

Found 53 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/p_static1/css
/p_static1/img
/p_static1/img1
/p_static1/js
/public
/public/css
/public/img
/public/js
/public/js/layer_mobile
/public/js/picker
/red
/red/bootstrap
/red/bootstrap/css
/red/bootstrap/js
/red/swiper
/static
/static/images
/static/myself
/static/plugs
/static/plugs/angular
/static/plugs/awesome
/static/plugs/ckeditor
/static/plugs/echarts
/static/plugs/jquery
/static/plugs/layui
/static/plugs/michat
/static/plugs/require
/static/plugs/socket
/static/plugs/supersized
/static/plugs/ztree
/static/theme
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-09-20 20:20

Severity: low
Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea9e9c25fcded8f784e519df79b69805a1d

Found 23 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-09-18 14:40

Severity: medium
Fingerprint: 5f32cf5d6962f09c910c508a910c508a972d35ae7b391a1b0b025be89a5ffd34

Found 55 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/p_static1/css
/p_static1/img
/p_static1/img1
/p_static1/js
/public
/public/css
/public/img
/public/js
/public/js/layer_mobile
/public/js/picker
/red
/red/bootstrap
/red/bootstrap/css
/red/bootstrap/js
/red/swiper
/static
/static/images
/static/myself
/static/plugs
/static/plugs/angular
/static/plugs/awesome
/static/plugs/ckeditor
/static/plugs/echarts
/static/plugs/jquery
/static/plugs/layui
/static/plugs/michat
/static/plugs/require
/static/plugs/socket
/static/plugs/supersized
/static/plugs/ztree
/static/theme
/static/theme/css
/static/theme/img
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-09-14 11:29

Severity: low
Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcfd6328a27847d29dc74e393357c1ab310

Found 25 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-09-06 04:25

Severity: low
Fingerprint: 5f32cf5d6962f09cf35cbfb3f35cbfb3712d8cfb935c6b30392fd801284f3aed

Found 29 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/p_static1/css
/p_static1/img
/p_static1/img1
/p_static1/js
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-09-02 17:20

Severity: medium
Fingerprint: 5f32cf5d6962f09c20f30ab920f30ab941c1415dd06a4a5e025b336b9361799d

Found 67 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/p_static1/css
/p_static1/img
/p_static1/img1
/p_static1/js
/public
/public/css
/public/img
/public/js
/public/js/layer_mobile
/public/js/picker
/red
/red/bootstrap
/red/bootstrap/css
/red/bootstrap/js
/red/swiper
/static
/static/images
/static/myself
/static/plugs
/static/plugs/angular
/static/plugs/awesome
/static/plugs/ckeditor
/static/plugs/echarts
/static/plugs/jquery
/static/plugs/layui
/static/plugs/michat
/static/plugs/require
/static/plugs/socket
/static/plugs/supersized
/static/plugs/ztree
/static/theme
/static/theme/css
/static/theme/img
/static/theme/img/login
/static/theme/img/wechat
/static_down
/static_down/css
/static_down/images
/static_down/js
/static_down/picture
/static_indonesia
/static_indonesia/headimg
/static_indonesia/img
/static_new
/static_new/css
/static_new/img
/static_new/js
/static_new/mobiscroll
/static_new6
/statics
/upload

Found on 2024-09-01 21:08

Severity: low
Fingerprint: 5f32cf5d6962f09cdc57c57adc57c57af080549eb6bee48bf90f95b3488f3e0f

Found 19 files trough .DS_Store spidering:

/alllang
/alllang/static
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-08-30 23:38

Severity: medium
Fingerprint: 5f32cf5d6962f09cb1c4b1dfb1c4b1dfd4797c37166124ece47fc445af4f9046

Found 61 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/p_static1/css
/p_static1/img
/p_static1/img1
/p_static1/js
/public
/public/css
/public/img
/public/js
/public/js/layer_mobile
/public/js/picker
/red
/red/bootstrap
/red/bootstrap/css
/red/bootstrap/js
/red/swiper
/static
/static/images
/static/myself
/static/plugs
/static/plugs/angular
/static/plugs/awesome
/static/plugs/ckeditor
/static/plugs/echarts
/static/plugs/jquery
/static/plugs/layui
/static/plugs/michat
/static/plugs/require
/static/plugs/socket
/static/plugs/supersized
/static/plugs/ztree
/static/theme
/static/theme/css
/static/theme/img
/static/theme/img/login
/static/theme/img/wechat
/static_down
/static_down/css
/static_down/images
/static_down/js
/static_down/picture
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2024-07-31 19:59

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: as.emam-rahel-agha-rahbar-janam-fadai-rahbar-zendebad-jomhri-eslam.org
Port: 80
URL: http://as.emam-rahel-agha-rahbar-janam-fadai-rahbar-zendebad-jomhri-eslam.org

First seen 2024-09-17 19:42
Last seen 2024-09-22 13:16
Open for 4 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c680cb8ce680cb8ceef487ede8810c76573c5699e6dfa5310

Found 59 files trough .DS_Store spidering:

/ad
/fonts
/images
/images/300px-Attention_green.svg.png
/images/ad-wp.png
/images/addthis.png
/images/arrow.gif
/images/arrow.png
/images/Attention_green.svg
/images/badge.gif
/images/big.jpg
/images/bmw
/images/category-voting-sprite.png
/images/category-voting-sprite1.png
/images/checkbox.png
/images/checkmark.gif
/images/checkmark.png
/images/clip.png
/images/crystal-stars.png
/images/donate.png
/images/donate1.png
/images/download.png
/images/email.png
/images/empty.png
/images/facebook.png
/images/fbfan.png
/images/flower.jpg
/images/flowers
/images/google.png
/images/help.jpg
/images/indicator.gif
/images/iphone4.jpg
/images/iphone_thumb.png
/images/join_like1.png
/images/join_like2.png
/images/join_like3.png
/images/jplayer
/images/jquery.ui.stars.gif
/images/kitties
/images/live.png
/images/logo-big.jpg
/images/mug.png
/images/play.png
/images/play2.png
/images/podcast-cover-big.jpg
/images/remove.gif
/images/safari-checkbox.png
/images/sociable
/images/speaker.png
/images/speaker_icon.png
/images/stack.png
/images/tape.png
/images/trans-white-bg.png
/images/white-rose.png
/instagram
/iphone
/js
/live
/youtube

Found on 2024-09-22 13:16

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: m2.mmikel.space
Port: 80
URL: http://m2.mmikel.space

First seen 2024-08-14 02:52
Last seen 2024-09-22 00:43
Open for 38 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65229672a40a
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/ColorlibHQ/AdminLTE
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-09-22 00:43
  
  263 Bytes
Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: vless.zhangsir.us.kg
Port: 80
URL: http://vless.zhangsir.us.kg

First seen 2024-09-20 16:22

Fingerprint: b18befd9dd6536aa30550de50513aa364b8758e8907bbbb5deca7a75f1aeb031

{
    "clientTcpRtt": 3,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-20 16:22

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: vless.zhangsir.us.kg
Port: 443
URL: https://vless.zhangsir.us.kg

First seen 2024-09-20 16:22

Fingerprint: b18befd9dd6536aa30550de50113a3e282eea2e44517a6691b40c8d3adca409d

{
    "clientTcpRtt": 7,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "815c2a50b247a6cbf662308ac220483c5cb7f017d9f063cb3cc8fdf3fcf26329e00521ad70d72dc9f8c82aa2b92f9286",
        "clientHandshake": "cd05556243d8f19ada9293901aba8debb7e2b887edd26bb5ee7b3ed258d91bdf8e8c693574a015a78ec574cda4f26f90",
        "serverHandshake": "ff50f5005dc7bc5dcb4b918a948da3a2760cfd6ae551f3a55b7f486add79b28bfa91e55aeb3b3e8e881b1b739d7c2594",
        "serverFinished": "9656df52129a50cf61dd8462f75d13d2db1fd8faa48e445d102432b2a8832475a71961258cba5c6dbc4118ad5e60c133"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "332",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "ucoroOkxEDzKGVHHTmwrl/wwGX4CZS5SrALCN4oIlbo=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "FRA",
    "country": "NL"
}

Found on 2024-09-20 16:22

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: edt.nivar2024.us.kg
Port: 443
URL: https://edt.nivar2024.us.kg

First seen 2024-09-20 07:54

Fingerprint: b18befd9dd6536aa30550de50613ab8177f5704d9c7dd26e2386527c5a9e9b2b

{
    "clientTcpRtt": 2,
    "longitude": "4.93920",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "EU",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "isEUCountry": "1",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsExportedAuthenticator": {
        "clientFinished": "06d1a894e5021b885fb57b44a98c49971b7ee3572f42e5acaa4f23cc0c30aa3ba4235a1cc637cc1f2e97805e21a2f136",
        "clientHandshake": "51950308c85e4165bbc062aefe17305986a2db998cc7d448598ca45a4067b1b0c762695216a372183918d23dad6d5ddb",
        "serverHandshake": "c5997152723d2c661b453cf9e453f49db383bff5631d19cf17880688e758bc496d6713c2885c155cfa697721c38206d7",
        "serverFinished": "c0b98dab039bdb480c5b04541aad8923a6090e2cf2145ccfbdb4faf1732efcc4f9b67814bd0b26ce19a8e583a3497cf0"
    },
    "tlsVersion": "TLSv1.3",
    "city": "Amsterdam",
    "timezone": "Europe/Amsterdam",
    "tlsClientHelloLength": "331",
    "requestPriority": "",
    "edgeRequestKeepAliveStatus": 1,
    "tlsClientRandom": "JqKozPQ4pDG5jH45aEIJh40AGxtnY3ZtxKQM2y/rNIs=",
    "region": "North Holland",
    "latitude": "52.35200",
    "postalCode": "1098",
    "regionCode": "NH",
    "asOrganization": "G-Core Labs SA",
    "colo": "AMS",
    "country": "NL"
}

Found on 2024-09-20 07:54

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: auth-en.fr
Port: 80
URL: http://auth-en.fr

First seen 2024-09-11 14:08
- Severity: low
  Fingerprint: 5f32cf5d6962f09cc169dbbec169dbbe626f729bdce08c9a531c09c2dd8f37ad
```
Found 15 files trough .DS_Store spidering:

/.git
/api
/app
/app/php
/fonts
/secure
/sources
/utils
/vendor
/views
/views/go
/views/go/assets
/views/go/levanon
/views/go/levanon/js
/views/set
```
  Found on 2024-09-11 14:08
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: krga.avpa.cf
Port: 443
URL: https://krga.avpa.cf

First seen 2023-07-11 00:41
Last seen 2024-08-20 15:15
Open for 406 days
- Fingerprint: b18befd9dd6536aa30550de579643e967c7c09727b390feb4619bccc3da6720e
```
{
    "Debug": true,
    "Retries": 0,
    "ServeNodes": [
        "ss+mws://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@127.0.0.1:3580?path=/f900516fec15go",
	"ss+mwss://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@:5443?cert=/etc/letsencrypt/live/svrsite.ga/fullchain.pem&key=/etc/letsencrypt/live/svrsite.ga/privkey.pem&probe_resist=host:127.0.0.1:80"
    ]
}
```
  Found on 2024-08-20 15:15
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: krga.vpssvr.tk
Port: 443
URL: https://krga.vpssvr.tk

First seen 2023-09-08 14:31
Last seen 2024-08-20 09:04
Open for 346 days
- Fingerprint: b18befd9dd6536aa30550de579643e967c7c09727b390feb4619bccc3da6720e
```
{
    "Debug": true,
    "Retries": 0,
    "ServeNodes": [
        "ss+mws://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@127.0.0.1:3580?path=/f900516fec15go",
	"ss+mwss://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@:5443?cert=/etc/letsencrypt/live/svrsite.ga/fullchain.pem&key=/etc/letsencrypt/live/svrsite.ga/privkey.pem&probe_resist=host:127.0.0.1:80"
    ]
}
```
  Found on 2024-08-20 09:04
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: krga.avpa.tk
Port: 443
URL: https://krga.avpa.tk

First seen 2023-07-11 02:41
Last seen 2024-08-20 02:49
Open for 406 days
- Fingerprint: b18befd9dd6536aa30550de579643e967c7c09727b390feb4619bccc3da6720e
```
{
    "Debug": true,
    "Retries": 0,
    "ServeNodes": [
        "ss+mws://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@127.0.0.1:3580?path=/f900516fec15go",
	"ss+mwss://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@:5443?cert=/etc/letsencrypt/live/svrsite.ga/fullchain.pem&key=/etc/letsencrypt/live/svrsite.ga/privkey.pem&probe_resist=host:127.0.0.1:80"
    ]
}
```
  Found on 2024-08-20 02:49
Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: pps-gcore.ecostream.ir
Port: 80
URL: http://pps-gcore.ecostream.ir

First seen 2024-08-17 11:52
Last seen 2024-08-18 22:09
Open for 1 days

Fingerprint: b18befd9dd6536aa30550de50313a6d851ffcd24a470f2297749ec93cc1ed1a6

{
    "clientTcpRtt": 1,
    "longitude": "-121.79460",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "AEAD-AES256-GCM-SHA384",
    "continent": "NA",
    "asn": 199524,
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsClientHelloLength": "331",
    "tlsExportedAuthenticator": {
        "clientFinished": "41d0c564d8e248f0ae7bf5294d101473a2a7429f63e5ef3651aea3943d47f27ef06b5da041e1688504e0a3da3c64a86d",
        "clientHandshake": "f8abb8492253b5c3e0490feac8e993a0f39e4e59551cf181f4afceb77d59411b5b49ce902ecd1c0dd616d8a8791745fa",
        "serverHandshake": "e588920db66043dde9820d401e738de3e56f689efbb8abf0e2ced397277f8b1ec8b8d5a38f9bedfe1be63326fc21f8ad",
        "serverFinished": "6cf5d8a526e9ee7182f53d67fb1e07c86fbec217f8217ad2005bd097ddd501cbe06a308d174c88dd93282c4c92c357e9"
    },
    "tlsVersion": "TLSv1.3",
    "city": "San Jose",
    "timezone": "America/Los_Angeles",
    "tlsClientExtensionsSha1": "4yrTbQIu0gfBnjlKk5cZMzQCVSA=",
    "region": "California",
    "edgeRequestKeepAliveStatus": 1,
    "requestPriority": "",
    "latitude": "37.23790",
    "postalCode": "95119",
    "tlsClientRandom": "5b3uaA4khhEL6DnzaOgam4Hw6WM8SwGLhfIXDGWQ/YE=",
    "regionCode": "CA",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "807",
    "colo": "SJC",
    "pagesHostName": "pps-frens.pages.dev",
    "botManagement": {
        "corporateProxy": false,
        "verifiedBot": false,
        "jsDetection": {
            "passed": false
        },
        "staticResource": false,
        "detectionIds": {},
        "score": 99
    }
}

Found on 2024-08-18 22:09

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: www.seevid.ir
Port: 443
URL: https://www.seevid.ir

First seen 2022-10-31 13:55
Last seen 2024-08-17 02:03
Open for 655 days

Severity: low
Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0ff409caf12b390c210acd63e80acd63e8
```
Found 3 files trough .DS_Store spidering:

/assets
/assets/icon
/assets/images
```
Found on 2024-08-17 02:03

Severity: low
Fingerprint: 5f32cf5d6962f09cc169dbbec169dbbeb3c8a4aff4ce472fd670cb8ad14728ec

Found 15 files trough .DS_Store spidering:

/.htaccess
/App
/App/_a
/App/_a/__c
/App/_a/__c/config
/App/_a/__c/elements
/App/_a/__c/static
/App/_a/__c/static/sitemap
/App/_a/__h
/App/_a/__re
/App/_a/__s
/App/_a/__v
/App/_a/__w
/App/HC.php
/App/index.php

Found on 2023-01-17 12:16

Severity: low
Fingerprint: 5f32cf5d6962f09c47dfe71947dfe7191350a244b5506e183dd6763301f1b673

Found 16 files trough .DS_Store spidering:

/.htaccess
/App
/App/_a
/App/_a/__c
/App/_a/__c/config
/App/_a/__c/elements
/App/_a/__c/static
/App/_a/__c/static/sitemap
/App/_a/__c/static/sitemap/20101401
/App/_a/__h
/App/_a/__re
/App/_a/__s
/App/_a/__v
/App/_a/__w
/App/HC.php
/App/index.php

Found on 2023-01-17 12:16

Severity: low
Fingerprint: 5f32cf5d6962f09c81c345f781c345f7480ab2aa35a108f20fcfeff5b74821d5

Found 32 files trough .DS_Store spidering:

/.htaccess
/App
/App/_a
/App/_a/__c
/App/_a/__c/config
/App/_a/__c/elements
/App/_a/__c/static
/App/_a/__c/static/sitemap
/App/_a/__c/static/sitemap/20101401
/App/_a/__h
/App/_a/__re
/App/_a/__s
/App/_a/__s/__function__bc.php
/App/_a/__s/body.php
/App/_a/__s/function.php
/App/_a/__s/head.php
/App/_a/__s/index.php
/App/_a/__s/main.php
/App/_a/__v
/App/_a/__v/__a
/App/_a/__v/_go
/App/_a/__v/aside.php
/App/_a/__v/body.php
/App/_a/__v/embed-new.php
/App/_a/__v/embed.php
/App/_a/__v/filter.php
/App/_a/__v/head.php
/App/_a/__v/index.php
/App/_a/__v/main.php
/App/_a/__w
/App/HC.php
/App/index.php

Found on 2023-01-17 12:16

Severity: low
Fingerprint: 5f32cf5d6962f09c7cf176427cf1764265b85d531652e34b1652e34b1652e34b
```
Found 2 files trough .DS_Store spidering:

/.htaccess
/App
```
Found on 2023-01-11 18:53

Severity: low
Fingerprint: 5f32cf5d6962f09c7c3d3e457c3d3e45aee65ea00e23299c80e59d27347a5d62

Found 30 files trough .DS_Store spidering:

/.htaccess
/App
/App/_a
/App/_a/__c
/App/_a/__c/config
/App/_a/__c/elements
/App/_a/__c/static
/App/_a/__h
/App/_a/__re
/App/_a/__s
/App/_a/__s/__function__bc.php
/App/_a/__s/body.php
/App/_a/__s/function.php
/App/_a/__s/head.php
/App/_a/__s/index.php
/App/_a/__s/main.php
/App/_a/__v
/App/_a/__v/__a
/App/_a/__v/__body__bc.php
/App/_a/__v/_go
/App/_a/__v/aside.php
/App/_a/__v/body.php
/App/_a/__v/embed.php
/App/_a/__v/filter.php
/App/_a/__v/head.php
/App/_a/__v/index.php
/App/_a/__v/main.php
/App/_a/__w
/App/HC.php
/App/index.php

Found on 2022-11-19 07:51

Severity: low
Fingerprint: 5f32cf5d6962f09cdc57c57adc57c57a87ad063be36e34830997dfae71015d26

Found 19 files trough .DS_Store spidering:

/.htaccess
/App
/App/_a
/App/_a/__c
/App/_a/__c/config
/App/_a/__c/elements
/App/_a/__c/static
/App/_a/__h
/App/_a/__re
/App/_a/__s
/App/_a/__s/__function__bc.php
/App/_a/__s/body.php
/App/_a/__s/function.php
/App/_a/__s/head.php
/App/_a/__s/index.php
/App/_a/__s/main.php
/App/_a/__v
/App/_a/__w
/App/index.php

Found on 2022-11-06 14:38

Severity: low
Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a0f8c03449bfa94d35b2340ae8e75c0ff6

Found 13 files trough .DS_Store spidering:

/.htaccess
/App
/App/_a
/App/_a/__c
/App/_a/__c/config
/App/_a/__c/elements
/App/_a/__c/static
/App/_a/__h
/App/_a/__re
/App/_a/__s
/App/_a/__v
/App/_a/__w
/App/index.php

Found on 2022-10-31 13:55

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: www-test.yemapt.org
Port: 80
URL: http://www-test.yemapt.org

First seen 2024-08-14 16:22
- Fingerprint: b18befd9dd6536829ca10cc39ca10cc39ca10cc39ca10cc39ca10cc39ca10cc3
```
{"success":false,"showType":0}
```
  Found on 2024-08-14 16:22
Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: g4.dataserver.eu.org
Port: 443
URL: https://g4.dataserver.eu.org

First seen 2024-05-20 12:26
Last seen 2024-08-10 11:39
Open for 81 days

Fingerprint: b18befd9dd6536aa30550de5717a56a64511fce4d8e80c2fc42bc50670fc16d3

{
    "log": {
        "loglevel": "warning"
    },
    "inbounds": [
        {
            "port": 8001,
            "listen": "127.0.0.1",
            "protocol": "vmess",
            "settings": {
                "clients": [
                    {
                        "id": "971847a7-f7fe-49c5-b493-04af1e2c8ac7",
                        "alterId": 0
                    }
                ]
            },
            "sniffing": {
                "enabled": true
            },
            "streamSettings": {
                "wsSettings": {
                    "path": "/download",
                    "header": ""
                },
                "network": "ws"
            }
        },
        {
            "port": 8002,
            "listen": "127.0.0.1",
            "protocol": "vless",
            "settings": {
                "clients": [
                    {
                        "id": "971847a7-f7fe-49c5-b493-04af1e2c8ac7"
                    }
                ],
                "decryption": "none"
            },
            "sniffing": {
                "enabled": true
            },
            "streamSettings": {
                "network": "grpc",
                "grpcSettings": {
                    "serviceName": "transfer"
                }
            }
        },
        {
            "port": 8003,
            "listen": "127.0.0.1",
            "protocol": "vless",
            "settings": {
                "clients": [
                    {
                        "id": "971847a7-f7fe-49c5-b493-04af1e2c8ac7"
                    }
                ],
                "decryption": "none"
            },
            "sniffing": {
                "enabled": true
            },
            "streamSettings": {
                "network": "tcp"
            }
        }
    ],
    "outbounds": [
        {
            "tag": "direct",
            "protocol": "freedom",
            "settings": {}
        },
        {
            "tag": "warp",
            "protocol": "socks",
            "settings": {
                "servers": [
                    {
                        "address": "127.0.0.1",
                        "port": 40000
                    }
                ]
            }
        }
    ],
    "routing": {
        "domainStrategy": "IPIfNonMatch",
        "rules": [
            {
                "type": "field",
                "networks": "tcp,udp",
                "protocol": [
                    "http",
                    "tls"
                ],
                "outboundTag": "warp"
            }
        ]
    },
    "dns": {
        "servers": [
            "https+local://1.1.1.1/dns-query",
            "8.8.8.8"
        ]
    }
}

Found on 2024-08-10 11:39

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdnnjalla.com
Port: 80
URL: http://cdnnjalla.com

First seen 2024-08-02 21:56
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65224f3585fe
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/gd4Ark/2048.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-08-02 21:56
  
  259 Bytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: asmlstar.com
Port: 80
URL: http://asmlstar.com

First seen 2024-08-01 07:54

Severity: medium
Fingerprint: 5f32cf5d6962f09c8ef2655c8ef2655c13f574128dc3f24b0e1f00cfb47276e6

Found 71 files trough .DS_Store spidering:

/index.html
/static
/static/floor
/static/floor/activity-active.png
/static/floor/activity.png
/static/floor/home.png
/static/floor/homeactive.png
/static/floor/icon1-active.png
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4-active.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/floor/order-active.png
/static/floor/order.png
/static/floor/Solar-active.png
/static/gift
/static/gift/gold-bg.png
/static/gift/gold-icon.png
/static/gift/head-bg.png
/static/gift/head-bg1.jpg
/static/gift/head-bg1.png
/static/index
/static/index/1.jpg
/static/index/11.jpeg
/static/index/avater.jpeg
/static/index/banner.png
/static/index/customer.png
/static/index/customer1.png
/static/index/head.png
/static/index/hot.png
/static/index/icon1.png
/static/index/icon2.png
/static/index/icon3.png
/static/index/icon4.png
/static/index/info.png
/static/index/loading.png
/static/index/notice.png
/static/index/rental-head.png
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/mine
/static/mine/avatar.jpg
/static/mine/avatar.png
/static/mine/bg.png
/static/mine/bgs.png
/static/mine/cart.png
/static/mine/check.png
/static/mine/icon1.png
/static/mine/icon2.png
/static/mine/icon3.png
/static/mine/icon4.png
/static/mine/icon5.png
/static/mine/icon6.png
/static/mine/icon7.png
/static/mine/icon8.png
/static/mine/language.png
/static/mine/me-bg.png
/static/mine/me-bg1.png
/static/mine/select.png
/static/mine/te.png
/static/mine/team.png
/static/mine/wa.png
/static/mine/yellow.png
/static/shellslogo.png

Found on 2024-08-01 07:54

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: g.ava3d.eu.org
Port: 80
URL: http://g.ava3d.eu.org

First seen 2024-07-31 15:14

Fingerprint: b18befd9dd6536aa30550de50613ab817e6134ec6611bd41fa352d3122468ac0

{
    "clientTcpRtt": 2,
    "longitude": "-74.06000",
    "httpProtocol": "HTTP/1.1",
    "tlsCipher": "",
    "continent": "NA",
    "asn": 199524,
    "clientAcceptEncoding": "gzip",
    "country": "US",
    "verifiedBotCategory": "",
    "tlsClientAuth": {
        "certIssuerDNLegacy": "",
        "certIssuerSKI": "",
        "certSubjectDNRFC2253": "",
        "certSubjectDNLegacy": "",
        "certFingerprintSHA256": "",
        "certNotBefore": "",
        "certSKI": "",
        "certSerial": "",
        "certIssuerDN": "",
        "certVerified": "NONE",
        "certNotAfter": "",
        "certSubjectDN": "",
        "certPresented": "0",
        "certRevoked": "0",
        "certIssuerSerial": "",
        "certIssuerDNRFC2253": "",
        "certFingerprintSHA1": ""
    },
    "tlsVersion": "",
    "city": "Secaucus",
    "timezone": "America/New_York",
    "colo": "EWR",
    "tlsClientHelloLength": "",
    "edgeRequestKeepAliveStatus": 1,
    "postalCode": "07094",
    "region": "New Jersey",
    "latitude": "40.78760",
    "requestPriority": "",
    "regionCode": "NJ",
    "asOrganization": "G-Core Labs SA",
    "metroCode": "501",
    "tlsClientExtensionsSha1": "",
    "tlsClientRandom": ""
}

Found on 2024-07-31 15:14

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gc-hk-g-1.zodiark.win
Port: 443
URL: https://gc-hk-g-1.zodiark.win

First seen 2023-12-09 06:41
Last seen 2024-07-27 00:37
Open for 230 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65220ed28812
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/AsterOcclu/ffxivhuntspath.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-07-27 00:37
  
  273 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: hhkod.ippi.eu.org
Port: 443
URL: https://hhkod.ippi.eu.org

First seen 2023-11-29 06:48
Last seen 2024-07-26 16:51
Open for 240 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772692eda2a1476af3e58fef28fc89fe70d
```
Found 11 files trough .DS_Store spidering:

/app
/app/sdks
/config
/data
/plugins
/static
/static/app
/static/app/vender
/static/images
/static/others
/static/style
```
  Found on 2024-07-26 16:51
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: hhkod.ippi.eu.org
Port: 80
URL: http://hhkod.ippi.eu.org

First seen 2023-11-29 06:48
Last seen 2024-07-26 05:47
Open for 239 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772692eda2a1476af3e58fef28fc89fe70d
```
Found 11 files trough .DS_Store spidering:

/app
/app/sdks
/config
/data
/plugins
/static
/static/app
/static/app/vender
/static/images
/static/others
/static/style
```
  Found on 2024-07-26 05:47
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: bibyt.vip
Port: 80
URL: http://bibyt.vip

First seen 2024-07-18 08:14
- Severity: high
  Fingerprint: 5f32cf5d6962f09c31c2f0b631c2f0b6e32988c38492571aee1d34b640111db8
```
Found 28 files trough .DS_Store spidering:

/.well-known
/403.html
/admin
/agents
/app
/css
/favicon.ico
/font-test.ttf
/gw
/h5
/h5.zip
/h5_7SxREB.tar.gz
/images
/index.php
/js
/json
/layui
/layuiadmin
/logodex.4b405233.png
/manages
/mobile
/nginx.htaccess
/robots.txt
/start.php
/static
/upload
/vendor
/web.config
```
  Found on 2024-07-18 08:14
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: theoverlords.life
Port: 80
URL: http://theoverlords.life

First seen 2024-07-11 01:08
- Severity: low
  Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcfd6328a27847d29dc74e393357c1ab310
```
Found 25 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-07-11 01:08
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: www.lzd365.shop
Port: 80
URL: http://www.lzd365.shop

First seen 2024-07-04 19:58
- Severity: low
  Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcfd6328a27847d29dc74e393357c1ab310
```
Found 25 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-07-04 19:58
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: trident.zxx.rr.nu
Port: 443
URL: https://trident.zxx.rr.nu

First seen 2023-04-16 07:10
Last seen 2024-07-04 18:05
Open for 445 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0ff409caf1a187a31708ed1ca508ed1ca5
```
Found 3 files trough .DS_Store spidering:

/assets
/assets/site
/assets/site/js
```
  Found on 2024-07-04 18:05
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d325beceb325beceb325beceb325beceb
```
Found 1 files trough .DS_Store spidering:

/assets
```
  Found on 2023-08-15 21:10
Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: rtmfortrade.ir
Port: 80
URL: http://rtmfortrade.ir

First seen 2024-06-30 10:29
Last seen 2024-07-04 10:04
Open for 3 days

Fingerprint: b18befd9dd653682e653d60ee653d60ee653d60ee653d60ee653d60ee653d60e

{"mobileRedirectBlacklist":["/nft(/.*)?"],"staticPaths":["/static/","/.well-known/"],"firebreak":{"enabled":false,"redirect":{"from":"/:path","to":"/build_firebreak.html","type":"rewrite"}},"redirects":[{"from":"/get(/.*)?","to":"https://go.triller.co/get/","type":"redirect","code":"302"},{"from":"/faq(/.*)?","to":"https://support.triller.co","type":"redirect","code":"302"},{"from":"/resources(/.*)?","to":"https://support.triller.co/hc/en-us/articles/360050629912-Community-Guidelines","type":"redirect","code":"302"},{"from":"/h/:hashtag","to":"/hashtag/:hashtag","type":"redirect","code":"302"},{"from":"/stepup","to":"https://trillerstepup.squarespace.com","type":"redirect","code":"302"},{"from":"/terms/creators_agreement(.html)?","to":"https://support.triller.co/hc/en-us/articles/360055087851-Creators-Agreement","type":"redirect","code":"302"},{"from":"/sytycf/terms","to":"https://support.triller.co/hc/en-us/articles/4901906019469","type":"redirect","code":"302"},{"from":"(/m)?/terms(/.*)?","to":"https://support.triller.co/hc/en-us/articles/360053977612-Terms-of-Service","type":"redirect","code":"302"},{"from":"(/m)?/privacy(/.*)?","to":"https://support.triller.co/hc/en-us/articles/360053977512-Privacy-Policy","type":"redirect","code":"302"},{"from":"/.well-known/apple-app-site-association","to":"/.well-known/apple-app-site-association.json","type":"rewrite"},{"from":"/static/community-guidelines","to":"https://support.triller.co/hc/en-us/articles/360050629912-Community-Guidelines","type":"redirect","code":"302"},{"from":"/static/copyright-complaint","to":"/static/copyright-complaint.html","type":"rewrite"},{"from":"/static/privacy-policy","to":"https://support.triller.co/hc/en-us/articles/360053977512-Privacy-Policy","type":"redirect","code":"302"},{"from":"/static/terms-of-service","to":"https://support.triller.co/hc/en-us/articles/360053977612-Terms-of-Service","type":"redirect","code":"302"},{"from":"/m/index.html","to":"/m","type":"redirect","code":"302"},{"from":"/auth/(.+)/callback","to":"/static/oauth-callback.html","type":"rewrite"},{"from":"/robots.txt","to":"/robots.txt","type":"rewrite"},{"from":"/firebreak","to":"/build_firebreak.html","type":"rewrite"},{"from":"/embed/(.*)","to":"/build_embed.html","type":"rewrite"}]}

Found on 2024-07-04 10:04

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: www.lazada366.top
Port: 80
URL: http://www.lazada366.top

First seen 2024-07-04 04:41
- Severity: low
  Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcfd6328a27847d29dc74e393357c1ab310
```
Found 25 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-07-04 04:41
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: www.overlords.shop
Port: 80
URL: http://www.overlords.shop

First seen 2024-07-03 06:28
- Severity: low
  Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcfd6328a27847d29dc74e393357c1ab310
```
Found 25 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-07-03 06:28
Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: gs.top05flare.site
Port: 80
URL: http://gs.top05flare.site

First seen 2024-06-30 17:37

Fingerprint: b18befd9dd653682686ab1ac686ab1ac686ab1ac686ab1ac686ab1ac686ab1ac

{"details":{"group_id":7902350,"avatars":{"64":null,"128":null,"256":null,"512":null},"type":"channel","user":null,"hash":"Heihihmoqs1IZcIDtZvfOWqn53iVHpC4plpGhdi6ngy","identifier":"config","id":7902350,"title":"config","description":"","is_official":false,"member_count":1,"access":"public","show_posts":true,"posts":[],"pin":"","show_comments":true,"is_subscribe":false,"web_url":"","mobile_url":"","register_url":"","gallery":[],"single_post":false,"service_id":0,"service_type":"","subscriptions":false},"user":0}

Found on 2024-06-30 17:37

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: gcdn.trailerplus.ir
Port: 80
URL: http://gcdn.trailerplus.ir

First seen 2024-06-30 08:08

Fingerprint: b18befd9dd653682e653d60ee653d60ee653d60ee653d60ee653d60ee653d60e

{"mobileRedirectBlacklist":["/nft(/.*)?"],"staticPaths":["/static/","/.well-known/"],"firebreak":{"enabled":false,"redirect":{"from":"/:path","to":"/build_firebreak.html","type":"rewrite"}},"redirects":[{"from":"/get(/.*)?","to":"https://go.triller.co/get/","type":"redirect","code":"302"},{"from":"/faq(/.*)?","to":"https://support.triller.co","type":"redirect","code":"302"},{"from":"/resources(/.*)?","to":"https://support.triller.co/hc/en-us/articles/360050629912-Community-Guidelines","type":"redirect","code":"302"},{"from":"/h/:hashtag","to":"/hashtag/:hashtag","type":"redirect","code":"302"},{"from":"/stepup","to":"https://trillerstepup.squarespace.com","type":"redirect","code":"302"},{"from":"/terms/creators_agreement(.html)?","to":"https://support.triller.co/hc/en-us/articles/360055087851-Creators-Agreement","type":"redirect","code":"302"},{"from":"/sytycf/terms","to":"https://support.triller.co/hc/en-us/articles/4901906019469","type":"redirect","code":"302"},{"from":"(/m)?/terms(/.*)?","to":"https://support.triller.co/hc/en-us/articles/360053977612-Terms-of-Service","type":"redirect","code":"302"},{"from":"(/m)?/privacy(/.*)?","to":"https://support.triller.co/hc/en-us/articles/360053977512-Privacy-Policy","type":"redirect","code":"302"},{"from":"/.well-known/apple-app-site-association","to":"/.well-known/apple-app-site-association.json","type":"rewrite"},{"from":"/static/community-guidelines","to":"https://support.triller.co/hc/en-us/articles/360050629912-Community-Guidelines","type":"redirect","code":"302"},{"from":"/static/copyright-complaint","to":"/static/copyright-complaint.html","type":"rewrite"},{"from":"/static/privacy-policy","to":"https://support.triller.co/hc/en-us/articles/360053977512-Privacy-Policy","type":"redirect","code":"302"},{"from":"/static/terms-of-service","to":"https://support.triller.co/hc/en-us/articles/360053977612-Terms-of-Service","type":"redirect","code":"302"},{"from":"/m/index.html","to":"/m","type":"redirect","code":"302"},{"from":"/auth/(.+)/callback","to":"/static/oauth-callback.html","type":"rewrite"},{"from":"/robots.txt","to":"/robots.txt","type":"rewrite"},{"from":"/firebreak","to":"/build_firebreak.html","type":"rewrite"},{"from":"/embed/(.*)","to":"/build_embed.html","type":"rewrite"}]}

Found on 2024-06-30 08:08

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: lazada365.shop
Port: 80
URL: http://lazada365.shop

First seen 2024-06-27 10:10
- Severity: low
  Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bcdb1f5f6cda0e0b7dac2f8f06a6219179
```
Found 22 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/get-test
/layer
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-06-27 10:10
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: www.lazada365.shop
Port: 80
URL: http://www.lazada365.shop

First seen 2024-06-27 09:10
- Severity: low
  Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea9e9c25fcded8f784e519df79b69805a1d
```
Found 23 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-06-27 09:10
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: ccs.donpau.com
Port: 443
URL: https://ccs.donpau.com

First seen 2024-06-06 20:55
Last seen 2024-06-20 18:11
Open for 13 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316f53451a6f53451ab1ac383b

Apache Status

Apache Server Status for ccs.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-04-05T12:02:26

Current Time: Thursday, 20-Jun-2024 18:11:41 UTC
Restart Time: Thursday, 20-Jun-2024 10:27:50 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  7 hours 43 minutes 50 seconds
Server load: 0.00 0.00 0.00
Total accesses: 631 - Total Traffic: 315 kB - Total Duration: 9512
CPU Usage: u1.41 s2.44 cu0 cs0 - .0138% CPU load
.0227 requests/sec - 11 B/second - 511 B/request - 15.0745 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
0527no0yes1024000
1528no0yes0025000
Sum200 1049000

________________W_________________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-05270/19/19_
1.2418020.00.010.01
113.133.177.77http/1.1localhost:80GET /ws/ec/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php H

0-05270/22/22_
1.2619000.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443{\"method\":\"login\",\"params\":{\"login\":\"45JymPWP1DeQxxMZNJv9w2bTQ2

0-05270/22/22_
1.24112000.00.010.01
113.133.177.77http/1.1

0-05270/24/24_
1.2419000.00.010.01
113.133.177.77http/1.1localhost:80GET /yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTT

0-05270/26/26_
1.2613020.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443{\"id\":1,\"jsonrpc\":\"2.0\",\"method\":\"login\",\"params\":{\"login\":\"x\",

0-05270/25/25_
1.262022870.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /.vscode/sftp.json HTTP/1.1

0-05270/23/23_
1.2514010.00.010.01
113.133.177.77http/1.1localhost:80GET /testing/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php

0-05270/29/29_
1.2614000.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443{\"params\": [\"miner1\", \"bf\", \"00000001\", \"504e86ed\", \"b2957c02\"]

0-05270/18/18_
1.2513028970.00.010.01
113.133.177.77http/1.1localhost:80GET /demo/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HT

0-05270/22/22_
1.263000.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server HTTP/1.1

0-05270/20/20_
1.264010.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-05270/22/22_
1.26112010.00.010.01
113.133.177.77http/1.1localhost:80GET /index.php?s=/index/\\think\\app/invokefunction&function=call

0-05270/24/24_
1.270020.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-05270/20/20_
1.260020.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /v2/_catalog HTTP/1.1

0-05270/23/23_
1.261030.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /debug/default/view?panel=config HTTP/1.1

0-05270/33/33_
1.262010.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /about HTTP/1.1

0-05271/17/17W
1.250000.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server-status HTTP/1.1

0-05270/19/19_
1.26113000.00.010.01
113.133.177.77http/1.1localhost:80GET /app/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTT

0-05270/23/23_
1.25113010.00.010.01
113.133.177.77http/1.1localhost:80GET /apps/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HT

0-05270/25/25_
1.2616015830.00.020.02
127.0.0.1http/1.1ccs.linkpc.net:8443{\"id\":1,\"jsonrpc\":\"2.0\",\"method\":\"login\",\"params\":{\"login\":\"blu

0-05270/20/20_
1.2516015960.00.010.01
113.133.177.77http/1.1localhost:80GET /tests/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php H

0-05270/25/25_
1.26112010.00.010.01
113.133.177.77http/1.1localhost:80GET /index.php?lang=../../../../../../../../usr/local/lib/php/p

0-05270/20/20_
1.26112010.00.010.01
113.133.177.77http/1.1localhost:80GET /public/index.php?s=/index/\\think\\app/invokefunction&functi

0-05270/19/19_
1.26112010.00.010.01
113.133.177.77http/1.1localhost:80GET /index.php?lang=../../../../../../../../tmp/index1 HTTP/1.1

0-05270/18/18_
1.2618011130.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443{\"id\":1,\"method\":\"mining.subscribe\",\"params\":[]}\n

1-05280/3/3_
0.108277000.00.000.00
127.0.0.1http/1.1

1-05280/1/1_
0.107660000.00.000.00
127.0.0.1http/1.1

1-05280/1/1_
0.087729000.00.000.00
127.0.0.1http/1.1

1-05280/1/1_
0.037545000.00.000.00
127.0.0.1http/1.1

1-05280/3/3_
0.097136000.00.000.00
127.0.0.1http/1.1

1-05280/4/4_
0.137576000.00.000.00
127.0.0.1http/1.1

1-05280/2/2_
0.067161000.00.000.00
127.0.0.1http/1.1

1-05280/1/1_
0.067130000.00.000.00
127.0.0.1http/1.1

1-05280/2/2_
0.097181000.00.000.00
127.0.0.1http/1.1

1-05280/3/3_
0.137197000.00.000.00
127.0.0.1http/1.1

1-05280/1/1_
0.1217000.00.000.00
127.0.0.1http/1.1

1-05280/5/5_
0.106668000.00.000.00
127.0.0.1http/1.1

1-05280/2/2_
0.126696000.00.000.00
127.0.0.1http/1.1

1-05280/4/4_
0.129042000.00.000.00
127.0.0.1http/1.1

1-05280/1/1_
0.056974000.00.000.00
127.0.0.1http/1.1

1-05280/4/4_
0.127127000.00.000.00
127.0.0.1http/1.1

1-05280/3/3_
0.2817000.00.000.00
127.0.0.1http/1.1ccs.linkpc.net:8443{\"params\": [\"miner1\", \"password\"], \"id\": 2, \"method\": \"mining.a

1-05280/3/3_
0.128355000.00.000.00
127.0.0.1http/1.1

1-05280/3/3_
0.128503000.00.000.00
127.0.0.1http/1.1

1-05280/5/5_
0.128500000.00.000.00
127.0.0.1http/1.1

1-05280/5/5_
0.147851000.00.000.00
127.0.0.1http/1.1

1-05280/4/4_
0.147799000.00.000.00
127.0.0.1http/1.1

1-05280/3/3_
0.137819000.00.000.00
127.0.0.1http/1.1

1-05280/3/3_
0.137816000.00.000.00
127.0.0.1http/1.1

1-05280/6/6_
0.137772000.00.000.00
127.0.0.1http/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobyte

Found on 2024-06-20 18:11

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316f53451a6f53451a244153f2

Apache Status

Apache Server Status for ccs.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-04-05T12:02:26

Current Time: Tuesday, 18-Jun-2024 08:16:38 UTC
Restart Time: Sunday, 16-Jun-2024 13:57:30 UTC
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  1 day 18 hours 19 minutes 7 seconds
Server load: 0.00 0.00 0.00
Total accesses: 923 - Total Traffic: 753 kB - Total Duration: 238312
CPU Usage: u5.06 s9.14 cu1.55 cs2.21 - .0118% CPU load
.00606 requests/sec - 5 B/second - 835 B/request - 258.193 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
018654no0yes0025000
118655no0yes1024000
Sum200 1049000

_______________________________________W__________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2186540/6/8_
1.132846032380.00.000.00
213.25.141.87http/1.1localhost:80GET / HTTP/1.1

0-2186540/9/10_
1.152039720.00.020.02
127.0.0.1http/1.1ccs.linkpc.net:8443GET /about HTTP/1.1

0-2186540/13/18_
1.153022170.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-2186540/5/6_
1.12281034940.00.010.01
83.97.73.245http/1.1localhost:8443\x16\x03\x01

0-2186540/6/10_
1.132020010.00.000.00
184.105.247.251http/1.1localhost:8443\x16\x03\x01

0-2186540/6/8_
0.982020020.00.000.00
127.0.0.1http/1.1

0-2186540/6/8_
1.102000133713390.00.000.01
127.0.0.1http/1.1

0-2186540/6/9_
0.962391020.00.000.00
127.0.0.1http/1.1

0-2186540/7/7_
1.14570120512080.00.000.00
198.58.100.253http/1.1localhost:8443\x16\x03\x01

0-2186540/11/14_
1.101149121824400.00.010.01
127.0.0.1http/1.1

0-2186540/9/14_
1.132001019010.00.000.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-2186540/13/14_
1.122932113811410.00.010.01
127.0.0.1http/1.1

0-2186540/5/7_
1.11569257225740.00.000.00
127.0.0.1http/1.1

0-2186540/12/13_
1.15286130.00.010.01
185.224.128.43http/1.1localhost:80GET / HTTP/1.1

0-2186540/9/12_
1.151015310.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /v2/_catalog HTTP/1.1

0-2186540/3/6_
1.150017230.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-2186540/10/10_
1.08281030.00.000.00
127.0.0.1http/1.1

0-2186540/6/8_
1.152000.00.000.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET /.vscode/sftp.json HTTP/1.1

0-2186540/7/9_
1.151018000.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /debug/default/view?panel=config HTTP/1.1

0-2186540/9/13_
0.962845250.00.000.01
213.25.141.87http/1.1

0-2186540/4/6_
1.132826023580.00.000.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-2186540/9/12_
1.132550020.00.000.01
83.97.73.245http/1.1localhost:8443\x16\x03\x01

0-2186540/7/9_
1.132391012160.00.000.00
83.97.73.245http/1.1localhost:8443\x16\x03\x01

0-2186540/4/6_
0.962550011370.00.000.00
127.0.0.1http/1.1

0-2186540/5/7_
0.962826010.00.000.00
127.0.0.1http/1.1

1-2186550/2/32_
0.2630144480.00.000.03
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server HTTP/1.1

1-2186550/1/29_
0.064524049250.00.000.02
127.0.0.1http/1.1

1-2186550/3/32_
0.1437000131370.00.000.02
127.0.0.1http/1.1

1-2186550/1/26_
0.233701073700.00.000.02
127.0.0.1http/1.1

1-2186550/0/22_
0.003705074000.00.000.03
127.0.0.1http/1.1

1-2186550/0/25_
0.0037060140730.00.000.02
127.0.0.1http/1.1

1-2186550/0/26_
0.003701020860.00.000.02
127.0.0.1http/1.1

1-2186550/1/28_
0.063732049380.00.000.03
127.0.0.1http/1.1

1-2186550/3/29_
0.254179073040.00.000.02
83.97.73.245http/1.1localhost:8443\x16\x03\x01

1-2186550/0/21_
0.004211034490.00.000.02
127.0.0.1http/1.1

1-2186550/0/26_
0.003313054050.00.000.02
127.0.0.1http/1.1

1-2186550/3/23_
0.233313061940.00.000.02
127.0.0.1http/1.1

1-2186550/2/30_
0.233313069180.00.000.02
127.0.0.1http/1.1

1-2186550/1/30_
0.2329600220240.00.000.03
127.0.0.1http/1.1

1-2186551/1/28W
0.230080350.00.000.02
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server-status HTTP/1.1

1-2186550/2/27_
0.234014059190.00.000.02
127.0.0.1http/1.1

1-2186550/1/22_
0.064100055580.00.000.02
127.0.0.1http/1.1

1-2186550/0/24_
0.004133092270.00.000.03
127.0.0.1http/1.1

1-2186550/1/25_
0.063313012110.00.000.01
127.0.0.1http/1.1

1-2186550/2/34_
0.1441790156750.00.000.03
127.0.0.1http/1.1

1-2186550/1/30_
0.143953092000.00.000.02
127.0.0.1http/1.1

1-2186550/0/26_
0.004101054970.00.000.02
127.0.0.1http/1.1

1-2186550/2/31_
0.233735469200.00.000.02
127.0.0.1http/1.1

1-2186550/0/25_
0.003737028770.00.000.02
127.0.0.1http/1.1

1-2186550/1/28_
0.1439760151890.00.000.04
127.0.0.1http/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-18 08:16

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316f53451a6f53451a0bd04af7

Apache Status

Apache Server Status for ccs.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-04-05T12:02:26

Current Time: Sunday, 16-Jun-2024 07:55:34 UTC
Restart Time: Thursday, 13-Jun-2024 01:28:51 UTC
Parent Server Config. Generation: 4
Parent Server MPM Generation: 3
Server uptime:  3 days 6 hours 26 minutes 42 seconds
Server load: 0.00 0.00 0.00
Total accesses: 1879 - Total Traffic: 68.9 MB - Total Duration: 3624735
CPU Usage: u9.12 s17.62 cu4.38 cs6.62 - .0134% CPU load
.00665 requests/sec - 255 B/second - 37.5 kB/request - 1929.08 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
038161no0yes0025000
138162no0yes1024000
Sum200 1049000

____________________________W_____________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-3381610/2/19_
0.161452060810.00.000.02
127.0.0.1http/1.1

0-3381610/2/23_
0.15445011590.00.000.01
127.0.0.1http/1.1

0-3381610/1/20_
0.151059013960.00.000.01
127.0.0.1http/1.1

0-3381610/2/16_
0.151441020.00.000.01
127.0.0.1http/1.1

0-3381610/2/16_
0.161444050.00.000.01
127.0.0.1http/1.1

0-3381610/2/22_
0.161450015630.00.000.01
127.0.0.1http/1.1

0-3381610/1/19_
0.15209023590.00.000.02
127.0.0.1http/1.1

0-3381610/2/19_
0.151800067990.00.000.02
127.0.0.1http/1.1

0-3381610/3/15_
0.210040.00.000.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /.vscode/sftp.json HTTP/1.1

0-3381610/2/24_
0.1552070.00.000.01
127.0.0.1http/1.1

0-3381610/2/17_
0.151820167590.00.000.02
127.0.0.1http/1.1

0-3381610/1/22_
0.15442028500.00.000.02
127.0.0.1http/1.1

0-3381610/2/21_
0.15117010100.00.000.01
127.0.0.1http/1.1

0-3381610/2/24_
0.151798026560.00.000.02
127.0.0.1http/1.1

0-3381610/2/17_
0.151796032050.00.000.01
127.0.0.1http/1.1

0-3381610/2/23_
0.151709016970.00.000.02
127.0.0.1http/1.1

0-3381610/2/21_
0.151645020.00.000.01
127.0.0.1http/1.1

0-3381610/2/19_
0.1614540119050.00.000.02
127.0.0.1http/1.1

0-3381610/3/21_
0.161829050.00.000.01
127.0.0.1http/1.1

0-3381610/2/18_
0.161445061330.00.000.01
127.0.0.1http/1.1

0-3381610/1/26_
0.15446043630.00.000.02
127.0.0.1http/1.1

0-3381610/1/22_
0.154460112870.00.000.02
127.0.0.1http/1.1

0-3381610/2/22_
0.161443072190.00.000.02
127.0.0.1http/1.1

0-3381610/3/18_
0.161446024600.00.000.01
127.0.0.1http/1.1

0-3381610/2/20_
0.161450017060.00.000.01
127.0.0.1http/1.1

1-3381620/7/59_
0.796901014230.00.000.10
127.0.0.1http/1.1

1-3381620/8/50_
0.5611703038940.00.000.09
127.0.0.1http/1.1

1-3381620/7/57_
0.5616401239520.00.000.14
127.0.0.1http/1.1

1-3381622/8/56W
0.6200543050.00.000.06
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server-status HTTP/1.1

1-3381620/6/54_
0.8000923710.00.000.51
127.0.0.1http/1.1ccs.linkpc.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-3381620/4/53_
0.561630861090.00.002.62
127.0.0.1http/1.1

1-3381620/8/52_
0.7911703476780.00.0021.40
127.0.0.1http/1.1

1-3381620/8/45_
0.7911501159720.00.000.36
127.0.0.1http/1.1

1-3381620/9/63_
0.791160686090.00.000.13
127.0.0.1http/1.1

1-3381620/8/58_
0.561160545660.00.000.06
127.0.0.1http/1.1

1-3381620/12/61_
0.791160641930.00.010.09
127.0.0.1http/1.1

1-3381620/5/60_
0.561160993120.00.000.14
127.0.0.1http/1.1

1-3381620/5/58_
0.553730634220.00.000.11
127.0.0.1http/1.1

1-3381620/5/50_
0.80390653210.00.000.06
127.0.0.1http/1.1

1-3381620/8/53_
0.801101108940.00.000.48
104.248.118.237http/1.1localhost:8443\x16\x03\x01

1-3381620/5/57_
0.554002400300.00.004.44
127.0.0.1http/1.1

1-3381620/6/62_
0.795203063170.00.0029.57
127.0.0.1http/1.1

1-3381620/5/55_
0.551150792290.00.010.08
127.0.0.1http/1.1

1-3381620/5/52_
0.566802599980.00.002.48
127.0.0.1http/1.1

1-3381620/6/53_
0.80002312060.00.001.89
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server HTTP/1.1

1-3381620/3/44_
0.80001891980.00.000.43
127.0.0.1http/1.1ccs.linkpc.net:8443GET /debug/default/view?panel=config HTTP/1.1

1-3381620/9/58_
0.80001096210.00.000.10
127.0.0.1http/1.1ccs.linkpc.net:8443GET /about HTTP/1.1

1-3381620/8/47_
0.80001285310.00.002.94
127.0.0.1http/1.1ccs.linkpc.net:8443GET /v2/_catalog HTTP/1.1

1-3381620/6/57_
0.8010729800.00.000.15
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-3381620/6/61_
0.56901629470.00.000.07
127.0.0.1http/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-16 07:55

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316f53451a6f53451a7384a30d

Apache Status

Apache Server Status for ccs.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-04-05T12:02:26

Current Time: Wednesday, 12-Jun-2024 00:50:24 UTC
Restart Time: Tuesday, 11-Jun-2024 09:10:19 UTC
Parent Server Config. Generation: 2
Parent Server MPM Generation: 1
Server uptime:  15 hours 40 minutes 4 seconds
Server load: 0.00 0.00 0.00
Total accesses: 411 - Total Traffic: 748 kB - Total Duration: 484371
CPU Usage: u1.82 s3.67 cu1.25 cs1.61 - .0148% CPU load
.00729 requests/sec - 13 B/second - 1863 B/request - 1178.52 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
08393no0yes1024000
18394no0yes0025000
Sum200 1049000

_______________W__________________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-183930/0/16_
0.00160131040.00.000.03
127.0.0.1http/1.1

0-183930/0/17_
0.00151086140.00.000.02
127.0.0.1h2cccs.linkpc.net:8443[1/1] done

0-183930/1/13_
0.02151025350.00.000.02
141.98.11.79http/1.1

0-183930/2/20_
0.051520210480.00.000.02
127.0.0.1h2cccs.linkpc.net:8443GET / HTTP/2.0

0-183930/0/17_
0.00152055720.00.000.02
127.0.0.1http/1.1

0-183930/1/15_
0.04152020130.00.000.02
127.0.0.1h2cccs.linkpc.net:8443[0/0] init

0-183930/2/18_
0.041520484640.00.000.05
141.98.11.79http/1.1localhost:80CONNECT google.com:443 HTTP/1.1

0-183930/1/11_
0.053040.00.000.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server HTTP/1.1

0-183930/1/19_
0.053095210.00.000.05
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-183930/0/14_
0.001150373990.00.000.02
127.0.0.1http/1.1

0-183930/0/12_
0.00141032090.00.000.01
2600:1900:2000:a0::1:400http/1.1

0-183930/2/16_
0.05141044040.00.000.03
2600:1900:2000:a0::1:400http/1.1ccs.linkpc.net:80GET /favicon.ico HTTP/1.1

0-183930/1/13_
0.04134034390.00.000.02
2600:1900:2000:49::1:501http/1.1

0-183930/1/15_
0.051390377350.00.000.03
2600:1900:2000:49::1:501http/1.1ccs.linkpc.net:80GET / HTTP/1.1

0-183930/0/14_
0.00256026240.00.000.01
127.0.0.1http/1.1

0-183931/0/13W
0.0000384200.00.000.03
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server-status HTTP/1.1

0-183930/1/20_
0.052023340.00.000.02
127.0.0.1http/1.1ccs.linkpc.net:8443GET /.vscode/sftp.json HTTP/1.1

0-183930/1/12_
0.052029000.00.000.02
127.0.0.1http/1.1ccs.linkpc.net:8443GET /about HTTP/1.1

0-183930/1/10_
0.0510104670.00.000.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /debug/default/view?panel=config HTTP/1.1

0-183930/2/18_
0.050033910.00.000.05
127.0.0.1http/1.1ccs.linkpc.net:8443GET /v2/_catalog HTTP/1.1

0-183930/2/18_
0.0600357840.00.000.06
127.0.0.1http/1.1ccs.linkpc.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-183930/1/12_
0.04164021500.00.000.02
64.137.75.53http/1.1

0-183930/1/20_
0.041810427030.00.000.04
38.154.233.19http/1.1

0-183930/0/12_
0.00250050.00.000.01
127.0.0.1http/1.1

0-183930/1/15_
0.042520316470.00.000.03
127.0.0.1http/1.1

1-183940/0/1_
0.00823000.00.000.00
127.0.0.1http/1.1

1-183940/1/2_
0.03138000.00.000.00
127.0.0.1h2cccs.linkpc.net:8443GET / HTTP/2.0

1-183940/0/1_
0.00138000.00.000.00
36.99.136.136http/1.1localhost:80GET /favicon.ico HTTP/1.1

1-183940/0/1_
0.00138000.00.000.00
127.0.0.1h2cccs.linkpc.net:8443[0/0] init

1-183940/0/1_
0.0014096428964280.00.000.08
127.0.0.1http/1.1

1-183940/1/1_
0.02141000.00.000.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET /favicon.ico HTTP/1.1

1-183940/0/1_
0.00818000.00.000.00
127.0.0.1http/1.1

1-183940/0/1_
0.003004000.00.000.00
127.0.0.1http/1.1

1-183940/0/2_
0.003004011430.00.000.01
45.156.128.49http/1.1localhost:80GET /wp-content/plugins/wpschoolpress/readme.txt HTTP/1.1

1-183940/0/2_
0.003004000.00.000.00
208.100.26.231http/1.1localhost:80HEAD / HTTP/1.1

1-183940/0/2_
0.001334480265340.00.000.01
167.94.138.53h2clocalhost:80[0/0] init

1-183940/0/1_
0.001387617610.00.000.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-183940/0/1_
0.003004110.00.000.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

1-183940/0/2_
0.003004000.00.000.00
36.99.136.128http/1.1localhost:80GET /favicon.ico HTTP/1.1

1-183940/0/3_
0.003004000.00.000.00
111.7.96.152http/1.1

1-183940/0/1_
0.003004000.00.000.00
127.0.0.1http/1.1

1-183940/0/1_
0.003004000.00.000.00
36.99.136.136http/1.1

1-183940/0/1_
0.003004000.00.000.00
127.0.0.1http/1.1

1-183940/0/2_
0.003004000.00.000.00
78.153.140.177http/1.1localhost:80\x16\x03\x01\x01H\x01

1-183940/0/1_
0.003004000.00.000.00
167.94.138.53h2clocalhost:80[0/0] done

1-183940/0/2_
0.003004000.00.000.00
111.7.96.152http/1.1localhost:80GET /favicon.ico HTTP/1.1

1-183940/0/1_
0.003004000.00.000.00
127.0.0.1http/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-12 00:50

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316f53451a6f53451a8abdd30d

Apache Status

Apache Server Status for ccs.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-04-05T12:02:26

Current Time: Monday, 10-Jun-2024 18:32:31 UTC
Restart Time: Monday, 10-Jun-2024 14:23:18 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 hours 9 minutes 13 seconds
Server load: 0.00 0.00 0.00
Total accesses: 182 - Total Traffic: 218 kB - Total Duration: 83293
CPU Usage: u1.34 s2.03 cu0 cs0 - .0225% CPU load
.0122 requests/sec - 14 B/second - 1226 B/request - 457.654 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
0525no0yes1024000
1526no0yes0025000
Sum200 1049000

___________W______________________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-05250/9/9_
1.650058860.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET / HTTP/1.1

0-05250/7/7_
1.660020200.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /v2/_catalog HTTP/1.1

0-05250/9/9_
1.64525023370.00.020.02
5.180.148.248http/1.1localhost:80GET /panel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php H

0-05250/5/5_
1.65524011720.00.000.00
5.180.148.248http/1.1localhost:80GET /index.php?lang=../../../../../../../../usr/local/lib/php/p

0-05250/5/5_
1.64525000.00.000.00
5.180.148.248http/1.1localhost:80GET /index.php?s=/index/\\think\\app/invokefunction&function=call

0-05250/6/6_
1.65524018070.00.010.01
5.180.148.248http/1.1localhost:80GET /index.php?lang=../../../../../../../../tmp/index1 HTTP/1.1

0-05250/6/6_
1.6452607920.00.000.00
5.180.148.248http/1.1localhost:80GET /workspace/drupal/vendor/phpunit/phpunit/src/Util/PHP/eval-

0-05250/7/7_
1.64527070060.00.010.01
5.180.148.248http/1.1localhost:80GET /cms/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTT

0-05250/9/9_
1.64524033150.00.010.01
5.180.148.248http/1.1localhost:80GET /public/index.php?s=/index/\\think\\app/invokefunction&functi

0-05250/10/10_
1.63524047990.00.010.01
5.180.148.248http/1.1

0-05250/4/4_
1.64526000.00.000.00
5.180.148.248http/1.1localhost:80GET /backup/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php 

0-05251/3/3W
1.640000.00.000.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server-status HTTP/1.1

0-05250/8/8_
1.64527082520.00.010.01
5.180.148.248http/1.1localhost:80GET /crm/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTT

0-05250/5/5_
1.66009240.00.000.00
127.0.0.1http/1.1ccs.linkpc.net:8443GET /debug/default/view?panel=config HTTP/1.1

0-05250/8/8_
1.64525019450.00.010.01
5.180.148.248http/1.1localhost:80GET /apps/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HT

0-05250/5/5_
1.64525010890.00.000.00
5.180.148.248http/1.1localhost:80GET /public/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php 

0-05250/7/7_
1.64526028580.00.010.01
5.180.148.248http/1.1localhost:80GET /blog/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HT

0-05250/3/3_
1.64525010030.00.000.00
5.180.148.248http/1.1localhost:80GET /app/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTT

0-05250/6/6_
1.650032850.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /about HTTP/1.1

0-05250/3/3_
1.63462010560.00.010.01
127.0.0.1http/1.1

0-05250/10/10_
1.64527041270.00.010.01
5.180.148.248http/1.1localhost:80GET /demo/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HT

0-05250/8/8_
1.64526019760.00.020.02
5.180.148.248http/1.1localhost:80GET /admin/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php H

0-05250/11/11_
1.660051760.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-05250/9/9_
1.6500165880.00.020.02
127.0.0.1http/1.1ccs.linkpc.net:8443GET /server HTTP/1.1

0-05250/10/10_
1.650033630.00.010.01
127.0.0.1http/1.1ccs.linkpc.net:8443GET /.vscode/sftp.json HTTP/1.1

1-05260/1/1_
0.005635000.00.000.00
127.0.0.1http/1.1

1-05260/2/2_
0.125619111550.00.000.00
127.0.0.1http/1.1

1-05260/1/1_
0.045629134713470.00.000.00
127.0.0.1http/1.1

1-05260/1/1_
0.095638000.00.000.00
127.0.0.1http/1.1

1-05260/1/1_
0.095633000.00.000.00
127.0.0.1http/1.1

1-05260/1/1_
0.284732000.00.000.00
68.183.226.156http/1.1localhost:80GET /password.php HTTP/1.1

1-05260/1/1_
0.284733000.00.000.00
68.183.226.156http/1.1localhost:80GET /files/ HTTP/1.1

1-05260/1/1_
0.085602000.00.000.00
127.0.0.1http/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-10 18:32

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb319b58d0039b58d003cb343460

Apache Status

Apache Server Status for ccs.mrcork.com (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2024-04-05T12:02:26

Current Time: Saturday, 08-Jun-2024 18:23:15 UTC
Restart Time: Friday, 07-Jun-2024 16:51:18 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 day 1 hour 31 minutes 57 seconds
Server load: 0.00 0.00 0.00
Total accesses: 1953 - Total Traffic: 10.9 GB - Total Duration: 7285756
CPU Usage: u4.77 s40.33 cu1.46 cs5.49 - .0566% CPU load
.0212 requests/sec - 123.8 kB/second - 5.7 MB/request - 3730.55 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
1527no0yes0025000
27218no0yes1024000
Sum200 1049000

........................._______________________________W_______
___________.....................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0-0/0/39.
0.004804012612001550.00.000.06
127.0.0.1http/1.1ccs.mrcork.com:8443GET / HTTP/1.1

0-0-0/0/24.
0.00480400858230.00.000.07
127.0.0.1http/1.1

0-0-0/0/32.
0.0048040907430060.00.005.67
127.0.0.1http/1.1

0-0-0/0/30.
0.0048040741152890.00.000.03
127.0.0.1http/1.1

0-0-0/0/36.
0.00480401152211540.00.004.02
127.0.0.1http/1.1

0-0-0/0/33.
0.00480408971119550.00.000.05
127.0.0.1http/1.1

0-0-0/0/35.
0.00480401197660.00.000.04
127.0.0.1http/1.1

0-0-0/0/32.
0.0048040891384600.00.009.43
127.0.0.1http/1.1

0-0-0/0/34.
0.004804010191179060.00.000.05
127.0.0.1http/1.1ccs.mrcork.com:8443GET / HTTP/1.1

0-0-0/0/30.
0.0048040076570.00.000.51
127.0.0.1http/1.1ccs.mrcork.com:8443GET / HTTP/1.1

0-0-0/0/33.
0.00480401340221140.00.001.01
127.0.0.1http/1.1

0-0-0/0/27.
0.00480401413802880.00.000.05
127.0.0.1h2cccs.mrcork.com:8443[0/0] init

0-0-0/0/33.
0.00480401649141870.00.000.04
127.0.0.1http/1.1

0-0-0/0/32.
0.00480400132740.00.000.03
127.0.0.1http/1.1ccs.mrcork.com:8443GET /favicon.ico HTTP/1.1

0-0-0/0/31.
0.0048040737254650.00.000.04
127.0.0.1http/1.1

0-0-0/0/27.
0.004804011371197320.00.003.78
127.0.0.1http/1.1

0-0-0/0/29.
0.0048040884695360.00.000.54
127.0.0.1http/1.1ccs.mrcork.com:8443GET / HTTP/1.1

0-0-0/0/28.
0.00480409471044170.00.000.04
127.0.0.1http/1.1

0-0-0/0/31.
0.0048040875104780.00.00691.33
127.0.0.1h2cccs.mrcork.com:8443GET /10GB.bin HTTP/2.0

0-0-0/0/28.
0.0048040697472570.00.000.16
127.0.0.1http/1.1

0-0-0/0/34.
0.00480401550133130.00.000.04
127.0.0.1http/1.1

0-0-0/0/27.
0.00480401169143710.00.000.03
127.0.0.1http/1.1

0-0-0/0/32.
0.0048040895174230.00.000.04
127.0.0.1http/1.1

0-0-0/0/35.
0.00480401543748520.00.000.05
127.0.0.1http/1.1

0-0-0/0/34.
0.004804010782339230.00.0037.55
127.0.0.1http/1.1

1-05270/8/8_
32.99216209940.00.010.01
204.93.149.48http/1.1localhost:80GET /192.227.237.26/.env HTTP/1.1

1-05270/11/11_
32.972161059690.00.020.02
204.93.149.48http/1.1

1-05270/5/5_
32.992186000.00.000.00
204.93.149.48http/1.1localhost:80GET /192.227.237.26/.env HTTP/1.1

1-05270/8/8_
32.94216807660.00.010.01
204.93.149.48http/1.1

1-05270/8/8_
32.992155010.00.010.01
127.0.0.1http/1.1ccs.mrcork.com:8443GET /library/.env HTTP/1.1

1-05270/7/7_
32.972154010.00.010.01
127.0.0.1http/1.1

1-05270/10/10_
32.992141033400.00.010.01
204.93.149.48http/1.1localhost:80GET /old/.env HTTP/1.1

1-05270/10/10_
32.992145010.00.010.01
204.93.149.48http/1.1localhost:80GET /192.227.237.26/.env HTTP/1.1

1-05270/9/9_
32.972145010.00.010.01
204.93.149.48http/1.1

1-05270/6/6_
32.992138010.00.010.01
204.93.149.48http/1.1localhost:80GET /192.227.237.26/.env HTTP/1.1

1-05270/8/8_
32.972141010.00.010.01
204.93.149.48http/1.1

1-05270/9/9_
32.982137010.00.010.01
204.93.149.48http/1.1

1-05270/7/7_
32.992134010.00.010.01
204.93.149.48http/1.1localhost:80GET /.env HTTP/1.1

1-05270/10/10_
32.982133011920.00.010.01
204.93.149.48http/1.1

1-05270/8/8_
33.00139010.00.010.01
205.210.31.80http/1.1localhost:8443\x16\x03\x01

1-05270/9/9_
32.98139000.00.010.01
204.93.149.48http/1.1localhost:80GET /public/.env HTTP/1.1

1-05270/8/8_
32.96138020.00.010.01
204.93.149.48http/1.1

1-05270/7/7_
32.982261000.00.010.01
204.93.149.48http/1.1localhost:80GET /192.227.237.26/.env HTTP/1.1

1-05270/9/9_
32.942260010.010240.0110240.01
204.93.149.48http/1.1

1-05270/11/11_
32.982240014860.00.010.01
204.93.149.48http/1.1localhost:80GET /sites/all/libraries/mailchimp/.env HTTP/1.1

1-05270/8/8_
32.942239020.00.010.01
204.93.149.48http/1.1

1-05270/7/7_
32.992227000.00.010.01
204.93.149.48http/1.1localhost:80GET /192.227.237.26/.env HTTP/1.1

1-05270/8/8_
32.972227038580.00.010.01
204.93.149.48http/1.1

1-05270/9/9_
32.942186011110.00.010.01
204.93.149.48http/1.1

1-05270/9/9_
32.992169014350.00.010.01
204.93.149.48http/1.1localhost:80GET /192.227.237.26/.env HTTP/1.1

2-072180/46/46_
3.86002445090.00.410.41
127.0.0.1http/1.1ccs.mrcork.com:8443GET /about HTTP/1.1

2-072180/42/42_
3.85213002505840.00.120.12
204.93.149.48http/1.1localhost:80GET /wp-admin/.env HTTP/1.1

2-072180/43/43_
3.8513802088040.00.130.13
204.93.149.48http/1.1localhost:80GET /library/.env HTTP/1.1

2-072180/38/38_
3.8553501415580.00.120.12
178.215.236.250http/1.1

2-072180/41/41_
3.82213802463370.00.900.90
127.0.0.1http/1.1

2-072180/39/39_
3.8613901488310.020.0120.01
205.210.31.80http/1.1localhost:8443\x16\x03\x01

2-072181/40/40W
3.8400833070.03.283.28
127.0.0.1htt

Found on 2024-06-08 18:23

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb319b58d0039b58d003384e538c

Apache Status

Apache Server Status for ccs.mrcork.com (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/1.1.1n
Server MPM: event
Server Built: 2024-04-05T12:08:04

Current Time: Thursday, 06-Jun-2024 14:17:02 UTC
Restart Time: Thursday, 06-Jun-2024 03:03:13 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  11 hours 13 minutes 48 seconds
Server load: 0.00 0.00 0.00
Total accesses: 1626 - Total Traffic: 66.6 MB - Total Duration: 8711363
CPU Usage: u3.04 s4.58 cu0 cs0 - .0188% CPU load
.0402 requests/sec - 1726 B/second - 41.9 kB/request - 5357.54 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
0471no0yes0025000
1472no0yes1024000
Sum200 1049000

__________________________W_______________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-04710/4/4_
0.231793120235420.00.000.00
127.0.0.1http/1.1

0-04710/3/3_
0.231809119735930.00.000.00
127.0.0.1http/1.1

0-04710/4/4_
0.222014131546120.00.000.00
127.0.0.1http/1.1

0-04710/5/5_
0.222055119925210.00.000.00
127.0.0.1http/1.1

0-04710/2/2_
0.222439122725380.00.000.00
127.0.0.1http/1.1

0-04710/5/5_
0.270024380.00.000.00
127.0.0.1http/1.1ccs.mrcork.com:8443GET /secrets.json HTTP/1.1

0-04710/5/5_
0.251746121325250.00.010.01
127.0.0.1http/1.1

0-04710/7/7_
0.270036900.00.010.01
127.0.0.1http/1.1ccs.mrcork.com:8443GET /dump.sql HTTP/1.1

0-04710/16/16_
0.222047121239910.00.010.01
127.0.0.1http/1.1

0-04710/3/3_
0.221861131325500.00.000.00
127.0.0.1http/1.1

0-04710/5/5_
0.2700824090.00.170.17
127.0.0.1http/1.1ccs.mrcork.com:8443GET /config/database.php HTTP/1.1

0-04710/4/4_
0.221813131425370.00.000.00
127.0.0.1http/1.1

0-04710/3/3_
0.231807130634620.00.000.00
127.0.0.1http/1.1

0-04710/4/4_
0.231807121737280.00.000.00
127.0.0.1http/1.1

0-04710/4/4_
0.231806119131600.00.000.00
127.0.0.1http/1.1

0-04710/4/4_
0.231784120235770.00.000.00
127.0.0.1http/1.1

0-04710/4/4_
0.231784121241340.00.000.00
127.0.0.1http/1.1

0-04710/6/6_
0.231784119737720.00.000.00
127.0.0.1http/1.1

0-04710/4/4_
0.241780121147070.00.000.00
127.0.0.1http/1.1

0-04710/7/7_
0.251753121543880.00.000.00
127.0.0.1http/1.1

0-04710/3/3_
0.251376130125240.00.000.00
127.0.0.1http/1.1

0-04710/6/6_
0.270026100.00.000.00
127.0.0.1http/1.1ccs.mrcork.com:8443GET /backup.zip HTTP/1.1

0-04710/4/4_
0.270024290.00.000.00
127.0.0.1http/1.1ccs.mrcork.com:8443GET /backup.tar.gz HTTP/1.1

0-04710/3/3_
0.212079120524280.00.000.00
127.0.0.1http/1.1

0-04710/6/6_
0.251690130438570.00.000.00
127.0.0.1http/1.1

1-04720/54/54_
3.6612312213010760.00.120.12
127.0.0.1http/1.1

1-04721/66/66W
3.97003364610.04.434.43
127.0.0.1http/1.1ccs.mrcork.com:8443GET /server-status HTTP/1.1

1-04720/69/69_
3.97002792420.01.951.95
127.0.0.1http/1.1ccs.mrcork.com:8443GET /feed HTTP/1.1

1-04720/57/57_
3.975203851200.05.065.06
164.68.114.58http/1.1localhost:80GET /logs HTTP/1.1

1-04720/64/64_
3.9412411693991280.00.230.23
127.0.0.1http/1.1ccs.mrcork.com:8443GET / HTTP/1.1

1-04720/64/64_
3.9112325273396000.01.611.61
127.0.0.1http/1.1

1-04720/59/59_
3.915210104711430.05.645.64
164.68.114.58http/1.1

1-04720/59/59_
3.97003397800.00.450.45
127.0.0.1http/1.1ccs.mrcork.com:8443GET /database.sql HTTP/1.1

1-04720/59/59_
3.9412834861793410.01.141.14
127.0.0.1h2cccs.mrcork.com:8443[0/0] init

1-04720/65/65_
3.97002893420.00.170.17
127.0.0.1http/1.1ccs.mrcork.com:8443GET /docker-compose.yml HTTP/1.1

1-04720/62/62_
3.9412863662120360.00.340.34
127.0.0.1http/1.1ccs.mrcork.com:8443GET / HTTP/1.1

1-04720/52/52_
3.9712813098010.05.825.82
127.0.0.1h2cccs.mrcork.com:8443GET / HTTP/2.0

1-04720/62/62_
3.97003170170.04.894.89
127.0.0.1http/1.1ccs.mrcork.com:8443GET /config.json HTTP/1.1

1-04720/69/69_
3.97002514610.00.110.11
127.0.0.1http/1.1ccs.mrcork.com:8443GET /wp-admin/setup-config.php HTTP/1.1

1-04720/61/61_
3.97003322260.010.5910.59
127.0.0.1http/1.1ccs.mrcork.com:8443GET /.ssh/id_rsa HTTP/1.1

1-04720/55/55_
3.97003083830.01.331.33
127.0.0.1http/1.1ccs.mrcork.com:8443GET /.ssh/id_ed25519 HTTP/1.1

1-04720/64/64_
3.9337731593069880.00.540.54
127.0.0.1http/1.1

1-04720/67/67_
3.97002895610.01.151.15
127.0.0.1http/1.1ccs.mrcork.com:8443GET /.svn/wc.db HTTP/1.1

1-04720/62/62_
3.97004901020.011.2611.26
127.0.0.1http/1.1ccs.mrcork.com:8443GET /phpinfo.php HTTP/1.1

1-04720/67/67_
3.97002632290.02.162.16
127.0.0.1http/1.1ccs.mrcork.com:8443GET /.git/HEAD HTTP/1.1

1-04720/39/39_
3.9712904680370.01.631.63
65.154.226.171http/1.1ccs.mrcork.com:80GET / HTTP/1.1

1-04720/57/57_
3.9737322263295540.00.360.36
127.0.0.1http/1.1ccs.mrcork.com:8443GET / HTTP/1.1

1-04720/54/54_
3.7026635806141420.00.180.18
127.0.0.1http/1.1

1-04720/61/61_
3.97003197090.04.794.79
127.0.0.1http/1.1ccs.mrcork.com:8443GET /config.yaml HTTP/1.1

1-04720/57/57_
3.6612813174171390.00.380.38
127.0.0.1http/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-06 20:55

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: eleccommerce.shop
Port: 80
URL: http://eleccommerce.shop

First seen 2024-03-19 00:51
Last seen 2024-06-18 20:38
Open for 91 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c91500896915008965258b0fd97abc9e4ea54a7c6ae0521d5

Found 37 files trough .DS_Store spidering:

/apk
/apk/commerce_1000000.apk
/apk/commerce_1000001.apk
/apk/commerce_1000001.wgt
/apk/commerce_1000002.apk
/apk/commerce_1000002.wgt
/index.html
/static
/static/floor
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/index/11.jpeg
/static/index/avater.jpeg
/static/index/customer.png
/static/index/head.png
/static/index/hot.png
/static/index/icon1.png
/static/index/icon2.png
/static/index/icon3.png
/static/index/icon4.png
/static/index/loading.png
/static/index/notice.png
/static/index/rental-head.png
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/mine
/static/shellslogo.png

Found on 2024-06-18 20:38

Severity: medium
Fingerprint: 5f32cf5d6962f09c8efce1938efce193ec59b7f0e07a36d7e41bcfa7ebf1abd3

Found 36 files trough .DS_Store spidering:

/apk
/apk/commerce_1000000.apk
/apk/commerce_1000001.apk
/apk/commerce_1000001.wgt
/apk/commerce_1000002.wgt
/index.html
/static
/static/floor
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/index/11.jpeg
/static/index/avater.jpeg
/static/index/customer.png
/static/index/head.png
/static/index/hot.png
/static/index/icon1.png
/static/index/icon2.png
/static/index/icon3.png
/static/index/icon4.png
/static/index/loading.png
/static/index/notice.png
/static/index/rental-head.png
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/mine
/static/shellslogo.png

Found on 2024-05-18 00:09

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: eleccommerce.com
Port: 443
URL: https://eleccommerce.com

First seen 2024-03-30 01:12
Last seen 2024-06-18 12:20
Open for 80 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c91500896915008965258b0fd97abc9e4ea54a7c6ae0521d5

Found 37 files trough .DS_Store spidering:

/apk
/apk/commerce_1000000.apk
/apk/commerce_1000001.apk
/apk/commerce_1000001.wgt
/apk/commerce_1000002.apk
/apk/commerce_1000002.wgt
/index.html
/static
/static/floor
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/index/11.jpeg
/static/index/avater.jpeg
/static/index/customer.png
/static/index/head.png
/static/index/hot.png
/static/index/icon1.png
/static/index/icon2.png
/static/index/icon3.png
/static/index/icon4.png
/static/index/loading.png
/static/index/notice.png
/static/index/rental-head.png
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/mine
/static/shellslogo.png

Found on 2024-06-18 12:20

Severity: medium
Fingerprint: 5f32cf5d6962f09c8efce1938efce193ec59b7f0e07a36d7e41bcfa7ebf1abd3

Found 36 files trough .DS_Store spidering:

/apk
/apk/commerce_1000000.apk
/apk/commerce_1000001.apk
/apk/commerce_1000001.wgt
/apk/commerce_1000002.wgt
/index.html
/static
/static/floor
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/index/11.jpeg
/static/index/avater.jpeg
/static/index/customer.png
/static/index/head.png
/static/index/hot.png
/static/index/icon1.png
/static/index/icon2.png
/static/index/icon3.png
/static/index/icon4.png
/static/index/loading.png
/static/index/notice.png
/static/index/rental-head.png
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/mine
/static/shellslogo.png

Found on 2024-05-12 22:25

Severity: medium
Fingerprint: 5f32cf5d6962f09cd4047824d40478240b67a20349f8a28e368b78c40318732e

Found 35 files trough .DS_Store spidering:

/apk
/apk/commerce_1000000.apk
/apk/commerce_1000001.apk
/apk/commerce_1000001.wgt
/apk/commerce_1000002.wgt
/index.html
/static
/static/floor
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/index/11.jpeg
/static/index/avater.jpeg
/static/index/customer.png
/static/index/head.png
/static/index/hot.png
/static/index/icon1.png
/static/index/icon2.png
/static/index/icon3.png
/static/index/icon4.png
/static/index/loading.png
/static/index/notice.png
/static/index/rental-head.png
/static/invite
/static/Inyuangu
/static/lang
/static/mine
/static/shellslogo.png

Found on 2024-04-19 00:56

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: eleccommerce.shop
Port: 443
URL: https://eleccommerce.shop

First seen 2024-03-19 00:51
Last seen 2024-06-18 08:31
Open for 91 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c91500896915008965258b0fd97abc9e4ea54a7c6ae0521d5

Found 37 files trough .DS_Store spidering:

/apk
/apk/commerce_1000000.apk
/apk/commerce_1000001.apk
/apk/commerce_1000001.wgt
/apk/commerce_1000002.apk
/apk/commerce_1000002.wgt
/index.html
/static
/static/floor
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/index/11.jpeg
/static/index/avater.jpeg
/static/index/customer.png
/static/index/head.png
/static/index/hot.png
/static/index/icon1.png
/static/index/icon2.png
/static/index/icon3.png
/static/index/icon4.png
/static/index/loading.png
/static/index/notice.png
/static/index/rental-head.png
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/mine
/static/shellslogo.png

Found on 2024-06-18 08:31

Severity: low
Fingerprint: 5f32cf5d6962f09c4239b3d84239b3d82936541f9fcceb7a3dad090093304703

Found 8 files trough .DS_Store spidering:

/apk
/apk/commerce_1000000.apk
/apk/commerce_1000001.apk
/apk/commerce_1000001.wgt
/apk/commerce_1000002.apk
/apk/commerce_1000002.wgt
/index.html
/static

Found on 2024-06-12 04:12

Severity: medium
Fingerprint: 5f32cf5d6962f09c8efce1938efce193ec59b7f0e07a36d7e41bcfa7ebf1abd3

Found 36 files trough .DS_Store spidering:

/apk
/apk/commerce_1000000.apk
/apk/commerce_1000001.apk
/apk/commerce_1000001.wgt
/apk/commerce_1000002.wgt
/index.html
/static
/static/floor
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/index/11.jpeg
/static/index/avater.jpeg
/static/index/customer.png
/static/index/head.png
/static/index/hot.png
/static/index/icon1.png
/static/index/icon2.png
/static/index/icon3.png
/static/index/icon4.png
/static/index/loading.png
/static/index/notice.png
/static/index/rental-head.png
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/mine
/static/shellslogo.png

Found on 2024-05-18 00:09

Severity: low
Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea969d9d32ee39b15c9209aff758d1037ae

Found 23 files trough .DS_Store spidering:

/apk
/apk/commerce_1000000.apk
/apk/commerce_1000001.apk
/apk/commerce_1000001.wgt
/apk/commerce_1000002.wgt
/index.html
/static
/static/floor
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/invite
/static/Inyuangu
/static/lang
/static/mine
/static/shellslogo.png

Found on 2024-05-08 16:02

Severity: medium
Fingerprint: 5f32cf5d6962f09cd4047824d40478240b67a20349f8a28e368b78c40318732e

Found 35 files trough .DS_Store spidering:

/apk
/apk/commerce_1000000.apk
/apk/commerce_1000001.apk
/apk/commerce_1000001.wgt
/apk/commerce_1000002.wgt
/index.html
/static
/static/floor
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/index/11.jpeg
/static/index/avater.jpeg
/static/index/customer.png
/static/index/head.png
/static/index/hot.png
/static/index/icon1.png
/static/index/icon2.png
/static/index/icon3.png
/static/index/icon4.png
/static/index/loading.png
/static/index/notice.png
/static/index/rental-head.png
/static/invite
/static/Inyuangu
/static/lang
/static/mine
/static/shellslogo.png

Found on 2024-04-30 21:42

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: eleccommerce.com
Port: 80
URL: http://eleccommerce.com

First seen 2024-01-30 01:53
Last seen 2024-06-18 07:16
Open for 140 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c91500896915008965258b0fd97abc9e4ea54a7c6ae0521d5

Found 37 files trough .DS_Store spidering:

/apk
/apk/commerce_1000000.apk
/apk/commerce_1000001.apk
/apk/commerce_1000001.wgt
/apk/commerce_1000002.apk
/apk/commerce_1000002.wgt
/index.html
/static
/static/floor
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/index/11.jpeg
/static/index/avater.jpeg
/static/index/customer.png
/static/index/head.png
/static/index/hot.png
/static/index/icon1.png
/static/index/icon2.png
/static/index/icon3.png
/static/index/icon4.png
/static/index/loading.png
/static/index/notice.png
/static/index/rental-head.png
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/mine
/static/shellslogo.png

Found on 2024-06-18 07:16

Severity: low
Fingerprint: 5f32cf5d6962f09c81c345f781c345f770ebd35c761fee129341904bf9d7229b

Found 32 files trough .DS_Store spidering:

/apk
/index.html
/static
/static/floor
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/index/11.jpeg
/static/index/avater.jpeg
/static/index/customer.png
/static/index/head.png
/static/index/hot.png
/static/index/icon1.png
/static/index/icon2.png
/static/index/icon3.png
/static/index/icon4.png
/static/index/loading.png
/static/index/notice.png
/static/index/rental-head.png
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/mine
/static/shellslogo.png

Found on 2024-05-30 07:06

Severity: medium
Fingerprint: 5f32cf5d6962f09cd4047824d40478240b67a20349f8a28e368b78c40318732e

Found 35 files trough .DS_Store spidering:

/apk
/apk/commerce_1000000.apk
/apk/commerce_1000001.apk
/apk/commerce_1000001.wgt
/apk/commerce_1000002.wgt
/index.html
/static
/static/floor
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/index/11.jpeg
/static/index/avater.jpeg
/static/index/customer.png
/static/index/head.png
/static/index/hot.png
/static/index/icon1.png
/static/index/icon2.png
/static/index/icon3.png
/static/index/icon4.png
/static/index/loading.png
/static/index/notice.png
/static/index/rental-head.png
/static/invite
/static/Inyuangu
/static/lang
/static/mine
/static/shellslogo.png

Found on 2024-05-12 22:17

Severity: medium
Fingerprint: 5f32cf5d6962f09c8efce1938efce193ec59b7f0e07a36d7e41bcfa7ebf1abd3

Found 36 files trough .DS_Store spidering:

/apk
/apk/commerce_1000000.apk
/apk/commerce_1000001.apk
/apk/commerce_1000001.wgt
/apk/commerce_1000002.wgt
/index.html
/static
/static/floor
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/index/11.jpeg
/static/index/avater.jpeg
/static/index/customer.png
/static/index/head.png
/static/index/hot.png
/static/index/icon1.png
/static/index/icon2.png
/static/index/icon3.png
/static/index/icon4.png
/static/index/loading.png
/static/index/notice.png
/static/index/rental-head.png
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/mine
/static/shellslogo.png

Found on 2024-05-08 17:33

Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d9ebca5ba9ebca5ba9ebca5ba9ebca5ba
```
Found 1 files trough .DS_Store spidering:

/apk
```
Found on 2024-02-02 02:21

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: eleccommerce.co
Port: 443
URL: https://eleccommerce.co

First seen 2024-03-30 01:12
Last seen 2024-06-18 06:47
Open for 80 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c91500896915008965258b0fd97abc9e4ea54a7c6ae0521d5

Found 37 files trough .DS_Store spidering:

/apk
/apk/commerce_1000000.apk
/apk/commerce_1000001.apk
/apk/commerce_1000001.wgt
/apk/commerce_1000002.apk
/apk/commerce_1000002.wgt
/index.html
/static
/static/floor
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/index/11.jpeg
/static/index/avater.jpeg
/static/index/customer.png
/static/index/head.png
/static/index/hot.png
/static/index/icon1.png
/static/index/icon2.png
/static/index/icon3.png
/static/index/icon4.png
/static/index/loading.png
/static/index/notice.png
/static/index/rental-head.png
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/mine
/static/shellslogo.png

Found on 2024-06-18 06:47

Severity: medium
Fingerprint: 5f32cf5d6962f09c8efce1938efce193ec59b7f0e07a36d7e41bcfa735c5f3c4

Found 36 files trough .DS_Store spidering:

/apk
/apk/commerce_1000000.apk
/apk/commerce_1000001.apk
/apk/commerce_1000001.wgt
/apk/commerce_1000002.apk
/apk/commerce_1000002.wgt
/index.html
/static
/static/floor
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/index/11.jpeg
/static/index/avater.jpeg
/static/index/customer.png
/static/index/head.png
/static/index/hot.png
/static/index/icon1.png
/static/index/icon2.png
/static/index/icon3.png
/static/index/icon4.png
/static/index/loading.png
/static/index/notice.png
/static/index/rental-head.png
/static/invite
/static/Inyuangu
/static/lang
/static/mine
/static/shellslogo.png

Found on 2024-05-23 10:51

Severity: medium
Fingerprint: 5f32cf5d6962f09c8efce1938efce193ec59b7f0e07a36d7e41bcfa7ebf1abd3

Found 36 files trough .DS_Store spidering:

/apk
/apk/commerce_1000000.apk
/apk/commerce_1000001.apk
/apk/commerce_1000001.wgt
/apk/commerce_1000002.wgt
/index.html
/static
/static/floor
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/index/11.jpeg
/static/index/avater.jpeg
/static/index/customer.png
/static/index/head.png
/static/index/hot.png
/static/index/icon1.png
/static/index/icon2.png
/static/index/icon3.png
/static/index/icon4.png
/static/index/loading.png
/static/index/notice.png
/static/index/rental-head.png
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/mine
/static/shellslogo.png

Found on 2024-05-13 00:43

Severity: medium
Fingerprint: 5f32cf5d6962f09cd4047824d40478240b67a20349f8a28e368b78c40318732e

Found 35 files trough .DS_Store spidering:

/apk
/apk/commerce_1000000.apk
/apk/commerce_1000001.apk
/apk/commerce_1000001.wgt
/apk/commerce_1000002.wgt
/index.html
/static
/static/floor
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/index/11.jpeg
/static/index/avater.jpeg
/static/index/customer.png
/static/index/head.png
/static/index/hot.png
/static/index/icon1.png
/static/index/icon2.png
/static/index/icon3.png
/static/index/icon4.png
/static/index/loading.png
/static/index/notice.png
/static/index/rental-head.png
/static/invite
/static/Inyuangu
/static/lang
/static/mine
/static/shellslogo.png

Found on 2024-04-30 23:37

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: eleccommerce.co
Port: 80
URL: http://eleccommerce.co

First seen 2024-01-30 01:52
Last seen 2024-06-18 02:31
Open for 140 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c91500896915008965258b0fd97abc9e4ea54a7c6ae0521d5

Found 37 files trough .DS_Store spidering:

/apk
/apk/commerce_1000000.apk
/apk/commerce_1000001.apk
/apk/commerce_1000001.wgt
/apk/commerce_1000002.apk
/apk/commerce_1000002.wgt
/index.html
/static
/static/floor
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/index/11.jpeg
/static/index/avater.jpeg
/static/index/customer.png
/static/index/head.png
/static/index/hot.png
/static/index/icon1.png
/static/index/icon2.png
/static/index/icon3.png
/static/index/icon4.png
/static/index/loading.png
/static/index/notice.png
/static/index/rental-head.png
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/mine
/static/shellslogo.png

Found on 2024-06-18 02:31

Severity: medium
Fingerprint: 5f32cf5d6962f09c8efce1938efce193ec59b7f0e07a36d7e41bcfa7ebf1abd3

Found 36 files trough .DS_Store spidering:

/apk
/apk/commerce_1000000.apk
/apk/commerce_1000001.apk
/apk/commerce_1000001.wgt
/apk/commerce_1000002.wgt
/index.html
/static
/static/floor
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/index/11.jpeg
/static/index/avater.jpeg
/static/index/customer.png
/static/index/head.png
/static/index/hot.png
/static/index/icon1.png
/static/index/icon2.png
/static/index/icon3.png
/static/index/icon4.png
/static/index/loading.png
/static/index/notice.png
/static/index/rental-head.png
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/mine
/static/shellslogo.png

Found on 2024-05-13 01:32

Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d9ebca5ba9ebca5ba9ebca5ba9ebca5ba
```
Found 1 files trough .DS_Store spidering:

/apk
```
Found on 2024-02-02 10:13

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: gcore.mkhvampire.shop
Port: 80
URL: http://gcore.mkhvampire.shop

First seen 2024-06-17 06:01

Severity: medium
Fingerprint: 5f32cf5d6962f09c8e4417c08e4417c0a739a9044b18dfb90898590e2602e200

Found 62 files trough .DS_Store spidering:

/2008site
/2009site
/404.shtml
/blogs.dir
/bluesitestylesheet.css
/cgi-bin
/Copy of index.html
/council-2012-kci
/css
/eme2012-mennorode
/error_log
/favicon.ico
/hiroshima-day-2012-mysore
/hiroshima-day-2012-mysore_1
/IARF Annual Report 2008.pdf
/IARF E Bulletin January 2009.pdf
/IARF E-Bulletin October 2008.pdf
/IARFAnnualReport2008.pdf
/imagery
/images
/img
/index.php
/js
/license.txt
/nlg
/Old newsletters
/old_index.html
/old_index.php
/peacecommission
/picture_library
/PWR04 report
/readme.html
/REBooklet
/Report2009Council.pdf
/rfyn-madurai-us-chapter
/temp123
/Templates
/test
/testindex.html
/top_Recent.htm
/us-chapter-rfyn-madurai
/wp-activate.php
/wp-admin
/wp-blog-header.php
/wp-comments-post.php
/wp-config-paulbackup.php
/wp-config-sample.php
/wp-config.php
/wp-content
/wp-cron.php
/wp-includes
/wp-links-opml.php
/wp-load.php
/wp-login.php
/wp-mail.php
/wp-pass.php
/wp-register.php
/wp-settings.php
/wp-signup.php
/wp-trackback.php
/xmlrpc.php
/YoungAdults

Found on 2024-06-17 06:01

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: www.monopolys.shop
Port: 80
URL: http://www.monopolys.shop

First seen 2024-06-15 20:19
- Severity: low
  Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcfd6328a27847d29dc74e393357c1ab310
```
Found 25 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-06-15 20:19
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: monopolys.shop
Port: 80
URL: http://monopolys.shop

First seen 2024-06-15 19:46
- Severity: low
  Fingerprint: 5f32cf5d6962f09c81c345f781c345f7da50891f96e15c147c8f04ddc90f5557
```
Found 32 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/p_static1/css
/p_static1/img
/p_static1/img1
/p_static1/js
/public
/public/css
/public/img
/public/js
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-06-15 19:46
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: www.monopolys.cc
Port: 80
URL: http://www.monopolys.cc

First seen 2024-06-15 19:45
- Severity: low
  Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcfd6328a27847d29dc74e393357c1ab310
```
Found 25 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-06-15 19:45
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: monopolys.cc
Port: 80
URL: http://monopolys.cc

First seen 2024-06-15 19:45
- Severity: low
  Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcfd6328a27847d29dc74e393357c1ab310
```
Found 25 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-06-15 19:45
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: www.humanstory.cn
Port: 443
URL: https://www.humanstory.cn

First seen 2023-04-10 03:28
Last seen 2024-06-14 04:14
Open for 431 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652224b9a8fb
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[branch "master"]
[remote "origin"]
	url = hsc@cloud.lonery.com:git/humanstory.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2024-06-14 04:14
  
  220 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: inpurchases.shop
Port: 80
URL: http://inpurchases.shop

First seen 2024-06-12 16:55
- Severity: low
  Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea9e9c25fcded8f784e519df79b69805a1d
```
Found 23 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-06-12 16:55
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: www.inpurchases.shop
Port: 80
URL: http://www.inpurchases.shop

First seen 2024-06-12 16:54
- Severity: low
  Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bcdb1f5f6cda0e0b7dac2f8f06a6219179
```
Found 22 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/get-test
/layer
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-06-12 16:54
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: test11.cmapis.com
Port: 80
URL: http://test11.cmapis.com

First seen 2024-06-07 10:47
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772d89d2648572de733f843f728e1cec4b3
```
Found 11 files trough .DS_Store spidering:

/favicon.png
/icons
/icons/Icon-192.png
/icons/Icon-512.png
/icons/Icon-maskable-192.png
/icons/Icon-maskable-512.png
/img
/img/splash.png
/index.html
/jslibrary
/manifest.json
```
  Found on 2024-06-07 10:47
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: ggc.donpau.com
Port: 443
URL: https://ggc.donpau.com

First seen 2024-05-02 07:45
Last seen 2024-06-06 00:57
Open for 34 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31daff3db9daff3db971b623f8

Apache Status

Apache Server Status for gvm.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.11
Server MPM: event
Server Built: 2024-04-05T12:02:26

Current Time: Thursday, 06-Jun-2024 00:57:58 UTC
Restart Time: Wednesday, 05-Jun-2024 14:16:12 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  10 hours 41 minutes 46 seconds
Server load: 0.00 0.00 0.00
Total accesses: 933 - Total Traffic: 39.3 MB - Total Duration: 7220492
CPU Usage: u1.75 s2.56 cu0 cs0 - .0112% CPU load
.0242 requests/sec - 1070 B/second - 43.2 kB/request - 7739.01 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
0732no5yes0025000
1733no0yes0025000
21115no3yes1024000
Sum308 1074000

_______________________________________________________________W
___________.....................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-07320/11/11_
0.81117301077740.00.020.02
127.0.0.1http/1.1snap.mrcork.com:8443GET / HTTP/1.1

0-07320/14/14_
0.85415937181471730.00.050.05
127.0.0.1http/1.1snap.mrcork.com:8443GET / HTTP/1.1

0-07320/13/13_
0.794460373190.00.050.05
127.0.0.1http/1.1

0-07320/11/11_
0.77101301160870.00.030.03
23.227.194.41http/1.1

0-07320/13/13_
0.79123201136180.00.370.37
127.0.0.1http/1.1

0-07320/15/15_
0.79116801088450.00.020.02
127.0.0.1http/1.1

0-07320/16/16_
0.83117301075030.00.040.04
127.0.0.1h2csnap.mrcork.com:8443GET / HTTP/2.0

0-07320/10/10_
0.82431084350.00.030.03
127.0.0.1http/1.1snap.mrcork.com:8443GET / HTTP/1.1

0-07320/16/16_
0.845084098545000.00.050.05
127.0.0.1http/1.1snap.mrcork.com:8443GET / HTTP/1.1

0-07320/10/10_
0.7945802860620.00.840.84
127.0.0.1http/1.1

0-07320/14/14_
0.8500100150.00.030.03
127.0.0.1http/1.1snap.mrcork.com:8443GET /v2/_catalog HTTP/1.1

0-07320/15/15_
0.8043112785200.07.247.24
127.0.0.1http/1.1

0-07320/12/12_
0.854131028172990370.00.930.93
127.0.0.1http/1.1snap.mrcork.com:8443GET / HTTP/1.1

0-07320/10/10_
0.854061069012901850.00.050.05
127.0.0.1http/1.1snap.mrcork.com:8443GET / HTTP/1.1

0-07320/15/15_
0.8545901645820.01.331.33
127.0.0.1http/1.1snap.mrcork.com:8443GET / HTTP/1.1

0-07320/13/13_
0.8510889330.03.473.47
127.0.0.1http/1.1snap.mrcork.com:8443GET /server HTTP/1.1

0-07320/16/16_
0.854131028972998950.00.120.12
127.0.0.1http/1.1snap.mrcork.com:8443GET / HTTP/1.1

0-07320/12/12_
0.8543601260420.03.293.29
185.191.126.213http/1.1localhost:80GET / HTTP/1.1

0-07320/13/13_
0.81102503318940.00.100.10
23.227.194.41http/1.1

0-07320/12/12_
0.8500752120.00.380.38
127.0.0.1http/1.1snap.mrcork.com:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-07320/12/12_
0.854101024972552110.02.342.34
127.0.0.1http/1.1snap.mrcork.com:8443GET / HTTP/1.1

0-07320/15/15_
0.80124001666320.02.082.08
103.56.61.144http/1.1localhost:80GET /favicon.ico HTTP/1.1

0-07320/12/12_
0.77116801125840.00.030.03
127.0.0.1http/1.1

0-07320/12/12_
0.7812340439240.01.391.39
127.0.0.1http/1.1

0-07320/12/12_
0.80123211174090.00.030.03
127.0.0.1http/1.1

1-07330/12/12_
0.47631701338370.00.030.03
127.0.0.1http/1.1

1-07330/10/10_
0.47632001322000.00.030.03
127.0.0.1h2csnap.mrcork.com:8443[0/0] done

1-07330/8/8_
0.46543101578460.00.370.37
127.0.0.1http/1.1

1-07330/11/11_
0.514101026002172890.00.350.35
127.0.0.1http/1.1snap.mrcork.com:8443GET / HTTP/1.1

1-07330/11/11_
0.47632001232870.00.030.03
127.0.0.1http/1.1snap.mrcork.com:8443GET /images/irnTokenLogo.png HTTP/1.1

1-07330/10/10_
0.46543242337140.00.180.18
127.0.0.1http/1.1

1-07330/11/11_
0.471281093940.00.010.01
127.0.0.1http/1.1snap.mrcork.com:8443GET /login.action HTTP/1.1

1-07330/11/11_
0.514131029232116700.00.040.04
127.0.0.1http/1.1snap.mrcork.com:8443GET / HTTP/1.1

1-07330/13/13_
0.491286036340.00.010.01
127.0.0.1h2csnap.mrcork.com:8443GET / HTTP/2.0

1-07330/10/10_
0.47117101178760.00.020.02
127.0.0.1http/1.1

1-07330/7/7_
0.463154030110.00.010.01
127.0.0.1http/1.1snap.mrcork.com:8443GET /admin/event/uploadfile HTTP/1.1

1-07330/8/8_
0.47567501740260.00.040.04
127.0.0.1http/1.1

1-07330/10/10_
0.4712810184910.00.050.05
127.0.0.1http/1.1snap.mrcork.com:8443GET /default_drawnotice.shtml HTTP/1.1

1-07330/11/11_
0.49315901273630.00.060.06
127.0.0.1h2csnap.mrcork.com:8443GET /Public/home/js/check.js HTTP/2.0

1-07330/9/9_
0.4712330127900.00.040.04
127.0.0.1http/1.1

1-07330/10/10_
0.4911760531020.00.020.02
127.0.0.1h2csnap.mrcork.com:8443GET / HTTP/2.0

1-07330/11/11_
0.46315901009130.09.439.43
127.0.0.1http/1.1

1-07330/8/8_
0.48117101226380.00.020.02
103.56.61.144http/1.1localhost:80GET /.well-known/security.txt HTTP/1.1

1-07330/13/13_
0.4711760147390.00.030.03
127.0.0.1http/1.1snap.mrcork.com:8443GET / HTTP/1.1

1-07330/9/9_
0.47123101112280.00.340.34
127.0.0.1http/1.1

1-07330/12/12_
0.515113758358450.00.740.74
127.0.0.1http/1.1snap.mrcork.com:8443GET / HTTP/1.1

1-07330/11/11_
0.471233095450.00.320.32
127.0.0.1http/1.1

1-07330/10/10_
0.465430141027760.00.050.05
127.0.0.1http/1.1

1-07330/8/8_
0.4731540104960.00.010.01
127.0.0.1http/1.1snap.mrcork.com:8443GET /about HTTP/1.1

1-07330/7/7_
0.47128601035140.00.020.02
127.0.0.1http/1.1snap.mrcork.com:8443GET /public/message/findByType HTTP/1.1

2-011150/15/15_
0.3541701023100.00.020.02
127.0.0.1http/1.1

2-011150/15/15_
0.4241934801056650.00.040.04
127.0.0.1http/1.1snap.mrcork.com:8443GET / HTTP/1.1

2-011150/18/18_
0.43422252041750.00.020.02
127.0.0.1h2csnap.mrcork.com:8443GET /favicon.ico HTTP/2.0

2-011150/16/16_
0.43001421060.00.080.08
127.0.0.1http/1.1snap.mrcork.com:8443GET /about HTTP/1.1

2-011150/12/12_
0.4142211983591<

Found on 2024-06-06 00:57

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31daff3db9daff3db9ccfdd04f

Apache Status

Apache Server Status for gvm.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.11
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Tuesday, 04-Jun-2024 18:25:34 UTC
Restart Time: Tuesday, 04-Jun-2024 18:25:01 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  33 seconds
Server load: 0.00 0.00 0.00
Total accesses: 11 - Total Traffic: 8 kB - Total Duration: 5
CPU Usage: u0 s0 cu0 cs0
.333 requests/sec - 248 B/second - 744 B/request - .454545 ms/request
7 requests currently being processed, 0 workers gracefully restarting, 6 idle workers
KKKKKKW______...................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0296881/5/5K
0.002020.70.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

1-0296892/2/2K
0.000001.70.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

2-0296911/1/1K
0.002000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /server HTTP/1.1

3-0296931/1/1K
0.002000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /.vscode/sftp.json HTTP/1.1

4-0296941/1/1K
0.001000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /about HTTP/1.1

5-0296981/1/1K
0.001000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /debug/default/view?panel=config HTTP/1.1

6-0297000/0/0W
0.000000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-04 18:25

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31daff3db9daff3db97de6cea4

Apache Status

Apache Server Status for gvm.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.11
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Saturday, 01-Jun-2024 15:07:13 UTC
Restart Time: Saturday, 01-Jun-2024 15:07:01 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  11 seconds
Server load: 0.00 0.00 0.00
Total accesses: 7 - Total Traffic: 5 kB - Total Duration: 4
CPU Usage: u0 s.01 cu0 cs0 - .0909% CPU load
.636 requests/sec - 465 B/second - 731 B/request - .571429 ms/request
8 requests currently being processed, 0 workers gracefully restarting, 4 idle workers
KKKKKKKW____....................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-029861/1/1K
0.003000.70.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

1-029871/1/1K
0.002000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /.vscode/sftp.json HTTP/1.1

2-029881/1/1K
0.001000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /debug/default/view?panel=config HTTP/1.1

3-029901/1/1K
0.002000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /server HTTP/1.1

4-029911/1/1K
0.001000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /about HTTP/1.1

5-029961/1/1K
0.000000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /v2/_catalog HTTP/1.1

6-029981/1/1K
0.000000.90.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

7-029990/0/0W
0.000000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-06-02 17:59

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31daff3db9daff3db9bcb7cc61

Apache Status

Apache Server Status for gvm.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.11
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Thursday, 30-May-2024 19:48:01 UTC
Restart Time: Thursday, 30-May-2024 19:48:01 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime: 
Server load: 0.00 0.00 0.00
Total accesses: 0 - Total Traffic: 0 kB - Total Duration: 0
CPU Usage: u0 s0 cu0 cs0

1 requests currently being processed, 0 workers gracefully restarting, 4 idle workers
W____...........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-05248330/0/0W
0.000000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-30 19:47

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31daff3db9daff3db9064a7719

Apache Status

Apache Server Status for gvm.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.11
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Wednesday, 29-May-2024 19:07:06 UTC
Restart Time: Wednesday, 29-May-2024 19:07:01 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  5 seconds
Server load: 0.00 0.00 0.00
Total accesses: 7 - Total Traffic: 5 kB - Total Duration: 4
CPU Usage: u0 s.01 cu0 cs0 - .2% CPU load
1.4 requests/sec - 1024 B/second - 731 B/request - .571429 ms/request
8 requests currently being processed, 0 workers gracefully restarting, 4 idle workers
KKKKKKKW____....................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-04509081/1/1K
0.003000.70.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

1-04509091/1/1K
0.002000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /server HTTP/1.1

2-04509101/1/1K
0.001000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /about HTTP/1.1

3-04509111/1/1K
0.002000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /.vscode/sftp.json HTTP/1.1

4-04509131/1/1K
0.001000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /debug/default/view?panel=config HTTP/1.1

5-04509181/1/1K
0.000000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /v2/_catalog HTTP/1.1

6-04509201/1/1K
0.000000.90.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

7-04509210/0/0W
0.000000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-29 19:07

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31daff3db9daff3db98ea8f256

Apache Status

Apache Server Status for gvm.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.11
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Tuesday, 28-May-2024 18:01:17 UTC
Restart Time: Tuesday, 28-May-2024 18:01:01 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  16 seconds
Server load: 0.00 0.00 0.00
Total accesses: 7 - Total Traffic: 5 kB - Total Duration: 98
CPU Usage: u.01 s0 cu0 cs0 - .0625% CPU load
.438 requests/sec - 320 B/second - 731 B/request - 14 ms/request
8 requests currently being processed, 0 workers gracefully restarting, 4 idle workers
KKKKKKKW____....................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-03750791/1/1K
0.00328570.60.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

1-03750801/1/1K
0.00218370.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /server HTTP/1.1

2-03750811/1/1K
0.001000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /about HTTP/1.1

3-03750831/1/1K
0.002000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /.vscode/sftp.json HTTP/1.1

4-03750841/1/1K
0.001000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /debug/default/view?panel=config HTTP/1.1

5-03750891/1/1K
0.000000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /v2/_catalog HTTP/1.1

6-03750911/1/1K
0.000000.90.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

7-03750920/0/0W
0.000000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-28 18:01

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31daff3db9daff3db93b4d8761

Apache Status

Apache Server Status for gvm.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.11
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Monday, 27-May-2024 04:39:28 UTC
Restart Time: Monday, 27-May-2024 04:39:01 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  27 seconds
Server load: 0.00 0.00 0.00
Total accesses: 7 - Total Traffic: 5 kB - Total Duration: 5
CPU Usage: u0 s.01 cu0 cs0 - .037% CPU load
.259 requests/sec - 189 B/second - 731 B/request - .714286 ms/request
8 requests currently being processed, 0 workers gracefully restarting, 0 idle workers
KKKKKKKW........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-02617061/1/1K
0.001000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /about HTTP/1.1

1-02617071/1/1K
0.001000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /server HTTP/1.1

2-02617081/1/1K
0.001010.60.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

3-02617091/1/1K
0.001000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /debug/default/view?panel=config HTTP/1.1

4-02617101/1/1K
0.001000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /.vscode/sftp.json HTTP/1.1

5-02617161/1/1K
0.001000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /v2/_catalog HTTP/1.1

6-02617181/1/1K
0.000010.90.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

7-02617200/0/0W
0.000000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-27 04:39

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31daff3db9daff3db98f32cf1c

Apache Status

Apache Server Status for gvm.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.11
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Saturday, 25-May-2024 02:06:14 UTC
Restart Time: Saturday, 25-May-2024 02:06:02 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  12 seconds
Server load: 0.00 0.03 0.00
Total accesses: 9 - Total Traffic: 6 kB - Total Duration: 5
CPU Usage: u0 s.01 cu0 cs0 - .0833% CPU load
.75 requests/sec - 512 B/second - 682 B/request - .555556 ms/request
8 requests currently being processed, 0 workers gracefully restarting, 4 idle workers
KKKKKKKW____....................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-01089251/1/1K
0.002000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /.vscode/sftp.json HTTP/1.1

1-01089261/1/1K
0.002000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /server HTTP/1.1

2-01089271/2/2K
0.001000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /debug/default/view?panel=config HTTP/1.1

3-01089281/2/2K
0.001000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /about HTTP/1.1

4-01089291/1/1K
0.003010.60.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

5-01089351/1/1K
0.000000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /v2/_catalog HTTP/1.1

6-01089371/1/1K
0.000000.90.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

7-01089380/0/0W
0.000000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-26 01:32

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31daff3db9daff3db9f6427ac3

Apache Status

Apache Server Status for gvm.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.11
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Friday, 24-May-2024 00:34:01 UTC
Restart Time: Friday, 24-May-2024 00:34:01 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime: 
Server load: 0.00 0.00 0.00
Total accesses: 0 - Total Traffic: 0 kB - Total Duration: 0
CPU Usage: u0 s0 cu0 cs0

1 requests currently being processed, 0 workers gracefully restarting, 4 idle workers
W____...........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0334230/0/0W
0.000000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-24 00:33

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31daff3db9daff3db9c338e125

Apache Status

Apache Server Status for gvm.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.11
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Thursday, 23-May-2024 00:52:13 UTC
Restart Time: Thursday, 23-May-2024 00:52:01 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  11 seconds
Server load: 0.00 0.00 0.00
Total accesses: 9 - Total Traffic: 1.4 MB - Total Duration: 9130
CPU Usage: u0 s.02 cu0 cs0 - .182% CPU load
.818 requests/sec - 130.8 kB/second - 159.9 kB/request - 1014.44 ms/request
25 requests currently being processed, 0 workers gracefully restarting, 2 idle workers
WWWWWWWWKKKWKWWWWWKWW__WKKW.....................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-05550930/0/0W
0.0010000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

1-05550940/0/0W
0.0010000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

2-05550950/0/0W
0.0010000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

3-05550960/1/1W
0.003044740.00.010.01
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

4-05550970/0/0W
0.0010000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

5-05551030/0/0W
0.009000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

6-05551050/0/0W
0.009000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

7-05551070/0/0W
0.007000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

8-05551091/1/1K
0.004000.60.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

9-05551101/1/1K
0.003000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /server HTTP/1.1

10-05551121/1/1K
0.003000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /.vscode/sftp.json HTTP/1.1

11-05551140/1/1W
0.001046510.01.391.39
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

12-05551171/1/1K
0.003000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /about HTTP/1.1

13-05551190/0/0W
0.002000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

14-05551210/0/0W
0.002000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

15-05551230/0/0W
0.001000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

16-05551250/0/0W
0.001000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

17-05551260/0/0W
0.001000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

18-05551271/1/1K
0.001000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /debug/default/view?panel=config HTTP/1.1

19-05551310/0/0W
0.000000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

20-05551330/0/0W
0.000000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

23-05551360/0/0W
0.000000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /server-status HTTP/1.1

24-05551381/1/1K
0.000000.90.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

25-05551391/1/1K
0.000000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /v2/_catalog HTTP/1.1

26-05551400/0/0W
0.000000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-23 00:52

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31daff3db9daff3db98ca7d576

Apache Status

Apache Server Status for gvm.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.11
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Monday, 13-May-2024 00:40:34 UTC
Restart Time: Monday, 13-May-2024 00:40:01 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  32 seconds
Server load: 0.00 0.00 0.00
Total accesses: 7 - Total Traffic: 5 kB - Total Duration: 69
CPU Usage: u0 s.01 cu0 cs0 - .0312% CPU load
.219 requests/sec - 160 B/second - 731 B/request - 9.85714 ms/request
4 requests currently being processed, 0 workers gracefully restarting, 5 idle workers
K___KKW__.......................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-04493791/2/2K
0.0010660.90.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-04493800/1/1_
0.004000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /server HTTP/1.1

2-04493810/1/1_
0.002000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /.vscode/sftp.json HTTP/1.1

3-04493820/1/1_
0.001000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /about HTTP/1.1

4-04493841/1/1K
0.004000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /debug/default/view?panel=config HTTP/1.1

5-04493891/1/1K
0.002000.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /v2/_catalog HTTP/1.1

6-04493910/0/0W
0.000000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-13 00:40

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31daff3db9daff3db991223acb

Apache Status

Apache Server Status for gvm.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.11
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Wednesday, 08-May-2024 20:20:39 UTC
Restart Time: Wednesday, 08-May-2024 07:51:43 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  12 hours 28 minutes 55 seconds
Server load: 0.00 0.00 0.00
Total accesses: 3475 - Total Traffic: 3.0 GB - Total Duration: 317219773
CPU Usage: u1.17 s3.14 cu7.82 cs14.63 - .0596% CPU load
.0773 requests/sec - 69.3 kB/second - 0.9 MB/request - 91286.3 ms/request
7 requests currently being processed, 0 workers gracefully restarting, 4 idle workers
W__.....KKK...K...K.K_........._................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0276650/16/119W
0.030099958400.00.0196.99
127.0.0.1http/1.1gvm.donpau.com:8443GET /server-status HTTP/1.1

1-0275100/21/125_
0.1400100711630.032.84178.61
118.31.13.222http/1.1localhost:80GET http://35.212.180.168:80/phpmy-admin/scripts/setup.php HTTP

2-0446390/0/159_
0.0000104194700.00.00129.65
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

3-0-0/0/117.
0.00188140101728980.00.00172.04
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

4-0-0/0/101.
0.0018813080963430.00.0037.09
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

5-0-0/0/96.
0.00187990124421950.00.00288.74
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

6-0-0/0/106.
0.0018806097328900.00.0089.86
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

7-0-0/0/104.
0.0018810098506030.00.00111.96
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

8-0274641/17/110K
0.061092639470.81.2054.60
127.0.0.1http/1.1gvm.donpau.com:8443GET /v2/_catalog HTTP/1.1

9-0261021/19/119K
0.032098840150.80.47171.16
127.0.0.1http/1.1gvm.donpau.com:8443GET /debug/default/view?panel=config HTTP/1.1

10-0276731/16/119K
0.010077091060.90.0253.50
127.0.0.1http/1.1gvm.donpau.com:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

11-0-0/0/89.
0.0018808068267220.00.0099.20
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

12-0-0/0/93.
0.0018800071141360.00.0077.62
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

13-0-0/0/93.
0.0018805053328970.00.0025.00
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

14-0276791/11/90K
0.034072700510.80.0314.72
127.0.0.1http/1.1gvm.donpau.com:8443GET /server HTTP/1.1

15-0-0/0/68.
0.0018804060108700.00.0028.29
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

16-0-0/0/71.
0.0018815065908940.00.0074.26
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

17-0-0/0/70.
0.0018812081008670.00.0025.08
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

18-0276871/12/105K
0.023055785820.80.0123.72
127.0.0.1http/1.1gvm.donpau.com:8443GET /about HTTP/1.1

19-0-0/0/61.
0.0018828054633040.00.0062.78
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

20-0274701/14/72K
0.034070668680.80.11221.20
127.0.0.1http/1.1gvm.donpau.com:8443GET /.vscode/sftp.json HTTP/1.1

21-0276900/16/89_
0.0200102939800.00.0380.32
118.31.13.222http/1.1localhost:80GET http://35.212.180.168:80/php-myadmin/scripts/setup.php HTTP

22-0-0/0/98.
0.0018819088813040.00.0071.20
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

23-0-0/0/80.
0.00188180114353020.00.0053.38
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

24-0-0/0/82.
0.0018798070719570.00.0082.87
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

25-0-0/0/72.
0.0018817067835980.00.003.25
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

26-0-0/0/53.
0.0018816056420750.00.0050.71
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

27-0-0/0/45.
0.0019188043600540.00.0035.53
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

28-0-0/0/58.
0.0018801077135260.00.0018.92
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

29-0-0/0/52.
0.0018807074968130.00.0028.73
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

30-0-0/0/50.
0.0018802058430120.00.0049.24
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

31-0274860/21/77_
0.030069642070.00.0958.81
118.31.13.222http/1.1localhost:80GET http://35.212.180.168:80/mysql-admin/scripts/setup.php HTTP

32-0-0/0/61.
0.0018804053840420.00.0014.62
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

33-0-0/0/63.
0.0018981074058770.00.000.90
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

34-0-0/0/47.
0.0019239039664330.00.005.24
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

35-0-0/0/54.
0.0019027063863140.00.00108.42
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

36-0-0/0/47.
0.0018811046370810.00.0081.70
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

37-0-0/0/40.
0.0018979043538350.00.0065.30
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

38-0-0/0/35.
0.0019030059030260.00.006.66
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

39-0-0/0/42.
0.0018982044147400.00.000.58
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

40-0-0/0/25.
0.0020718025281080.00.001.35
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

41-0-0/0/21.
0.0020820020296670.00.0022.99
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

42-0-0/0/26.
0.0020819019745540.00.001.05
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

43-0-0/0/35.
0.0019244045248550.00.0076.09
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

44-0-0/0/16.
0.0020818016439170.00.003.22
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

45-0-0/0/17.
0.0020817017041530.00.000.43
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

46-0-0/0/8.
0.002081603162210.00.000.17
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

47-0-0/0/7.
0.002081506223950.00.000.68
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

48-0-0/0/15.
0.0020814016206390.00.0031.18
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

49-0-0/0/9.
0.002417903067790.00.000.04
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

50-0-0/0/11.
0.002430602678580.00.000.22
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

51-0-0/0/7.
0.002404805473770.00.000.11
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

52-0-0/0/4.
0.002432001225650.00.000.73
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

53-0-0/0/6.
0.002430801226710.00.000.32
::1http/1.1gvm.donpau.com:8443OPTIONS * HTTP/1.0

54-0-0/0/6.
0.002430701015150.00.000.10
::1http/1.1gvm.donpau.com:8443OPTION

Found on 2024-05-08 20:20

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31daff3db9daff3db9bcd63739

Apache Status

Apache Server Status for gvm.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.59 (Debian) OpenSSL/3.0.11
Server MPM: prefork
Server Built: 2024-04-05T12:02:26

Current Time: Thursday, 02-May-2024 07:45:50 UTC
Restart Time: Wednesday, 01-May-2024 15:04:02 UTC
Parent Server Config. Generation: 2
Parent Server MPM Generation: 1
Server uptime:  16 hours 41 minutes 48 seconds
Server load: 0.74 0.53 0.49
Total accesses: 875 - Total Traffic: 18.1 MB - Total Duration: 8759315
CPU Usage: u19.11 s6.92 cu7.54 cs9.56 - .0718% CPU load
.0146 requests/sec - 315 B/second - 21.2 kB/request - 10010.6 ms/request
21 requests currently being processed, 0 workers gracefully restarting, 5 idle workers
KK_KCKKKKKK_KKKK_KKKWKK_K_......................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1506001/13/60K
0.05409879250.91.302.58
93.123.11.13http/1.1gvm.donpau.com:80GET /.vscode/sftp.json HTTP/1.1

1-1408271/47/71K
7.41407258960.80.130.57
127.0.0.1http/1.1gvm.donpau.com:8443GET /.vscode/sftp.json HTTP/1.1

2-1571840/45/90_
0.06008839710.00.020.14
93.123.11.13http/1.1gvm.donpau.com:80GET /server HTTP/1.1

3-1419611/44/71K
0.41409156811.11.582.82
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

4-1421101/8/88C
17.7720669138110348100.50.030.86
127.0.0.1h2cgvm.donpau.com:8443[3/3] The timeout specified has expired

5-1425341/37/62K
0.08402171980.90.150.17
93.123.11.14http/1.1gvm.donpau.com:80GET /about HTTP/1.1

6-1425361/33/47K
0.09305870350.80.960.97
127.0.0.1http/1.1gvm.donpau.com:8443GET /about HTTP/1.1

7-1612001/1/16K
0.0030156820.90.000.02
93.123.11.11http/1.1gvm.donpau.com:80GET /debug/default/view?panel=config HTTP/1.1

8-1447331/46/50K
0.77408220190.80.120.12
127.0.0.1http/1.1gvm.donpau.com:8443GET /server HTTP/1.1

9-1612021/1/19K
0.00307651430.90.000.23
93.123.11.12http/1.1gvm.donpau.com:80GET /v2/_catalog HTTP/1.1

10-1612031/1/82K
0.00204554591.10.003.29
93.123.11.11http/1.1gvm.donpau.com:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

11-1479750/19/39_
0.08005110940.01.752.19
93.123.11.14http/1.1gvm.donpau.com:80GET / HTTP/1.1

12-1612061/1/65K
0.00107364350.90.003.96
93.123.11.11http/1.1gvm.donpau.com:80GET /login.action HTTP/1.1

13-1612071/1/7K
0.002045410.90.000.01
93.123.11.14http/1.1gvm.donpau.com:80GET /server-status HTTP/1.1

14-1612081/1/42K
0.0024649380.80.000.04
127.0.0.1http/1.1gvm.donpau.com:8443GET /debug/default/view?panel=config HTTP/1.1

15-1612091/1/11K
0.2210200.80.000.02
127.0.0.1http/1.1gvm.donpau.com:8443GET /v2/_catalog HTTP/1.1

16-1512460/8/17_
0.0100139400.00.020.05
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

17-1512471/18/20K
0.0540174830.70.030.03
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

18-1612141/1/4K
0.001011.00.000.00
93.123.11.11http/1.1gvm.donpau.com:80GET /_all_dbs HTTP/1.1

19-1612151/1/3K
0.00114290.80.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET / HTTP/1.1

20-1612160/0/2W
0.000000.00.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /server-status HTTP/1.1

21-1612171/1/3K
0.000000.90.000.00
93.123.11.11http/1.1gvm.donpau.com:80GET /.DS_Store HTTP/1.1

22-1612181/1/3K
0.000010.90.000.00
127.0.0.1http/1.1gvm.donpau.com:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

23-1612191/1/2K
0.220000.90.000.00
93.123.11.12http/1.1gvm.donpau.com:80GET /.git/config HTTP/1.1

24-1612221/1/2K
0.000000.90.000.00
93.123.11.13http/1.1gvm.donpau.com:80GET /.env HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-05-02 07:45

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: cns.learnmore.co
Port: 443
URL: https://cns.learnmore.co

First seen 2023-08-01 09:58
Last seen 2024-06-02 20:18
Open for 306 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c0d4b41d7c

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Sunday, 02-Jun-2024 20:18:26 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 273
Parent Server MPM Generation: 272
Server uptime: 360 days 30 minutes 19 seconds
Server load: 0.00 0.00 0.00
Total accesses: 4305158 - Total Traffic: 47.1 GB
CPU Usage: u10.81 s3.47 cu1.92 cs.8 - 5.47e-5% CPU load
.138 requests/sec - 1626 B/second - 11.5 kB/request
1 requests currently being processed, 9 idle workers
._____._..._....__.....W........................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-272-0/0/356045.
0.5822600.00.003993.75
172.26.9.134http/1.1
1-27293050/6/316813_
0.00100.00.053571.61
92.38.168.7http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
2-27293060/5/272024_
0.0115200.00.063045.71
135.181.212.177http/1.1yeswhois.com:8443GET /?city=Greenfield&state=IN&spec=6 HTTP/1.0
3-27293070/6/290637_
0.01000.00.073287.23
92.38.168.5http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
4-27293080/5/230187_
0.01300.00.052613.26
92.38.168.7http/1.1learnmore.co:8080GET /server HTTP/1.0
5-27293090/5/225492_
0.015130.00.072579.78
135.181.212.177http/1.1yeswhois.com:8443GET /?city=Greenwood%20Village&spec=6 HTTP/1.0
6-272-0/0/193620.
0.0823210.00.002216.49
172.26.9.134http/1.1
7-27239390/48/160565_
0.08100.00.521807.59
92.38.168.7http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
8-272-0/0/149153.
0.0823110.00.001751.47
172.26.9.134http/1.1
9-272-0/0/124664.
0.0722800.00.001375.73
172.26.9.134http/1.1
10-272-0/0/147689.
0.0722500.00.001676.44
172.26.9.134http/1.1
11-272297500/98/142063_
0.24200.01.031590.11
92.38.168.5http/1.1learnmore.co:8080GET /about HTTP/1.0
12-272-0/0/108763.
0.0722910.00.001246.57
172.26.9.134http/1.1
13-272-0/0/142189.
0.0723000.00.001617.59
172.26.9.134http/1.1
14-272-0/0/116617.
0.00238140.00.001282.96
172.26.9.134http/1.1
15-272-0/0/85958.
0.0822700.00.00936.75
172.26.9.134http/1.1
16-27293110/5/103239_
0.00400.00.061134.60
92.38.168.6http/1.1learnmore.co:8080GET / HTTP/1.0
17-27293120/5/96322_
0.00300.00.051096.40
92.38.168.6http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
18-272-0/0/59872.
0.3623600.00.00668.40
172.26.9.134http/1.1
19-272-0/0/82620.
0.3623700.00.00889.26
172.26.9.134http/1.1
20-272-0/0/76062.
0.3923400.00.00807.47
172.26.9.134http/1.1
21-272-0/0/43896.
0.1323300.00.00475.72
172.26.9.134http/1.1
22-272-0/0/79362.
0.00235110.00.00930.98
172.26.9.134http/1.1
23-27293180/5/37247W
0.00000.00.10412.28
92.38.168.7http/1.1learnmore.co:8080GET /server-status HTTP/1.0
24-272-0/0/51315.
0.281398000.00.00579.60
172.26.9.134http/1.1
25-272-0/0/69350.
0.0122297140.00.00780.78
172.26.9.134http/1.1
26-272-0/0/72429.
0.292229400.00.00823.11
172.26.9.134http/1.1
27-272-0/0/43481.
0.472229600.00.00494.33
172.26.9.134http/1.1
28-272-0/0/44841.
0.002229510.00.00497.99
172.26.9.134http/1.1
29-272-0/0/40320.
0.002229310.00.00446.31
172.26.9.134http/1.1
30-272-0/0/22234.
0.62438900.00.00241.32
172.26.9.134http/1.1
31-272-0/0/13158.
0.55439200.00.00139.02
172.26.9.134http/1.1
32-272-0/0/11184.
0.322229200.00.00122.73
172.26.9.134http/1.1
33-272-0/0/22466.
0.55438700.00.00245.79
172.26.9.134http/1.1
34-272-0/0/15890.
0.002229110.00.00164.65
172.26.9.134http/1.1
35-272-0/0/17119.
0.322229000.00.00192.15
172.26.9.134http/1.1
36-272-0/0/39367.
0.002228910.00.00449.74
172.26.9.134http/1.1
37-272-0/0/20985.
0.542228800.00.00232.94
172.26.9.134http/1.1
38-272-0/0/22591.
0.652228510.00.00255.61
172.26.9.134http/1.1
39-272-0/0/12064.
0.442228700.00.00120.52
172.26.9.134http/1.1
40-272-0/0/8568.
0.002228610.00.0092.01
172.26.9.134http/1.1
41-269-0/0/6486.
0.01837379220.00.0067.36
172.26.9.134http/1.1
42-269-0/0/1734.
0.0283677800.00.0015.02
172.26.9.134http/1.1
43-269-0/0/8825.
0.01837376100.00.0083.86
172.26.9.134http/1.1
44-269-0/0/1650.
1.3980207800.00.0015.96
172.26.9.134http/1.1
45-269-0/0/3666.
0.0283677600.00.0035.44
172.26.9.134http/1.1
46-263-0/0/887.
0.01837790100.00.005.64
172.26.9.134http/1.1
47-263-0/0/4495.
0.0483778490.00.0040.63
172.26.9.134http/1.1
48-263-0/0/1218.
0.01837786160.00.0010.46
172.26.9.134http/1.1
49-263-0/0/590.
0.01837783120.00.004.54
172.26.9.134http/1.1
50-263-0/0/2993.
0.01837782100.00.0026.87
172.26.9.134http/1.1
51-263-0/0/1297.
0.02837781100.00.008.59
172.26.9.134http/1.1
52-263-0/0/1496.
0.01837787100.00.0011.49
172.26.9.134http/1.1
53-263-0/0/2492.
0.0883782914180.00.0024.42
172.26.9.134http/1.1
54-263-0/0/1430.
0.0083783020330.00.0012.44
172.26.9.134http/1.1
55-263-0/0/783.
0.00837822150.00.005.51
172.26.9.134http/1.1
56-263-0/0/1090.
0.0083781500.00.008.34
172.26.9.134http/1.1
57-263-0/0/703.
0.0083782816120.00.004.92
172.26.9.134http/1.1
58-263-0/0/2553.
0.0083782700.00.0028.17
172.26.9.134http/1.1
59-263-0/0/630.
0.0083782616550.00.005.36
172.26.9.134http/1.1
60-263-0/0/1036.
0.0083782514380.00.006.97
172.26.9.134http/1.1
61-244-0/0/602.
0.00164030614680.00.005.04
172.26.9.134http/1.1
62-244-0/0/1333.
0.00164030315320.00.0011.85
172.26.9.134http/1.1
63-244-0/0/1263.
0.00164030216460.00.0012.49
172.26.9.134http/1.1
64-244-0/0/1962.

Found on 2024-06-02 20:18

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c015e42ef6

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Saturday, 01-Jun-2024 15:03:15 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 272
Parent Server MPM Generation: 271
Server uptime: 358 days 19 hours 15 minutes 8 seconds
Server load: 0.00 0.00 0.00
Total accesses: 4293937 - Total Traffic: 47.0 GB
CPU Usage: u12.04 s3.79 cu1.67 cs.61 - 5.84e-5% CPU load
.139 requests/sec - 1628 B/second - 11.5 kB/request
1 requests currently being processed, 7 idle workers
..._...._.___......W_..._.......................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-271-0/0/355453.
0.84656000.00.003987.32
172.26.9.134http/1.1
1-271-0/0/316365.
0.17655800.00.003567.33
172.26.9.134http/1.1
2-271-0/0/271401.
0.156563570.00.003039.20
172.26.9.134http/1.1
3-271102750/87/290340_
0.32100.02.483284.27
93.123.17.181http/1.1learnmore.co:8080GET /about HTTP/1.0
4-271-0/0/229632.
0.006564100.00.002607.48
172.26.9.134http/1.1
5-271-0/0/224870.
0.16655700.00.002572.68
172.26.9.134http/1.1
6-271-0/0/192858.
0.15655610.00.002208.65
172.26.9.134http/1.1
7-271-0/0/159985.
1.57151400.00.001800.66
89.248.168.222http/1.1securepay.zlivehost.com:8443GET /server-status HTTP/1.0
8-271102770/88/148589_
0.21000.01.761745.70
93.123.17.186http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
9-271-0/0/124089.
0.45655900.00.001370.02
172.26.9.134http/1.1
10-271102780/87/147148_
0.20800.02.251670.50
213.239.205.62http/1.1gcmfoundation.org:8080GET /contact.html HTTP/1.0
11-271102790/88/141533_
0.18200.01.841584.79
93.123.17.137http/1.1learnmore.co:8080GET /server HTTP/1.0
12-27130460/168/108125_
0.37000.01.951240.03
93.123.17.189http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
13-271-0/0/141663.
0.156562580.00.001611.60
172.26.9.134http/1.1
14-271-0/0/116088.
0.11151800.00.001277.31
89.248.168.222http/1.1securepay.zlivehost.com:8443GET /server-status HTTP/1.0
15-271-0/0/85277.
0.006570100.00.00929.34
172.26.9.134http/1.1
16-271-0/0/103056.
0.15656100.00.001132.32
172.26.9.134http/1.1
17-271-0/0/96141.
0.006566100.00.001094.08
172.26.9.134http/1.1
18-271-0/0/59410.
0.006569110.00.00663.21
172.26.9.134http/1.1
19-271102850/86/82543W
0.18000.02.03888.25
93.123.17.142http/1.1learnmore.co:8080GET /server-status HTTP/1.0
20-271102860/89/75672_
0.17100.01.89802.79
93.123.17.132http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
21-271-0/0/43832.
0.006567110.00.00474.96
172.26.9.134http/1.1
22-271-0/0/79362.
0.006568110.00.00930.98
172.26.9.134http/1.1
23-271-0/0/37094.
0.006565100.00.00410.47
172.26.9.134http/1.1
24-271102900/88/51238_
0.27100.01.93578.63
93.123.17.190http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
25-271-0/0/69350.
0.01282632140.00.00780.78
172.26.9.134http/1.1
26-269-0/0/72429.
0.2963022100.00.00823.11
172.26.9.134http/1.1
27-269-0/0/43481.
0.4763022500.00.00494.33
172.26.9.134http/1.1
28-269-0/0/44841.
0.0064353610.00.00497.99
172.26.9.134http/1.1
29-269-0/0/40320.
0.0064353710.00.00446.31
172.26.9.134http/1.1
30-269-0/0/22043.
0.0164354920.00.00239.36
172.26.9.134http/1.1
31-269-0/0/12968.
0.0064353410.00.00136.95
172.26.9.134http/1.1
32-269-0/0/11184.
0.3262969100.00.00122.73
172.26.9.134http/1.1
33-269-0/0/22276.
0.0064356210.00.00243.91
172.26.9.134http/1.1
34-269-0/0/15890.
0.0064353310.00.00164.65
172.26.9.134http/1.1
35-269-0/0/17119.
0.3263022400.00.00192.15
172.26.9.134http/1.1
36-269-0/0/39367.
0.0064353210.00.00449.74
172.26.9.134http/1.1
37-269-0/0/20985.
0.5462969000.00.00232.94
172.26.9.134http/1.1
38-269-0/0/22591.
0.6564355810.00.00255.61
172.26.9.134http/1.1
39-269-0/0/12064.
0.4463022200.00.00120.52
172.26.9.134http/1.1
40-269-0/0/8568.
0.0064356110.00.0092.01
172.26.9.134http/1.1
41-269-0/0/6486.
0.01732068220.00.0067.36
172.26.9.134http/1.1
42-269-0/0/1734.
0.0273146700.00.0015.02
172.26.9.134http/1.1
43-269-0/0/8825.
0.01732065100.00.0083.86
172.26.9.134http/1.1
44-269-0/0/1650.
1.3969676700.00.0015.96
172.26.9.134http/1.1
45-269-0/0/3666.
0.0273146500.00.0035.44
172.26.9.134http/1.1
46-263-0/0/887.
0.01732479100.00.005.64
172.26.9.134http/1.1
47-263-0/0/4495.
0.0473247390.00.0040.63
172.26.9.134http/1.1
48-263-0/0/1218.
0.01732475160.00.0010.46
172.26.9.134http/1.1
49-263-0/0/590.
0.01732472120.00.004.54
172.26.9.134http/1.1
50-263-0/0/2993.
0.01732471100.00.0026.87
172.26.9.134http/1.1
51-263-0/0/1297.
0.02732470100.00.008.59
172.26.9.134http/1.1
52-263-0/0/1496.
0.01732476100.00.0011.49
172.26.9.134http/1.1
53-263-0/0/2492.
0.0873251814180.00.0024.42
172.26.9.134http/1.1
54-263-0/0/1430.
0.0073251920330.00.0012.44
172.26.9.134http/1.1
55-263-0/0/783.
0.00732511150.00.005.51
172.26.9.134http/1.1
56-263-0/0/1090.
0.0073250400.00.008.34
172.26.9.134http/1.1
57-263-0/0/703.
0.0073251716120.00.004.92
172.26.9.134http/1.1
58-263-0/0/2553.
0.0073251600.00.0028.17
172.26.9.134http/1.1
59-263-0/0/630.
0.0073251516550.00.005.36
172.26.9.134http/1.1
60-263-0/0/1036.
0.0073251414380.00.006.97
172.26.9.134http/1.1
61-244-0/0/602.
0.00153499514680.00.005.04
172.26.9.134http/1.1
62-244-0/0/1333.
0.00153499215320.00.0011.85
172.26.9.134http/1.1
63-244-0/0/1263.
0.00153499116460.00.0012.49
172.26.9.134http/1.1

Found on 2024-06-01 15:03

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c0f039e718

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Thursday, 30-May-2024 16:44:40 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 272
Parent Server MPM Generation: 271
Server uptime: 356 days 20 hours 56 minutes 34 seconds
Server load: 0.00 0.00 0.00
Total accesses: 4276851 - Total Traffic: 46.8 GB
CPU Usage: u9.65 s3.04 cu1.41 cs.53 - 4.74e-5% CPU load
.139 requests/sec - 1631 B/second - 11.5 kB/request
1 requests currently being processed, 9 idle workers
_.._.__.__.._..._..W_...........................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-271133330/7/354123_
0.01100.00.043974.60
93.123.17.190http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
1-271-0/0/315095.
0.2345900.00.003555.12
172.26.9.134http/1.1
2-271-0/0/270826.
0.1945710.00.003032.67
172.26.9.134http/1.1
3-271133340/7/289767_
0.01100.00.043276.78
93.123.17.181http/1.1learnmore.co:8080GET /about HTTP/1.0
4-271-0/0/228443.
0.2045600.00.002596.52
172.26.9.134http/1.1
5-27117370/90/224249_
0.1831130.00.932565.82
51.148.185.246http/1.1yeswhois.com:8443POST / HTTP/1.0
6-271133350/7/191399_
0.01200.00.052194.47
93.123.17.137http/1.1learnmore.co:8080GET /server HTTP/1.0
7-271-0/0/159356.
0.2246010.00.001793.27
172.26.9.134http/1.1
8-271133360/7/147368_
0.02000.00.051733.54
93.123.17.189http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
9-271133370/7/122966_
0.01100.00.081359.14
93.123.17.132http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
10-271-0/0/145868.
0.2145400.00.001656.56
172.26.9.134http/1.1
11-271-0/0/141126.
0.0046210.00.001579.74
172.26.9.134http/1.1
12-271133390/7/106741_
0.02000.00.041226.71
93.123.17.186http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
13-271-0/0/140521.
0.1745800.00.001600.18
172.26.9.134http/1.1
14-271-0/0/115613.
0.1645500.00.001271.55
172.26.9.134http/1.1
15-271-0/0/84848.
0.2046110.00.00925.26
172.26.9.134http/1.1
16-27117440/87/102613_
0.191610.00.861127.62
69.162.124.236http/1.1y2z.in:8443HEAD / HTTP/1.0
17-271-0/0/96139.
0.2546700.00.001094.07
172.26.9.134http/1.1
18-271-0/0/59286.
0.0046600.00.00661.95
172.26.9.134http/1.1
19-271133420/6/82398W
0.01000.00.03885.65
93.123.17.142http/1.1learnmore.co:8080GET /server-status HTTP/1.0
20-271133430/6/74501_
0.0138190.00.07791.42
51.148.185.246http/1.1yeswhois.com:8443POST / HTTP/1.0
21-271-0/0/43830.
0.0046810.00.00474.94
172.26.9.134http/1.1
22-271-0/0/79360.
0.0046440.00.00930.97
172.26.9.134http/1.1
23-271-0/0/37092.
0.00465150.00.00410.45
172.26.9.134http/1.1
24-271-0/0/51150.
0.0246300.00.00576.70
172.26.9.134http/1.1
25-271-0/0/69350.
0.01115918140.00.00780.78
172.26.9.134http/1.1
26-269-0/0/72429.
0.2946350700.00.00823.11
172.26.9.134http/1.1
27-269-0/0/43481.
0.4746351100.00.00494.33
172.26.9.134http/1.1
28-269-0/0/44841.
0.0047682110.00.00497.99
172.26.9.134http/1.1
29-269-0/0/40320.
0.0047682210.00.00446.31
172.26.9.134http/1.1
30-269-0/0/22043.
0.0147683420.00.00239.36
172.26.9.134http/1.1
31-269-0/0/12968.
0.0047681910.00.00136.95
172.26.9.134http/1.1
32-269-0/0/11184.
0.3246297600.00.00122.73
172.26.9.134http/1.1
33-269-0/0/22276.
0.0047684710.00.00243.91
172.26.9.134http/1.1
34-269-0/0/15890.
0.0047681810.00.00164.65
172.26.9.134http/1.1
35-269-0/0/17119.
0.3246351000.00.00192.15
172.26.9.134http/1.1
36-269-0/0/39367.
0.0047681710.00.00449.74
172.26.9.134http/1.1
37-269-0/0/20985.
0.5446297500.00.00232.94
172.26.9.134http/1.1
38-269-0/0/22591.
0.6547684310.00.00255.61
172.26.9.134http/1.1
39-269-0/0/12064.
0.4446350800.00.00120.52
172.26.9.134http/1.1
40-269-0/0/8568.
0.0047684610.00.0092.01
172.26.9.134http/1.1
41-269-0/0/6486.
0.01565354220.00.0067.36
172.26.9.134http/1.1
42-269-0/0/1734.
0.0256475200.00.0015.02
172.26.9.134http/1.1
43-269-0/0/8825.
0.01565351100.00.0083.86
172.26.9.134http/1.1
44-269-0/0/1650.
1.3953005200.00.0015.96
172.26.9.134http/1.1
45-269-0/0/3666.
0.0256475000.00.0035.44
172.26.9.134http/1.1
46-263-0/0/887.
0.01565765100.00.005.64
172.26.9.134http/1.1
47-263-0/0/4495.
0.0456575990.00.0040.63
172.26.9.134http/1.1
48-263-0/0/1218.
0.01565761160.00.0010.46
172.26.9.134http/1.1
49-263-0/0/590.
0.01565758120.00.004.54
172.26.9.134http/1.1
50-263-0/0/2993.
0.01565757100.00.0026.87
172.26.9.134http/1.1
51-263-0/0/1297.
0.02565756100.00.008.59
172.26.9.134http/1.1
52-263-0/0/1496.
0.01565762100.00.0011.49
172.26.9.134http/1.1
53-263-0/0/2492.
0.0856580414180.00.0024.42
172.26.9.134http/1.1
54-263-0/0/1430.
0.0056580520330.00.0012.44
172.26.9.134http/1.1
55-263-0/0/783.
0.00565797150.00.005.51
172.26.9.134http/1.1
56-263-0/0/1090.
0.0056579000.00.008.34
172.26.9.134http/1.1
57-263-0/0/703.
0.0056580316120.00.004.92
172.26.9.134http/1.1
58-263-0/0/2553.
0.0056580200.00.0028.17
172.26.9.134http/1.1
59-263-0/0/630.
0.0056580116550.00.005.36
172.26.9.134http/1.1
60-263-0/0/1036.
0.0056580014380.00.006.97
172.26.9.134http/1.1
61-244-0/0/602.
0.00136828014680.00.005.04
172.26.9.134http/1.1
62-244-0/0/1333.
0.00136827715320.00.0011.85
172.26.9.134http/1.1
63-244-0/0/1263.
0.00136827616460.00.0012.49
172.26.9.134http/1.1
64-244-0/0/1962.
0.001368275

Found on 2024-05-30 16:44

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c08e1119d4

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Monday, 27-May-2024 07:32:03 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 272
Parent Server MPM Generation: 271
Server uptime: 353 days 11 hours 43 minutes 56 seconds
Server load: 0.00 0.00 0.00
Total accesses: 4236770 - Total Traffic: 46.4 GB
CPU Usage: u10.45 s3.32 cu1.33 cs.45 - 5.09e-5% CPU load
.139 requests/sec - 1630 B/second - 11.5 kB/request
1 requests currently being processed, 9 idle workers
.__W..._____.__.................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-271-0/0/351536.
0.072867610.00.003942.92
172.26.9.134http/1.1
1-27152270/72/312559_
0.14200.00.783523.92
93.123.17.190http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
2-27152970/66/268142_
0.13100.00.793001.82
93.123.17.181http/1.1learnmore.co:8080GET /about HTTP/1.0
3-27166890/38/287654W
0.08000.00.423251.44
93.123.17.142http/1.1learnmore.co:8080GET /server-status HTTP/1.0
4-271-0/0/226013.
0.01286500.00.002569.57
172.26.9.134http/1.1
5-271-0/0/222342.
0.00286400.00.002543.52
172.26.9.134http/1.1
6-271-0/0/188747.
0.00286300.00.002162.35
172.26.9.134http/1.1
7-27166930/38/157379_
0.08100.00.391770.37
93.123.17.132http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
8-27152260/70/145386_
0.14200.00.851710.93
93.123.17.137http/1.1learnmore.co:8080GET /server HTTP/1.0
9-27166940/37/120698_
0.07000.00.461331.83
93.123.17.189http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
10-27166950/38/143490_
0.12000.00.391629.97
93.123.17.186http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
11-27166960/37/138943_
0.07610.00.411553.43
80.240.113.14http/1.1learnmore.co:8080GET / HTTP/1.0
12-271-0/0/105153.
0.072870650.00.001208.83
172.26.9.134http/1.1
13-27166970/37/138416_
0.07310.00.461575.00
93.123.17.137http/1.1learnmore.co:8080GET / HTTP/1.0
14-27166980/37/113131_
0.11410.00.491243.43
185.101.136.9http/1.1learnmore.co:8080GET / HTTP/1.0
15-271-0/0/83098.
0.29286900.00.00905.02
172.26.9.134http/1.1
16-271-0/0/101222.
0.06286610.00.001110.47
172.26.9.134http/1.1
17-271-0/0/95059.
0.192868140.00.001081.67
172.26.9.134http/1.1
18-270-0/0/58897.
0.18876900.00.00658.35
172.26.9.134http/1.1
19-270-0/0/81883.
0.008767140.00.00880.02
172.26.9.134http/1.1
20-270-0/0/74461.
0.662152140.00.00790.99
172.26.9.134http/1.1
21-270-0/0/43694.
0.042152012140.00.00473.58
172.26.9.134http/1.1
22-270-0/0/78706.
0.002151800.00.00923.47
172.26.9.134http/1.1
23-270-0/0/36851.
0.28876100.00.00407.70
172.26.9.134http/1.1
24-270-0/0/51137.
0.382151620.00.00576.56
172.26.9.134http/1.1
25-269-0/0/69350.
0.01184478140.00.00780.78
172.26.9.134http/1.1
26-269-0/0/72429.
0.2917114900.00.00823.11
172.26.9.134http/1.1
27-269-0/0/43481.
0.4717115300.00.00494.33
172.26.9.134http/1.1
28-269-0/0/44841.
0.0018446410.00.00497.99
172.26.9.134http/1.1
29-269-0/0/40320.
0.0018446510.00.00446.31
172.26.9.134http/1.1
30-269-0/0/22043.
0.0118447720.00.00239.36
172.26.9.134http/1.1
31-269-0/0/12968.
0.0018446210.00.00136.95
172.26.9.134http/1.1
32-269-0/0/11184.
0.3217061900.00.00122.73
172.26.9.134http/1.1
33-269-0/0/22276.
0.0018449010.00.00243.91
172.26.9.134http/1.1
34-269-0/0/15890.
0.0018446110.00.00164.65
172.26.9.134http/1.1
35-269-0/0/17119.
0.3217115200.00.00192.15
172.26.9.134http/1.1
36-269-0/0/39367.
0.0018446010.00.00449.74
172.26.9.134http/1.1
37-269-0/0/20985.
0.5417061800.00.00232.94
172.26.9.134http/1.1
38-269-0/0/22591.
0.6518448610.00.00255.61
172.26.9.134http/1.1
39-269-0/0/12064.
0.4417115000.00.00120.52
172.26.9.134http/1.1
40-269-0/0/8568.
0.0018448910.00.0092.01
172.26.9.134http/1.1
41-269-0/0/6486.
0.01272996220.00.0067.36
172.26.9.134http/1.1
42-269-0/0/1734.
0.0227239500.00.0015.02
172.26.9.134http/1.1
43-269-0/0/8825.
0.01272993100.00.0083.86
172.26.9.134http/1.1
44-269-0/0/1650.
1.3923769500.00.0015.96
172.26.9.134http/1.1
45-269-0/0/3666.
0.0227239300.00.0035.44
172.26.9.134http/1.1
46-263-0/0/887.
0.01273407100.00.005.64
172.26.9.134http/1.1
47-263-0/0/4495.
0.0427340190.00.0040.63
172.26.9.134http/1.1
48-263-0/0/1218.
0.01273403160.00.0010.46
172.26.9.134http/1.1
49-263-0/0/590.
0.01273400120.00.004.54
172.26.9.134http/1.1
50-263-0/0/2993.
0.01273399100.00.0026.87
172.26.9.134http/1.1
51-263-0/0/1297.
0.02273398100.00.008.59
172.26.9.134http/1.1
52-263-0/0/1496.
0.01273404100.00.0011.49
172.26.9.134http/1.1
53-263-0/0/2492.
0.0827344614180.00.0024.42
172.26.9.134http/1.1
54-263-0/0/1430.
0.0027344720330.00.0012.44
172.26.9.134http/1.1
55-263-0/0/783.
0.00273439150.00.005.51
172.26.9.134http/1.1
56-263-0/0/1090.
0.0027343200.00.008.34
172.26.9.134http/1.1
57-263-0/0/703.
0.0027344516120.00.004.92
172.26.9.134http/1.1
58-263-0/0/2553.
0.0027344400.00.0028.17
172.26.9.134http/1.1
59-263-0/0/630.
0.0027344316550.00.005.36
172.26.9.134http/1.1
60-263-0/0/1036.
0.0027344214380.00.006.97
172.26.9.134http/1.1
61-244-0/0/602.
0.00107592314680.00.005.04
172.26.9.134http/1.1
62-244-0/0/1333.
0.00107592015320.00.0011.85
172.26.9.134http/1.1
63-244-0/0/1263.
0.00107591916460.00.0012.49
172.26.9.134http/1.1
64-244-0/0/1962.
0.00

Found on 2024-05-29 04:35

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c00bd5c965

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Sunday, 26-May-2024 13:19:32 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 271
Parent Server MPM Generation: 270
Server uptime: 352 days 17 hours 31 minutes 26 seconds
Server load: 0.00 0.00 0.00
Total accesses: 4229250 - Total Traffic: 46.3 GB
CPU Usage: u10.79 s3.46 cu1.51 cs.52 - 5.34e-5% CPU load
.139 requests/sec - 1631 B/second - 11.5 kB/request
1 requests currently being processed, 9 idle workers
..._.__._..___._._..W...........................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-270-0/0/351041.
0.021240500.00.003937.98
172.26.9.134http/1.1
1-270-0/0/312045.
0.221240300.00.003518.51
172.26.9.134http/1.1
2-270-0/0/267788.
0.031240400.00.002997.81
172.26.9.134http/1.1
3-27071770/127/287192_
0.31100.01.253246.77
92.38.168.5http/1.1learnmore.co:8080GET /about HTTP/1.0
4-270-0/0/225589.
0.131240710.00.002565.39
172.26.9.134http/1.1
5-27071780/126/222053_
0.255210.01.192540.56
114.119.152.204http/1.1rdbnetwork.com:8443GET /search?q=Kemzzy%2BWorldwide,%2BNV,%2BUSA&gbv=1&sei=AZ43YcG
6-27071790/126/188326_
0.23000.01.252157.83
92.38.168.7http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
7-270-0/0/157087.
0.151240910.00.001766.95
172.26.9.134http/1.1
8-27071800/126/144685_
0.23300.01.101703.33
92.38.168.6http/1.1learnmore.co:8080GET / HTTP/1.0
9-270-0/0/120273.
0.021240800.00.001327.44
172.26.9.134http/1.1
10-270-0/0/143064.
0.031240220.00.001618.66
172.26.9.134http/1.1
11-27071810/126/138554_
0.23100.01.291549.27
92.38.168.7http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
12-27050610/143/104644_
0.49200.01.331203.37
92.38.168.7http/1.1learnmore.co:8080GET /server HTTP/1.0
13-27071820/127/138100_
0.27000.01.181571.45
92.38.168.5http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
14-270-0/0/112891.
0.021241010.00.001241.07
172.26.9.134http/1.1
15-27071830/126/82703_
0.2771130.00.94901.08
54.188.214.31http/1.1yeswhois.com:8443GET / HTTP/1.0
16-270-0/0/100764.
0.121241410.00.001105.43
172.26.9.134http/1.1
17-27071850/125/94905_
0.22200.01.221080.15
92.38.168.6http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
18-270-0/0/58840.
0.071240600.00.00657.78
172.26.9.134http/1.1
19-270-0/0/81880.
0.001241610.00.00880.00
172.26.9.134http/1.1
20-27071870/124/74405W
0.24000.01.17790.29
92.38.168.7http/1.1learnmore.co:8080GET /server-status HTTP/1.0
21-270-0/0/43694.
0.041241512140.00.00473.58
172.26.9.134http/1.1
22-270-0/0/78705.
0.001241300.00.00923.47
172.26.9.134http/1.1
23-270-0/0/36712.
0.001241200.00.00405.95
172.26.9.134http/1.1
24-270-0/0/51137.
0.381241120.00.00576.56
172.26.9.134http/1.1
25-269-0/0/69350.
0.01118927140.00.00780.78
172.26.9.134http/1.1
26-269-0/0/72429.
0.2910559900.00.00823.11
172.26.9.134http/1.1
27-269-0/0/43481.
0.4710560300.00.00494.33
172.26.9.134http/1.1
28-269-0/0/44841.
0.0011891310.00.00497.99
172.26.9.134http/1.1
29-269-0/0/40320.
0.0011891410.00.00446.31
172.26.9.134http/1.1
30-269-0/0/22043.
0.0111892620.00.00239.36
172.26.9.134http/1.1
31-269-0/0/12968.
0.0011891110.00.00136.95
172.26.9.134http/1.1
32-269-0/0/11184.
0.3210506800.00.00122.73
172.26.9.134http/1.1
33-269-0/0/22276.
0.0011893910.00.00243.91
172.26.9.134http/1.1
34-269-0/0/15890.
0.0011891010.00.00164.65
172.26.9.134http/1.1
35-269-0/0/17119.
0.3210560200.00.00192.15
172.26.9.134http/1.1
36-269-0/0/39367.
0.0011890910.00.00449.74
172.26.9.134http/1.1
37-269-0/0/20985.
0.5410506700.00.00232.94
172.26.9.134http/1.1
38-269-0/0/22591.
0.6511893510.00.00255.61
172.26.9.134http/1.1
39-269-0/0/12064.
0.4410560000.00.00120.52
172.26.9.134http/1.1
40-269-0/0/8568.
0.0011893810.00.0092.01
172.26.9.134http/1.1
41-269-0/0/6486.
0.01207446220.00.0067.36
172.26.9.134http/1.1
42-269-0/0/1734.
0.0220684400.00.0015.02
172.26.9.134http/1.1
43-269-0/0/8825.
0.01207443100.00.0083.86
172.26.9.134http/1.1
44-269-0/0/1650.
1.3917214500.00.0015.96
172.26.9.134http/1.1
45-269-0/0/3666.
0.0220684200.00.0035.44
172.26.9.134http/1.1
46-263-0/0/887.
0.01207857100.00.005.64
172.26.9.134http/1.1
47-263-0/0/4495.
0.0420785190.00.0040.63
172.26.9.134http/1.1
48-263-0/0/1218.
0.01207853160.00.0010.46
172.26.9.134http/1.1
49-263-0/0/590.
0.01207850120.00.004.54
172.26.9.134http/1.1
50-263-0/0/2993.
0.01207849100.00.0026.87
172.26.9.134http/1.1
51-263-0/0/1297.
0.02207848100.00.008.59
172.26.9.134http/1.1
52-263-0/0/1496.
0.01207854100.00.0011.49
172.26.9.134http/1.1
53-263-0/0/2492.
0.0820789614180.00.0024.42
172.26.9.134http/1.1
54-263-0/0/1430.
0.0020789720330.00.0012.44
172.26.9.134http/1.1
55-263-0/0/783.
0.00207889150.00.005.51
172.26.9.134http/1.1
56-263-0/0/1090.
0.0020788200.00.008.34
172.26.9.134http/1.1
57-263-0/0/703.
0.0020789516120.00.004.92
172.26.9.134http/1.1
58-263-0/0/2553.
0.0020789400.00.0028.17
172.26.9.134http/1.1
59-263-0/0/630.
0.0020789316550.00.005.36
172.26.9.134http/1.1
60-263-0/0/1036.
0.0020789214380.00.006.97
172.26.9.134http/1.1
61-244-0/0/602.
0.00101037214680.00.005.04
172.26.9.134http/1.1
62-244-0/0/1333.
0.00101036915320.00.0011.85
172.26.9.134http/1.1
63-244-0/0/1263.
0.00101036816460.00.0012.49
172.26.9.134http/1.1

Found on 2024-05-26 13:19

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c089e8f335

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Friday, 24-May-2024 18:06:28 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 270
Parent Server MPM Generation: 269
Server uptime: 350 days 22 hours 18 minutes 22 seconds
Server load: 0.00 0.00 0.00
Total accesses: 4211522 - Total Traffic: 46.1 GB
CPU Usage: u8.8 s2.77 cu1.98 cs.69 - 4.7e-5% CPU load
.139 requests/sec - 1632 B/second - 11.5 kB/request
1 requests currently being processed, 9 idle workers
_.W...____._..___...............................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

<SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-269265790/81/349934_
0.09100.00.783925.06
93.123.17.189http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
1-269-0/0/311258.
0.022344580.00.003510.80
172.26.9.134http/1.1
2-269265800/80/267067W
0.09000.00.822989.81
93.123.17.142http/1.1learnmore.co:8080GET /server-status HTTP/1.0
3-269-0/0/285964.
0.02234200.00.003232.87
172.26.9.134http/1.1
4-269-0/0/225155.
0.02234300.00.002560.43
172.26.9.134http/1.1
5-269-0/0/221019.
0.02234000.00.002527.52
172.26.9.134http/1.1
6-269258440/88/187022_
0.11100.00.712143.03
93.123.17.132http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
7-269265810/80/156324_
0.09020.00.701757.50
93.123.17.186http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
8-269265820/80/143565_
0.10500.00.661689.70
93.123.17.137http/1.1learnmore.co:8080GET / HTTP/1.0
9-269265830/80/119617_
0.13400.00.741318.16
93.123.17.137http/1.1learnmore.co:8080GET /server HTTP/1.0
10-269-0/0/142565.
0.02234100.00.001612.77
172.26.9.134http/1.1
11-269265840/80/137581_
0.117100.00.791537.83
91.92.244.201http/1.1yeswhois.com:8443GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0
12-269-0/0/103719.
0.882345590.00.001190.87
172.26.9.134http/1.1
13-269-0/0/137201.
0.02233900.00.001561.65
172.26.9.134http/1.1
14-26969270/298/112752_
1.35200.03.161239.53
93.123.17.181http/1.1learnmore.co:8080GET /about HTTP/1.0
15-269265850/80/81615_
0.136100.00.71888.84
91.92.244.201http/1.1yeswhois.com:8443GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0
16-26969360/301/100611_
1.03300.03.161103.71
93.123.17.190http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
17-269-0/0/94127.
0.00234680.00.001069.85
172.26.9.134http/1.1
18-269-0/0/58640.
0.00294410.00.00654.71
172.26.9.134http/1.1
19-269-0/0/81508.
0.00294300.00.00875.17
172.26.9.134http/1.1
20-269-0/0/73972.
0.001656700.00.00785.16
172.26.9.134http/1.1
21-269-0/0/43618.
0.001656900.00.00472.62
172.26.9.134http/1.1
22-269-0/0/78446.
0.021656800.00.00920.14
172.26.9.134http/1.1
23-269-0/0/36351.
0.005183500.00.00401.82
172.26.9.134http/1.1
24-269-0/0/50948.
0.005185620.00.00573.84
172.26.9.134http/1.1
25-269-0/0/69345.
0.025125700.00.00780.74
172.26.9.134http/1.1
26-269-0/0/72282.
0.005185800.00.00821.45
172.26.9.134http/1.1
27-269-0/0/43334.
0.314051710.00.00492.73
172.26.9.134http/1.1
28-269-0/0/44840.
0.025125610.00.00497.98
172.26.9.134http/1.1
29-269-0/0/40313.
0.284052010.00.00446.20
172.26.9.134http/1.1
30-269-0/0/22038.
0.025186610.00.00239.34
172.26.9.134http/1.1
31-269-0/0/12967.
0.0251870120.00.00136.94
172.26.9.134http/1.1
32-269-0/0/11030.
0.0051869230.00.00121.24
172.26.9.134http/1.1
33-269-0/0/22273.
0.0151867140.00.00243.91
172.26.9.134http/1.1
34-269-0/0/15889.
0.0051868250.00.00164.64
172.26.9.134http/1.1
35-269-0/0/16974.
0.005185040.00.00190.66
172.26.9.134http/1.1
36-269-0/0/39366.
0.0151865100.00.00449.73
172.26.9.134http/1.1
37-269-0/0/20832.
0.015186490.00.00231.31
172.26.9.134http/1.1
38-269-0/0/22280.
0.0151863120.00.00252.08
172.26.9.134http/1.1
39-269-0/0/11918.
0.015186000.00.00118.90
172.26.9.134http/1.1
40-269-0/0/8565.
0.0151861190.00.0092.00
172.26.9.134http/1.1
41-269-0/0/6486.
0.0151862220.00.0067.36
172.26.9.134http/1.1
42-269-0/0/1734.
0.025126000.00.0015.02
172.26.9.134http/1.1
43-269-0/0/8825.
0.0151859100.00.0083.86
172.26.9.134http/1.1
44-269-0/0/1650.
1.391656000.00.0015.96
172.26.9.134http/1.1
45-269-0/0/3666.
0.025125800.00.0035.44
172.26.9.134http/1.1
46-263-0/0/887.
0.0152273100.00.005.64
172.26.9.134http/1.1
47-263-0/0/4495.
0.045226790.00.0040.63
172.26.9.134http/1.1
48-263-0/0/1218.
0.0152269160.00.0010.46
172.26.9.134http/1.1
49-263-0/0/590.
0.0152266120.00.004.54
172.26.9.134http/1.1
50-263-0/0/2993.
0.0152265100.00.0026.87
172.26.9.134http/1.1
51-263-0/0/1297.
0.0252264100.00.008.59
172.26.9.134http/1.1
52-263-0/0/1496.
0.0152270100.00.0011.49
172.26.9.134http/1.1
53-263-0/0/2492.
0.085231214180.00.0024.42
172.26.9.134http/1.1
54-263-0/0/1430.
0.005231320330.00.0012.44
172.26.9.134http/1.1
55-263-0/0/783.
0.0052305150.00.005.51
172.26.9.134http/1.1
56-263-0/0/1090.
0.005229800.00.008.34
172.26.9.134http/1.1
57-263-0/0/703.
0.005231116120.00.004.92
172.26.9.134http/1.1
58-263-0/0/2553.
0.005231000.00.0028.17
172.26.9.134http/1.1
59-263-0/0/630.
0.005230916550.00.005.36
172.26.9.134http/1.1
60-263-0/0/1036.
0.005230814380.00.006.97
172.26.9.134http/1.1
61-244-0/0/602.
0.0085478814680.00.005.04
172.26.9.134http/1.1
62-244-0/0/1333.
0.0085478515320.00.0011.85
172.26.9.134http/1.1
63-244-0/0/1263.
0.0085478416460.00.0012.49
172.26.9.134http/1.1
64-244-

Found on 2024-05-25 15:03

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c0430be1d7

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Thursday, 23-May-2024 15:44:54 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 260
Parent Server MPM Generation: 259
Server uptime: 349 days 19 hours 56 minutes 48 seconds
Server load: 0.00 0.00 0.00
Total accesses: 4196591 - Total Traffic: 45.9 GB
CPU Usage: u10.81 s3.82 cu28.7 cs7.61 - .000169% CPU load
.139 requests/sec - 1632 B/second - 11.5 kB/request
1 requests currently being processed, 9 idle workers
_._.____.W.._..._._.............................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-259201130/26/348876_
0.34000.00.213914.38
92.223.124.45http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
1-259-0/0/310620.
0.14192000.00.003506.36
172.26.9.134http/1.1
2-259201140/26/266491_
0.58100.00.202982.80
92.223.124.15http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
3-259-0/0/285516.
0.16192610.00.003227.47
172.26.9.134http/1.1
4-259243960/284/224320_
1.12200.03.362553.34
92.223.124.43http/1.1learnmore.co:8080GET / HTTP/1.0
5-259201150/25/220025_
0.33000.00.242518.15
92.223.124.29http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
6-259201160/24/186218_
0.39100.00.332136.54
92.223.124.53http/1.1learnmore.co:8080GET /server HTTP/1.0
7-259243970/282/155187_
1.18100.03.281747.26
92.223.124.16http/1.1learnmore.co:8080GET /about HTTP/1.0
8-259-0/0/142272.
0.14192510.00.001676.94
172.26.9.134http/1.1
9-259201170/25/118791W
0.18000.00.291311.10
92.223.124.25http/1.1learnmore.co:8080GET /server-status HTTP/1.0
10-259-0/0/141945.
0.14192210.00.001606.08
172.26.9.134http/1.1
11-259-0/0/136921.
0.22192710.00.001530.32
172.26.9.134http/1.1
12-259201180/26/103082_
0.40000.00.201183.70
92.223.124.45http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
13-259-0/0/136664.
0.14192310.00.001555.25
172.26.9.134http/1.1
14-259-0/0/111785.
0.14192400.00.001231.27
172.26.9.134http/1.1
15-259-0/0/81300.
0.14192100.00.00885.52
172.26.9.134http/1.1
16-259201190/25/100226_
0.38620.00.331099.47
69.162.124.236http/1.1y2z.in:8443HEAD / HTTP/1.0
17-259-0/0/94041.
0.07193000.00.001067.81
172.26.9.134http/1.1
18-259201210/23/58476_
0.1618130.00.26652.49
46.32.86.24http/1.1yeswhois.com:8443POST / HTTP/1.0
19-259-0/0/81050.
7.28193420.00.00872.01
172.26.9.134http/1.1
20-259-0/0/73938.
7.44193300.00.00784.75
172.26.9.134http/1.1
21-259-0/0/43377.
0.00193200.00.00470.00
172.26.9.134http/1.1
22-259-0/0/78398.
15.22193100.00.00919.61
172.26.9.134http/1.1
23-259-0/0/36314.
6.50192800.00.00401.44
172.26.9.134http/1.1
24-259-0/0/50630.
0.00192910.00.00569.07
172.26.9.134http/1.1
25-259-0/0/69306.
0.003125710.00.00780.33
172.26.9.134http/1.1
26-259-0/0/72279.
0.013126550.00.00821.44
172.26.9.134http/1.1
27-248-0/0/43165.
0.0034179110.00.00490.13
172.26.9.134http/1.1
28-248-0/0/44829.
0.00341675200.00.00497.88
122.121.22.139http/1.1yeswhois.com:8443POST / HTTP/1.0
29-248-0/0/40198.
0.0034167510.00.00444.97
170.64.149.209http/1.1yees.one:8443GET /.vscode/sftp.json HTTP/1.0
30-248-0/0/22033.
0.093418079730.00.00239.32
172.26.9.134http/1.1
31-248-0/0/12960.
0.0034180410.00.00136.92
172.26.9.134http/1.1
32-248-0/0/11027.
0.113418056870.00.00121.22
172.26.9.134http/1.1
33-244-0/0/22271.
0.1075987010330.00.00243.88
172.26.9.134http/1.1
34-244-0/0/15888.
0.0075990810540.00.00164.64
172.26.9.134http/1.1
35-244-0/0/16969.
0.007598727170.00.00190.62
172.26.9.134http/1.1
36-244-0/0/39363.
0.0075986710920.00.00449.70
172.26.9.134http/1.1
37-244-0/0/20830.
0.0075989510960.00.00231.30
172.26.9.134http/1.1
38-244-0/0/22278.
0.0075989611000.00.00252.06
172.26.9.134http/1.1
39-244-0/0/11916.
0.007599139810.00.00118.86
172.26.9.134http/1.1
40-244-0/0/8560.
0.00759864150.00.0091.98
172.26.9.134http/1.1
41-244-0/0/6485.
0.0975985920.00.0067.35
172.26.9.134http/1.1
42-244-0/0/1725.
0.0575770200.00.0014.93
172.26.9.134http/1.1
43-244-0/0/8823.
0.0075986610540.00.0083.85
172.26.9.134http/1.1
44-244-0/0/1258.
0.0075991010440.00.0010.98
172.26.9.134http/1.1
45-244-0/0/3654.
0.0075991211870.00.0035.35
172.26.9.134http/1.1
46-244-0/0/884.
0.00759865140.00.005.62
172.26.9.134http/1.1
47-244-0/0/4488.
0.007599118850.00.0040.59
172.26.9.134http/1.1
48-244-0/0/1217.
0.0075990611600.00.0010.46
172.26.9.134http/1.1
49-244-0/0/588.
0.0075990917690.00.004.54
172.26.9.134http/1.1
50-244-0/0/2990.
0.0075990519360.00.0026.86
172.26.9.134http/1.1
51-244-0/0/1295.
0.0075990418980.00.008.56
172.26.9.134http/1.1
52-244-0/0/1491.
0.0075990321650.00.0011.45
172.26.9.134http/1.1
53-244-0/0/2492.
0.0875990214180.00.0024.42
172.26.9.134http/1.1
54-244-0/0/1430.
0.0075990120330.00.0012.44
172.26.9.134http/1.1
55-244-0/0/782.
0.0075989915490.00.005.50
172.26.9.134http/1.1
56-244-0/0/1089.
0.0075990015210.00.008.34
172.26.9.134http/1.1
57-244-0/0/703.
0.0075989716120.00.004.92
172.26.9.134http/1.1
58-244-0/0/2553.
0.0075986300.00.0028.17
172.26.9.134http/1.1
59-244-0/0/630.
0.0075989316550.00.005.36
172.26.9.134http/1.1
60-244-0/0/1036.
0.0075989214380.00.006.97
172.26.9.134http/1.1
61-244-0/0/602.
0.0075989414680.00.005.04
172.26.9.134http/1.1
62-244-0/0/1333.
0.0075989115320.00.0011.85
172.26.9.134http/1.1
63-244-0/0/1263.
0.0075989016460.00.0012.49
172.26.9.134

Found on 2024-05-23 15:44

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c0a833602a

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Monday, 13-May-2024 01:02:05 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 236
Parent Server MPM Generation: 235
Server uptime: 339 days 5 hours 13 minutes 59 seconds
Server load: 0.00 0.00 0.00
Total accesses: 4064035 - Total Traffic: 44.5 GB
CPU Usage: u32.7 s10.37 cu1.58 cs1.34 - .000157% CPU load
.139 requests/sec - 1630 B/second - 11.5 kB/request
1 requests currently being processed, 9 idle workers
_...__._.__._.W_._..............................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-23523710/119/337295_
0.25220.01.533782.88
5.101.222.7http/1.1learnmore.co:8080GET / HTTP/1.0
1-235-0/0/298138.
0.05317200.00.003360.10
172.26.9.134http/1.1
2-235-0/0/255177.
0.42317100.00.002853.74
172.26.9.134http/1.1
3-235-0/0/275725.
0.49317600.00.003116.25
172.26.9.134http/1.1
4-23523720/121/214171_
0.24200.01.512438.98
5.101.222.7http/1.1learnmore.co:8080GET /server HTTP/1.0
5-23523730/120/210824_
0.23000.01.472413.42
5.101.222.5http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
6-235-0/0/176938.
0.39317400.00.002034.01
172.26.9.134http/1.1
7-235149810/267/146888_
0.725220.02.781653.28
89.35.25.54http/1.1yeswhois.com:8443POST / HTTP/1.0
8-235-0/0/135638.
0.05317000.00.001601.86
172.26.9.134http/1.1
9-23511620/138/111551_
0.28500.01.801232.42
94.156.79.234http/1.1rdbnetwork.com:8443GET /javascript/trustlogo.js HTTP/1.0
10-23523740/120/136622_
0.24100.01.501547.78
5.101.222.7http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
11-235-0/0/134658.
0.05317300.00.001506.76
172.26.9.134http/1.1
12-23523750/119/100780_
0.24100.01.721159.81
5.101.222.7http/1.1learnmore.co:8080GET /about HTTP/1.0
13-235-0/0/134871.
0.003183140.00.001536.54
172.26.9.134http/1.1
14-23511670/139/109801W
0.28000.01.711207.46
5.101.222.5http/1.1learnmore.co:8080GET /server-status HTTP/1.0
15-23523770/119/76535_
0.32000.01.49836.43
5.101.222.7http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
16-235-0/0/98604.
0.44317500.00.001082.30
172.26.9.134http/1.1
17-23523780/120/91674_
0.24000.01.681041.44
5.101.222.5http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
18-235-0/0/57672.
1.033182130.00.00644.36
172.26.9.134http/1.1
19-235-0/0/79797.
0.00318130.00.00858.46
172.26.9.134http/1.1
20-235-0/0/72528.
0.00317810.00.00769.82
172.26.9.134http/1.1
21-235-0/0/42066.
1.16318010.00.00455.31
172.26.9.134http/1.1
22-235-0/0/77510.
0.00317710.00.00908.47
172.26.9.134http/1.1
23-235-0/0/35073.
0.00317900.00.00388.29
172.26.9.134http/1.1
24-234-0/0/48322.
3.2412858410.00.00543.96
172.26.9.134http/1.1
25-234-0/0/69232.
0.0012858700.00.00779.90
172.26.9.134http/1.1
26-234-0/0/71494.
0.0112857610.00.00813.12
172.26.9.134http/1.1
27-234-0/0/42402.
0.0012856920.00.00481.95
172.26.9.134http/1.1
28-234-0/0/44748.
0.0012858600.00.00497.40
172.26.9.134http/1.1
29-234-0/0/40046.
1.0867021130.00.00443.76
2003:cc:bf25:e8cd:c813:5820:4d6http/1.1yeswhois.com:8443POST / HTTP/1.0
30-228-0/0/21238.
0.0089587900.00.00230.74
172.26.9.134http/1.1
31-228-0/0/12914.
0.0089585600.00.00136.78
172.26.9.134http/1.1
32-228-0/0/10952.
0.0089587700.00.00120.87
172.26.9.134http/1.1
33-228-0/0/22137.
0.0089587800.00.00242.93
172.26.9.134http/1.1
34-233-0/0/15839.
1.1638070600.00.00164.46
172.26.9.134http/1.1
35-228-0/0/16893.
0.0089585400.00.00190.28
172.26.9.134http/1.1
36-228-0/0/39323.
0.9289588490.00.00449.54
172.26.9.134http/1.1
37-228-0/0/20323.
4.46671821200.00.00225.23
114.38.200.39http/1.1yeswhois.com:8443POST / HTTP/1.0
38-228-0/0/22218.
4.28671821140.00.00251.83
140.75.193.106http/1.1yeswhois.com:8443GET / HTTP/1.0
39-228-0/0/11865.
0.0089585300.00.00118.64
172.26.9.134http/1.1
40-228-0/0/8470.
4.64671821130.00.0091.11
114.38.200.39http/1.1yeswhois.com:8443POST / HTTP/1.0
41-220-0/0/6422.
0.00385074300.00.0066.92
172.26.9.134http/1.1
42-220-0/0/1685.
0.00385073300.00.0014.69
172.26.9.134http/1.1
43-220-0/0/8803.
0.00385073400.00.0083.77
172.26.9.134http/1.1
44-220-0/0/1246.
0.00385073600.00.0010.94
172.26.9.134http/1.1
45-220-0/0/3624.
0.00385073500.00.0035.20
172.26.9.134http/1.1
46-214-0/0/865.
0.01413800190.00.005.55
172.26.9.134http/1.1
47-214-0/0/4460.
0.01413799880.00.0040.47
172.26.9.134http/1.1
48-214-0/0/1188.
0.02413798610.00.0010.35
69.162.124.236http/1.1y2z.in:8443HEAD / HTTP/1.0
49-214-0/0/568.
0.014137986130.00.004.47
202.239.250.33http/1.1yeswhois.com:8443POST / HTTP/1.0
50-214-0/0/2981.
0.014137986130.00.0026.83
202.239.250.33http/1.1yeswhois.com:8443POST / HTTP/1.0
51-214-0/0/1276.
0.01413798610.00.008.50
69.162.124.230http/1.1rdbnetwork.com:8443HEAD / HTTP/1.0
52-214-0/0/1473.
0.02413798610.00.0011.40
69.162.124.230http/1.1rdbnetwork.com:8443HEAD / HTTP/1.0
53-214-0/0/2433.
0.00413803720.00.0024.08
172.26.9.134http/1.1
54-214-0/0/1384.
0.004138044110.00.0012.19
172.26.9.134http/1.1
55-214-0/0/753.
0.004138045130.00.005.37
172.26.9.134http/1.1
56-214-0/0/1061.
0.004138043160.00.008.21
172.26.9.134http/1.1
57-214-0/0/678.
0.00413804813980.00.004.82
172.26.9.134http/1.1
58-214-0/0/2531.
0.004138034110.00.0028.04
172.26.9.134http/1.1
59-214-0/0/614.
0.00413804712290.00.005.31
172.26.9.134http/1.1
60-214-0/0/1013.
0.02413804613350.00.006.84
172.26.9.134http/1.1
61-186-0/0/579.
0.00789290314280.00.004.92
172.26.9.134http/1.1
62-186-0/0/1311.
0.00789290114590.00.0011.73
172.26.9.134ht

Found on 2024-05-13 01:02

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c0ecf9c7df

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Tuesday, 30-Apr-2024 20:25:52 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 229
Parent Server MPM Generation: 228
Server uptime: 327 days 37 minutes 46 seconds
Server load: 0.03 0.01 0.00
Total accesses: 3929401 - Total Traffic: 43.1 GB
CPU Usage: u48.16 s15.61 cu2.39 cs1.89 - .000241% CPU load
.139 requests/sec - 1639 B/second - 11.5 kB/request
1 requests currently being processed, 9 idle workers
______W.___.....................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-228103840/1935/324002_
3.60200.024.673646.92
92.223.120.13http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
1-228105870/1941/290416_
3.35300.024.263281.84
92.223.120.12http/1.1learnmore.co:8080GET /server HTTP/1.0
2-228183290/1898/248592_
3.43100.023.422787.81
92.223.120.15http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
3-228321920/1572/268660_
2.903130.018.723046.60
185.197.250.44http/1.1yeswhois.com:8443GET /?articlekey=43492 HTTP/1.0
4-228103850/1936/207231_
3.52000.024.102368.33
92.223.120.14http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
5-228271670/1431/205523_
2.72300.017.282363.02
52.170.215.37http/1.1busybrother.com:8443GET / HTTP/1.0
6-228273210/1396/174127W
2.52000.016.912006.10
92.223.120.12http/1.1learnmore.co:8080GET /server-status HTTP/1.0
7-228-0/0/142975.
1.16568595870.00.001614.01
172.26.9.134http/1.1
8-228272420/1406/132991_
2.56200.017.151575.02
92.223.120.15http/1.1learnmore.co:8080GET /about HTTP/1.0
9-228114360/812/108900_
1.55100.09.711205.26
92.223.120.12http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
10-228103820/1943/129699_
3.610120.024.301474.14
2001:41d0:203:c92::1http/1.1yeswhois.com:8443GET /?id=46335&action=detail&ref=1561 HTTP/1.0
11-227-0/0/131207.
0.57136847180.00.001471.17
216.144.248.18http/1.1yeswhois.com:8443HEAD / HTTP/1.0
12-227-0/0/94955.
0.5613684720.00.001095.52
127.0.0.1http/1.1global.zlivehost.com:8081GET /server-status HTTP/1.1
13-228-0/0/121974.
0.96108489530.00.001402.38
172.26.9.134http/1.1
14-227-0/0/105473.
0.4713684760.00.001164.69
5.255.231.114http/1.1yees.one:8443GET / HTTP/1.0
15-227-0/0/74147.
0.4913684710.00.00808.39
114.119.165.5http/1.1rdbnetwork.com:8443GET /pay HTTP/1.0
16-227-0/0/98033.
1.391566651620.00.001076.75
172.26.9.134http/1.1
17-227-0/0/90835.
0.0015666300.00.001032.01
172.26.9.134http/1.1
18-227-0/0/57134.
4.0115666400.00.00639.43
172.26.9.134http/1.1
19-227-0/0/72372.
0.0017131400.00.00780.57
172.26.9.134http/1.1
20-227-0/0/72192.
0.0017131500.00.00765.64
172.26.9.134http/1.1
21-227-0/0/41524.
0.0017131100.00.00450.07
172.26.9.134http/1.1
22-227-0/0/77503.
0.0017131000.00.00908.44
172.26.9.134http/1.1
23-227-0/0/35068.
0.0028241100.00.00388.26
172.26.9.134http/1.1
24-227-0/0/39445.
0.0028244300.00.00444.23
188.166.108.93http/1.1gl.askmy.org:8443GET /server-status HTTP/1.0
25-227-0/0/69231.
0.0028243410.00.00779.90
172.26.9.134http/1.1
26-227-0/0/65737.
0.0028244100.00.00750.81
172.26.9.134http/1.1
27-227-0/0/42398.
0.0028241500.00.00481.91
172.26.9.134http/1.1
28-227-0/0/44744.
0.0028243100.00.00497.39
172.26.9.134http/1.1
29-227-0/0/39510.
0.0028243300.00.00438.51
172.26.9.134http/1.1
30-227-0/0/21235.
0.7824703200.00.00230.73
172.26.9.134http/1.1
31-227-0/0/12913.
0.7824703600.00.00136.77
172.26.9.134http/1.1
32-227-0/0/10949.
0.0028241300.00.00120.86
172.26.9.134http/1.1
33-227-0/0/22134.
0.0028242420.00.00242.92
172.26.9.134http/1.1
34-227-0/0/8440.
0.0028241200.00.0088.23
172.26.9.134http/1.1
35-227-0/0/16892.
2.5317130500.00.00190.27
172.26.9.134http/1.1
36-228-0/0/39323.
0.9210849090.00.00449.54
172.26.9.134http/1.1
37-227-0/0/17976.
0.8324703500.00.00197.66
172.26.9.134http/1.1
38-227-0/0/19872.
0.0028243510.00.00224.68
172.26.9.134http/1.1
39-225-0/0/11864.
0.00148932000.00.00118.63
172.26.9.134http/1.1
40-225-0/0/6122.
3.761346448130.00.0063.55
2401:4900:1c18:6cdd:7947:668f:fhttp/1.1yeswhois.com:8443POST / HTTP/1.0
41-220-0/0/6422.
0.00279737000.00.0066.92
172.26.9.134http/1.1
42-220-0/0/1685.
0.00279736000.00.0014.69
172.26.9.134http/1.1
43-220-0/0/8803.
0.00279736100.00.0083.77
172.26.9.134http/1.1
44-220-0/0/1246.
0.00279736300.00.0010.94
172.26.9.134http/1.1
45-220-0/0/3624.
0.00279736200.00.0035.20
172.26.9.134http/1.1
46-214-0/0/865.
0.01308462990.00.005.55
172.26.9.134http/1.1
47-214-0/0/4460.
0.01308462680.00.0040.47
172.26.9.134http/1.1
48-214-0/0/1188.
0.02308461310.00.0010.35
69.162.124.236http/1.1y2z.in:8443HEAD / HTTP/1.0
49-214-0/0/568.
0.013084613130.00.004.47
202.239.250.33http/1.1yeswhois.com:8443POST / HTTP/1.0
50-214-0/0/2981.
0.013084613130.00.0026.83
202.239.250.33http/1.1yeswhois.com:8443POST / HTTP/1.0
51-214-0/0/1276.
0.01308461310.00.008.50
69.162.124.230http/1.1rdbnetwork.com:8443HEAD / HTTP/1.0
52-214-0/0/1473.
0.02308461310.00.0011.40
69.162.124.230http/1.1rdbnetwork.com:8443HEAD / HTTP/1.0
53-214-0/0/2433.
0.00308466420.00.0024.08
172.26.9.134http/1.1
54-214-0/0/1384.
0.003084671110.00.0012.19
172.26.9.134http/1.1
55-214-0/0/753.
0.003084672130.00.005.37
172.26.9.134http/1.1
56-214-0/0/1061.
0.003084670160.00.008.21
172.26.9.134http/1.1
57-214-0/0/678.
0.00308467513980.00.004.82
172.26.9.134http/1.1
58-214-0/0/2531.
0.003084661110.00.0028.04
172.26.9.134http/1.1
59-214-0/0/614.
0.00308467412290.00.005.31
172.26.9.134http/1.1
60-214-0/0/1013.
0.02308467313350.00.006.84
172.26.9.134http/1.1
61-186-0/0/579.
0.00683953014280.00.004.92
172.26.9.134http/1.1

Found on 2024-04-30 20:25

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c0533de7dd

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Thursday, 18-Apr-2024 22:02:56 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 227
Parent Server MPM Generation: 226
Server uptime: 315 days 2 hours 14 minutes 50 seconds
Server load: 0.07 0.02 0.00
Total accesses: 3788378 - Total Traffic: 41.6 GB
CPU Usage: u51.16 s16 cu2.08 cs1.66 - .00026% CPU load
.139 requests/sec - 1640 B/second - 11.5 kB/request
1 requests currently being processed, 9 idle workers
..W_...__._____...._............................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-226-0/0/315512.
0.96524900.00.003548.03
172.26.9.134http/1.1
1-226-0/0/281573.
0.07524700.00.003187.17
172.26.9.134http/1.1
2-226147520/93/242398W
0.16000.00.892711.91
185.163.3.5http/1.1learnmore.co:8080GET /server-status HTTP/1.0
3-226147530/95/259725_
0.16300.00.842946.11
185.163.3.6http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
4-226-0/0/201460.
0.08525000.00.002296.79
172.26.9.134http/1.1
5-226-0/0/195425.
0.07525400.00.002248.47
172.26.9.134http/1.1
6-226-0/0/166153.
0.08524800.00.001916.49
172.26.9.134http/1.1
7-226248670/899/135482_
1.45200.08.661528.71
185.163.3.4http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
8-226207810/51/122552_
0.07730.00.601455.77
185.163.3.6http/1.1learnmore.co:8080GET / HTTP/1.0
9-226-0/0/101403.
0.07525100.00.001121.50
172.26.9.134http/1.1
10-226207820/52/124172_
0.11400.00.581408.69
185.163.3.4http/1.1learnmore.co:8080GET /about HTTP/1.0
11-226207830/52/127547_
0.07000.00.561435.64
185.163.3.6http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
12-226207840/52/90734_
0.074200.00.431043.15
185.163.3.5http/1.1learnmore.co:8080GET / HTTP/1.0
13-226207850/52/114656_
0.08500.00.591322.37
185.163.3.4http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
14-226207860/51/97301_
0.08600.00.591078.23
185.163.3.6http/1.1learnmore.co:8080GET /server HTTP/1.0
15-226-0/0/72992.
1.21525500.00.00795.29
172.26.9.134http/1.1
16-226-0/0/95343.
0.00525200.00.001046.82
172.26.9.134http/1.1
17-226-0/0/84108.
0.00525300.00.00958.72
172.26.9.134http/1.1
18-226-0/0/53516.
0.00890700.00.00601.36
172.26.9.134http/1.1
19-226248820/899/69976_
1.478170.08.39755.81
216.144.248.18http/1.1yeswhois.com:8443HEAD / HTTP/1.0
20-226-0/0/70876.
0.00890800.00.00751.24
172.26.9.134http/1.1
21-226-0/0/41433.
0.00890600.00.00448.95
172.26.9.134http/1.1
22-226-0/0/76191.
8.37890900.00.00894.22
172.26.9.134http/1.1
23-226-0/0/33084.
0.003981600.00.00365.87
172.26.9.134http/1.1
24-226-0/0/39442.
1.22890100.00.00444.22
172.26.9.134http/1.1
25-225-0/0/69225.
3.32332484620.00.00779.86
172.26.9.134http/1.1
26-225-0/0/65734.
0.0045834300.00.00750.80
172.26.9.134http/1.1
27-225-0/0/42393.
0.0045832600.00.00481.88
172.26.9.134http/1.1
28-226-0/0/44740.
8.623980500.00.00497.38
172.26.9.134http/1.1
29-226-0/0/39505.
8.593980800.00.00438.48
172.26.9.134http/1.1
30-225-0/0/20073.
0.0045834200.00.00218.25
172.26.9.134http/1.1
31-225-0/0/11746.
3.67315472120.00.00123.66
2a06:c701:4dc9:e700:7995:15af:2http/1.1yeswhois.com:8443POST / HTTP/1.0
32-225-0/0/10947.
0.0045832200.00.00120.84
172.26.9.134http/1.1
33-225-0/0/22129.
0.0045832100.00.00242.88
172.26.9.134http/1.1
34-225-0/0/8438.
0.614583518620.00.0088.21
172.26.9.134http/1.1
35-225-0/0/14281.
0.0045831900.00.00162.57
172.26.9.134http/1.1
36-225-0/0/35694.
3.5231547210.00.00408.01
127.0.0.1http/1.1global.zlivehost.com:8081GET /server-status HTTP/1.1
37-225-0/0/17480.
0.0045834500.00.00193.11
172.26.9.134http/1.1
38-225-0/0/19870.
3.8831547200.00.00224.67
69.162.124.236http/1.1y2z.in:8443HEAD / HTTP/1.0
39-225-0/0/11864.
0.0045834400.00.00118.63
172.26.9.134http/1.1
40-225-0/0/6122.
3.76315472130.00.0063.55
2401:4900:1c18:6cdd:7947:668f:fhttp/1.1yeswhois.com:8443POST / HTTP/1.0
41-220-0/0/6422.
0.00176639400.00.0066.92
172.26.9.134http/1.1
42-220-0/0/1685.
0.00176638400.00.0014.69
172.26.9.134http/1.1
43-220-0/0/8803.
0.00176638500.00.0083.77
172.26.9.134http/1.1
44-220-0/0/1246.
0.00176638700.00.0010.94
172.26.9.134http/1.1
45-220-0/0/3624.
0.00176638600.00.0035.20
172.26.9.134http/1.1
46-214-0/0/865.
0.01205365390.00.005.55
172.26.9.134http/1.1
47-214-0/0/4460.
0.01205365080.00.0040.47
172.26.9.134http/1.1
48-214-0/0/1188.
0.02205363810.00.0010.35
69.162.124.236http/1.1y2z.in:8443HEAD / HTTP/1.0
49-214-0/0/568.
0.012053638130.00.004.47
202.239.250.33http/1.1yeswhois.com:8443POST / HTTP/1.0
50-214-0/0/2981.
0.012053638130.00.0026.83
202.239.250.33http/1.1yeswhois.com:8443POST / HTTP/1.0
51-214-0/0/1276.
0.01205363810.00.008.50
69.162.124.230http/1.1rdbnetwork.com:8443HEAD / HTTP/1.0
52-214-0/0/1473.
0.02205363810.00.0011.40
69.162.124.230http/1.1rdbnetwork.com:8443HEAD / HTTP/1.0
53-214-0/0/2433.
0.00205368820.00.0024.08
172.26.9.134http/1.1
54-214-0/0/1384.
0.002053695110.00.0012.19
172.26.9.134http/1.1
55-214-0/0/753.
0.002053696130.00.005.37
172.26.9.134http/1.1
56-214-0/0/1061.
0.002053694160.00.008.21
172.26.9.134http/1.1
57-214-0/0/678.
0.00205369913980.00.004.82
172.26.9.134http/1.1
58-214-0/0/2531.
0.002053685110.00.0028.04
172.26.9.134http/1.1
59-214-0/0/614.
0.00205369812290.00.005.31
172.26.9.134http/1.1
60-214-0/0/1013.
0.02205369713350.00.006.84
172.26.9.134http/1.1
61-186-0/0/579.
0.00580855414280.00.004.92
172.26.9.134http/1.1
62-186-0/0/1311.
0.00580855214590.00.0011.73
172.26.9.134http

Found on 2024-04-18 22:02

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c0f27f2bfe

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Wednesday, 10-Apr-2024 18:34:51 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 226
Parent Server MPM Generation: 225
Server uptime: 306 days 22 hours 46 minutes 45 seconds
Server load: 0.00 0.00 0.00
Total accesses: 3679435 - Total Traffic: 40.4 GB
CPU Usage: u33.85 s10.65 cu1.27 cs1.04 - .000177% CPU load
.139 requests/sec - 1635 B/second - 11.5 kB/request
1 requests currently being processed, 9 idle workers
___..__W_._._........._.........................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-225246700/86/308186_
0.13300.01.023464.76
93.123.11.14http/1.1learnmore.co:8080GET /about HTTP/1.0
1-225246710/86/275305_
0.14010.00.773114.50
93.123.11.12http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
2-225246720/85/237623_
0.13000.00.892657.27
93.123.11.11http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
3-225-0/0/250775.
0.16688600.00.002842.74
172.26.9.134http/1.1
4-225-0/0/196308.
0.16689400.00.002233.94
172.26.9.134http/1.1
5-225246730/85/190330_
0.142600.00.812186.70
93.123.11.14http/1.1learnmore.co:8080GET / HTTP/1.0
6-225246740/85/163614_
0.1438120.01.241888.34
136.243.228.181http/1.1yeswhois.com:8443GET / HTTP/1.0
7-225246750/84/133227W
0.13000.00.931506.03
93.123.11.14http/1.1learnmore.co:8080GET /server-status HTTP/1.0
8-225246760/83/120783_
0.12100.00.901437.03
93.123.11.11http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
9-225-0/0/99910.
0.13689000.00.001103.92
172.26.9.134http/1.1
10-225246820/85/121949_
0.14300.00.891386.54
93.123.11.13http/1.1learnmore.co:8080GET /server HTTP/1.0
11-225-0/0/119549.
3.98689500.00.001339.81
172.26.9.134http/1.1
12-225137350/137/87667_
0.22300.01.481012.20
93.123.11.13http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
13-225-0/0/110479.
0.01689200.00.001278.56
172.26.9.134http/1.1
14-225-0/0/94984.
0.01689300.00.001054.22
172.26.9.134http/1.1
15-225-0/0/70221.
0.08689100.00.00768.91
172.26.9.134http/1.1
16-225-0/0/93387.
0.001079010.00.001028.66
172.26.9.134http/1.1
17-225-0/0/84102.
0.21688700.00.00958.70
172.26.9.134http/1.1
18-225-0/0/52606.
0.001078700.00.00591.63
172.26.9.134http/1.1
19-225-0/0/66999.
0.08688900.00.00725.75
172.26.9.134http/1.1
20-225-0/0/70871.
0.15688800.00.00751.21
172.26.9.134http/1.1
21-225-0/0/41431.
0.001079900.00.00448.94
172.26.9.134http/1.1
22-225137440/139/69359_
0.2237130.01.55811.91
136.243.228.181http/1.1yeswhois.com:8443GET / HTTP/1.0
23-225-0/0/33081.
0.08689600.00.00365.86
172.26.9.134http/1.1
24-225-0/0/38634.
0.001079200.00.00436.62
172.26.9.134http/1.1
25-222-0/0/67165.
13.9836803010.00.00756.17
172.26.9.134http/1.1
26-222-0/0/65730.
0.8633731110.00.00750.78
172.26.9.134http/1.1
27-222-0/0/42390.
0.8633731410.00.00481.86
172.26.9.134http/1.1
28-222-0/0/37939.
0.8733730900.00.00418.24
172.26.9.134http/1.1
29-222-0/0/32715.
0.8433731310.00.00356.28
172.26.9.134http/1.1
30-220-0/0/18622.
0.00106267900.00.00201.06
172.26.9.134http/1.1
31-220-0/0/9517.
0.00106270800.00.0098.78
172.26.9.134http/1.1
32-221-0/0/9507.
0.6996161900.00.00104.15
172.26.9.134http/1.1
33-220-0/0/22016.
0.61102891000.00.00241.43
172.26.9.134http/1.1
34-220-0/0/8438.
0.6110271388620.00.0088.21
172.26.9.134http/1.1
35-220-0/0/14280.
0.6210270988130.00.00162.56
172.26.9.134http/1.1
36-220-0/0/33566.
0.6510271368490.00.00383.46
172.26.9.134http/1.1
37-221-0/0/17478.
0.5896163600.00.00193.11
209.97.180.8http/1.1gl.askmy.org:8443GET /server-status HTTP/1.0
38-220-0/0/17749.
0.00106270700.00.00199.68
172.26.9.134http/1.1
39-220-0/0/11862.
0.00106271400.00.00118.63
172.26.9.134http/1.1
40-220-0/0/3998.
0.00106271300.00.0039.25
172.26.9.134http/1.1
41-220-0/0/6422.
0.00106270900.00.0066.92
172.26.9.134http/1.1
42-220-0/0/1685.
0.00106269900.00.0014.69
172.26.9.134http/1.1
43-220-0/0/8803.
0.00106270000.00.0083.77
172.26.9.134http/1.1
44-220-0/0/1246.
0.00106270200.00.0010.94
172.26.9.134http/1.1
45-220-0/0/3624.
0.00106270100.00.0035.20
172.26.9.134http/1.1
46-214-0/0/865.
0.01134996890.00.005.55
172.26.9.134http/1.1
47-214-0/0/4460.
0.01134996580.00.0040.47
172.26.9.134http/1.1
48-214-0/0/1188.
0.02134995310.00.0010.35
69.162.124.236http/1.1y2z.in:8443HEAD / HTTP/1.0
49-214-0/0/568.
0.011349953130.00.004.47
202.239.250.33http/1.1yeswhois.com:8443POST / HTTP/1.0
50-214-0/0/2981.
0.011349953130.00.0026.83
202.239.250.33http/1.1yeswhois.com:8443POST / HTTP/1.0
51-214-0/0/1276.
0.01134995310.00.008.50
69.162.124.230http/1.1rdbnetwork.com:8443HEAD / HTTP/1.0
52-214-0/0/1473.
0.02134995310.00.0011.40
69.162.124.230http/1.1rdbnetwork.com:8443HEAD / HTTP/1.0
53-214-0/0/2433.
0.00135000320.00.0024.08
172.26.9.134http/1.1
54-214-0/0/1384.
0.001350010110.00.0012.19
172.26.9.134http/1.1
55-214-0/0/753.
0.001350011130.00.005.37
172.26.9.134http/1.1
56-214-0/0/1061.
0.001350009160.00.008.21
172.26.9.134http/1.1
57-214-0/0/678.
0.00135001413980.00.004.82
172.26.9.134http/1.1
58-214-0/0/2531.
0.001350000110.00.0028.04
172.26.9.134http/1.1
59-214-0/0/614.
0.00135001312290.00.005.31
172.26.9.134http/1.1
60-214-0/0/1013.
0.02135001213350.00.006.84
172.26.9.134http/1.1
61-186-0/0/579.
0.00510486914280.00.004.92
172.26.9.134http/1.1
62-186-0/0/1311.
0.00510486714590.00.0011.73
172.26.9.134http/1.1
63-186-0/0/1248

Found on 2024-04-10 18:34

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c097be2b87

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Thursday, 28-Mar-2024 07:53:42 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 221
Parent Server MPM Generation: 220
Server uptime: 293 days 12 hours 5 minutes 35 seconds
Server load: 0.02 0.03 0.00
Total accesses: 3509166 - Total Traffic: 38.5 GB
CPU Usage: u41.78 s12.92 cu2.11 cs1.69 - .000231% CPU load
.138 requests/sec - 1631 B/second - 11.5 kB/request
1 requests currently being processed, 9 idle workers
._..W..___._...._............._....._..._.......................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-220-0/0/292067.
0.002119500.00.003292.76
172.26.9.134http/1.1
1-220111800/239/262809_
0.40300.02.822977.82
185.163.3.5http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
2-220-0/0/227160.
0.002119300.00.002542.31
172.26.9.134http/1.1
3-220-0/0/236966.
0.002119000.00.002692.20
172.26.9.134http/1.1
4-220111830/238/182443W
0.40000.03.082081.02
185.163.3.6http/1.1learnmore.co:8080GET /server-status HTTP/1.0
5-220-0/0/177545.
0.002120100.00.002054.05
172.26.9.134http/1.1
6-220-0/0/151830.
1.962119200.00.001755.51
172.26.9.134http/1.1
7-220111850/238/125954_
0.40400.02.751427.69
185.163.3.6http/1.1learnmore.co:8080GET / HTTP/1.0
8-220111860/239/113476_
0.39300.03.241359.35
185.163.3.6http/1.1learnmore.co:8080GET /server HTTP/1.0
9-220111870/237/95489_
0.40000.02.961053.02
185.163.3.5http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
10-220-0/0/120494.
0.002120400.00.001365.85
172.26.9.134http/1.1
11-220111890/240/116971_
0.39200.03.001312.66
185.163.3.5http/1.1learnmore.co:8080GET /about HTTP/1.0
12-220-0/0/83769.
0.002120300.00.00967.92
172.26.9.134http/1.1
13-220-0/0/98179.
1.672119400.00.001147.32
172.26.9.134http/1.1
14-220-0/0/91212.
0.0021191190.00.001012.30
172.26.9.134http/1.1
15-220-0/0/64788.
0.002120200.00.00706.10
172.26.9.134http/1.1
16-220111930/239/88626_
0.43700.03.02974.57
185.163.3.4http/1.1learnmore.co:8080GET / HTTP/1.0
17-220-0/0/83549.
1.802119700.00.00950.21
172.26.9.134http/1.1
18-220-0/0/51471.
0.0010587700.00.00573.67
172.26.9.134http/1.1
19-220-0/0/65922.
1.772119600.00.00708.76
172.26.9.134http/1.1
20-220-0/0/69262.
1.9010589800.00.00731.56
172.26.9.134http/1.1
21-220-0/0/40826.
1.9010589200.00.00439.83
172.26.9.134http/1.1
22-220-0/0/69184.
0.0010588100.00.00808.65
172.26.9.134http/1.1
23-220-0/0/32956.
1.9310589100.00.00361.83
172.26.9.134http/1.1
24-220-0/0/37105.
0.0010587800.00.00418.74
172.26.9.134http/1.1
25-220-0/0/56462.
1.8510589500.00.00641.70
172.26.9.134http/1.1
26-220-0/0/65177.
0.0010587900.00.00744.00
172.26.9.134http/1.1
27-220-0/0/40318.
1.9410589000.00.00457.40
172.26.9.134http/1.1
28-220-0/0/37384.
1.852119900.00.00411.84
172.26.9.134http/1.1
29-220-0/0/31863.
1.9310589700.00.00345.93
172.26.9.134http/1.1
30-220249250/1242/17546_
2.39130.014.14186.02
185.163.3.5http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
31-220-0/0/9516.
1.9710589600.00.0098.78
172.26.9.134http/1.1
32-220-0/0/8629.
0.0010590930.00.0093.68
172.26.9.134http/1.1
33-220-0/0/21725.
0.0010590310.00.00237.89
172.26.9.134http/1.1
34-220-0/0/8131.
0.0010590100.00.0084.49
172.26.9.134http/1.1
35-220-0/0/13983.
1.7810589300.00.00159.16
172.26.9.134http/1.1
36-220249290/1230/33177_
2.236120.013.63378.94
192.99.9.92http/1.1yeswhois.com:8443GET /?v=k_AZ_vzx3ZY HTTP/1.0
37-220-0/0/16604.
1.712120000.00.00183.14
172.26.9.134http/1.1
38-220-0/0/17747.
1.762119800.00.00199.68
172.26.9.134http/1.1
39-220-0/0/11861.
1.9210591100.00.00118.63
172.69.151.4http/1.1gl.askmy.org:8443GET /server-status HTTP/1.1
40-220249320/1233/3912_
2.30100.014.5938.19
185.163.3.6http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
41-220-0/0/6421.
0.01187900160.00.0066.92
172.26.9.134http/1.1
42-220-0/0/1684.
0.01187898180.00.0014.69
172.26.9.134http/1.1
43-220-0/0/8802.
0.01187897100.00.0083.76
172.26.9.134http/1.1
44-220-0/0/1245.
0.01187895110.00.0010.94
172.26.9.134http/1.1
45-220-0/0/3623.
0.01187896100.00.0035.20
172.26.9.134http/1.1
46-214-0/0/865.
0.0118829890.00.005.55
172.26.9.134http/1.1
47-214-0/0/4460.
0.0118829580.00.0040.47
172.26.9.134http/1.1
48-214-0/0/1188.
0.0218828310.00.0010.35
69.162.124.236http/1.1y2z.in:8443HEAD / HTTP/1.0
49-214-0/0/568.
0.01188283130.00.004.47
202.239.250.33http/1.1yeswhois.com:8443POST / HTTP/1.0
50-214-0/0/2981.
0.01188283130.00.0026.83
202.239.250.33http/1.1yeswhois.com:8443POST / HTTP/1.0
51-214-0/0/1276.
0.0118828310.00.008.50
69.162.124.230http/1.1rdbnetwork.com:8443HEAD / HTTP/1.0
52-214-0/0/1473.
0.0218828310.00.0011.40
69.162.124.230http/1.1rdbnetwork.com:8443HEAD / HTTP/1.0
53-214-0/0/2433.
0.0018833320.00.0024.08
172.26.9.134http/1.1
54-214-0/0/1384.
0.00188340110.00.0012.19
172.26.9.134http/1.1
55-214-0/0/753.
0.00188341130.00.005.37
172.26.9.134http/1.1
56-214-0/0/1061.
0.00188339160.00.008.21
172.26.9.134http/1.1
57-214-0/0/678.
0.0018834413980.00.004.82
172.26.9.134http/1.1
58-214-0/0/2531.
0.00188330110.00.0028.04
172.26.9.134http/1.1
59-214-0/0/614.
0.0018834312290.00.005.31
172.26.9.134http/1.1
60-214-0/0/1013.
0.0218834213350.00.006.84
172.26.9.134http/1.1
61-186-0/0/579.
0.00394319914280.00.004.92
172.26.9.134http/1.1
62-186-0/0/1311.
0.00394319714590.00.0011.73
172.26.9.134http/1.1
63-186-0/0/1248.
0.04

Found on 2024-03-28 07:53

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c03580b412

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Thursday, 21-Mar-2024 11:09:11 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 210
Parent Server MPM Generation: 209
Server uptime: 286 days 15 hours 21 minutes 5 seconds
Server load: 0.00 0.00 0.00
Total accesses: 3440245 - Total Traffic: 37.8 GB
CPU Usage: u70.51 s22.58 cu3.48 cs2.7 - .000401% CPU load
.139 requests/sec - 1637 B/second - 11.5 kB/request
1 requests currently being processed, 8 idle workers
__W____.........._.._...........................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-209315960/5143/289109_
9.37200.057.983258.43
92.223.124.16http/1.1learnmore.co:8080GET /about HTTP/1.0
1-209313890/5146/257144_
9.02000.058.442913.18
92.223.124.45http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
2-209195220/4709/221817W
8.52000.052.292481.92
92.223.124.25http/1.1learnmore.co:8080GET /server-status HTTP/1.0
3-209313910/5146/231373_
9.20300.057.102626.81
92.223.124.25http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
4-20992730/3593/180969_
6.57400.039.742063.34
92.223.124.53http/1.1learnmore.co:8080GET /server HTTP/1.0
5-209313900/5134/172043_
9.10100.057.441991.48
92.223.124.45http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
6-20988830/467/148331_
0.83200.05.791715.85
92.223.124.29http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
7-207-0/0/122194.
0.50362648120.00.001384.45
79.140.115.15http/1.1yeswhois.com:8443POST / HTTP/1.0
8-205-0/0/110592.
0.0041358800.00.001327.19
172.26.9.134http/1.1
9-205-0/0/94976.
0.0041359600.00.001045.79
172.26.9.134http/1.1
10-205-0/0/114938.
0.0041359510.00.001301.10
172.26.9.134http/1.1
11-205-0/0/116414.
0.0041360000.00.001305.72
172.26.9.134http/1.1
12-205-0/0/83499.
1.4341360100.00.00964.47
172.26.9.134http/1.1
13-205-0/0/96995.
0.0041360300.00.001134.07
172.26.9.134http/1.1
14-205-0/0/90941.
0.0041359300.00.001009.01
172.26.9.134http/1.1
15-205-0/0/64517.
0.0041359100.00.00702.25
172.26.9.134http/1.1
16-205-0/0/85927.
0.0041359700.00.00943.94
172.26.9.134http/1.1
17-209313870/5141/82513_
9.13800.058.13938.73
92.223.124.43http/1.1learnmore.co:8080GET / HTTP/1.0
18-205-0/0/49015.
0.0041359000.00.00545.47
172.26.9.134http/1.1
19-205-0/0/64919.
0.0041358900.00.00698.13
172.26.9.134http/1.1
20-209313880/5131/68152_
9.2319170.058.32718.38
216.144.248.18http/1.1yeswhois.com:8443HEAD / HTTP/1.0
21-205-0/0/39762.
0.9937312800.00.00427.06
127.0.0.1http/1.1global.zlivehost.com:8081GET /server-status HTTP/1.1
22-205-0/0/69173.
1.0937312800.00.00808.59
103.180.171.178http/1.1gl.askmy.org:8443GET /matomo/.travis.yml HTTP/1.0
23-205-0/0/31894.
0.0041359200.00.00349.92
172.26.9.134http/1.1
24-205-0/0/37100.
0.0041359900.00.00418.72
172.26.9.134http/1.1
25-205-0/0/55409.
1.02373128320.00.00629.60
183.145.241.214http/1.1yeswhois.com:8443GET / HTTP/1.0
26-205-0/0/65148.
0.0041358700.00.00743.64
172.26.9.134http/1.1
27-205-0/0/39255.
0.0041358600.00.00445.62
172.26.9.134http/1.1
28-205-0/0/36360.
0.0041358500.00.00400.29
172.26.9.134http/1.1
29-201-0/0/30804.
0.01459079130.00.00333.63
183.136.225.32http/1.1yeswhois.com:8443GET / HTTP/1.0
30-201-0/0/16301.
0.0045927400.00.00171.86
172.26.9.134http/1.1
31-199-0/0/8463.
0.0045943300.00.0086.52
172.26.9.134http/1.1
32-199-0/0/8627.
0.0045942610.00.0093.66
172.26.9.134http/1.1
33-193-0/0/21721.
0.00162205800.00.00237.87
172.26.9.134http/1.1
34-193-0/0/8125.
0.00162206330.00.0084.47
172.26.9.134http/1.1
35-193-0/0/12921.
0.921572248180.00.00146.94
198.235.24.6http/1.1yeswhois.com:8443GET / HTTP/1.0
36-193-0/0/31924.
0.921572248190.00.00365.02
223.252.75.60http/1.1yeswhois.com:8443POST / HTTP/1.0
37-190-0/0/15607.
0.072436248120.00.00171.85
195.167.66.17http/1.1yeswhois.com:8443POST / HTTP/1.0
38-190-0/0/16748.
0.002440365200.00.00188.88
172.26.9.134http/1.1
39-190-0/0/10805.
0.082436248130.00.00106.55
140.213.4.228http/1.1yeswhois.com:8443GET / HTTP/1.0
40-190-0/0/2678.
0.0024403729700.00.0023.59
172.26.9.134http/1.1
41-186-0/0/6418.
0.00335014412300.00.0066.90
172.26.9.134http/1.1
42-186-0/0/1680.
0.00335014312350.00.0014.67
172.26.9.134http/1.1
43-186-0/0/8800.
0.00335014611860.00.0083.75
172.26.9.134http/1.1
44-186-0/0/1244.
0.00335013612830.00.0010.93
172.26.9.134http/1.1
45-186-0/0/3622.
0.00335014511750.00.0035.19
172.26.9.134http/1.1
46-186-0/0/863.
0.00335014012070.00.005.54
172.26.9.134http/1.1
47-186-0/0/4459.
0.00335014910850.00.0040.46
172.26.9.134http/1.1
48-186-0/0/1183.
0.02335010416010.00.0010.32
172.26.9.134http/1.1
49-186-0/0/566.
0.00335013513070.00.004.45
172.26.9.134http/1.1
50-186-0/0/2977.
0.00335013712490.00.0026.81
172.26.9.134http/1.1
51-186-0/0/1274.
0.00335014211630.00.008.49
172.26.9.134http/1.1
52-186-0/0/1469.
0.02335015810350.00.0011.36
172.26.9.134http/1.1
53-186-0/0/2432.
2.24322483500.00.0024.08
172.26.9.134http/1.1
54-186-0/0/1383.
0.00335014111650.00.0012.18
172.26.9.134http/1.1
55-186-0/0/752.
0.0033501519520.00.005.37
172.26.9.134http/1.1
56-186-0/0/1060.
0.00335012814770.00.008.20
172.26.9.134http/1.1
57-186-0/0/678.
0.00335013113980.00.004.82
172.26.9.134http/1.1
58-186-0/0/2530.
0.00335013812010.00.0028.04
172.26.9.134http/1.1
59-186-0/0/614.
0.00335013412290.00.005.31
172.26.9.134http/1.1
60-186-0/0/1013.
0.02335013213350.00.006.84
172.26.9.134http/1.1
61-186-0/0/579.
0.00335012914280.00.004.92
172.26.9.134http/1.1
62-186-0/0/1311.
0.0033501271459

Found on 2024-03-21 11:09

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c05bf08c4f

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Friday, 08-Mar-2024 05:59:59 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 196
Parent Server MPM Generation: 195
Server uptime: 273 days 10 hours 11 minutes 53 seconds
Server load: 0.00 0.00 0.00
Total accesses: 3220672 - Total Traffic: 35.6 GB
CPU Usage: u108.21 s36.57 cu3.64 cs2.65 - .000639% CPU load
.136 requests/sec - 1619 B/second - 11.6 kB/request
1 requests currently being processed, 9 idle workers
_._____._.W__...................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

<SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-195125600/6919/273638_
11.15900.066.763103.56
185.163.3.5http/1.1learnmore.co:8080GET / HTTP/1.0
1-195-0/0/239531.
6.083492900.00.002719.30
172.26.9.134http/1.1
2-195155170/516/211307_
0.841600.05.192380.92
114.119.156.223http/1.1rdbnetwork.com:8443GET /search?q=Kemzzy%2BWorldwide,%2B%22NV,%22%2BUSA&sa=X&ved=2a
3-195124560/6927/212306_
11.062000.067.122421.18
69.162.124.236http/1.1y2z.in:8443HEAD / HTTP/1.0
4-195155180/517/170752_
0.88500.04.721970.00
185.163.3.6http/1.1learnmore.co:8080GET /about HTTP/1.0
5-195155190/522/155402_
0.87600.05.501812.98
185.163.3.6http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
6-195155200/519/141804_
0.84300.05.211647.06
185.163.3.4http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
7-195-0/0/113633.
10.173493200.00.001308.81
172.26.9.134http/1.1
8-195155210/523/100993_
0.92100.05.471228.11
185.163.3.5http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
9-195-0/0/89565.
10.233493000.00.001004.80
172.26.9.134http/1.1
10-195155220/521/106339W
0.83000.05.011226.22
185.163.3.5http/1.1learnmore.co:8080GET /server-status HTTP/1.0
11-195125510/6937/100986_
10.91800.067.511160.04
185.163.3.5http/1.1learnmore.co:8080GET /server HTTP/1.0
12-195155230/523/74880_
0.85210.05.30874.41
185.163.3.5http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
13-195-0/0/91132.
1.763493600.00.001073.10
172.26.9.134http/1.1
14-195-0/0/87971.
10.123493100.00.00979.75
172.26.9.134http/1.1
15-195-0/0/61703.
0.0030978800.00.00674.53
172.26.9.134http/1.1
16-195-0/0/73411.
0.0030978600.00.00827.94
172.26.9.134http/1.1
17-195-0/0/73641.
10.1634935510.00.00839.14
172.26.9.134http/1.1
18-195-0/0/48362.
0.0030978500.00.00537.56
172.26.9.134http/1.1
19-195-0/0/55298.
10.033493410.00.00615.25
172.26.9.134http/1.1
20-195-0/0/49685.
10.113493300.00.00534.44
172.26.9.134http/1.1
21-195-0/0/39135.
0.0030979700.00.00421.13
172.26.9.134http/1.1
22-195-0/0/66746.
5.6630979500.00.00784.22
172.26.9.134http/1.1
23-195-0/0/30081.
0.0030979410.00.00332.33
172.26.9.134http/1.1
24-193-0/0/37090.
0.0048029300.00.00418.67
172.26.9.134http/1.1
25-193-0/0/54787.
0.0048031000.00.00622.40
172.26.9.134http/1.1
26-193-0/0/65137.
5.5048030200.00.00743.58
172.26.9.134http/1.1
27-193-0/0/39250.
5.3348029200.00.00445.60
172.26.9.134http/1.1
28-195-0/0/36349.
1.7430979000.00.00400.18
172.26.9.134http/1.1
29-195-0/0/30800.
1.7730979300.00.00333.58
172.26.9.134http/1.1
30-193-0/0/16298.
0.0048030800.00.00171.85
172.26.9.134http/1.1
31-193-0/0/8463.
0.0048031000.00.0086.52
64.227.126.135http/1.1gl.askmy.org:8443GET /server-status HTTP/1.0
32-193-0/0/8626.
0.0048031200.00.0093.66
172.26.9.134http/1.1
33-193-0/0/21721.
0.0048030600.00.00237.87
172.26.9.134http/1.1
34-193-0/0/8125.
0.0048031130.00.0084.47
172.26.9.134http/1.1
35-193-0/0/12921.
0.92430495180.00.00146.94
198.235.24.6http/1.1yeswhois.com:8443GET / HTTP/1.0
36-193-0/0/31924.
0.92430495190.00.00365.02
223.252.75.60http/1.1yeswhois.com:8443POST / HTTP/1.0
37-190-0/0/15607.
0.071294496120.00.00171.85
195.167.66.17http/1.1yeswhois.com:8443POST / HTTP/1.0
38-190-0/0/16748.
0.001298613200.00.00188.88
172.26.9.134http/1.1
39-190-0/0/10805.
0.081294496130.00.00106.55
140.213.4.228http/1.1yeswhois.com:8443GET / HTTP/1.0
40-190-0/0/2678.
0.0012986209700.00.0023.59
172.26.9.134http/1.1
41-186-0/0/6418.
0.00220839212300.00.0066.90
172.26.9.134http/1.1
42-186-0/0/1680.
0.00220839112350.00.0014.67
172.26.9.134http/1.1
43-186-0/0/8800.
0.00220839411860.00.0083.75
172.26.9.134http/1.1
44-186-0/0/1244.
0.00220838412830.00.0010.93
172.26.9.134http/1.1
45-186-0/0/3622.
0.00220839311750.00.0035.19
172.26.9.134http/1.1
46-186-0/0/863.
0.00220838812070.00.005.54
172.26.9.134http/1.1
47-186-0/0/4459.
0.00220839710850.00.0040.46
172.26.9.134http/1.1
48-186-0/0/1183.
0.02220835216010.00.0010.32
172.26.9.134http/1.1
49-186-0/0/566.
0.00220838313070.00.004.45
172.26.9.134http/1.1
50-186-0/0/2977.
0.00220838512490.00.0026.81
172.26.9.134http/1.1
51-186-0/0/1274.
0.00220839011630.00.008.49
172.26.9.134http/1.1
52-186-0/0/1469.
0.02220840610350.00.0011.36
172.26.9.134http/1.1
53-186-0/0/2432.
2.24208308300.00.0024.08
172.26.9.134http/1.1
54-186-0/0/1383.
0.00220838911650.00.0012.18
172.26.9.134http/1.1
55-186-0/0/752.
0.0022083999520.00.005.37
172.26.9.134http/1.1
56-186-0/0/1060.
0.00220837614770.00.008.20
172.26.9.134http/1.1
57-186-0/0/678.
0.00220837913980.00.004.82
172.26.9.134http/1.1
58-186-0/0/2530.
0.00220838612010.00.0028.04
172.26.9.134http/1.1
59-186-0/0/614.
0.00220838212290.00.005.31
172.26.9.134http/1.1
60-186-0/0/1013.
0.02220838013350.00.006.84
172.26.9.134http/1.1
61-186-0/0/579.
0.00220837714280.00.004.92
172.26.9.134http/1.1
62-186-0/0/1311.
0.00220837514590.00.0011.73
172.26.9.134http/1.1

Found on 2024-03-08 05:58

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c0b0a51fd2

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Friday, 02-Feb-2024 19:52:42 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 182
Parent Server MPM Generation: 181
Server uptime: 239 days 4 minutes 36 seconds
Server load: 0.00 0.00 0.00
Total accesses: 2803870 - Total Traffic: 31.2 GB
CPU Usage: u26.39 s8.64 cu1.31 cs1 - .000181% CPU load
.136 requests/sec - 1620 B/second - 11.7 kB/request
1 requests currently being processed, 9 idle workers
_.___.._._.W....__....._........................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-18127020/180/236366_
0.32000.02.162702.32
93.123.17.132http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
1-181-0/0/209855.
0.00943712050.00.002401.55
172.26.9.134http/1.1
2-18127360/175/186289_
0.3229100.02.252102.67
15.235.196.18http/1.1yeswhois.com:8443GET /about.php7 HTTP/1.0
3-181308550/704/183217_
1.44000.09.282106.27
93.123.17.186http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
4-18129960/175/149241_
0.38100.01.801727.66
93.123.17.181http/1.1learnmore.co:8080GET /about HTTP/1.0
5-181-0/0/149412.
0.011042200.00.001746.94
172.26.9.134http/1.1
6-181-0/0/136613.
0.551043110.00.001587.93
172.26.9.134http/1.1
7-181133090/1208/96768_
2.41100.014.771129.05
93.123.17.190http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
8-181-0/0/84940.
0.011042100.00.001043.55
172.26.9.134http/1.1
9-181133100/1199/80253_
2.192990.015.32910.62
15.235.196.18http/1.1yeswhois.com:8443GET /admin.php HTTP/1.0
10-181-0/0/101757.
1.8410425500.00.001172.87
172.26.9.134http/1.1
11-18114970/190/89510W
0.38000.02.341041.70
93.123.17.142http/1.1learnmore.co:8080GET /server-status HTTP/1.0
12-181-0/0/61052.
0.001043400.00.00719.64
172.26.9.134http/1.1
13-181-0/0/72497.
0.001043520.00.00865.95
172.26.9.134http/1.1
14-181-0/0/78715.
0.911042700.00.00884.43
172.26.9.134http/1.1
15-181-0/0/51104.
2.399543330.00.00558.84
172.26.9.134http/1.1
16-18115000/187/60395_
0.392990.02.15680.51
15.235.196.18http/1.1yeswhois.com:8443GET /about.php HTTP/1.0
17-18115010/189/58339_
0.37200.02.41680.56
93.123.17.137http/1.1learnmore.co:8080GET / HTTP/1.0
18-181-0/0/34033.
0.03950810680.00.00378.99
172.26.9.134http/1.1
19-181-0/0/46557.
0.03947310040.00.00529.01
172.26.9.134http/1.1
20-181-0/0/37441.
0.001043300.00.00407.37
172.26.9.134http/1.1
21-181-0/0/35598.
0.001042900.00.00382.17
172.26.9.134http/1.1
22-181-0/0/56483.
0.001043000.00.00672.43
172.26.9.134http/1.1
23-18115070/187/22779_
0.35000.02.05245.10
93.123.17.189http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
24-181-0/0/34472.
0.001042800.00.00392.31
172.26.9.134http/1.1
25-181-0/0/46176.
4.041043200.00.00525.59
172.26.9.134http/1.1
26-181-0/0/55079.
4.0012522220.00.00623.85
172.26.9.134http/1.1
27-181-0/0/28998.
0.00125221200.00.00326.46
172.26.9.134http/1.1
28-181-0/0/24068.
0.001252271290.00.00263.51
172.26.9.134http/1.1
29-181-0/0/23050.
0.0012520300.00.00245.36
172.26.9.134http/1.1
30-181-0/0/13933.
0.0012523010.00.00143.18
172.26.9.134http/1.1
31-181-0/0/8342.
0.41101749500.00.0085.37
172.26.9.134http/1.1
32-181-0/0/8607.
0.0012522900.00.0093.60
172.26.9.134http/1.1
33-181-0/0/19846.
0.4510174700.00.00216.94
172.26.9.134http/1.1
34-181-0/0/8059.
0.0012522880.00.0083.76
172.26.9.134http/1.1
35-181-0/0/11651.
0.4110174800.00.00134.75
172.26.9.134http/1.1
36-181-0/0/30632.
1.058225610.00.00353.14
172.26.9.134http/1.1
37-181-0/0/15545.
0.00125234380.00.00170.97
172.26.9.134http/1.1
38-181-0/0/16706.
0.898225500.00.00188.69
172.26.9.134http/1.1
39-181-0/0/10056.
1.088226000.00.0098.76
172.26.9.134http/1.1
40-181-0/0/1970.
0.4910174600.00.0016.48
172.26.9.134http/1.1
41-172-0/0/6388.
0.01577098120.00.0066.65
172.26.9.134http/1.1
42-172-0/0/1674.
0.01577097100.00.0014.66
172.26.9.134http/1.1
43-172-0/0/8773.
0.02577022190.00.0083.60
2a05:91c0:1506:14e::http/1.1yeswhois.com:8443GET / HTTP/1.0
44-172-0/0/1214.
0.0257702290.00.0010.70
185.165.170.3http/1.1yeswhois.com:8443GET / HTTP/1.0
45-172-0/0/3617.
0.0257709390.00.0035.18
172.26.9.134http/1.1
46-172-0/0/835.
0.0157702290.00.005.39
104.129.56.11http/1.1yeswhois.com:8443GET / HTTP/1.0
47-172-0/0/4443.
0.00577122170.00.0040.42
172.26.9.134http/1.1
48-172-0/0/1161.
0.0057712512280.00.0010.22
172.26.9.134http/1.1
49-172-0/0/541.
0.00577116180.00.004.37
172.26.9.134http/1.1
50-172-0/0/2964.
0.0257702290.00.0026.77
2a05:91c0:1506:14e::http/1.1yeswhois.com:8443OPTIONS / HTTP/1.0
51-172-0/0/1259.
0.0157711920.00.008.45
172.26.9.134http/1.1
52-167-0/0/1436.
0.00105003711330.00.0011.24
172.26.9.134http/1.1
53-167-0/0/1232.
1.0699885910.00.0010.48
69.162.124.236http/1.1y2z.in:8443HEAD / HTTP/1.0
54-167-0/0/1366.
0.00105007013530.00.0012.13
172.26.9.134http/1.1
55-167-0/0/721.
0.00105004614210.00.005.20
172.26.9.134http/1.1
56-167-0/0/1045.
0.00105004813780.00.008.15
172.26.9.134http/1.1
57-167-0/0/666.
0.00105003515820.00.004.79
172.26.9.134http/1.1
58-167-0/0/2502.
0.00105004714770.00.0027.89
172.26.9.134http/1.1
59-167-0/0/602.
0.00105004114530.00.005.27
172.26.9.134http/1.1
60-167-0/0/984.
0.00105006214250.00.006.70
172.26.9.134http/1.1
61-167-0/0/567.
0.0010500829550.00.004.88
172.26.9.134http/1.1
62-167-0/0/1300.
0.00105006114960.00.0011.70
172.26.9.134http/1.1
63-167-0/0/1221.
1.019988

Found on 2024-02-02 19:52

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c0e19a7066

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Sunday, 28-Jan-2024 08:42:54 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 180
Parent Server MPM Generation: 179
Server uptime: 233 days 12 hours 54 minutes 48 seconds
Server load: 0.04 0.01 0.00
Total accesses: 2741765 - Total Traffic: 30.5 GB
CPU Usage: u14.38 s4.41 cu.64 cs.51 - 9.88e-5% CPU load
.136 requests/sec - 1622 B/second - 11.7 kB/request
1 requests currently being processed, 5 idle workers
___W.._..............._.........................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-17962360/123/229950_
0.21100.01.202631.11
92.38.168.7http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
1-17962370/124/204648_
0.24100.01.192342.97
92.38.168.5http/1.1learnmore.co:8080GET /about HTTP/1.0
2-17962380/126/180901_
0.23000.01.482043.61
92.38.168.7http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
3-17962930/125/179026W
0.23000.01.612060.41
92.38.168.7http/1.1learnmore.co:8080GET /server-status HTTP/1.0
4-178-0/0/146375.
0.748270180.00.001693.04
198.235.24.186http/1.1yeswhois.com:8443GET / HTTP/1.0
5-178-0/0/144878.
0.80827010.00.001694.70
102.212.240.244http/1.1rdbnetwork.com:8443GET / HTTP/1.0
6-17962390/126/132809_
0.20000.01.161545.82
92.38.168.5http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
7-178-0/0/94364.
0.005928410.00.001099.96
172.26.9.134http/1.1
8-178-0/0/84323.
0.005928500.00.001037.14
172.26.9.134http/1.1
9-178-0/0/79050.
0.758270180.00.00895.28
58.165.97.95http/1.1yeswhois.com:8443POST / HTTP/1.0
10-178-0/0/100742.
0.005928610.00.001159.99
172.26.9.134http/1.1
11-178-0/0/88816.
0.005928310.00.001033.51
172.26.9.134http/1.1
12-178-0/0/60544.
1.085927950.00.00713.78
172.26.9.134http/1.1
13-178-0/0/72490.
0.0110448610.00.00865.92
172.26.9.134http/1.1
14-178-0/0/77687.
1.075928000.00.00872.36
172.26.9.134http/1.1
15-178-0/0/49807.
0.0010449900.00.00543.48
172.26.9.134http/1.1
16-178-0/0/60200.
0.0010449510.00.00678.23
172.26.9.134http/1.1
17-178-0/0/58145.
1.015928200.00.00678.12
172.26.9.134http/1.1
18-178-0/0/31714.
0.0010449200.00.00352.43
172.26.9.134http/1.1
19-178-0/0/44247.
0.0010449000.00.00502.53
172.26.9.134http/1.1
20-178-0/0/35142.
0.0010450110.00.00381.00
172.26.9.134http/1.1
21-178-0/0/33107.
0.985928100.00.00353.23
172.26.9.134http/1.1
22-17962400/123/53491_
0.23200.01.38641.18
92.38.168.6http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
23-178-0/0/21749.
0.0110449700.00.00232.87
172.26.9.134http/1.1
24-178-0/0/34469.
0.0010450200.00.00392.30
172.26.9.134http/1.1
25-178-0/0/43880.
0.0010448500.00.00499.62
172.26.9.134http/1.1
26-178-0/0/52784.
0.0010450310.00.00597.63
172.26.9.134http/1.1
27-178-0/0/28994.
0.0010448400.00.00326.35
172.26.9.134http/1.1
28-178-0/0/24066.
1.81827010.00.00263.41
102.212.240.244http/1.1rdbnetwork.com:8443GET / HTTP/1.0
29-178-0/0/23049.
0.0010449400.00.00245.36
172.26.9.134http/1.1
30-172-0/0/13932.
0.0110490470.00.00143.18
172.26.9.134http/1.1
31-172-0/0/8100.
0.02104924130.00.0082.88
172.26.9.134http/1.1
32-172-0/0/8606.
0.01104914200.00.0093.60
172.26.9.134http/1.1
33-172-0/0/19605.
0.01104912370.00.00214.37
172.26.9.134http/1.1
34-172-0/0/8058.
0.02104920130.00.0083.67
172.26.9.134http/1.1
35-172-0/0/11407.
0.01104907110.00.00132.19
172.26.9.134http/1.1
36-176-0/0/30126.
0.0210465400.00.00348.52
172.26.9.134http/1.1
37-172-0/0/15545.
0.00104911380.00.00170.97
172.26.9.134http/1.1
38-176-0/0/16197.
0.0110467200.00.00183.50
161.35.27.144http/1.1securepay.zlivehost.com:8443GET /server-status HTTP/1.0
39-172-0/0/9551.
0.02104833220.00.0093.82
104.129.56.11http/1.1yeswhois.com:8443GET / HTTP/1.0
40-172-0/0/1725.
0.01104902100.00.0014.19
172.26.9.134http/1.1
41-172-0/0/6388.
0.01104910120.00.0066.65
172.26.9.134http/1.1
42-172-0/0/1674.
0.01104909100.00.0014.66
172.26.9.134http/1.1
43-172-0/0/8773.
0.02104833190.00.0083.60
2a05:91c0:1506:14e::http/1.1yeswhois.com:8443GET / HTTP/1.0
44-172-0/0/1214.
0.0210483390.00.0010.70
185.165.170.3http/1.1yeswhois.com:8443GET / HTTP/1.0
45-172-0/0/3617.
0.0210490590.00.0035.18
172.26.9.134http/1.1
46-172-0/0/835.
0.0110483390.00.005.39
104.129.56.11http/1.1yeswhois.com:8443GET / HTTP/1.0
47-172-0/0/4443.
0.00104934170.00.0040.42
172.26.9.134http/1.1
48-172-0/0/1161.
0.0010493712280.00.0010.22
172.26.9.134http/1.1
49-172-0/0/541.
0.00104928180.00.004.37
172.26.9.134http/1.1
50-172-0/0/2964.
0.0210483390.00.0026.77
2a05:91c0:1506:14e::http/1.1yeswhois.com:8443OPTIONS / HTTP/1.0
51-172-0/0/1259.
0.0110493120.00.008.45
172.26.9.134http/1.1
52-167-0/0/1436.
0.0057784911330.00.0011.24
172.26.9.134http/1.1
53-167-0/0/1232.
1.0652667110.00.0010.48
69.162.124.236http/1.1y2z.in:8443HEAD / HTTP/1.0
54-167-0/0/1366.
0.0057788213530.00.0012.13
172.26.9.134http/1.1
55-167-0/0/721.
0.0057785814210.00.005.20
172.26.9.134http/1.1
56-167-0/0/1045.
0.0057786013780.00.008.15
172.26.9.134http/1.1
57-167-0/0/666.
0.0057784715820.00.004.79
172.26.9.134http/1.1
58-167-0/0/2502.
0.0057785914770.00.0027.89
172.26.9.134http/1.1
59-167-0/0/602.
0.0057785314530.00.005.27
172.26.9.134http/1.1
60-167-0/0/984.
0.0057787414250.00.006.70
172.26.9.134http/1.1
61-167-0/0/567.
0.005778949550.00.004.88
172.26.9.134http/1.1
62-167-0/0/1300.
0.0057787314960.00.0011.70
172.26.9.134http/1.1
63-167-

Found on 2024-01-28 08:42

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c01064d12b

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Sunday, 07-Jan-2024 07:54:35 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 153
Parent Server MPM Generation: 152
Server uptime: 212 days 12 hours 6 minutes 29 seconds
Server load: 0.00 0.02 0.00
Total accesses: 2498590 - Total Traffic: 27.9 GB
CPU Usage: u26.17 s8.33 cu.84 cs.7 - .000196% CPU load
.136 requests/sec - 1630 B/second - 11.7 kB/request
3 requests currently being processed, 7 idle workers
___W_K__.K..............._......................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-15234040/196/208732_
0.33100.02.072394.71
92.38.168.7http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
1-152318880/3/181852_
0.00000.00.022085.76
92.38.168.5http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
2-152318890/2/163520_
0.00610.00.011848.69
69.162.124.236http/1.1y2z.in:8443HEAD / HTTP/1.0
3-152318900/2/162983W
0.00000.00.011880.22
92.38.168.7http/1.1learnmore.co:8080GET /server-status HTTP/1.0
4-152318910/2/128784_
0.00400.00.021503.45
92.38.168.6http/1.1learnmore.co:8080GET / HTTP/1.0
5-152318921/2/140742K
0.011696.80.021649.37
108.162.237.118http/1.1my.askmy.org:8443GET / HTTP/1.1
6-1526600/213/121826_
0.35100.01.991424.20
92.38.168.7http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
7-152318930/2/84928_
0.00300.00.01996.04
92.38.168.6http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
8-152-0/0/67225.
0.325810.00.00840.87
172.26.9.134http/1.1
9-15234061/196/76424K
0.340526.91.77871.01
172.71.26.27http/1.1my.askmy.org:8443GET / HTTP/1.1
10-152-0/0/95677.
0.345300.00.001104.83
172.26.9.134http/1.1
11-152-0/0/83904.
0.765730.00.00979.91
172.26.9.134http/1.1
12-152-0/0/51319.
1.045400.00.00610.95
172.26.9.134http/1.1
13-152-0/0/63932.
0.305500.00.00766.01
172.26.9.134http/1.1
14-152-0/0/76013.
0.325200.00.00855.08
172.26.9.134http/1.1
15-152-0/0/48037.
0.325600.00.00523.34
172.26.9.134http/1.1
16-152-0/0/56495.
0.0017862520.00.00641.06
172.26.9.134http/1.1
17-152-0/0/54920.
0.001786400.00.00642.30
172.26.9.134http/1.1
18-152-0/0/30202.
1.031786600.00.00338.06
172.26.9.134http/1.1
19-152-0/0/41434.
0.001786500.00.00471.92
172.26.9.134http/1.1
20-152-0/0/26298.
0.001786000.00.00279.23
172.26.9.134http/1.1
21-152-0/0/24177.
0.001786300.00.00247.62
172.26.9.134http/1.1
22-152-0/0/43432.
0.731786100.00.00525.55
172.26.9.134http/1.1
23-152-0/0/21260.
0.001785900.00.00228.62
172.26.9.134http/1.1
24-152-0/0/32789.
0.005741600.00.00371.80
172.26.9.134http/1.1
25-152107610/627/33355_
0.99200.05.16382.10
92.38.168.5http/1.1learnmore.co:8080GET /about HTTP/1.0
26-152-0/0/44108.
0.005741400.00.00503.56
172.26.9.134http/1.1
27-152-0/0/26661.
0.39397355390.00.00300.73
172.26.9.134http/1.1
28-152-0/0/22793.
4.395744100.00.00249.72
172.26.9.134http/1.1
29-152-0/0/22551.
0.651952200.00.00240.18
172.26.9.134http/1.1
30-152-0/0/13337.
0.005743400.00.00137.52
172.26.9.134http/1.1
31-152-0/0/7982.
0.374124300.00.0082.35
172.26.9.134http/1.1
32-152-0/0/8526.
0.135744000.00.0093.30
172.26.9.134http/1.1
33-152-0/0/18664.
0.651952300.00.00206.29
172.26.9.134http/1.1
34-152-0/0/7951.
0.005743100.00.0083.21
172.26.9.134http/1.1
35-152-0/0/11342.
4.485742100.00.00131.96
172.26.9.134http/1.1
36-152-0/0/29144.
0.0025243470.00.00340.03
172.26.9.134http/1.1
37-152-0/0/14611.
2.4214377100.00.00162.43
172.26.9.134http/1.1
38-152-0/0/16089.
0.2525244200.00.00182.96
172.26.9.134http/1.1
39-152-0/0/9437.
0.00252433110.00.0093.29
172.26.9.134http/1.1
40-152-0/0/1656.
0.0025243200.00.0013.92
172.26.9.134http/1.1
41-148-0/0/6308.
0.27125291000.00.0066.31
172.26.9.134http/1.1
42-148-0/0/1548.
0.37124731100.00.0014.15
172.26.9.134http/1.1
43-139-0/0/8701.
0.01335698416370.00.0083.28
172.26.9.134http/1.1
44-139-0/0/1127.
0.01335698113860.00.0010.31
172.26.9.134http/1.1
45-139-0/0/3562.
0.01335699913430.00.0034.95
172.26.9.134http/1.1
46-139-0/0/776.
0.01335705014800.00.005.10
172.26.9.134http/1.1
47-139-0/0/4390.
0.02335703017750.00.0040.20
172.26.9.134http/1.1
48-139-0/0/1102.
0.01335701416210.00.009.96
172.26.9.134http/1.1
49-139-0/0/490.
0.00335698016850.00.004.18
172.26.9.134http/1.1
50-139-0/0/2880.
0.1033533445990.00.0026.39
172.26.9.134http/1.1
51-139-0/0/1200.
0.02335702518210.00.008.23
172.26.9.134http/1.1
52-139-0/0/1393.
0.96330918210010.00.0011.08
172.26.9.134http/1.1
53-139-0/0/672.
0.01335703917790.00.004.79
172.26.9.134http/1.1
54-139-0/0/1315.
0.02335703223260.00.0011.92
172.26.9.134http/1.1
55-139-0/0/674.
0.02335703117470.00.005.03
172.26.9.134http/1.1
56-139-0/0/1010.
0.01335702817770.00.008.02
172.26.9.134http/1.1
57-139-0/0/622.
0.02335700416070.00.004.62
172.26.9.134http/1.1
58-139-0/0/2458.
0.00335704511720.00.0027.73
172.26.9.134http/1.1
59-139-0/0/559.
0.01335697516350.00.005.10
172.26.9.134http/1.1
60-139-0/0/915.
0.01335699418330.00.006.45
172.26.9.134http/1.1
61-139-0/0/514.
0.00335702718090.00.004.64
172.26.9.134http/1.1
62-139-0/0/1246.
0.01335699515980.00.0011.50
172.26.9.134http/1.1
63-139-0/0/680.
0.1833494214430.00.006.41
172.26.9.134http/1.1
64-139-0/0/665.
0.013357035

Found on 2024-01-07 07:54

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c09ebf0600

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Friday, 05-Jan-2024 23:07:40 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 153
Parent Server MPM Generation: 152
Server uptime: 211 days 3 hours 19 minutes 34 seconds
Server load: 0.01 0.01 0.00
Total accesses: 2486441 - Total Traffic: 27.8 GB
CPU Usage: u49.75 s15.95 cu1.55 cs1.18 - .000375% CPU load
.136 requests/sec - 1633 B/second - 11.7 kB/request
1 requests currently being processed, 9 idle workers
_..____._...__....._...............W............................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-15216560/130/207957_
0.24000.01.182387.40
92.223.120.14http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
1-152-0/0/181573.
0.06705400.00.002082.30
172.26.9.134http/1.1
2-152-0/0/162832.
0.451088310.00.001840.85
172.26.9.134http/1.1
3-15216580/133/162404_
0.24000.01.261873.90
92.223.120.12http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
4-152132520/404/128210_
0.75200.05.151497.25
92.223.120.13http/1.1learnmore.co:8080GET / HTTP/1.0
5-15216590/134/140245_
0.28200.01.691644.36
92.223.120.13http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
6-152132540/401/121093_
0.77100.05.511416.94
92.223.120.15http/1.1learnmore.co:8080GET /about HTTP/1.0
7-152-0/0/84497.
0.461088100.00.00991.68
172.26.9.134http/1.1
8-152132560/404/66534_
0.793610.05.10834.00
69.162.124.230http/1.1rdbnetwork.com:8443HEAD / HTTP/1.0
9-152-0/0/75731.
0.001089200.00.00864.28
172.26.9.134http/1.1
10-152-0/0/94974.
2.891088200.00.001098.17
172.26.9.134http/1.1
11-152-0/0/83425.
0.0010897140.00.00974.91
172.26.9.134http/1.1
12-152117480/1741/50517_
3.3012300.020.62603.37
185.77.217.42http/1.1pixelwixel.com:8443GET / HTTP/1.0
13-15216640/129/63677_
0.2430170.01.18763.35
205.210.31.21http/1.1yeswhois.com:8443GET / HTTP/1.0
14-152-0/0/75787.
4.391089300.00.00852.60
172.26.9.134http/1.1
15-152-0/0/47840.
2.511088600.00.00521.32
172.26.9.134http/1.1
16-152-0/0/56460.
4.511088960.00.00640.68
172.26.9.134http/1.1
17-152-0/0/54880.
4.281089100.00.00641.82
172.26.9.134http/1.1
18-152-0/0/29710.
0.001089000.00.00332.97
172.26.9.134http/1.1
19-152132640/407/41375_
0.74100.04.83471.30
92.223.120.15http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
20-152-0/0/26294.
0.001088800.00.00279.19
172.26.9.134http/1.1
21-152-0/0/24175.
0.001088700.00.00247.61
172.26.9.134http/1.1
22-152-0/0/43022.
0.001088590.00.00521.77
172.26.9.134http/1.1
23-152-0/0/21259.
0.001088410.00.00228.61
172.26.9.134http/1.1
24-152-0/0/32788.
4.5313441630.00.00371.79
172.26.9.134http/1.1
25-152-0/0/32728.
0.00134402100.00.00376.93
172.26.9.134http/1.1
26-152-0/0/44106.
0.0013442270.00.00503.55
172.26.9.134http/1.1
27-152-0/0/26420.
4.5013440400.00.00298.99
172.26.9.134http/1.1
28-152-0/0/22793.
4.3913439700.00.00249.72
172.26.9.134http/1.1
29-152-0/0/22143.
0.0013442110.00.00236.70
172.26.9.134http/1.1
30-152-0/0/13336.
0.0013439800.00.00137.52
172.26.9.134http/1.1
31-152-0/0/7755.
2.312576000.00.0080.97
172.26.9.134http/1.1
32-152-0/0/8526.
0.1313442800.00.0093.30
172.26.9.134http/1.1
33-152-0/0/18257.
2.332575800.00.00202.47
172.26.9.134http/1.1
34-152-0/0/7950.
2.462575400.00.0083.20
172.26.9.134http/1.1
35-152117950/1732/10753W
3.08000.021.55125.69
92.223.120.12http/1.1learnmore.co:8080GET /server-status HTTP/1.0
36-152-0/0/29144.
0.0013441970.00.00340.03
172.26.9.134http/1.1
37-152-0/0/14611.
2.422575600.00.00162.43
172.26.9.134http/1.1
38-152-0/0/16089.
0.2513442700.00.00182.96
172.26.9.134http/1.1
39-152-0/0/9437.
0.00134418110.00.0093.29
172.26.9.134http/1.1
40-152-0/0/1656.
0.0013441700.00.0013.92
172.26.9.134http/1.1
41-148-0/0/6308.
0.27113489600.00.0066.31
172.26.9.134http/1.1
42-148-0/0/1548.
0.37112929700.00.0014.15
172.26.9.134http/1.1
43-139-0/0/8701.
0.01323896916370.00.0083.28
172.26.9.134http/1.1
44-139-0/0/1127.
0.01323896613860.00.0010.31
172.26.9.134http/1.1
45-139-0/0/3562.
0.01323898413430.00.0034.95
172.26.9.134http/1.1
46-139-0/0/776.
0.01323903514800.00.005.10
172.26.9.134http/1.1
47-139-0/0/4390.
0.02323901517750.00.0040.20
172.26.9.134http/1.1
48-139-0/0/1102.
0.01323899916210.00.009.96
172.26.9.134http/1.1
49-139-0/0/490.
0.00323896516850.00.004.18
172.26.9.134http/1.1
50-139-0/0/2880.
0.1032353305990.00.0026.39
172.26.9.134http/1.1
51-139-0/0/1200.
0.02323901018210.00.008.23
172.26.9.134http/1.1
52-139-0/0/1393.
0.96319116710010.00.0011.08
172.26.9.134http/1.1
53-139-0/0/672.
0.01323902417790.00.004.79
172.26.9.134http/1.1
54-139-0/0/1315.
0.02323901723260.00.0011.92
172.26.9.134http/1.1
55-139-0/0/674.
0.02323901617470.00.005.03
172.26.9.134http/1.1
56-139-0/0/1010.
0.01323901317770.00.008.02
172.26.9.134http/1.1
57-139-0/0/622.
0.02323898916070.00.004.62
172.26.9.134http/1.1
58-139-0/0/2458.
0.00323903011720.00.0027.73
172.26.9.134http/1.1
59-139-0/0/559.
0.01323896016350.00.005.10
172.26.9.134http/1.1
60-139-0/0/915.
0.01323897918330.00.006.45
172.26.9.134http/1.1
61-139-0/0/514.
0.00323901218090.00.004.64
172.26.9.134http/1.1
62-139-0/0/1246.
0.01323898015980.00.0011.50
172.26.9.134http/1.1
63-139-0/0/680.
0.1832314064430.00.006.41
172.26.9.134http/1.1
64-139

Found on 2024-01-05 23:07

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c029b19db4

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Saturday, 23-Dec-2023 23:54:22 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 149
Parent Server MPM Generation: 148
Server uptime: 198 days 4 hours 6 minutes 16 seconds
Server load: 0.00 0.00 0.00
Total accesses: 2344051 - Total Traffic: 26.2 GB
CPU Usage: u19.28 s6.17 cu.94 cs.72 - .000158% CPU load
.137 requests/sec - 1643 B/second - 11.7 kB/request
1 requests currently being processed, 9 idle workers
_...__W.___..__........._.......................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-148150790/62/194459_
0.1134170.00.782238.96
168.151.199.116http/1.1yeswhois.com:8443GET / HTTP/1.0
1-148-0/0/171091.
0.07268500.00.001969.09
172.26.9.134http/1.1
2-148-0/0/150780.
0.06268100.00.001706.89
172.26.9.134http/1.1
3-148-0/0/150455.
0.06268200.00.001743.69
172.26.9.134http/1.1
4-148150800/62/117930_
0.10100.00.721382.51
92.223.124.15http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
5-148150810/62/133828_
0.10100.00.791573.68
92.223.124.27http/1.1learnmore.co:8080GET / HTTP/1.0
6-14866260/95/110201W
0.17000.01.241301.33
92.223.124.25http/1.1learnmore.co:8080GET /server-status HTTP/1.0
7-148-0/0/81578.
0.23268800.00.00957.20
172.26.9.134http/1.1
8-148150820/62/65903_
0.10000.00.68826.28
92.223.124.51http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
9-148150830/61/75192_
0.11000.00.71859.24
92.223.124.37http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
10-14866290/99/90753_
0.237900.01.191046.99
69.162.124.236http/1.1y2z.in:8443HEAD / HTTP/1.0
11-148-0/0/76292.
0.06268400.00.00901.69
172.26.9.134http/1.1
12-148-0/0/41650.
0.06268000.00.00507.27
172.26.9.134http/1.1
13-148150840/62/55507_
0.10100.00.76670.13
92.223.124.16http/1.1learnmore.co:8080GET /about HTTP/1.0
14-148150850/62/72149_
0.10000.00.81810.90
92.223.124.29http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
15-148-0/0/46408.
0.01268900.00.00504.50
172.26.9.134http/1.1
16-148-0/0/52624.
3.81268600.00.00596.73
172.26.9.134http/1.1
17-148-0/0/50172.
0.00268700.00.00587.81
172.26.9.134http/1.1
18-148-0/0/28265.
0.251449000.00.00317.92
172.26.9.134http/1.1
19-148-0/0/40835.
0.011448200.00.00464.63
172.26.9.134http/1.1
20-148-0/0/25512.
0.011447400.00.00270.46
172.26.9.134http/1.1
21-148-0/0/24167.
0.011448000.00.00247.59
172.26.9.134http/1.1
22-148-0/0/42900.
0.001450500.00.00520.09
172.70.115.88http/1.1securepay.zlivehost.com:8443GET /server-status HTTP/1.1
23-148-0/0/20381.
0.241449700.00.00219.01
172.26.9.134http/1.1
24-148301510/146/30362_
0.3486130.01.57342.78
111.197.233.215http/1.1yeswhois.com:8443GET / HTTP/1.0
25-148-0/0/30983.
0.011447800.00.00356.81
172.26.9.134http/1.1
26-148-0/0/43231.
0.001449900.00.00494.00
172.26.9.134http/1.1
27-148-0/0/23997.
0.12890100.00.00270.00
172.26.9.134http/1.1
28-148-0/0/20381.
0.09890300.00.00221.25
172.26.9.134http/1.1
29-148-0/0/22142.
0.011447700.00.00236.70
172.26.9.134http/1.1
30-148-0/0/13335.
0.001450400.00.00137.51
172.26.9.134http/1.1
31-148-0/0/6424.
0.15268300.00.0064.20
172.26.9.134http/1.1
32-148-0/0/8526.
0.13889700.00.0093.30
172.26.9.134http/1.1
33-148-0/0/16926.
0.241449300.00.00186.37
172.26.9.134http/1.1
34-148-0/0/6611.
0.09890000.00.0067.50
172.26.9.134http/1.1
35-148-0/0/9021.
0.011447600.00.00104.13
172.26.9.134http/1.1
36-148-0/0/29143.
4.542697600.00.00339.94
172.26.9.134http/1.1
37-148-0/0/13279.
0.002696610.00.00146.65
172.26.9.134http/1.1
38-148-0/0/16089.
0.251449600.00.00182.96
172.26.9.134http/1.1
39-148-0/0/9436.
0.002696800.00.0093.28
172.26.9.134http/1.1
40-148-0/0/1655.
0.0026975150.00.0013.82
172.26.9.134http/1.1
41-148-0/0/6308.
0.271449800.00.0066.31
172.26.9.134http/1.1
42-148-0/0/1548.
0.37889900.00.0014.15
172.26.9.134http/1.1
43-139-0/0/8701.
0.01211857116370.00.0083.28
172.26.9.134http/1.1
44-139-0/0/1127.
0.01211856813860.00.0010.31
172.26.9.134http/1.1
45-139-0/0/3562.
0.01211858613430.00.0034.95
172.26.9.134http/1.1
46-139-0/0/776.
0.01211863714800.00.005.10
172.26.9.134http/1.1
47-139-0/0/4390.
0.02211861717750.00.0040.20
172.26.9.134http/1.1
48-139-0/0/1102.
0.01211860116210.00.009.96
172.26.9.134http/1.1
49-139-0/0/490.
0.00211856716850.00.004.18
172.26.9.134http/1.1
50-139-0/0/2880.
0.1021149325990.00.0026.39
172.26.9.134http/1.1
51-139-0/0/1200.
0.02211861218210.00.008.23
172.26.9.134http/1.1
52-139-0/0/1393.
0.96207076910010.00.0011.08
172.26.9.134http/1.1
53-139-0/0/672.
0.01211862617790.00.004.79
172.26.9.134http/1.1
54-139-0/0/1315.
0.02211861923260.00.0011.92
172.26.9.134http/1.1
55-139-0/0/674.
0.02211861817470.00.005.03
172.26.9.134http/1.1
56-139-0/0/1010.
0.01211861517770.00.008.02
172.26.9.134http/1.1
57-139-0/0/622.
0.02211859116070.00.004.62
172.26.9.134http/1.1
58-139-0/0/2458.
0.00211863211720.00.0027.73
172.26.9.134http/1.1
59-139-0/0/559.
0.01211856216350.00.005.10
172.26.9.134http/1.1
60-139-0/0/915.
0.01211858118330.00.006.45
172.26.9.134http/1.1
61-139-0/0/514.
0.00211861418090.00.004.64
172.26.9.134http/1.1
62-139-0/0/1246.
0.01211858215980.00.0011.50
172.26.9.134http/1.1
63-139-0/0/680.
0.1821110084430.00.006.41
172.26.9.134http/1.1
64-139

Found on 2023-12-23 23:54

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c0ba903529

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Monday, 11-Dec-2023 17:04:55 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 145
Parent Server MPM Generation: 144
Server uptime: 185 days 21 hours 16 minutes 49 seconds
Server load: 0.00 0.00 0.00
Total accesses: 2217191 - Total Traffic: 24.7 GB
CPU Usage: u20.64 s6.74 cu.97 cs.79 - .000181% CPU load
.138 requests/sec - 1654 B/second - 11.7 kB/request
1 requests currently being processed, 9 idle workers
__.._..._.__.__.W_..............................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-14450680/72/181782_
0.117100.00.952090.35
20.218.223.119http/1.1yeswhois.com:8443GET /wp-admin/css/colors/coffee/cloud.php HTTP/1.0
1-14450690/71/160843_
0.11000.00.911850.18
92.38.168.7http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
2-144-0/0/139742.
0.14309600.00.001574.65
172.26.9.134http/1.1
3-144-0/0/137567.
0.17310200.00.001592.23
172.26.9.134http/1.1
4-14450700/72/109048_
0.12300.01.111277.84
92.38.168.6http/1.1learnmore.co:8080GET / HTTP/1.0
5-144-0/0/123476.
0.29310000.00.001453.88
172.26.9.134http/1.1
6-144-0/0/104272.
1.69309500.00.001232.63
172.26.9.134http/1.1
7-144-0/0/77038.
0.29309800.00.00904.38
172.26.9.134http/1.1
8-14450710/73/64621_
0.11200.00.99811.93
92.38.168.6http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
9-144-0/0/73431.
0.33310100.00.00837.59
172.26.9.134http/1.1
10-14450720/73/90161_
0.119120.00.981040.25
158.220.122.230http/1.1yeswhois.com:8443GET /?qid=20110419154553AATmorN HTTP/1.0
11-14450730/72/75789_
0.12100.00.93895.88
92.38.168.7http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
12-144-0/0/39167.
0.30309900.00.00478.03
172.26.9.134http/1.1
13-144325910/145/55128_
0.26000.02.24665.38
92.38.168.5http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
14-14450740/69/71196_
0.12200.00.84799.32
92.38.168.5http/1.1learnmore.co:8080GET /about HTTP/1.0
15-144-0/0/46396.
1.383104520.00.00504.37
172.26.9.134http/1.1
16-144325920/143/47422W
0.25000.02.39534.86
92.38.168.7http/1.1learnmore.co:8080GET /server-status HTTP/1.0
17-144325940/143/49906_
0.2515180.02.52584.43
2804:14c:3d86:a520:783:ddec:7f2http/1.1yeswhois.com:8443POST / HTTP/1.0
18-144-0/0/28119.
0.003097190.00.00316.17
172.26.9.134http/1.1
19-144-0/0/40584.
0.00310320.00.00461.86
172.26.9.134http/1.1
20-143-0/0/25268.
0.008059200.00.00267.82
172.26.9.134http/1.1
21-144-0/0/22505.
1.191296300.00.00228.38
172.26.9.134http/1.1
22-143-0/0/36096.
0.008058720.00.00440.27
172.26.9.134http/1.1
23-143-0/0/20004.
0.008060100.00.00214.84
172.26.9.134http/1.1
24-143-0/0/29881.
1.148058100.00.00335.50
172.26.9.134http/1.1
25-144-0/0/28556.
1.191296110.00.00327.40
172.26.9.134http/1.1
26-143-0/0/34557.
0.008058820.00.00392.05
172.26.9.134http/1.1
27-143-0/0/20122.
0.226645315650.00.00224.37
172.26.9.134http/1.1
28-143-0/0/20300.
0.8738391120.00.00220.52
112.102.168.235http/1.1yeswhois.com:8443POST / HTTP/1.0
29-143-0/0/22135.
0.008060010.00.00236.47
172.26.9.134http/1.1
30-142-0/0/11179.
0.0217382300.00.00111.88
64.227.126.135http/1.1gl.askmy.org:8443GET /server-status HTTP/1.0
31-142-0/0/6305.
0.0017379300.00.0062.90
172.26.9.134http/1.1
32-142-0/0/8476.
0.0117382217980.00.0092.73
172.26.9.134http/1.1
33-142-0/0/14640.
0.8212479210.00.00158.41
198.235.24.8http/1.1trillioninspire.com:8080GET / HTTP/1.0
34-142-0/0/4422.
0.95124792130.00.0041.38
2408:8427:9c20:6895:cd:a286:57bhttp/1.1yeswhois.com:8443POST / HTTP/1.0
35-142-0/0/6880.
0.0017382117950.00.0078.48
172.26.9.134http/1.1
36-142-0/0/26682.
0.0117382200.00.00308.21
172.69.151.106http/1.1gl.askmy.org:8443GET /server-status HTTP/1.1
37-142-0/0/13278.
0.0017379200.00.00146.65
172.26.9.134http/1.1
38-142-0/0/15955.
0.9512479210.00.00180.86
69.162.124.230http/1.1rdbnetwork.com:8443HEAD / HTTP/1.0
39-142-0/0/9434.
0.0017380700.00.0093.27
172.26.9.134http/1.1
40-139-0/0/1654.
0.03105723113840.00.0013.81
172.26.9.134http/1.1
41-139-0/0/6176.
1.07100946112730.00.0064.74
172.26.9.134http/1.1
42-139-0/0/1376.
0.03105721617580.00.0012.09
172.26.9.134http/1.1
43-139-0/0/8701.
0.01105720316370.00.0083.28
172.26.9.134http/1.1
44-139-0/0/1127.
0.01105720013860.00.0010.31
172.26.9.134http/1.1
45-139-0/0/3562.
0.01105721813430.00.0034.95
172.26.9.134http/1.1
46-139-0/0/776.
0.01105727014800.00.005.10
172.26.9.134http/1.1
47-139-0/0/4390.
0.02105724917750.00.0040.20
172.26.9.134http/1.1
48-139-0/0/1102.
0.01105723316210.00.009.96
172.26.9.134http/1.1
49-139-0/0/490.
0.00105719916850.00.004.18
172.26.9.134http/1.1
50-139-0/0/2880.
0.1010535645990.00.0026.39
172.26.9.134http/1.1
51-139-0/0/1200.
0.02105724418210.00.008.23
172.26.9.134http/1.1
52-139-0/0/1393.
0.96100940210010.00.0011.08
172.26.9.134http/1.1
53-139-0/0/672.
0.01105725917790.00.004.79
172.26.9.134http/1.1
54-139-0/0/1315.
0.02105725123260.00.0011.92
172.26.9.134http/1.1
55-139-0/0/674.
0.02105725017470.00.005.03
172.26.9.134http/1.1
56-139-0/0/1010.
0.01105724717770.00.008.02
172.26.9.134http/1.1
57-139-0/0/622.
0.02105722316070.00.004.62
172.26.9.134http/1.1
58-139-0/0/2458.
0.00105726511720.00.0027.73
172.26.9.134http/1.1
59-139-0/0/559.
0.01105719416350.00.005.10
172.26.9.134http/1.1
60-139-0/0/915.
0.01105721318330.00.006.45
172.26.9.134http/1.1
61-139-0/0/514.
0.00105724618090.00.004.64
172.26.9.134http/1.1
62-139-0/0/1246.
0.01105721415980.00.0011.50
172.26.9.134<

Found on 2023-12-11 17:04

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c09c3920a8

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Wednesday, 29-Nov-2023 08:48:16 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 140
Parent Server MPM Generation: 139
Server uptime: 173 days 13 hours 9 seconds
Server load: 0.00 0.00 0.00
Total accesses: 2086228 - Total Traffic: 23.2 GB
CPU Usage: u11.02 s3.64 cu.22 cs.15 - .0001% CPU load
.139 requests/sec - 1664 B/second - 11.7 kB/request
1 requests currently being processed, 9 idle workers
.._..._....................._......._......_._....._......W.....
..._......................_.....................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-139-0/0/170705.
0.031017717220.00.001959.45
172.26.9.134http/1.1
1-139-0/0/148875.
0.011014116460.00.001711.39
172.26.9.134http/1.1
2-139302230/144/128086_
0.32610.01.691438.95
92.223.78.22http/1.1learnmore.co:8080GET /vendor/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.0
3-139-0/0/127424.
0.021016817530.00.001473.67
172.26.9.134http/1.1
4-139-0/0/100131.
0.011018016270.00.001170.61
172.26.9.134http/1.1
5-139-0/0/112634.
0.091015916860.00.001323.55
172.26.9.134http/1.1
6-139302310/142/95819_
0.22200.01.661132.51
92.223.124.15http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
7-139-0/0/69405.
0.021018817670.00.00814.55
172.26.9.134http/1.1
8-139-0/0/56569.
0.021016016370.00.00718.63
172.26.9.134http/1.1
9-139-0/0/69733.
0.021013716320.00.00793.58
172.26.9.134http/1.1
10-139-0/0/86179.
0.021017916660.00.00992.23
172.26.9.134http/1.1
11-139-0/0/74212.
0.011015616890.00.00877.43
172.26.9.134http/1.1
12-139-0/0/36550.
0.001014715900.00.00444.66
172.26.9.134http/1.1
13-139-0/0/53032.
0.011018717430.00.00638.79
172.26.9.134http/1.1
14-139-0/0/69738.
0.011017417600.00.00782.17
172.26.9.134http/1.1
15-139-0/0/43338.
0.021018317760.00.00467.57
172.26.9.134http/1.1
16-139-0/0/45853.
0.061017317880.00.00514.40
172.26.9.134http/1.1
17-139-0/0/49220.
0.011018515340.00.00575.63
172.26.9.134http/1.1
18-139-0/0/26511.
0.001016414920.00.00297.05
172.26.9.134http/1.1
19-139-0/0/40413.
0.021014816700.00.00460.50
172.26.9.134http/1.1
20-139-0/0/25212.
0.091019117290.00.00267.56
172.26.9.134http/1.1
21-139-0/0/21310.
0.021013817420.00.00214.41
172.26.9.134http/1.1
22-139-0/0/36012.
0.011013913960.00.00439.86
172.26.9.134http/1.1
23-139-0/0/19622.
0.001016716320.00.00209.80
172.26.9.134http/1.1
24-139-0/0/28852.
0.011019417150.00.00325.13
172.26.9.134http/1.1
25-139-0/0/26416.
0.021015016750.00.00303.80
172.26.9.134http/1.1
26-139-0/0/34529.
0.011015116360.00.00391.93
172.26.9.134http/1.1
27-139-0/0/19458.
0.011016316840.00.00217.81
172.26.9.134http/1.1
28-139303030/136/19209_
0.22000.01.44209.68
92.223.124.25http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
29-139-0/0/21988.
0.011017217780.00.00234.90
172.26.9.134http/1.1
30-139-0/0/11143.
0.011016211660.00.00111.76
172.26.9.134http/1.1
31-139-0/0/6273.
0.011014916660.00.0062.79
172.26.9.134http/1.1
32-139-0/0/8450.
0.011014611610.00.0092.63
172.26.9.134http/1.1
33-139-0/0/14210.
0.001019616740.00.00154.37
172.26.9.134http/1.1
34-139-0/0/3990.
0.011013515550.00.0037.26
172.26.9.134http/1.1
35-139-0/0/6838.
0.011018116600.00.0078.33
172.26.9.134http/1.1
36-139302620/137/26600_
0.22100.01.70307.52
92.223.124.16http/1.1learnmore.co:8080GET /about HTTP/1.0
37-139-0/0/13256.
0.041017612570.00.00146.57
172.26.9.134http/1.1
38-139-0/0/15523.
0.071015414150.00.00176.81
172.26.9.134http/1.1
39-139-0/0/9395.
0.011019516350.00.0093.14
172.26.9.134http/1.1
40-139-0/0/1629.
0.011019017210.00.0013.71
172.26.9.134http/1.1
41-139-0/0/5622.
0.011017817240.00.0058.65
172.26.9.134http/1.1
42-139-0/0/1349.
0.011015217710.00.0011.99
172.26.9.134http/1.1
43-139296810/164/8611_
0.27630.01.9982.58
92.223.78.23http/1.1learnmore.co:8080GET /vendor/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.0
44-139-0/0/1106.
0.011013415680.00.0010.24
172.26.9.134http/1.1
45-139302680/137/3505_
0.23300.01.5334.40
93.123.11.14http/1.1learnmore.co:8080GET / HTTP/1.0
46-139-0/0/766.
0.011016915290.00.005.06
172.26.9.134http/1.1
47-139-0/0/4375.
0.011014316190.00.0040.14
172.26.9.134http/1.1
48-139-0/0/1087.
0.021014016160.00.009.90
172.26.9.134http/1.1
49-139-0/0/479.
0.011017017950.00.004.13
172.26.9.134http/1.1
50-139-0/0/2800.
0.011019323060.00.0025.50
172.26.9.134http/1.1
51-139302740/138/1153_
0.26000.01.587.87
92.223.124.37http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
52-139-0/0/849.
0.021013615970.00.005.06
172.26.9.134http/1.1
53-139-0/0/663.
0.021018216870.00.004.76
172.26.9.134http/1.1
54-139-0/0/1302.
0.021016515390.00.0011.87
172.26.9.134http/1.1
55-139-0/0/645.
0.011018917180.00.004.93
172.26.9.134http/1.1
56-139-0/0/997.
0.011018415290.00.007.97
172.26.9.134http/1.1
57-139-0/0/610.
0.021013317080.00.004.57
172.26.9.134http/1.1
58-139302810/137/2397W
0.26000.01.3727.19
92.223.124.25http/1.1learnmore.co:8080GET /server-status HTTP/1.0
59-139-0/0/548.
0.011015314290.00.005.05
172.26.9.134http/1.1
60-139-0/0/908.
0.011015816880.00.006.42
172.26.9.134http/1.1
61-139-0/0/508.
0.011014511450.00.004.62
172.26.9.134http/1.1
62-139-0/0/1236.
0.011018616840.00.0011.46
172.26.9.134http/1.1
63-139-0/0/560.
0.011017517550.00.005.07
172.26.9.134http/1.1
64-139</

Found on 2023-11-29 08:48

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c078fbfd24

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Friday, 17-Nov-2023 02:50:52 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 117
Parent Server MPM Generation: 116
Server uptime: 161 days 7 hours 2 minutes 46 seconds
Server load: 0.00 0.00 0.00
Total accesses: 1909694 - Total Traffic: 21.3 GB
CPU Usage: u53.11 s17.76 cu2.36 cs1.72 - .000538% CPU load
.137 requests/sec - 1644 B/second - 11.7 kB/request
1 requests currently being processed, 9 idle workers
_._.__.__._W_._.................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-11644460/3159/155949_
5.65100.034.191795.60
92.38.168.7http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
1-116-0/0/137730.
5.47413710.00.001579.48
172.26.9.134http/1.1
2-11650520/3154/119438_
5.57000.034.171338.78
92.38.168.5http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
3-116-0/0/119831.
5.25414000.00.001385.60
172.26.9.134http/1.1
4-116315730/92/88155_
0.1645890.01.351034.38
207.154.240.169http/1.1search.yeswhois.com:8443GET /config.json HTTP/1.1
5-116295320/3231/102724_
5.62000.034.781211.13
92.38.168.7http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
6-116-0/0/83488.
5.43414200.00.00992.27
172.26.9.134http/1.1
7-116315740/91/65934_
0.1645940.01.23779.12
207.154.240.169http/1.1search.yeswhois.com:8443GET /telescope/requests HTTP/1.1
8-116315750/89/49658_
0.15441000.01.18642.37
207.154.240.169http/1.1search.yeswhois.com:8443GET /?rest_route=/wp/v2/users/ HTTP/1.1
9-116-0/0/64233.
0.0041469330.00.00734.32
172.26.9.134http/1.1
10-116315770/93/82378_
0.20200.01.33951.73
92.38.168.6http/1.1learnmore.co:8080GET / HTTP/1.0
11-116315780/88/69542W
0.18000.01.20826.50
92.38.168.7http/1.1learnmore.co:8080GET /server-status HTTP/1.0
12-116315790/90/34220_
0.18200.01.52420.10
92.38.168.6http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
13-116-0/0/51915.
5.77413800.00.00626.42
172.26.9.134http/1.1
14-116315800/92/63434_
0.15100.01.28711.00
92.38.168.5http/1.1learnmore.co:8080GET /about HTTP/1.0
15-116-0/0/38313.
5.69414100.00.00410.55
172.26.9.134http/1.1
16-116-0/0/44405.
0.0041437530.00.00498.06
172.26.9.134http/1.1
17-116-0/0/42815.
0.0141448540.00.00506.31
172.26.9.134http/1.1
18-116-0/0/25073.
0.001570707310.00.00283.42
172.26.9.134http/1.1
19-116-0/0/36921.
0.241501255960.00.00423.30
172.26.9.134http/1.1
20-116-0/0/21871.
0.001570648850.00.00236.60
172.26.9.134http/1.1
21-116-0/0/20678.
0.001570717190.00.00207.82
172.26.9.134http/1.1
22-116-0/0/35504.
5.58414500.00.00434.93
172.26.9.134http/1.1
23-116-0/0/17964.
0.021570699010.00.00193.50
172.26.9.134http/1.1
24-116-0/0/24950.
0.051570657700.00.00280.74
172.26.9.134http/1.1
25-116-0/0/20684.
0.011570608800.00.00242.33
172.26.9.134http/1.1
26-116-0/0/34293.
0.011570758350.00.00389.56
172.26.9.134http/1.1
27-116-0/0/15216.
0.011570519720.00.00168.51
172.26.9.134http/1.1
28-116-0/0/15851.
0.131534441420.00.00173.62
172.26.9.134http/1.1
29-116-0/0/21923.
5.48413900.00.00234.58
172.26.9.134http/1.1
30-116-0/0/11088.
0.131533343210.00.00111.40
172.26.9.134http/1.1
31-116-0/0/3515.
0.011570797940.00.0030.60
172.26.9.134http/1.1
32-116-0/0/8403.
0.011570727910.00.0092.09
172.26.9.134http/1.1
33-116-0/0/9820.
0.001570589830.00.00108.73
172.26.9.134http/1.1
34-116-0/0/3833.
0.041570677850.00.0036.52
172.26.9.134http/1.1
35-116-0/0/6781.
0.011570545770.00.0078.07
172.26.9.134http/1.1
36-116-0/0/23259.
0.001570619650.00.00271.56
172.26.9.134http/1.1
37-116-0/0/9227.
0.0015710100.00.00100.41
172.26.9.134http/1.1
38-116-0/0/13031.
0.011570558870.00.00152.66
172.26.9.134http/1.1
39-116-0/0/5681.
0.11153548130.00.0049.95
172.26.9.134http/1.1
40-116-0/0/1597.
0.0015709900.00.0013.50
172.26.9.134http/1.1
41-115-0/0/3771.
2.3815995000.00.0042.55
127.0.0.1http/1.1global.zlivehost.com:8081GET /server-status HTTP/1.1
42-111-0/0/1277.
0.041933875120.00.0011.63
172.26.9.134http/1.1
43-111-0/0/8436.
0.191933876120.00.0080.54
172.26.9.134http/1.1
44-101-0/0/1089.
0.03343353319470.00.0010.16
172.26.9.134http/1.1
45-101-0/0/3355.
0.043433404120.00.0032.80
172.26.9.134http/1.1
46-101-0/0/710.
0.013433443120.00.004.73
172.26.9.134http/1.1
47-101-0/0/4355.
0.193433398120.00.0040.06
172.26.9.134http/1.1
48-101-0/0/1067.
0.033433495120.00.009.83
172.26.9.134http/1.1
49-101-0/0/460.
0.043433482550.00.004.06
172.26.9.134http/1.1
50-101-0/0/2783.
0.043433428190.00.0025.43
172.26.9.134http/1.1
51-101-0/0/1007.
0.00343353019940.00.006.25
172.26.9.134http/1.1
52-101-0/0/830.
0.053433410120.00.004.99
172.26.9.134http/1.1
53-101-0/0/647.
0.003433520260.00.004.69
172.26.9.134http/1.1
54-101-0/0/1284.
0.053433395120.00.0011.80
172.26.9.134http/1.1
55-101-0/0/633.
0.013433429110.00.004.88
172.26.9.134http/1.1
56-101-0/0/980.
0.033433512120.00.007.90
172.26.9.134http/1.1
57-101-0/0/595.
0.023433415200.00.004.50
172.26.9.134http/1.1
58-101-0/0/2251.
0.003433488620.00.0025.78
172.26.9.134http/1.1
59-101-0/0/528.
0.443433442280.00.004.97
172.26.9.134http/1.1
60-101-0/0/889.
0.043433451110.00.006.35
172.26.9.134http/1.1
61-101-0/0/488.
0.033433469250.00.004.53
172.26.9.134http/1.1
62-101-0/0/1217.
0.013433456120.00.0011.37
172.26.9.134http/1.1
63-101-0/0/512.
0.143433452120.00.004.85

Found on 2023-11-17 02:50

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c06ce41a85

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Monday, 06-Nov-2023 03:49:34 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 114
Parent Server MPM Generation: 113
Server uptime: 150 days 8 hours 1 minute 28 seconds
Server load: 0.02 0.02 0.00
Total accesses: 1764680 - Total Traffic: 19.8 GB
CPU Usage: u58.9 s19.01 cu4.05 cs2.84 - .000653% CPU load
.136 requests/sec - 1633 B/second - 11.7 kB/request
1 requests currently being processed, 8 idle workers
_____W_..._..............._.....................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-113250480/1198/144430_
2.3810170.011.931664.73
216.144.248.18http/1.1yeswhois.com:8443HEAD / HTTP/1.0
1-113254000/1199/125784_
2.18000.012.721441.94
5.101.222.5http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
2-113250510/1201/110489_
2.27300.012.451238.85
5.101.222.5http/1.1learnmore.co:8080GET / HTTP/1.0
3-113250500/1200/110602_
2.3345120.012.491281.38
103.49.254.25http/1.1yeswhois.com:8443POST / HTTP/1.0
4-113110820/1054/85236_
1.95100.010.66999.21
5.101.222.5http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
5-11389320/765/92036W
1.45000.08.301091.22
5.101.222.5http/1.1learnmore.co:8080GET /server-status HTTP/1.0
6-11392500/771/76973_
1.51100.07.51922.11
5.101.222.5http/1.1learnmore.co:8080GET /about HTTP/1.0
7-112-0/0/62497.
0.7820178500.00.00740.34
172.26.9.134http/1.1
8-112-0/0/47229.
0.0020177600.00.00614.24
172.26.9.134http/1.1
9-112-0/0/56841.
0.8520177700.00.00653.89
172.26.9.134http/1.1
10-113250520/1194/75376_
2.43000.011.95874.64
5.101.222.5http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
11-112-0/0/66136.
0.8916089612070.00.00784.81
172.26.9.134http/1.1
12-112-0/0/33267.
3.04770711560.00.00409.02
192.169.177.46http/1.1search.yeswhois.com:8443POST /xmlrpc.php HTTP/1.0
13-112-0/0/45127.
0.0020177300.00.00547.88
172.26.9.134http/1.1
14-112-0/0/62430.
9.4120177900.00.00701.87
172.26.9.134http/1.1
15-112-0/0/34296.
0.0020177400.00.00367.15
172.26.9.134http/1.1
16-112-0/0/40803.
2.8577071140.00.00456.51
185.61.158.9http/1.1yeswhois.com:8443POST / HTTP/1.0
17-112-0/0/39598.
0.00201780150.00.00471.89
172.26.9.134http/1.1
18-112-0/0/25040.
3.097707130.00.00283.19
3.7.13.241http/1.1search.yeswhois.com:8443POST /wp-cron.php?doing_wp_cron=1699165444.82861304283142089843
19-112-0/0/34202.
2.8477071190.00.00391.12
216.144.248.18http/1.1yeswhois.com:8443HEAD / HTTP/1.0
20-112-0/0/21429.
0.0020178400.00.00232.21
172.26.9.134http/1.1
21-112-0/0/20651.
0.0058674300.00.00207.72
172.26.9.134http/1.1
22-112-0/0/30028.
9.6420178100.00.00374.04
172.26.9.134http/1.1
23-112-0/0/17508.
1.1354745510.00.00189.01
172.26.9.134http/1.1
24-112-0/0/23006.
0.0058675610.00.00257.54
172.26.9.134http/1.1
25-112-0/0/17477.
6.4234651500.00.00209.36
172.26.9.134http/1.1
26-113250490/1195/34194_
2.22200.012.13388.52
5.101.222.4http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
27-112-0/0/15200.
0.065849765950.00.00168.44
172.26.9.134http/1.1
28-111-0/0/14307.
3.09595470120.00.00155.90
180.139.149.86http/1.1yeswhois.com:8443GET / HTTP/1.0
29-111-0/0/14243.
0.0072772700.00.00149.78
172.26.9.134http/1.1
30-111-0/0/10369.
0.2772775300.00.00106.02
143.110.156.182http/1.1gl.askmy.org:8443GET /server-status HTTP/1.0
31-111-0/0/2867.
0.0172775200.00.0026.19
172.26.9.134http/1.1
32-111-0/0/4995.
0.0072774200.00.0051.14
172.26.9.134http/1.1
33-111-0/0/7787.
0.0072772300.00.0087.80
172.26.9.134http/1.1
34-111-0/0/2753.
0.0072772400.00.0027.46
172.26.9.134http/1.1
35-111-0/0/4974.
0.0072774700.00.0057.05
172.26.9.134http/1.1
36-111-0/0/21883.
2.94595470130.00.00255.52
183.249.122.59http/1.1yeswhois.com:8443GET / HTTP/1.0
37-111-0/0/9224.
3.19595470130.00.00100.40
2001:ce8:181:de93:69c4:6bdc:f5ehttp/1.1yeswhois.com:8443POST / HTTP/1.0
38-111-0/0/9200.
0.0072774100.00.00107.28
172.26.9.134http/1.1
39-111-0/0/5607.
0.0098698410.00.0048.95
172.26.9.134http/1.1
40-111-0/0/1595.
0.0098698370.00.0013.49
172.26.9.134http/1.1
41-111-0/0/2393.
0.509869981340.00.0026.12
172.26.9.134http/1.1
42-111-0/0/1277.
0.04986996120.00.0011.63
172.26.9.134http/1.1
43-111-0/0/8436.
0.19986997120.00.0080.54
172.26.9.134http/1.1
44-101-0/0/1089.
0.03248665519470.00.0010.16
172.26.9.134http/1.1
45-101-0/0/3355.
0.042486526120.00.0032.80
172.26.9.134http/1.1
46-101-0/0/710.
0.012486565120.00.004.73
172.26.9.134http/1.1
47-101-0/0/4355.
0.192486520120.00.0040.06
172.26.9.134http/1.1
48-101-0/0/1067.
0.032486617120.00.009.83
172.26.9.134http/1.1
49-101-0/0/460.
0.042486604550.00.004.06
172.26.9.134http/1.1
50-101-0/0/2783.
0.042486550190.00.0025.43
172.26.9.134http/1.1
51-101-0/0/1007.
0.00248665219940.00.006.25
172.26.9.134http/1.1
52-101-0/0/830.
0.052486532120.00.004.99
172.26.9.134http/1.1
53-101-0/0/647.
0.002486642260.00.004.69
172.26.9.134http/1.1
54-101-0/0/1284.
0.052486517120.00.0011.80
172.26.9.134http/1.1
55-101-0/0/633.
0.012486551110.00.004.88
172.26.9.134http/1.1
56-101-0/0/980.
0.032486634120.00.007.90
172.26.9.134http/1.1
57-101-0/0/595.
0.022486537200.00.004.50
172.26.9.134http/1.1
58-101-0/0/2251.
0.002486610620.00.0025.78
172.26.9.134http/1.1
59-101-0/0/528.
0.442486564280.00.004.97
172.26.9.134http/1.1
60-101-0/0/889.
0.042486573110.00.006.35
172.26.9.134http/1.1
61-101-0/0/488.
0.032486591250.00.004.53
172.26.9.134http/1.1
62-101-0/0/1217.
0.012486578120.00.0011.37
172.26.9.134

Found on 2023-11-06 03:49

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c0b911fb2a

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Thursday, 26-Oct-2023 16:27:31 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 112
Parent Server MPM Generation: 111
Server uptime: 139 days 20 hours 39 minutes 25 seconds
Server load: 0.00 0.00 0.00
Total accesses: 1648439 - Total Traffic: 18.5 GB
CPU Usage: u26.12 s8.69 cu.78 cs.53 - .000299% CPU load
.136 requests/sec - 1641 B/second - 11.8 kB/request
1 requests currently being processed, 9 idle workers
_W._.._...._._..__._................_...........................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-111259850/233/134092_
0.37100.02.721547.49
5.101.222.5http/1.1learnmore.co:8080GET /about HTTP/1.0
1-111259970/231/116585W
0.40000.02.971338.06
5.101.222.5http/1.1learnmore.co:8080GET /server-status HTTP/1.0
2-111-0/0/103920.
0.011182300.00.001165.45
172.26.9.134http/1.1
3-111134610/970/102574_
1.68300.011.751191.22
5.101.222.5http/1.1learnmore.co:8080GET / HTTP/1.0
4-111-0/0/79527.
0.001182500.00.00937.34
172.26.9.134http/1.1
5-111-0/0/86173.
0.017226700.00.001025.48
172.26.9.134http/1.1
6-111134330/968/72421_
1.75000.011.54870.76
5.101.222.5http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
7-111-0/0/60069.
0.017227100.00.00714.77
172.26.9.134http/1.1
8-111-0/0/45235.
0.007226900.00.00592.55
172.26.9.134http/1.1
9-111-0/0/56416.
0.017227040.00.00648.76
172.26.9.134http/1.1
10-111-0/0/67903.
0.007228200.00.00789.40
172.26.9.134http/1.1
11-111134380/967/61583_
1.76000.011.61731.24
5.101.222.5http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
12-111-0/0/31671.
0.007225900.00.00390.43
172.26.9.134http/1.1
13-111134400/965/42922_
1.70100.011.71522.21
5.101.222.5http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
14-111-0/0/57311.
0.007229100.00.00641.54
139.144.150.45http/1.1securepay.zlivehost.com:8443GET /server-status HTTP/1.0
15-111-0/0/32512.
1.61118317010.00.00348.22
172.26.9.134http/1.1
16-111134440/969/38960_
1.944120.011.61435.58
83.42.222.252http/1.1yeswhois.com:8443POST / HTTP/1.0
17-111285160/1126/37340_
2.06200.013.61447.44
5.101.222.4http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
18-111-0/0/21444.
0.017226300.00.00240.55
172.26.9.134http/1.1
19-111134460/964/30360_
1.7113120.011.55347.52
185.56.43.108http/1.1yeswhois.com:8443POST / HTTP/1.0
20-111-0/0/19650.
0.267228100.00.00212.74
172.26.9.134http/1.1
21-111-0/0/20647.
0.297225800.00.00207.70
172.26.9.134http/1.1
22-111-0/0/24907.
0.007228000.00.00313.96
172.26.9.134http/1.1
23-111-0/0/16894.
0.017226100.00.00182.04
172.26.9.134http/1.1
24-111-0/0/23003.
0.307226200.00.00257.53
172.26.9.134http/1.1
25-111-0/0/14097.
0.267227900.00.00171.11
172.26.9.134http/1.1
26-111-0/0/24734.
0.257226800.00.00280.45
172.26.9.134http/1.1
27-111-0/0/13611.
0.267227300.00.00151.50
172.26.9.134http/1.1
28-111-0/0/12756.
0.007228300.00.00139.26
172.26.9.134http/1.1
29-111-0/0/14242.
0.017226620.00.00149.77
172.26.9.134http/1.1
30-111-0/0/10369.
0.277227500.00.00106.02
172.26.9.134http/1.1
31-111-0/0/2867.
0.017226500.00.0026.19
172.26.9.134http/1.1
32-111-0/0/4993.
1.44118245420.00.0051.13
172.26.9.134http/1.1
33-111-0/0/7786.
0.307227800.00.0087.79
172.26.9.134http/1.1
34-111-0/0/2752.
0.007228400.00.0027.46
172.26.9.134http/1.1
35-111-0/0/4973.
0.0472288120.00.0057.05
172.26.9.134http/1.1
36-111134550/966/20072_
1.805120.011.91235.95
2804:14c:3d86:8461::6c8ahttp/1.1yeswhois.com:8443POST / HTTP/1.0
37-111-0/0/7677.
0.007227610.00.0083.64
172.26.9.134http/1.1
38-111-0/0/9198.
0.017226400.00.00107.27
172.26.9.134http/1.1
39-111-0/0/5607.
0.008206210.00.0048.95
172.26.9.134http/1.1
40-111-0/0/1595.
0.008206170.00.0013.49
172.26.9.134http/1.1
41-111-0/0/2393.
0.50820761340.00.0026.12
172.26.9.134http/1.1
42-111-0/0/1277.
0.0482074120.00.0011.63
172.26.9.134http/1.1
43-111-0/0/8436.
0.1982075120.00.0080.54
172.26.9.134http/1.1
44-101-0/0/1089.
0.03158173219470.00.0010.16
172.26.9.134http/1.1
45-101-0/0/3355.
0.041581603120.00.0032.80
172.26.9.134http/1.1
46-101-0/0/710.
0.011581642120.00.004.73
172.26.9.134http/1.1
47-101-0/0/4355.
0.191581597120.00.0040.06
172.26.9.134http/1.1
48-101-0/0/1067.
0.031581694120.00.009.83
172.26.9.134http/1.1
49-101-0/0/460.
0.041581681550.00.004.06
172.26.9.134http/1.1
50-101-0/0/2783.
0.041581627190.00.0025.43
172.26.9.134http/1.1
51-101-0/0/1007.
0.00158172919940.00.006.25
172.26.9.134http/1.1
52-101-0/0/830.
0.051581609120.00.004.99
172.26.9.134http/1.1
53-101-0/0/647.
0.001581719260.00.004.69
172.26.9.134http/1.1
54-101-0/0/1284.
0.051581594120.00.0011.80
172.26.9.134http/1.1
55-101-0/0/633.
0.011581628110.00.004.88
172.26.9.134http/1.1
56-101-0/0/980.
0.031581711120.00.007.90
172.26.9.134http/1.1
57-101-0/0/595.
0.021581614200.00.004.50
172.26.9.134http/1.1
58-101-0/0/2251.
0.001581687620.00.0025.78
172.26.9.134http/1.1
59-101-0/0/528.
0.441581641280.00.004.97
172.26.9.134http/1.1
60-101-0/0/889.
0.041581650110.00.006.35
172.26.9.134http/1.1
61-101-0/0/488.
0.031581668250.00.004.53
172.26.9.134http/1.1
62-101-0/0/1217.
0.011581655120.00.0011.37
172.26.9.134http/1.1
63-101-0/0/512.
0.141581651120.00.004.85
172.26.9.134http/1.1
64-101-

Found on 2023-10-26 16:27

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c0e67ac791

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Wednesday, 11-Oct-2023 01:37:01 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 103
Parent Server MPM Generation: 102
Server uptime: 124 days 5 hours 48 minutes 54 seconds
Server load: 0.01 0.01 0.00
Total accesses: 1431276 - Total Traffic: 16.0 GB
CPU Usage: u51.49 s17.12 cu1.29 cs1.07 - .000661% CPU load
.133 requests/sec - 1597 B/second - 11.7 kB/request
1 requests currently being processed, 9 idle workers
__W__..____........................._...........................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-102117250/3593/113682_
6.26030.044.141308.83
159.223.108.26http/1.1trillioninspire.com:8080GET / HTTP/1.0
1-102117560/3589/96569_
6.316170.044.211105.43
54.191.105.124http/1.1yeswhois.com:8443GET / HTTP/1.0
2-102198280/3355/85359W
6.01000.040.66950.34
92.223.120.12http/1.1learnmore.co:8080GET /server-status HTTP/1.0
3-102271470/3208/84420_
5.51100.039.30979.35
92.223.120.12http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
4-102277820/1874/67067_
3.29100.022.84795.39
92.223.120.15http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
5-102-0/0/75678.
3.21113120.00.00905.19
172.26.9.134http/1.1
6-102-0/0/65389.
2.3411371870.00.00784.93
172.26.9.134http/1.1
7-102257230/42/55060_
0.07300.00.33651.94
92.223.120.13http/1.1learnmore.co:8080GET / HTTP/1.0
8-102257240/42/40234_
0.10030.00.36529.42
159.223.108.26http/1.1trillioninspire.com:8080GET / HTTP/1.0
9-102257250/42/51918_
0.06200.00.26594.15
92.223.120.13http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
10-102257260/42/67661_
0.06200.00.27786.87
92.223.120.15http/1.1learnmore.co:8080GET /about HTTP/1.0
11-102-0/0/60602.
0.0511381010.00.00719.55
172.26.9.134http/1.1
12-102-0/0/30525.
0.001132140.00.00376.16
172.26.9.134http/1.1
13-102-0/0/33406.
0.061133120.00.00408.79
172.26.9.134http/1.1
14-102-0/0/56915.
3.891135120.00.00637.17
172.26.9.134http/1.1
15-102-0/0/30711.
0.041134120.00.00328.66
172.26.9.134http/1.1
16-102-0/0/32044.
0.051136160.00.00357.56
172.26.9.134http/1.1
17-101-0/0/31662.
0.04232242110.00.00378.12
172.26.9.134http/1.1
18-101-0/0/19120.
0.01232247120.00.00209.99
172.26.9.134http/1.1
19-101-0/0/27086.
0.01232225120.00.00306.15
172.26.9.134http/1.1
20-101-0/0/18359.
0.03232262190.00.00196.24
172.26.9.134http/1.1
21-101-0/0/17746.
0.152322532810.00.00171.47
172.26.9.134http/1.1
22-101-0/0/14641.
0.04232171120.00.00191.95
172.26.9.134http/1.1
23-101-0/0/11335.
0.00232285180.00.00118.76
172.26.9.134http/1.1
24-101-0/0/11290.
0.42232257220.00.00121.18
172.26.9.134http/1.1
25-101-0/0/3551.
0.19232260400.00.0044.73
172.26.9.134http/1.1
26-101-0/0/14184.
0.2823165610.00.00156.31
172.26.9.134http/1.1
27-101-0/0/12313.
0.04232245120.00.00134.77
172.26.9.134http/1.1
28-101-0/0/12752.
0.04232189210.00.00139.25
172.26.9.134http/1.1
29-101-0/0/14241.
0.05232186280.00.00149.76
172.26.9.134http/1.1
30-101-0/0/10209.
0.04232234120.00.00104.19
172.26.9.134http/1.1
31-101-0/0/2864.
0.0023230021480.00.0026.07
172.26.9.134http/1.1
32-101-0/0/4250.
0.04232169110.00.0042.10
172.26.9.134http/1.1
33-101-0/0/7626.
3.57155518130.00.0085.73
205.210.31.150http/1.1yeswhois.com:8443GET / HTTP/1.0
34-101-0/0/2747.
0.04232231120.00.0027.43
172.26.9.134http/1.1
35-101-0/0/4973.
0.04232179120.00.0057.05
172.26.9.134http/1.1
36-102117270/3599/12026_
6.31000.044.62138.36
92.223.120.14http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
37-101-0/0/7673.
0.18232284650.00.0083.63
172.26.9.134http/1.1
38-102-0/0/9197.
6.51112900.00.00107.26
172.26.9.134http/1.1
39-101-0/0/5606.
0.04232206120.00.0048.95
172.26.9.134http/1.1
40-101-0/0/1594.
0.01232198120.00.0013.40
172.26.9.134http/1.1
41-101-0/0/2393.
0.502308931340.00.0026.12
172.26.9.134http/1.1
42-101-0/0/1277.
0.04232176120.00.0011.63
172.26.9.134http/1.1
43-101-0/0/8436.
0.19231892120.00.0080.54
172.26.9.134http/1.1
44-101-0/0/1089.
0.0323230119470.00.0010.16
172.26.9.134http/1.1
45-101-0/0/3355.
0.04232172120.00.0032.80
172.26.9.134http/1.1
46-101-0/0/710.
0.01232211120.00.004.73
172.26.9.134http/1.1
47-101-0/0/4355.
0.19232166120.00.0040.06
172.26.9.134http/1.1
48-101-0/0/1067.
0.03232263120.00.009.83
172.26.9.134http/1.1
49-101-0/0/460.
0.04232250550.00.004.06
172.26.9.134http/1.1
50-101-0/0/2783.
0.04232196190.00.0025.43
172.26.9.134http/1.1
51-101-0/0/1007.
0.0023229819940.00.006.25
172.26.9.134http/1.1
52-101-0/0/830.
0.05232178120.00.004.99
172.26.9.134http/1.1
53-101-0/0/647.
0.00232288260.00.004.69
172.26.9.134http/1.1
54-101-0/0/1284.
0.05232163120.00.0011.80
172.26.9.134http/1.1
55-101-0/0/633.
0.01232197110.00.004.88
172.26.9.134http/1.1
56-101-0/0/980.
0.03232280120.00.007.90
172.26.9.134http/1.1
57-101-0/0/595.
0.02232183200.00.004.50
172.26.9.134http/1.1
58-101-0/0/2251.
0.00232256620.00.0025.78
172.26.9.134http/1.1
59-101-0/0/528.
0.44232210280.00.004.97
172.26.9.134http/1.1
60-101-0/0/889.
0.04232219110.00.006.35
172.26.9.134http/1.1
61-101-0/0/488.
0.03232237250.00.004.53
172.26.9.134http/1.1
62-101-0/0/1217.
0.01232224120.00.0011.37
172.26.9.134http/1.1
63-101-0/0/512.
0.14232220120.00.004.85
172.26.9.134http/1.1
64-101

Found on 2023-10-11 01:36

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c0de99487c

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Tuesday, 03-Oct-2023 17:18:40 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 100
Parent Server MPM Generation: 99
Server uptime: 116 days 21 hours 30 minutes 33 seconds
Server load: 0.00 0.00 0.00
Total accesses: 1282815 - Total Traffic: 14.1 GB
CPU Usage: u21.19 s6.6 cu10.1 cs6.84 - .000443% CPU load
.127 requests/sec - 1499 B/second - 11.5 kB/request
1 requests currently being processed, 9 idle workers
..._._W______._.................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-99-0/0/105504.
3.60259700.00.001207.52
172.26.9.134http/1.1
1-99-0/0/86956.
3.16259800.00.00984.77
172.26.9.134http/1.1
2-99-0/0/77621.
2.76260500.00.00853.90
172.26.9.134http/1.1
3-99164580/941/74084_
1.81200.010.45852.39
93.123.11.14http/1.1learnmore.co:8080GET / HTTP/1.0
4-99-0/0/64465.
0.80259600.00.00763.56
172.26.9.134http/1.1
5-99181640/1760/68470_
3.25110.019.94816.73
93.123.11.11http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
6-99113110/21/58975W
0.04000.00.49705.95
93.123.11.14http/1.1learnmore.co:8080GET /server-status HTTP/1.0
7-99181660/1753/51455_
3.26100.020.74610.34
93.123.11.12http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
8-99166040/368/35320_
0.71100.04.00469.72
93.123.11.14http/1.1learnmore.co:8080GET /about HTTP/1.0
9-99166050/367/47016_
0.66000.04.05535.03
93.123.11.11http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
10-99113120/21/61216_
0.0510510.00.80707.54
69.162.124.230http/1.1rdbnetwork.com:8443HEAD / HTTP/1.0
11-99113130/21/55581_
0.045400.00.77660.25
114.119.135.186http/1.1gcmfoundation.org:8080GET /robots.txt HTTP/1.0
12-99113140/21/25462_
0.0431170.00.86314.53
216.144.248.18http/1.1yeswhois.com:8443HEAD / HTTP/1.0
13-99-0/0/31471.
3.29259900.00.00383.87
172.26.9.134http/1.1
14-99113150/21/49884_
0.03200.00.23549.61
93.123.11.13http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
15-99-0/0/28768.
0.00260010.00.00303.64
172.26.9.134http/1.1
16-99-0/0/30145.
0.02260600.00.00333.06
172.26.9.134http/1.1
17-99-0/0/31458.
1.15260210860.00.00375.08
172.26.9.134http/1.1
18-99-0/0/18913.
0.01260400.00.00206.94
172.26.9.134http/1.1
19-99-0/0/25526.
0.01260100.00.00285.70
172.26.9.134http/1.1
20-99-0/0/18164.
0.01260300.00.00193.33
172.26.9.134http/1.1
21-95-0/0/17524.
0.0122189100.00.00168.14
172.70.114.30http/1.1securepay.zlivehost.com:8443GET /s/33e26393e2431313e2838313/_/;/META-INF/maven/com.atlassia
22-95-0/0/14437.
0.0022192000.00.00188.95
172.26.9.134http/1.1
23-95-0/0/11135.
0.0122189110.00.00115.81
2600:1f16:775:3a00:b729:c226:27http/1.1rdbnetwork.com:8443HEAD / HTTP/1.0
24-95-0/0/11026.
0.0122189100.00.00117.24
172.71.30.203http/1.1securepay.zlivehost.com:8443GET /?rest_route=/wp/v2/users/ HTTP/1.1
25-95-0/0/3306.
0.01221917110.00.0041.08
172.26.9.134http/1.1
26-91-0/0/12474.
0.0122225790.00.00133.91
172.26.9.134http/1.1
27-91-0/0/12155.
0.02222254100.00.00132.45
172.26.9.134http/1.1
28-91-0/0/12536.
0.01222261360.00.00136.04
172.26.9.134http/1.1
29-91-0/0/14029.
0.01222256300.00.00146.65
172.26.9.134http/1.1
30-95-0/0/10003.
0.0222193200.00.00101.17
162.158.158.6http/1.1securepay.zlivehost.com:8443GET /server-status HTTP/1.1
31-91-0/0/2618.
0.01222252120.00.0022.47
172.26.9.134http/1.1
32-91-0/0/4007.
0.01222246100.00.0038.49
172.26.9.134http/1.1
33-91-0/0/4084.
0.0122225390.00.0040.29
172.26.9.134http/1.1
34-91-0/0/2526.
0.01222243200.00.0024.11
172.26.9.134http/1.1
35-95-0/0/4777.
0.0222191200.00.0054.16
172.26.9.134http/1.1
36-91-0/0/4881.
0.01222250240.00.0048.50
172.26.9.134http/1.1
37-91-0/0/7436.
0.0222223990.00.0080.12
172.26.9.134http/1.1
38-91-0/0/3473.
0.01222248330.00.0035.52
172.26.9.134http/1.1
39-91-0/0/5411.
0.01222247140.00.0045.99
172.26.9.134http/1.1
40-91-0/0/1355.
0.01222245160.00.009.82
172.26.9.134http/1.1
41-91-0/0/1945.
0.01222182130.00.0019.51
194.127.199.10http/1.1yeswhois.com:8443GET / HTTP/1.0
42-91-0/0/1087.
0.01222280140.00.008.78
172.26.9.134http/1.1
43-91-0/0/8119.
0.02222236140.00.0075.79
172.26.9.134http/1.1
44-91-0/0/880.
0.01222241100.00.007.03
172.26.9.134http/1.1
45-91-0/0/3150.
0.0122218280.00.0029.72
51.81.245.138http/1.1yeswhois.com:8443GET / HTTP/1.0
46-91-0/0/499.
0.01222237180.00.001.61
172.26.9.134http/1.1
47-91-0/0/4106.
0.0222223180.00.0036.33
172.26.9.134http/1.1
48-91-0/0/864.
0.0222218200.00.006.79
127.0.0.1http/1.1global.zlivehost.com:8081GET /server-status HTTP/1.1
49-91-0/0/269.
0.0022226200.00.001.20
172.26.9.134http/1.1
50-91-0/0/2578.
0.0022227500.00.0022.35
172.26.9.134http/1.1
51-91-0/0/839.
0.01222182100.00.003.80
172.71.242.174http/1.1yeswhois.com:8443GET /config.json HTTP/1.1
52-91-0/0/642.
0.0022218210.00.002.17
61.135.159.164http/1.1rdbnetwork.com:8443GET / HTTP/1.0
53-91-0/0/415.
0.0022226990.00.001.22
172.26.9.134http/1.1
54-91-0/0/1091.
0.322222792080.00.008.93
172.26.9.134http/1.1
55-91-0/0/492.
0.0022224200.00.002.80
172.26.9.134http/1.1
56-91-0/0/793.
0.0022223210.00.005.11
172.26.9.134http/1.1
57-91-0/0/418.
1.812222781330.00.001.87
172.26.9.134http/1.1
58-91-0/0/2051.
0.0022226710.00.0022.77
172.26.9.134http/1.1
59-91-0/0/265.
0.0022226520.00.001.02
172.26.9.134http/1.1
60-91-0/0/679.
2.29222277510.00.003.18
172.26.9.134http/1.1
61-73-0/0/274.
0.1111572761350.00.001.34
172.26.9.134http/1.1
62-73-0/0/1025.
0.181157245850.00.008.50
172.

Found on 2023-10-03 17:18

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c018cbceac

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Saturday, 30-Sep-2023 09:45:50 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 88
Parent Server MPM Generation: 87
Server uptime: 113 days 13 hours 57 minutes 44 seconds
Server load: 0.00 0.00 0.00
Total accesses: 1252732 - Total Traffic: 13.8 GB
CPU Usage: u50.24 s17.09 cu27.3 cs18.73 - .00116% CPU load
.128 requests/sec - 1506 B/second - 11.5 kB/request
2 requests currently being processed, 8 idle workers
.K.._W...___..........__..._._..................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-87-0/0/102556.
0.5312563300.00.001173.28
172.26.9.134http/1.1
1-87254431/1469/83978K
2.944017.215.87949.72
172.69.58.234http/1.1learnmore.co:8443GET / HTTP/1.1
2-87-0/0/75183.
0.001256322110.00.00826.81
172.26.9.134http/1.1
3-87-0/0/72633.
6.3412563000.00.00836.25
172.26.9.134http/1.1
4-8781960/1358/63175_
2.65100.014.42749.43
5.101.222.5http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
5-8781970/1349/65225W
2.64000.014.21777.93
5.101.222.5http/1.1learnmore.co:8080GET /server-status HTTP/1.0
6-87-0/0/56364.
0.3512563500.00.00675.07
172.26.9.134http/1.1
7-87-0/0/48164.
0.3712563700.00.00572.49
172.26.9.134http/1.1
8-87-0/0/34552.
0.0012563600.00.00461.57
172.26.9.134http/1.1
9-8782010/1353/45801_
2.4446120.014.69520.65
122.160.84.17http/1.1yeswhois.com:8443POST / HTTP/1.0
10-8777570/3041/60910_
5.62200.034.90703.28
5.101.222.4http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
11-87297430/4483/54936_
8.40000.052.06652.33
5.101.222.5http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
12-87-0/0/25431.
0.0012563400.00.00313.61
172.26.9.134http/1.1
13-87-0/0/28536.
0.0025890800.00.00348.77
172.26.9.134http/1.1
14-87-0/0/49852.
0.0025891400.00.00549.33
172.26.9.134http/1.1
15-87-0/0/28763.
0.0025891000.00.00303.53
172.26.9.134http/1.1
16-87-0/0/30125.
0.0025891310.00.00332.88
172.26.9.134http/1.1
17-87-0/0/30813.
3.2212563100.00.00366.85
172.26.9.134http/1.1
18-87-0/0/18908.
0.0025890900.00.00206.92
172.26.9.134http/1.1
19-87-0/0/25522.
2.7025891920.00.00285.67
172.26.9.134http/1.1
20-87-0/0/17822.
0.0025891100.00.00188.92
172.26.9.134http/1.1
21-87-0/0/17189.
0.0025891210.00.00164.13
172.26.9.134http/1.1
22-8777670/3025/14158_
5.75200.035.04185.49
5.101.222.5http/1.1learnmore.co:8080GET / HTTP/1.0
23-8777680/3033/10857_
5.48000.034.96112.37
5.101.222.5http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
24-87-0/0/11022.
2.5315382910.00.00117.22
172.26.9.134http/1.1
25-87-0/0/3301.
0.0025892300.00.0041.05
172.26.9.134http/1.1
26-87-0/0/12143.
0.0025891500.00.00129.99
172.26.9.134http/1.1
27-8777720/3019/11875_
5.57100.035.85129.27
5.101.222.5http/1.1learnmore.co:8080GET /about HTTP/1.0
28-87-0/0/12532.
3.0113782700.00.00136.02
172.26.9.134http/1.1
29-8777740/3019/13751_
5.50200.034.17143.21
92.38.168.6http/1.1learnmore.co:8080GET / HTTP/1.0
30-73-0/0/9666.
0.19870583510.00.0097.21
172.26.9.134http/1.1
31-73-0/0/2616.
0.00870330120.00.0022.45
172.26.9.134http/1.1
32-73-0/0/4005.
0.0787064600.00.0038.48
172.26.9.134http/1.1
33-73-0/0/4082.
0.07870668510.00.0040.28
172.26.9.134http/1.1
34-73-0/0/2189.
0.1187045500.00.0020.47
172.26.9.134http/1.1
35-73-0/0/4431.
1.63870728510.00.0050.50
172.26.9.134http/1.1
36-73-0/0/4879.
0.12870700520.00.0048.48
172.26.9.134http/1.1
37-73-0/0/7430.
0.29870257500.00.0080.09
172.26.9.134http/1.1
38-73-0/0/3471.
0.19870658520.00.0035.51
172.26.9.134http/1.1
39-73-0/0/5408.
0.11870633500.00.0045.97
172.26.9.134http/1.1
40-73-0/0/1352.
0.16870648500.00.009.79
172.26.9.134http/1.1
41-73-0/0/1943.
0.04870679510.00.0019.49
172.26.9.134http/1.1
42-73-0/0/1084.
0.00870724210.00.008.75
172.26.9.134http/1.1
43-73-0/0/8115.
0.06870649510.00.0075.76
172.26.9.134http/1.1
44-73-0/0/877.
0.00870655510.00.007.00
172.26.9.134http/1.1
45-73-0/0/3148.
0.07870702130.00.0029.71
172.26.9.134http/1.1
46-73-0/0/497.
0.00870729510.00.001.59
172.26.9.134http/1.1
47-73-0/0/4101.
0.00870683520.00.0036.31
172.26.9.134http/1.1
48-73-0/0/861.
0.18870610510.00.006.74
172.26.9.134http/1.1
49-73-0/0/266.
0.008706161420.00.001.18
172.26.9.134http/1.1
50-73-0/0/2575.
0.52870911510.00.0022.34
172.26.9.134http/1.1
51-73-0/0/838.
2.42870815790.00.003.79
172.26.9.134http/1.1
52-73-0/0/638.
7.93870825860.00.002.15
172.26.9.134http/1.1
53-73-0/0/414.
5.528709264480.00.001.22
172.26.9.134http/1.1
54-73-0/0/1091.
0.328709082080.00.008.93
172.26.9.134http/1.1
55-73-0/0/490.
0.038709281470.00.002.79
172.26.9.134http/1.1
56-73-0/0/791.
5.098709174280.00.005.10
172.26.9.134http/1.1
57-73-0/0/418.
1.818709091330.00.001.87
172.26.9.134http/1.1
58-73-0/0/2050.
2.268709324650.00.0022.77
172.26.9.134http/1.1
59-73-0/0/264.
0.58870525510.00.001.02
172.26.9.134http/1.1
60-73-0/0/679.
2.29870686510.00.003.18
172.26.9.134http/1.1
61-73-0/0/274.
0.118709071350.00.001.34
172.26.9.134http/1.1
62-73-0/0/1025.
0.18870876850.00.008.50
172.26.9.134http/1.1
63-73-0/0/290.
0.0087111725540.00.001.50
172.26.9.134http/1.1
64-73-0/0/417.
0.078711084650.00.002.69
172.26.9.134

Found on 2023-09-30 09:45

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c073a600c3

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Tuesday, 01-Aug-2023 09:58:38 UTC
Restart Time: Thursday, 08-Jun-2023 19:48:06 UTC
Parent Server Config. Generation: 34
Parent Server MPM Generation: 33
Server uptime: 53 days 14 hours 10 minutes 32 seconds
Server load: 0.00 0.00 0.00
Total accesses: 548496 - Total Traffic: 5.6 GB
CPU Usage: u45.7 s16.4 cu9.74 cs6.78 - .0017% CPU load
.118 requests/sec - 1295 B/second - 10.7 kB/request
1 requests currently being processed, 9 idle workers
.____W____...._.................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-33-0/0/45738.
1.786564800.00.00492.40
172.26.9.134http/1.1
1-33150010/1018/38871_
4.33100.09.50400.93
93.123.11.13http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
2-33150090/1022/37393_
3.54200.09.14382.60
93.123.11.14http/1.1learnmore.co:8080GET / HTTP/1.0
3-33274600/795/32704_
2.7342170.07.39355.94
216.144.248.18http/1.1yeswhois.com:8443HEAD / HTTP/1.0
4-3381720/1073/26214_
4.83100.09.16291.99
93.123.11.11http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
5-3381730/1064/26322W
3.25000.09.41315.59
93.123.11.14http/1.1learnmore.co:8080GET /server-status HTTP/1.0
6-3381740/1067/20329_
5.52000.09.82237.69
93.123.11.12http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0
7-3381750/1068/13913_
4.38000.09.44141.07
93.123.11.11http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
8-33150290/1014/10772_
3.00100.09.85149.64
93.123.11.14http/1.1learnmore.co:8080GET /about HTTP/1.0
9-33150310/1021/22307_
3.281600.08.96246.96
69.162.124.236http/1.1y2z.in:8443HEAD / HTTP/1.0
10-33-0/0/28219.
0.019473530.00.00307.77
172.26.9.134http/1.1
11-31-0/0/19587.
3.86185615500.00.00232.33
167.248.133.127http/1.1my.askmy.org:8080GET / HTTP/1.1
12-31-0/0/10753.
0.0127228900.00.00103.65
172.26.9.134http/1.1
13-31-0/0/6530.
6.41185615520.00.0058.90
167.248.133.127http/1.1my.askmy.org:8080GET / HTTP/1.1
14-3381710/1065/20446_
5.12500.010.44204.78
92.223.120.13http/1.1learnmore.co:8080GET / HTTP/1.0
15-31-0/0/14480.
5.27272288510.00.00143.60
172.26.9.134http/1.1
16-31-0/0/5844.
0.0127228700.00.0058.73
172.26.9.134http/1.1
17-31-0/0/9043.
0.0127228500.00.0092.76
172.26.9.134http/1.1
18-31-0/0/6278.
0.26272291190.00.0065.27
172.26.9.134http/1.1
19-31-0/0/5766.
0.0127228410.00.0060.08
172.26.9.134http/1.1
20-31-0/0/11304.
2.9518561520.00.00109.39
69.162.124.230http/1.1rdbnetwork.com:8443HEAD / HTTP/1.0
21-31-0/0/12988.
4.0918561510.00.00116.97
69.162.124.230http/1.1rdbnetwork.com:8443HEAD / HTTP/1.0
22-26-0/0/4212.
0.0171350800.00.0072.66
172.26.9.134http/1.1
23-26-0/0/3589.
0.0271347110.00.0032.25
69.162.124.236http/1.1y2z.in:8443HEAD / HTTP/1.0
24-26-0/0/2456.
0.0271347100.00.0020.98
162.158.111.24http/1.1busybrother.com:8443GET /telescope/requests HTTP/1.1
25-26-0/0/1881.
0.0071347100.00.0013.60
167.88.60.250http/1.1busybrother.com:8443GET / HTTP/1.0
26-26-0/0/2517.
0.0071352400.00.0025.30
172.26.9.134http/1.1
27-26-0/0/2497.
0.0071352510.00.0024.42
172.26.9.134http/1.1
28-26-0/0/2340.
0.00713510170.00.0025.75
172.26.9.134http/1.1
29-22-0/0/5402.
0.0271391500.00.0054.97
172.26.9.134http/1.1
30-11-0/0/5467.
0.00138548231140.00.0056.43
172.26.9.134http/1.1
31-11-0/0/1084.
0.00138546031250.00.008.70
172.26.9.134http/1.1
32-11-0/0/2105.
0.00138548431430.00.0019.96
172.26.9.134http/1.1
33-11-0/0/1840.
0.00138546833170.00.0017.88
172.26.9.134http/1.1
34-11-0/0/1726.
0.00138548131250.00.0016.54
172.26.9.134http/1.1
35-11-0/0/1863.
0.01138552926250.00.0018.35
172.26.9.134http/1.1
36-11-0/0/2981.
0.00138545031970.00.0031.81
172.26.9.134http/1.1
37-11-0/0/4257.
0.00138545338770.00.0047.08
172.26.9.134http/1.1
38-11-0/0/3320.
0.00138545133700.00.0035.19
172.26.9.134http/1.1
39-13-0/0/3979.
2.37115745900.00.0033.72
172.26.9.134http/1.1
40-11-0/0/769.
0.00138546931540.00.005.94
172.26.9.134http/1.1
41-11-0/0/1883.
0.00138547331360.00.0019.34
172.26.9.134http/1.1
42-11-0/0/966.
0.00138544033770.00.008.42
172.26.9.134http/1.1
43-20-0/0/8006.
0.0271409400.00.0075.60
172.26.9.134http/1.1
44-11-0/0/703.
0.00138544731450.00.006.07
172.26.9.134http/1.1
45-11-0/0/2960.
0.00138547432700.00.0029.46
172.26.9.134http/1.1
46-11-0/0/290.
0.00138547133110.00.001.33
172.26.9.134http/1.1
47-11-0/0/3993.
0.00138554628180.00.0036.16
172.26.9.134http/1.1
48-11-0/0/709.
0.00138545432280.00.006.05
172.26.9.134http/1.1
49-11-0/0/226.
0.00138554825660.00.001.06
172.26.9.134http/1.1
50-11-0/0/2523.
0.00138555425890.00.0022.23
172.26.9.134http/1.1
51-11-0/0/515.
0.00138554426890.00.003.27
172.26.9.134http/1.1
52-11-0/0/236.
0.00138553127570.00.001.15
172.26.9.134http/1.1
53-11-0/0/207.
0.00138553527150.00.000.98
172.26.9.134http/1.1
54-11-0/0/954.
0.00138554725940.00.008.76
172.26.9.134http/1.1
55-11-0/0/240.
0.00138552333180.00.001.06
172.26.9.134http/1.1
56-11-0/0/637.
0.00138554526130.00.004.91
172.26.9.134http/1.1
57-11-0/0/310.
0.00138552423130.00.001.70
172.26.9.134http/1.1
58-11-0/0/303.
0.00138554025760.00.001.83
172.26.9.134http/1.1
59-11-0/0/206.
0.00138553424880.00.000.91
172.26.9.134http/1.1
60-11-0/0/441.
0.00138555124050.00.002.63
172.26.9.134http/1.1
61-11-0/0/246.
0.00138552027220.00.001.27
172.26.9.134http/1.1
62-11-0/0/953.
1.47130881550.00.008.38
52.167.144.24http/1.1yees.one:8443GET / HTTP/1.0
63-11-0/0/277

Found on 2023-08-01 09:58

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: overlordsapp.shop
Port: 80
URL: http://overlordsapp.shop

First seen 2024-06-02 12:56
- Severity: low
  Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcfd6328a27847d29dc74e393357c1ab310
```
Found 25 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-06-02 12:56
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: www.overlordsapp.shop
Port: 80
URL: http://www.overlordsapp.shop

First seen 2024-06-02 12:55
- Severity: low
  Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcfd6328a27847d29dc74e393357c1ab310
```
Found 25 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-06-02 12:55
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: cdn.mybabysemporium.com.au
Port: 80
URL: http://cdn.mybabysemporium.com.au

First seen 2024-06-02 09:25

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31b025e74db025e74d8cf53491

Apache Status

Apache Server Status for mybabysemporium.com.au (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) OpenSSL/3.0.2
Server MPM: prefork
Server Built: 2024-04-10T17:45:18

Current Time: Sunday, 02-Jun-2024 19:25:25 AEST
Restart Time: Sunday, 02-Jun-2024 19:17:31 AEST
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  7 minutes 53 seconds
Server load: 0.00 0.00 0.00
Total accesses: 192 - Total Traffic: 5.7 MB - Total Duration: 22179
CPU Usage: u.93 s.23 cu.56 cs.19 - .404% CPU load
.406 requests/sec - 12.4 kB/second - 30.5 kB/request - 115.516 ms/request
1 requests currently being processed, 9 idle workers
___.___W_.__....................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-032770/9/9_
0.011634613830.00.060.06
127.0.0.1http/1.1mybabysemporium.com.au:443POST /wp-cron.php?doing_wp_cron=1717320162.02156591415405273437

1-032780/14/14_
0.040053270.00.520.52
127.0.0.1http/1.1mybabysemporium.com.au:8080GET /wp-content/fonts/62437d66c52a374b7a3b5007bf6c356c.css?ver=

2-032790/21/21_
0.013142736540.00.830.83
104.28.125.3http/1.1mybabysemporium.com.au:443GET / HTTP/1.1

3-0-0/0/21.
0.00448013270.00.000.57
::1http/1.1dev.mybabysemporium.com.au:8080OPTIONS * HTTP/1.0

4-032810/11/11_
0.0431415435590.00.200.20
127.0.0.1http/1.1mybabysemporium.com.au:8080POST /wp-cron.php?doing_wp_cron=1717320005.76250100135803222656

5-032820/10/10_
0.0931427138110.00.350.35
127.0.0.1http/1.1mybabysemporium.com.au:8080GET / HTTP/1.1

6-032830/12/12_
0.01154455830.00.460.46
104.28.125.3http/1.1mybabysemporium.com.au:443GET / HTTP/1.1

7-0328417/24/24W
0.230020841032.21.361.36
127.0.0.1http/1.1mybabysemporium.com.au:8080GET /server-status HTTP/1.1

8-032850/22/22_
0.22154448740.00.770.77
127.0.0.1http/1.1mybabysemporium.com.au:8080GET / HTTP/1.1

9-0-0/0/4.
0.004470180.00.000.02
::1http/1.1dev.mybabysemporium.com.au:8080OPTIONS * HTTP/1.0

10-032870/24/24_
0.431584513330.00.500.50
127.0.0.1http/1.1mybabysemporium.com.au:8080POST /wp-cron.php?doing_wp_cron=1717320162.02156591415405273437

11-032880/12/12_
0.0146112160.00.070.07
127.0.0.1http/1.1mybabysemporium.com.au:8080GET /.git/config HTTP/1.1

12-0-0/0/1.
0.00455000.00.000.00
::1http/1.1dev.mybabysemporium.com.au:8080OPTIONS * HTTP/1.0

13-0-0/0/1.
0.00454000.00.000.00
::1http/1.1dev.mybabysemporium.com.au:8080OPTIONS * HTTP/1.0

14-0-0/0/1.
0.00456000.00.000.00
::1http/1.1dev.mybabysemporium.com.au:8080OPTIONS * HTTP/1.0

15-0-0/0/1.
0.00453000.00.000.00
::1http/1.1dev.mybabysemporium.com.au:8080OPTIONS * HTTP/1.0

16-0-0/0/1.
0.00452000.00.000.00
::1http/1.1dev.mybabysemporium.com.au:8080OPTIONS * HTTP/1.0

17-0-0/0/1.
0.00451000.00.000.00
::1http/1.1dev.mybabysemporium.com.au:8080OPTIONS * HTTP/1.0

18-0-0/0/1.
0.00450000.00.000.00
::1http/1.1dev.mybabysemporium.com.au:8080OPTIONS * HTTP/1.0

19-0-0/0/1.
0.00449000.00.000.00
::1http/1.1dev.mybabysemporium.com.au:8080OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 4subcaches: 32, indexes per subcache: 88time left on oldest entries' objects: avg: 135 seconds, (range: 135...136)index usage: 0%, cache usage: 0%total entries stored since starting: 23total entries replaced since starting: 0total entries expired since starting: 18total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 1 hit, 0 miss


Apache/2.4.52 (Ubuntu) Server at mybabysemporium.com.au Port 80

Found on 2024-06-02 09:25

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: inpurchase.shop
Port: 80
URL: http://inpurchase.shop

First seen 2024-05-31 16:06
- Severity: low
  Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea9e9c25fcded8f784e519df79b69805a1d
```
Found 23 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-05-31 16:06
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: www.inpurchase.shop
Port: 80
URL: http://www.inpurchase.shop

First seen 2024-05-31 16:05
- Severity: low
  Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea9e9c25fcded8f784e519df79b69805a1d
```
Found 23 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-05-31 16:05
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: goldjys.com
Port: 80
URL: http://goldjys.com

First seen 2024-05-29 18:36

Severity: medium
Fingerprint: 5f32cf5d6962f09ce9dbcc92e9dbcc92ddeefa43bfa0aaf16fa18590f5d3dee8

Found 60 files trough .DS_Store spidering:

/.htaccess
/.user.ini
/403.html
/admin
/admin/build
/admin/components
/admin/datas
/admin/js
/admin/plugins
/admin/src
/admin/views
/agents
/agents/controller
/agents/lib
/agents/style
/agents/views
/appp
/appp/app
/appp/css
/appp/images
/appp/js
/appp/old
/call.txt
/css
/download
/download/android
/download/ios
/download/static
/favicon.ico
/font-test.ttf
/h5
/images
/index.html
/index.php
/js
/json
/json/console
/json/content
/json/forum
/json/layer
/json/layim
/json/mall
/json/message
/json/table
/json/upload
/json/user
/json/useradmin
/json/workorder
/layui
/layuiadmin
/manages
/nginx.htaccess
/robots.txt
/start.php
/static
/upload
/upload_nft
/vendor
/web.config
/winadmin1

Found on 2024-05-29 18:36

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: www.inpurchase.top
Port: 80
URL: http://www.inpurchase.top

First seen 2024-05-18 17:43
- Severity: low
  Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea9e9c25fcded8f784e519df79b69805a1d
```
Found 23 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-05-18 17:43
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: inpurchase.top
Port: 80
URL: http://inpurchase.top

First seen 2024-05-18 17:42
- Severity: low
  Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea9e9c25fcded8f784e519df79b69805a1d
```
Found 23 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-05-18 17:42
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: www.inpurchase.life
Port: 80
URL: http://www.inpurchase.life

First seen 2024-05-18 17:41
- Severity: low
  Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bcdb1f5f6cda0e0b7dac2f8f06a6219179
```
Found 22 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/get-test
/layer
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-05-18 17:41
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: inpurchase.life
Port: 80
URL: http://inpurchase.life

First seen 2024-05-18 17:41
- Severity: low
  Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bcdb1f5f6cda0e0b7dac2f8f06a6219179
```
Found 22 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/get-test
/layer
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-05-18 17:41
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: trolleysapp.life
Port: 80
URL: http://trolleysapp.life

First seen 2024-05-13 19:25
- Severity: low
  Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea9e9c25fcded8f784e519df79b69805a1d
```
Found 23 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-05-13 19:25
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: www.trolleysapp.life
Port: 80
URL: http://www.trolleysapp.life

First seen 2024-05-13 19:25
- Severity: low
  Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea9e9c25fcded8f784e519df79b69805a1d
```
Found 23 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-05-13 19:25
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: www.trolleysapp.shop
Port: 80
URL: http://www.trolleysapp.shop

First seen 2024-04-29 20:55
Last seen 2024-05-13 19:24
Open for 13 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea9e9c25fcded8f784e519df79b69805a1d
```
Found 23 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-05-13 19:24
- Severity: low
  Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcfd6328a27847d29dc74e393357c1ab310
```
Found 25 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-04-29 20:55
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: hasanerden.com
Port: 443
URL: https://hasanerden.com

First seen 2024-03-19 13:36
Last seen 2024-05-12 20:27
Open for 54 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c026392ab026392ab831dbab97e69c52bfc1daa4b1737925b
```
Found 7 files trough .DS_Store spidering:

/.DS_Store
/.idea
/css
/fonts
/img
/index.html
/index.html___jb_bak___
```
  Found on 2024-05-12 20:27
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: tmp.razghgrup.cfd
Port: 80
URL: http://tmp.razghgrup.cfd

First seen 2024-02-06 20:22
Last seen 2024-05-09 11:59
Open for 92 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652262d33489
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://git.artesanossiglo21.com/eu/eluniversal.com.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2024-05-09 11:59
  
  218 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: tmp.razghgrup.cfd
Port: 443
URL: https://tmp.razghgrup.cfd

First seen 2024-04-06 19:54
Last seen 2024-05-09 11:59
Open for 32 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652262d33489
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://git.artesanossiglo21.com/eu/eluniversal.com.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2024-05-09 11:59
  
  218 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn.humanstory.cn
Port: 443
URL: https://cdn.humanstory.cn

First seen 2023-04-10 03:29
Last seen 2024-04-28 22:26
Open for 384 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652224b9a8fb
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[branch "master"]
[remote "origin"]
	url = hsc@cloud.lonery.com:git/humanstory.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2024-04-28 22:26
  
  220 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: trolleysapp.org
Port: 80
URL: http://trolleysapp.org

First seen 2024-03-28 15:19
Last seen 2024-04-28 19:05
Open for 31 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea9e9c25fcded8f784e519df79b69805a1d
```
Found 23 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/mdate
/p_static1
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-04-28 19:05
- Severity: low
  Fingerprint: 5f32cf5d6962f09cf35cbfb3f35cbfb3712d8cfb935c6b30392fd801284f3aed
```
Found 29 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/p_static1/css
/p_static1/img
/p_static1/img1
/p_static1/js
/public
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-04-18 23:43
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: 66golden.com
Port: 80
URL: http://66golden.com

First seen 2024-04-28 08:49
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d7f9fdbe57f9fdbe57f9fdbe57f9fdbe5
```
Found 1 files trough .DS_Store spidering:

/h5
```
  Found on 2024-04-28 08:49
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: apx.zulazula.info
Port: 80
URL: http://apx.zulazula.info

First seen 2024-04-22 12:08
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522bcb90dab
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/SamadiPour/hugo-paper-artifact.git
	fetch = +refs/heads/main:refs/remotes/origin/main
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2024-04-22 12:08
  
  280 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: api.zulazula.info
Port: 80
URL: http://api.zulazula.info

First seen 2024-04-22 09:54
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522bcb90dab
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/SamadiPour/hugo-paper-artifact.git
	fetch = +refs/heads/main:refs/remotes/origin/main
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2024-04-22 09:54
  
  280 Bytes
Create report
Symfony developement panel enabled
The application has Symfony profiling enabled.

It enables an attacker to access the following sensitive content :

System configuration

Request log, including POST request with credentials and/or api keys
IP: 81.28.12.12
Domain: cdn.cnjoi.fr
Port: 80
URL: http://cdn.cnjoi.fr/_profiler/empty/search/results

First seen 2024-04-21 03:51
- Fingerprint: 407cf4363b0e62fafca67e07477741cc477741cc477741cc477741cc477741cc
```
Symfony profiler enabled:
http://cdn.cnjoi.fr/_profiler/empty/search/results
```
  Found on 2024-04-21 03:51
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: active.ckcjs24.eu.org
Port: 443
URL: https://active.ckcjs24.eu.org

First seen 2023-10-08 06:00
Last seen 2024-04-18 21:34
Open for 193 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-04-18 21:34
  
  265 Bytes
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: intim.dosug-kazan.com
Port: 80
URL: http://intim.dosug-kazan.com

First seen 2024-04-14 14:39

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31051e3710051e3710fcbbe82a

Apache Status

Apache Server Status for dosug-kazan.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu)
Server MPM: prefork
Server Built: 2024-04-10T17:46:26

Current Time: Sunday, 14-Apr-2024 17:38:45 MSK
Restart Time: Saturday, 13-Apr-2024 17:44:23 MSK
Parent Server Config. Generation: 2
Parent Server MPM Generation: 1
Server uptime:  23 hours 54 minutes 21 seconds
Server load: 0.13 0.05 0.04
Total accesses: 32609 - Total Traffic: 594.8 MB - Total Duration: 2101746
CPU Usage: u272.58 s71.84 cu100.62 cs26.7 - .548% CPU load
.379 requests/sec - 7.1 kB/second - 18.7 kB/request - 64.4529 ms/request
1 requests currently being processed, 7 idle workers
_W______........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-118922800/3423/4670_
46.88103073440.059.1183.63
127.0.0.1http/1.1dosug-kazan.com:8080GET /.vscode/sftp.json HTTP/1.0

1-118922810/3426/4673W
48.95003095890.060.9585.25
127.0.0.1http/1.1dosug-kazan.com:8080GET /server-status HTTP/1.0

2-118922820/3424/4671_
50.23003018710.059.6285.77
127.0.0.1http/1.1dosug-kazan.com:8080GET /v2/_catalog HTTP/1.0

3-118922830/3427/4672_
49.11002913600.061.8586.84
127.0.0.1http/1.1prostitutki-krasnoyarsk.com:808GET /css/css HTTP/1.0

4-118922840/3424/4668_
48.61003094930.057.8483.00
127.0.0.1http/1.1dosug-kazan.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

5-118923620/3423/4667_
49.58102954370.060.7885.01
127.0.0.1http/1.1dosug-kazan.com:8080GET /about HTTP/1.0

6-118997940/2490/3473_
34.40002163250.045.1265.56
127.0.0.1http/1.1dosug-kazan.com:8080GET /debug/default/view?panel=config HTTP/1.0

7-119112180/766/1115_
10.06018703250.013.7119.75
127.0.0.1http/1.1prostitutki-krasnoyarsk.com:808GET /indi/katerina-1427 HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

Apache/2.4.41 (Ubuntu) Server at dosug-kazan.com Port 80

Found on 2024-04-14 14:39

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: dosug-kazan.com
Port: 80
URL: http://dosug-kazan.com

First seen 2024-04-14 14:38

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31051e3710051e3710fcbbe82a

Apache Status

Apache Server Status for dosug-kazan.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu)
Server MPM: prefork
Server Built: 2024-04-10T17:46:26

Current Time: Sunday, 14-Apr-2024 17:38:45 MSK
Restart Time: Saturday, 13-Apr-2024 17:44:23 MSK
Parent Server Config. Generation: 2
Parent Server MPM Generation: 1
Server uptime:  23 hours 54 minutes 21 seconds
Server load: 0.13 0.05 0.04
Total accesses: 32609 - Total Traffic: 594.8 MB - Total Duration: 2101746
CPU Usage: u272.58 s71.84 cu100.62 cs26.7 - .548% CPU load
.379 requests/sec - 7.1 kB/second - 18.7 kB/request - 64.4529 ms/request
1 requests currently being processed, 7 idle workers
_W______........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-118922800/3423/4670_
46.88103073440.059.1183.63
127.0.0.1http/1.1dosug-kazan.com:8080GET /.vscode/sftp.json HTTP/1.0

1-118922810/3426/4673W
48.95003095890.060.9585.25
127.0.0.1http/1.1dosug-kazan.com:8080GET /server-status HTTP/1.0

2-118922820/3424/4671_
50.23003018710.059.6285.77
127.0.0.1http/1.1dosug-kazan.com:8080GET /v2/_catalog HTTP/1.0

3-118922830/3427/4672_
49.11002913600.061.8586.84
127.0.0.1http/1.1prostitutki-krasnoyarsk.com:808GET /css/css HTTP/1.0

4-118922840/3424/4668_
48.61003094930.057.8483.00
127.0.0.1http/1.1dosug-kazan.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

5-118923620/3423/4667_
49.58102954370.060.7885.01
127.0.0.1http/1.1dosug-kazan.com:8080GET /about HTTP/1.0

6-118997940/2490/3473_
34.40002163250.045.1265.56
127.0.0.1http/1.1dosug-kazan.com:8080GET /debug/default/view?panel=config HTTP/1.0

7-119112180/766/1115_
10.06018703250.013.7119.75
127.0.0.1http/1.1prostitutki-krasnoyarsk.com:808GET /indi/katerina-1427 HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

Apache/2.4.41 (Ubuntu) Server at dosug-kazan.com Port 80

Found on 2024-04-14 14:38

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: dosug-kras.com
Port: 80
URL: http://dosug-kras.com

First seen 2024-04-13 09:00

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb317f3419c47f3419c4b0be3fd5

Apache Status

Apache Server Status for dosug-kras.com (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu)
Server MPM: prefork
Server Built: 2024-04-10T17:46:26

Current Time: Saturday, 13-Apr-2024 12:00:58 MSK
Restart Time: Friday, 12-Apr-2024 06:48:32 MSK
Parent Server Config. Generation: 2
Parent Server MPM Generation: 1
Server uptime:  1 day 5 hours 12 minutes 26 seconds
Server load: 0.00 0.03 0.00
Total accesses: 29051 - Total Traffic: 394.5 MB - Total Duration: 1873701
CPU Usage: u132.76 s37.41 cu189.83 cs46.7 - .387% CPU load
.276 requests/sec - 3934 B/second - 13.9 kB/request - 64.497 ms/request
1 requests currently being processed, 6 idle workers
____W__.........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-118563570/1726/4175_
24.380962624820.022.0955.07
127.0.0.1http/1.1deva23.ru:8080GET /uslugi/analnyy-seks HTTP/1.0

1-118563580/1724/4174_
21.86102546490.021.5157.30
127.0.0.1http/1.1spbintim.com:8080GET /img/favicon.ico HTTP/1.0

2-118563590/1725/4177_
23.88102918560.023.5858.57
127.0.0.1http/1.1dosug-kras.com:8080GET /debug/default/view?panel=config HTTP/1.0

3-118563600/1723/4177_
22.10002567460.023.0458.98
127.0.0.1http/1.1dosug-kras.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

4-118563610/1724/4176W
22.81002611820.021.7057.29
127.0.0.1http/1.1dosug-kras.com:8080GET /server-status HTTP/1.0

5-118564190/1722/4173_
23.33002770620.022.7956.24
127.0.0.1http/1.1deva23.ru:8080GET /robots.txt HTTP/1.0

6-118564210/1721/3999_
23.83002697200.020.6251.05
127.0.0.1http/1.1dosug-kras.com:8080GET /v2/_catalog HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

Apache/2.4.41 (Ubuntu) Server at dosug-kras.com Port 80

Found on 2024-04-13 09:00

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: ekaxxx.ru
Port: 80
URL: http://ekaxxx.ru

First seen 2024-04-13 09:00

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f784cd63f784cd639d7c0888

Apache Status

Apache Server Status for ekaxxx.ru (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu)
Server MPM: prefork
Server Built: 2024-04-10T17:46:26

Current Time: Saturday, 13-Apr-2024 12:00:13 MSK
Restart Time: Friday, 12-Apr-2024 06:48:32 MSK
Parent Server Config. Generation: 2
Parent Server MPM Generation: 1
Server uptime:  1 day 5 hours 11 minutes 41 seconds
Server load: 0.01 0.03 0.00
Total accesses: 29013 - Total Traffic: 394.3 MB - Total Duration: 1870969
CPU Usage: u132.44 s37.32 cu189.83 cs46.7 - .387% CPU load
.276 requests/sec - 3934 B/second - 13.9 kB/request - 64.4873 ms/request
1 requests currently being processed, 6 idle workers
___W___.........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-118563570/1720/4169_
24.29102617560.022.0355.01
127.0.0.1http/1.1ekaxxx.ru:8080GET /server HTTP/1.0

1-118563580/1719/4169_
21.82002541480.021.4857.27
127.0.0.1http/1.1ekaxxx.ru:8080GET /v2/_catalog HTTP/1.0

2-118563590/1720/4172_
23.82002909540.023.5558.54
127.0.0.1http/1.1ekaxxx.ru:8080GET /debug/default/view?panel=config HTTP/1.0

3-118563600/1717/4171W
21.96002563690.023.0258.96
127.0.0.1http/1.1ekaxxx.ru:8080GET /server-status HTTP/1.0

4-118563610/1719/4171_
22.75002610110.021.6657.26
127.0.0.1http/1.1ekaxxx.ru:8080GET /about HTTP/1.0

5-118564190/1716/4167_
23.31102770110.022.7856.23
127.0.0.1http/1.1ekaxxx.ru:8080GET /.vscode/sftp.json HTTP/1.0

6-118564210/1716/3994_
23.83002697160.020.6251.05
127.0.0.1http/1.1ekaxxx.ru:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

Apache/2.4.41 (Ubuntu) Server at ekaxxx.ru Port 80

Found on 2024-04-13 09:00

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: dd.showmetech.top
Port: 443
URL: https://dd.showmetech.top

First seen 2023-06-12 04:48
Last seen 2024-04-10 20:46
Open for 303 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522dc31bd2b
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/star7th/showdoc.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-04-10 20:46
  
  263 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: dd.showmetech.top
Port: 80
URL: http://dd.showmetech.top

First seen 2023-06-12 04:48
Last seen 2024-04-07 02:55
Open for 299 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522dc31bd2b
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/star7th/showdoc.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-04-07 02:55
  
  263 Bytes
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: bn-chanll.tk
Port: 80
URL: http://bn-chanll.tk

First seen 2024-03-30 22:21
- Fingerprint: b18befd9dd6536aa30550de5fbbdf14bc28dc460c9f8665cf41c70c77e712a3d
```
{
	"enabled": true,
	"singleOffer": true,
	"colorBg": "#1264A2",
	"storeList": [
		"rus"
	],
	"localeList": [
		"ru"
	]
}
```
  Found on 2024-03-30 22:21
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: aaa.ghosthgy.tk
Port: 80
URL: http://aaa.ghosthgy.tk

First seen 2023-04-03 05:04
Last seen 2024-03-21 14:21
Open for 353 days
- Fingerprint: b18befd9dd65368268eeb71068eeb71068eeb71068eeb71068eeb71068eeb710
```
{"Code":401,"Msg":"请传递正确的验证头信息","Data":null}
```
  Found on 2024-03-21 14:21
- Fingerprint: b18befd9dd653682d8b6ddf2d8b6ddf2d8b6ddf2d8b6ddf2d8b6ddf2d8b6ddf2
```
{"Code":401,"Msg":"登录信息有误，请登录后操作","Data":null}
```
  Found on 2023-10-03 17:04
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: trolleys.cc
Port: 80
URL: http://trolleys.cc

First seen 2024-03-20 18:23
- Severity: low
  Fingerprint: 5f32cf5d6962f09c81c345f781c345f7da50891f96e15c147c8f04ddc90f5557
```
Found 32 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/mdate
/p_static1
/p_static1/css
/p_static1/img
/p_static1/img1
/p_static1/js
/public
/public/css
/public/img
/public/js
/red
/static
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload
```
  Found on 2024-03-20 18:23
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdn6.ajp.cam
Port: 80
URL: http://cdn6.ajp.cam

First seen 2024-03-17 10:59
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dbeed56eebeed56eebeed56eebeed56ee
```
Found 1 files trough .DS_Store spidering:

/v
```
  Found on 2024-03-17 10:59
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdn.federicomengascini.com
Port: 80
URL: http://cdn.federicomengascini.com

First seen 2023-10-04 17:16
Last seen 2024-03-09 14:16
Open for 156 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cab28146bab28146bc7ef8a3bc4eefbc33a2f302395e5d8d5
```
Found 21 files trough .DS_Store spidering:

/404 Error-pana.svg
/chakra-ui-logomark-colored.svg
/favicon.ico
/fede.PNG
/fede_love.png
/instantpy.png
/ipmonitor.png
/Launching-amico.svg
/manifest.json
/next-app-chakra-ts.png
/nextjs-black-logo.svg
/nextjs-icon-dark.svg
/nextjs-icon-light.svg
/no404.png
/onlyipv6.png
/plexpy.png
/switch-off.mp3
/switch-on.mp3
/ts-logo-512.svg
/vercel.svg
/yunshop.png
```
  Found on 2024-03-09 14:16
- Severity: low
  Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bc97a40ca6fc7bf6c888f451b051cd510c
```
Found 22 files trough .DS_Store spidering:

/404 Error-pana.svg
/chakra-ui-logomark-colored.svg
/favicon.ico
/fede.PNG
/fede_love.png
/instantpy.png
/ipmonitor.png
/Launching-amico.svg
/manifest.json
/next-app-chakra-ts.png
/nextjs-black-logo.svg
/nextjs-icon-dark.svg
/nextjs-icon-light.svg
/no404.png
/onlyipv6.png
/plexpy.png
/switch-off.mp3
/switch-on.mp3
/ts-logo-512.svg
/uptime.png
/vercel.svg
/yunshop.png
```
  Found on 2023-11-16 20:36
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: gce.donpau.com
Port: 443
URL: https://gce.donpau.com

First seen 2024-01-15 14:43
Last seen 2024-03-08 13:29
Open for 52 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31b60984b4b60984b4811dbb91

Apache Status

Apache Server Status for gce.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.57 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2023-04-13T03:26:51

Current Time: Friday, 08-Mar-2024 13:29:53 UTC
Restart Time: Friday, 08-Mar-2024 04:48:37 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  8 hours 41 minutes 16 seconds
Server load: 0.04 0.02 0.02
Total accesses: 497 - Total Traffic: 85.1 GB - Total Duration: 86394
CPU Usage: u7.55 s32.4 cu1.31 cs1.45 - .137% CPU load
.0159 requests/sec - 2.8 MB/second - 175.4 MB/request - 173.831 ms/request
15 requests currently being processed, 2 idle workers
KKKK_KKK_....WK.......KK..K.......K..K.K........................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0816891/11/46K
4.2520100250.89913.169913.18
92.38.168.7http/1.1127.0.0.1:80GET /v2/_catalog HTTP/1.1

1-0836061/1/35K
0.002031350.90.000.03
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

2-0836091/1/29K
0.0010104170.90.000.03
92.38.168.6http/1.1127.0.0.1:80GET /_all_dbs HTTP/1.1

3-0836101/1/54K
0.001235490.90.000.20
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

4-0836130/0/26_
0.000032430.00.000.02
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

5-0836141/1/28K
0.0000146550.80.000.04
92.38.168.6http/1.1127.0.0.1:80GET /.DS_Store HTTP/1.1

6-0592021/33/33K
0.17308330.89915.149915.14
92.38.168.5http/1.1127.0.0.1:80GET /about HTTP/1.1

7-0836151/1/27K
0.000393651.00.000.02
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

8-0836160/0/27_
0.000028930.00.000.03
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

9-0-0/0/6.
0.0025600130.00.000.00
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

10-0-0/0/8.
0.0025650130.00.000.01
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

11-0-0/0/6.
0.002558090.00.000.00
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

12-0-0/0/9.
0.002581090.00.000.12
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

13-0788121/35/35W
30.3800120.920389.3120389.31
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1

14-0788131/15/15K
0.1220273.58399.198399.19
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

15-0-0/0/7.
0.002583090.00.000.00
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

16-0-0/0/6.
0.002587060.00.000.00
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

17-0-0/0/5.
0.0025710280.00.000.00
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

18-0-0/0/5.
0.0025570210.00.000.00
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

19-0-0/0/3.
0.0025720170.00.000.00
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

20-0-0/0/2.
0.0025840250.00.000.00
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

21-0-0/0/3.
0.002570050.00.000.00
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

22-0817141/7/7K
2.3020530.88372.948372.94
92.38.168.7http/1.1127.0.0.1:80GET /server-status HTTP/1.1

23-0817151/10/10K
0.312034490.910240.0110240.01
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

24-0-0/0/3.
0.002569030.00.000.00
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

25-0-0/0/3.
0.002567056250.00.008.47
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

26-0817221/10/10K
0.03301123.49955.919955.91
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

27-0-0/0/2.
0.002582020.00.000.00
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

28-0-0/0/3.
0.002568040.00.000.00
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

29-0-0/0/3.
0.002566050.00.000.00
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

30-0-0/0/2.
0.002580030.00.000.00
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

31-0-0/0/2.
0.002579020.00.000.00
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

32-0-0/0/1.
0.002589000.00.000.00
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

33-0-0/0/2.
0.002578020.00.000.00
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

34-0817381/10/10K
0.1830145150.69970.009970.00
92.38.168.6http/1.1127.0.0.1:80GET / HTTP/1.1

35-0-0/0/2.
0.002576020.00.000.00
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

36-0-0/0/2.
0.002577020.00.000.00
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

37-0817421/10/10K
0.002070.90.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

38-0-0/0/1.
0.002588000.00.000.00
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0

39-0817471/6/6K
0.003021410.80.010.01
92.38.168.7http/1.1127.0.0.1:80GET /debug/default/view?panel=config HTTP/1.1

40-0-0/0/3.
0.002563021390.00.000.01
::1http/1.1hub.paotung.org:8443OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-03-08 13:29

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31b60984b4b60984b4bba2bfe9

Apache Status

Apache Server Status for gce.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.57 (Debian) OpenSSL/3.0.9
Server MPM: prefork
Server Built: 2023-04-13T03:26:51

Current Time: Friday, 08-Mar-2024 06:47:23 UTC
Restart Time: Friday, 08-Mar-2024 04:48:37 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 hour 58 minutes 45 seconds
Server load: 0.00 0.00 0.00
Total accesses: 66 - Total Traffic: 79 kB - Total Duration: 25799
CPU Usage: u.33 s.81 cu0 cs0 - .016% CPU load
.00926 requests/sec - 11 B/second - 1225 B/request - 390.894 ms/request
5 requests currently being processed, 4 idle workers
W__KKK__K.......................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0580560/11/11W
0.0900670.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1

1-0580570/9/9_
0.0939130950.00.020.02
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-0580580/6/6_
0.0832398079680.00.010.01
2001:470:1:332::96http/1.1127.0.0.1:8443\x16\x03\x01

3-0580591/10/10K
0.080017931.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

4-0580601/8/8K
0.084032170.90.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

5-0591351/7/7K
0.064044760.90.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

6-0592020/7/7_
0.0600140.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

7-0592040/6/6_
0.052035390.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server HTTP/1.1

8-0635851/2/2K
0.012016270.90.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-03-08 06:46

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31b60984b4b60984b4162cc655

Apache Status

Apache Server Status for gce.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.57 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2023-04-13T03:26:51

Current Time: Friday, 02-Feb-2024 05:57:38 UTC
Restart Time: Friday, 02-Feb-2024 04:06:41 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 hour 50 minutes 57 seconds
Server load: 0.00 0.01 0.00
Total accesses: 110 - Total Traffic: 4.3 MB - Total Duration: 2438769
CPU Usage: u.29 s.64 cu0 cs0 - .014% CPU load
.0165 requests/sec - 675 B/second - 39.9 kB/request - 22170.6 ms/request
1 requests currently being processed, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
0637no0yes025000
1638no0yes025000
2803no0yes124000
Sum300 174000

___________________________________________________W____________
___________.....................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-06370/1/1_
0.01631586308863080.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-06370/1/1_
0.0146883713710.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /vmess HTTP/1.1

0-06370/1/1_
0.01616110.00.010.01
184.181.119.110http/1.1127.0.0.1:80GET / HTTP/1.1

1-06380/2/2_
0.156335221271236230.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-06380/2/2_
0.17632248939511780.00.030.03
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-06380/1/1_
0.18631582707827070.00.290.29
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-06380/1/1_
0.1563351126841126840.00.120.12
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-06380/2/2_
0.18631087060892730.00.040.04
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-06380/2/2_
0.18631547322495360.00.450.45
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-06380/3/3_
0.18631558028633200.00.050.05
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-06380/2/2_
0.18631047294496910.01.681.68
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-06380/2/2_
0.2053081018421018420.00.030.03
178.79.129.218http/1.1127.0.0.1:80\x16\x03\x01

1-06380/2/2_
0.18631048221062650.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-06380/1/1_
0.1553071025621025620.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-06380/1/1_
0.1546141014581014580.00.010.01
127.0.0.1http/1.1

1-06380/2/2_
0.1542451016191016190.00.030.03
127.0.0.1http/1.1

1-06380/3/3_
0.186318368261117050.00.030.03
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-06380/3/3_
0.186310360261005370.00.070.07
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-06380/1/1_
0.1863101229901229900.00.020.02
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-06380/1/1_
0.1763301018701018700.00.060.06
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-06380/1/1_
0.1763271026341026340.00.020.02
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-06380/1/1_
0.1963101195081195080.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-06380/2/2_
0.18631066344672270.00.130.13
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-06380/3/3_
0.18631065860671760.00.110.11
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-06380/3/3_
0.176325325171546220.00.020.02
127.0.0.1http/1.1hub.paotung.org:8443GET /vless HTTP/1.1

1-06380/2/2_
0.15335419159213400.00.010.01
127.0.0.1http/1.1

1-06380/1/1_
0.18631061647616470.00.310.31
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-06380/1/1_
0.18631556725567250.00.040.04
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-08030/1/1_
0.04118244440.00.000.00
127.0.0.1http/1.1

2-08031/0/0W
0.000000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1

2-08030/1/1_
0.067519769760.00.000.00
127.0.0.1http/1.1

2-08030/6/6_
0.13744122070670.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET /vless HTTP/1.1

2-08030/4/4_
0.081040010.00.010.01
127.0.0.1http/1.1

2-08030/2/2_
0.111041170540.00.010.01
127.0.0.1http/1.1

2-08030/3/3_
0.0774630875308750.00.030.03
127.0.0.1http/1.1

2-08030/2/2_
0.139891219248210.00.060.06
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-08030/2/2_
0.11102920585205850.00.010.01
127.0.0.1http/1.1

2-08030/4/4_
0.1430142710.00.230.23
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-08030/2/2_
0.04616488348830.00.000.00
184.181.119.110http/1.1

2-08030/2/2_
0.0672038151990.00.290.29
127.0.0.1http/1.1

2-08030/5/5_
0.0768538051970.00.010.01
127.0.0.1http/1.1

2-08030/1/1_
0.04752000.00.000.00
127.0.0.1http/1.1

2-08030/1/1_
0.11751000.00.000.00
127.0.0.1http/1.1

2-08030/3/3_
0.11747132217110.00.000.00
127.0.0.1http/1.1

2-08030/2/2_
0.12746010.00.010.01
127.0.0.1http/1.1

2-08030/3/3_
0.14613038750.00.000.00
83.97.73.245http/1.1127.0.0.1:80GET /actuator/gateway/routes HTTP/1.1

2-08030/1/1_
0.04612000.00.000.00
127.0.0.1http/1.1

2-08030/3/3_
0.14209720.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

2-08030/4/4_
0.14203920.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

2-08030/3/3_
0.14104010.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

2-08030/2/2_
0.141000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

2-08030/5/5_
0.140020.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 S

Found on 2024-02-02 05:57

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31b60984b4b60984b4e75ce53b

Apache Status

Apache Server Status for gce.donpau.com (via 127.0.0.1)

Server Version: Apache/2.4.57 (Debian) OpenSSL/3.0.9
Server MPM: event
Server Built: 2023-04-13T03:26:51

Current Time: Monday, 15-Jan-2024 14:43:24 UTC
Restart Time: Saturday, 13-Jan-2024 11:05:50 UTC
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  2 days 3 hours 37 minutes 33 seconds
Server load: 0.00 0.00 0.00
Total accesses: 2544 - Total Traffic: 1.3 GB - Total Duration: 20364646
CPU Usage: u6.02 s15.02 cu2.9 cs4.42 - .0153% CPU load
.0137 requests/sec - 7.2 kB/second - 0.5 MB/request - 8004.97 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
327886no0yes124000
427887no0yes025000
Sum200 149000

................................................................
..........._____________W____________________________________...
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1-0/0/6.
0.0052978000.00.000.00
127.0.0.1http/1.1

0-1-0/0/8.
0.005297803590.00.000.01
127.0.0.1http/1.1

0-1-0/0/8.
0.005297815960.00.000.02
127.0.0.1http/1.1

0-1-0/0/5.
0.0052978010.00.000.01
127.0.0.1http/1.1

0-1-0/0/6.
0.0052978000.00.000.00
127.0.0.1http/1.1

0-1-0/0/7.
0.005297803700.00.000.00
127.0.0.1http/1.1

0-1-0/0/5.
0.0052978000.00.000.01
127.0.0.1http/1.1

0-1-0/0/8.
0.00529784057240.00.000.02
127.0.0.1http/1.1

0-1-0/0/2.
0.00529781395191395200.00.000.01
127.0.0.1http/1.1

0-1-0/0/8.
0.005297803780.00.000.01
127.0.0.1http/1.1

0-1-0/0/5.
0.0052978000.00.000.00
127.0.0.1http/1.1

0-1-0/0/8.
0.00529781501500.00.000.00
127.0.0.1http/1.1

0-1-0/0/5.
0.005297803760.00.000.01
127.0.0.1http/1.1

0-1-0/0/5.
0.005297804200.00.000.00
127.0.0.1http/1.1

0-1-0/0/5.
0.005297803820.00.000.00
127.0.0.1http/1.1

0-1-0/0/10.
0.0052978010274500.00.000.56
127.0.0.1http/1.1

0-1-0/0/4.
0.005297807200.00.000.01
127.0.0.1http/1.1

0-1-0/0/6.
0.0052978116511660.00.000.00
127.0.0.1http/1.1

0-1-0/0/3.
0.00529786516510.00.000.01
127.0.0.1http/1.1

0-1-0/0/9.
0.0052978022190.00.000.01
2620:96:e000:b0cc:e:2:2:8http/1.1127.0.0.1:80GET /favicon.ico HTTP/1.1

0-1-0/0/9.
0.0052978010990.00.000.01
127.0.0.1http/1.1

0-1-0/0/9.
0.00529783466950.00.000.02
127.0.0.1http/1.1

0-1-0/0/8.
0.005297801540.00.000.00
127.0.0.1http/1.1

0-1-0/0/14.
0.0052978011310.00.000.02
127.0.0.1http/1.1

0-1-0/0/7.
0.005297801690.00.000.00
127.0.0.1http/1.1

1-1-0/0/65.
0.00529783205945240.00.000.15
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-1-0/0/41.
0.005297829910023620.00.008.73
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-1-0/0/66.
0.00529786954444430.00.000.27
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-1-0/0/62.
0.00529783238198920.00.000.18
127.0.0.1http/1.1

1-1-0/0/61.
0.00529784018074450.00.002.46
127.0.0.1http/1.1

1-1-0/0/64.
0.00529782935740720.00.000.87
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-1-0/0/72.
0.0052978010816250.00.000.74
127.0.0.1http/1.1hub.paotung.org:8443GET /favicon.ico HTTP/1.1

1-1-0/0/59.
0.005297829811784360.00.001.40
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-1-0/0/64.
0.005297805506000.00.001.87
127.0.0.1h2chub.paotung.org:8443[0/0] init

1-1-0/0/69.
0.00529785259161640.00.000.49
127.0.0.1http/1.1

1-1-0/0/66.
0.00529781655042770.00.000.43
127.0.0.1http/1.1hub.paotung.org:8443GET /vmess HTTP/1.1

1-1-0/0/43.
0.00529783307302520.00.001.63
127.0.0.1http/1.1

1-1-0/0/58.
0.00529781555720140.00.000.34
127.0.0.1http/1.1hub.paotung.org:8443GET /vmess HTTP/1.1

1-1-0/0/59.
0.005297807276620.00.000.12
127.0.0.1h2chub.paotung.org:8443[1/1] done: stream 1, GET /?C=S%3BO%3DA

1-1-0/0/61.
0.00529782998830640.00.000.62
127.0.0.1h2chub.paotung.org:8443GET https://www.paotung.org/?C=S%3BO%3DA HTTP/2.0

1-1-0/0/57.
0.005297806500920.00.000.24
179.43.178.234http/1.1127.0.0.1:80GET / HTTP/1.1

1-1-0/0/79.
0.00529783016736880.00.000.20
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-1-0/0/63.
0.00529783034884280.00.001.07
127.0.0.1http/1.1

1-1-0/0/66.
0.00529783155458700.00.000.37
127.0.0.1http/1.1

1-1-0/0/68.
0.005297808750090.00.000.20
127.0.0.1http/1.1

1-1-0/0/66.
0.00529781756664580.00.001.20
127.0.0.1http/1.1

1-1-0/0/75.
0.00529783802473020.00.0031.80
127.0.0.1http/1.1

1-1-0/0/59.
0.005297830410871020.00.007.19
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-1-0/0/57.
0.00529783104102170.00.003.25
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-1-0/0/63.
0.005297803975700.00.003.68
127.0.0.1http/1.1

2-1-0/0/2.
0.00529783543540.00.000.00
127.0.0.1http/1.1

2-1-0/0/3.
0.00529780332630.00.000.05
127.0.0.1http/1.1

2-1-0/0/2.
0.005297838654060.00.000.09
127.0.0.1http/1.1

2-1-0/0/1.
0.0052978256125610.00.000.01
127.0.0.1h2chub.paotung.org:8443[0/0] done

2-1-0/0/2.
0.00529783011283011280.00.000.01
127.0.0.1http/1.1

2-1-0/0/4.
0.005297803008900.00.000.07
127.0.0.1h2chub.paotung.org:8443GET https://www.paotung.org/services/?terms HTTP/2.0

2-1-0/0/1.
0.005297862134621340.00.000.01
127.0.0.1http/1.1

2-1-0/0/5.
0.005297836143020.00.000.01
127.0.0.1h2chub.paotung.org:8443[0/0] init

2-1-0/0/1.
0.005297835552355520.00.00</

Found on 2024-01-15 14:43

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 188.114.97.3
Domain: boxclient.chat
Port: 443
URL: https://boxclient.chat

First seen 2023-05-06 10:53
Last seen 2024-03-08 09:42
Open for 306 days

Fingerprint: b18befd9dd6536aa30550de578b4e6cf449384596d420eeef06317bb21a333a9

{
    "branding": {
       "welcome_background_url": "https://boxclient.chat/themes/sco.jpg"
    },
    "default_server_config": {
       "m.homeserver": {
         "base_url": "https://hugbox.cc"
        }
    },
    "brand": "Element",
    "default_country_code": "US",
    "show_labs_settings": true,
    "default_federate": true,
    "default_theme": "dark",
    "room_directory": {
        "servers": ["hugbox.cc", "matrix.org", "pyohato.com"]
    },
    "user_notice": {
      "title": "Sunsetting boxclient.chat",
      "description": "This client will be taken offline on March 7th 2024. It's recommended to install Element Desktop for your OS. If you prefer to use Element on your web browser, switch to an alternative like https://app.element.io"
    },
    "features": {
        "feature_video_rooms": true,
        "feature_presence_in_room_list": true,
        "feature_jump_to_date": true
    }
}

Found on 2024-03-08 09:42

Fingerprint: b18befd9dd6536aa30550de578b4e6cf449384596d420eeef06317bb96fe0d44

{
    "branding": {
       "welcome_background_url": "https://boxclient.chat/themes/sco.jpg"
    },
    "default_server_config": {
       "m.homeserver": {
         "base_url": "https://hugbox.cc"
        }
    },
    "brand": "Element",
    "default_country_code": "US",
    "show_labs_settings": true,
    "default_federate": true,
    "default_theme": "dark",
    "room_directory": {
        "servers": ["hugbox.cc", "matrix.org", "pyohato.com"]
    },
    "features": {
        "feature_video_rooms": true,
        "feature_presence_in_room_list": true,
        "feature_jump_to_date": true
    }
}

Found on 2024-02-21 05:43

Fingerprint: b18befd9dd6536aa30550de578b4e6cf449384596d420eeef06317bbd350196c

{
    "branding": {
       "welcome_background_url": "https://boxclient.chat/themes/sco.jpg"
    },
    "default_server_config": {
       "m.homeserver": {
         "base_url": "https://hugbox.cc"
        }
    },
    "brand": "Element",
    "default_country_code": "US",
    "show_labs_settings": true,
    "default_federate": true,
    "default_theme": "dark",
    "room_directory": {
        "servers": ["hugbox.cc", "matrix.org"]
    },
    "features": {
        "feature_video_rooms": true,
        "feature_presence_in_room_list": true,
        "feature_qr_signin_reciprocate_show": true,
        "feature_jump_to_date": true
    }
}

Found on 2023-11-17 01:41

Fingerprint: b18befd9dd6536aa30550de524e56a84d471a9d4a8123075c03b7a32c329bc3e

{
    "default_server_config": {
       "m.homeserver": {
         "base_url": "https://hugbox.cc"
        }
    },
    "brand": "Element",
    "default_country_code": "US",
    "show_labs_settings": true,
    "default_federate": true,
    "default_theme": "dark",
    "room_directory": {
        "servers": ["hugbox.cc", "matrix.org"]
    },
    "features": {
        "feature_video_rooms": true,
        "feature_presence_in_room_list": true,
        "feature_jump_to_date": true
    },
    "enable_presence_by_hs_url": {
        "https://matrix.org": false,
        "https://matrix-client.matrix.org": false
    }
}

Found on 2023-05-06 10:53

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cloud.cianato.com
Port: 80
URL: http://cloud.cianato.com

First seen 2024-02-26 09:24
- Severity: low
  Fingerprint: 5f32cf5d6962f09c026392ab026392ab9192b93d438bbfe120238c08c51e431d
```
Found 7 files trough .DS_Store spidering:

/BIN
/index.html
/int64.js
/kexploit.js
/rop.js
/web.html
/webkit.js
```
  Found on 2024-02-26 09:24
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdn.getajob.lu
Port: 80
URL: http://cdn.getajob.lu

First seen 2024-02-19 16:56
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772624a8007d4b8c1d95688957373b2293d
```
Found 11 files trough .DS_Store spidering:

/.well-known
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-includes
```
  Found on 2024-02-19 16:56
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: h5.syngieenergy.shop
Port: 443
URL: https://h5.syngieenergy.shop

First seen 2024-02-19 05:15

Severity: medium
Fingerprint: 5f32cf5d6962f09c778888b4778888b41a4b01b3c6f318f08cadd0fec0ffe8b8

Found 40 files trough .DS_Store spidering:

/apk
/apk/SyngieEnergy_1000000.apk
/index.html
/static
/static/error.gif
/static/floor
/static/floor/icon1-active.png
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/logo.png
/static/mine
/static/mine/avatar.png
/static/mine/bg.png
/static/mine/check.png
/static/mine/icon1.png
/static/mine/icon2.png
/static/mine/icon3.png
/static/mine/icon4.png
/static/mine/icon5.png
/static/mine/icon6.png
/static/mine/icon7.png
/static/mine/icon8.png
/static/mine/language.png
/static/mine/me-bg.png
/static/mine/select.png
/static/mine/te.png
/static/mine/wa.png
/static/mine/yellow.png

Found on 2024-02-19 05:15

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: h5.syngieenergy.shop
Port: 80
URL: http://h5.syngieenergy.shop

First seen 2023-12-12 08:36
Last seen 2024-02-19 05:15
Open for 68 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c778888b4778888b41a4b01b3c6f318f08cadd0fec0ffe8b8

Found 40 files trough .DS_Store spidering:

/apk
/apk/SyngieEnergy_1000000.apk
/index.html
/static
/static/error.gif
/static/floor
/static/floor/icon1-active.png
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/logo.png
/static/mine
/static/mine/avatar.png
/static/mine/bg.png
/static/mine/check.png
/static/mine/icon1.png
/static/mine/icon2.png
/static/mine/icon3.png
/static/mine/icon4.png
/static/mine/icon5.png
/static/mine/icon6.png
/static/mine/icon7.png
/static/mine/icon8.png
/static/mine/language.png
/static/mine/me-bg.png
/static/mine/select.png
/static/mine/te.png
/static/mine/wa.png
/static/mine/yellow.png

Found on 2024-02-19 05:15

Severity: medium
Fingerprint: 5f32cf5d6962f09c8f03d7bd8f03d7bd03d19f613f8c2d6e9bc7bea44dfb3485

Found 38 files trough .DS_Store spidering:

/index.html
/static
/static/error.gif
/static/floor
/static/floor/icon1-active.png
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/logo.png
/static/mine
/static/mine/avatar.png
/static/mine/bg.png
/static/mine/check.png
/static/mine/icon1.png
/static/mine/icon2.png
/static/mine/icon3.png
/static/mine/icon4.png
/static/mine/icon5.png
/static/mine/icon6.png
/static/mine/icon7.png
/static/mine/icon8.png
/static/mine/language.png
/static/mine/me-bg.png
/static/mine/select.png
/static/mine/te.png
/static/mine/wa.png
/static/mine/yellow.png

Found on 2023-12-12 08:36

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: h5.syngieenergy.ltd
Port: 443
URL: https://h5.syngieenergy.ltd

First seen 2024-02-10 08:54

Severity: medium
Fingerprint: 5f32cf5d6962f09c778888b4778888b41a4b01b3c6f318f08cadd0fec0ffe8b8

Found 40 files trough .DS_Store spidering:

/apk
/apk/SyngieEnergy_1000000.apk
/index.html
/static
/static/error.gif
/static/floor
/static/floor/icon1-active.png
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/logo.png
/static/mine
/static/mine/avatar.png
/static/mine/bg.png
/static/mine/check.png
/static/mine/icon1.png
/static/mine/icon2.png
/static/mine/icon3.png
/static/mine/icon4.png
/static/mine/icon5.png
/static/mine/icon6.png
/static/mine/icon7.png
/static/mine/icon8.png
/static/mine/language.png
/static/mine/me-bg.png
/static/mine/select.png
/static/mine/te.png
/static/mine/wa.png
/static/mine/yellow.png

Found on 2024-02-10 08:54

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: h5.syngieenergy.ltd
Port: 80
URL: http://h5.syngieenergy.ltd

First seen 2023-12-12 09:07
Last seen 2024-02-10 08:54
Open for 59 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c778888b4778888b41a4b01b3c6f318f08cadd0fec0ffe8b8

Found 40 files trough .DS_Store spidering:

/apk
/apk/SyngieEnergy_1000000.apk
/index.html
/static
/static/error.gif
/static/floor
/static/floor/icon1-active.png
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/logo.png
/static/mine
/static/mine/avatar.png
/static/mine/bg.png
/static/mine/check.png
/static/mine/icon1.png
/static/mine/icon2.png
/static/mine/icon3.png
/static/mine/icon4.png
/static/mine/icon5.png
/static/mine/icon6.png
/static/mine/icon7.png
/static/mine/icon8.png
/static/mine/language.png
/static/mine/me-bg.png
/static/mine/select.png
/static/mine/te.png
/static/mine/wa.png
/static/mine/yellow.png

Found on 2024-02-10 08:54

Severity: medium
Fingerprint: 5f32cf5d6962f09c8f03d7bd8f03d7bd03d19f613f8c2d6e9bc7bea44dfb3485

Found 38 files trough .DS_Store spidering:

/index.html
/static
/static/error.gif
/static/floor
/static/floor/icon1-active.png
/static/floor/icon1.png
/static/floor/icon2-active.png
/static/floor/icon2.png
/static/floor/icon3-active.png
/static/floor/icon3.png
/static/floor/icon4.png
/static/floor/icon5-active.png
/static/floor/icon5.png
/static/gift
/static/index
/static/invite
/static/Inyuangu
/static/lang
/static/lang/text-zh.js
/static/logo.png
/static/mine
/static/mine/avatar.png
/static/mine/bg.png
/static/mine/check.png
/static/mine/icon1.png
/static/mine/icon2.png
/static/mine/icon3.png
/static/mine/icon4.png
/static/mine/icon5.png
/static/mine/icon6.png
/static/mine/icon7.png
/static/mine/icon8.png
/static/mine/language.png
/static/mine/me-bg.png
/static/mine/select.png
/static/mine/te.png
/static/mine/wa.png
/static/mine/yellow.png

Found on 2023-12-12 09:07

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gcore.creatop02.tk
Port: 443
URL: https://gcore.creatop02.tk

First seen 2023-01-27 13:31
Last seen 2024-02-03 01:32
Open for 371 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522928289b3
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/cloudreve/Cloudreve.git
	fetch = +refs/heads/master:refs/remotes/origin/master
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-02-03 01:32
  
  277 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gc1.860526.xyz
Port: 443
URL: https://gc1.860526.xyz

First seen 2023-05-23 11:24
Last seen 2024-02-03 00:29
Open for 255 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-02-03 00:29
  
  265 Bytes
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: aaa.ghosthgy.tk
Port: 443
URL: https://aaa.ghosthgy.tk

First seen 2023-04-03 05:04
Last seen 2024-02-02 10:58
Open for 305 days
- Fingerprint: b18befd9dd65368268eeb71068eeb71068eeb71068eeb71068eeb71068eeb710
```
{"Code":401,"Msg":"请传递正确的验证头信息","Data":null}
```
  Found on 2024-02-02 10:58
- Fingerprint: b18befd9dd653682d8b6ddf2d8b6ddf2d8b6ddf2d8b6ddf2d8b6ddf2d8b6ddf2
```
{"Code":401,"Msg":"登录信息有误，请登录后操作","Data":null}
```
  Found on 2023-10-03 17:04
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: at-uk4-gcdn.hvps.ir
Port: 80
URL: http://at-uk4-gcdn.hvps.ir

First seen 2024-01-22 14:21
Last seen 2024-02-02 05:20
Open for 10 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3194d19f9c94d19f9ccf0297bc

Apache Status

Apache Server Status for at-uk4-gcdn.hvps.ir (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) OpenSSL/3.0.2
Server MPM: prefork
Server Built: 2023-10-26T13:44:44

Current Time: Friday, 02-Feb-2024 13:20:51 CST
Restart Time: Tuesday, 16-Jan-2024 11:55:07 CST
Parent Server Config. Generation: 18
Parent Server MPM Generation: 17
Server uptime:  17 days 1 hour 25 minutes 43 seconds
Server load: 0.49 0.35 0.42
Total accesses: 149405 - Total Traffic: 116.9 MB - Total Duration: 187980280
CPU Usage: u800.44 s86.73 cu15842.1 cs739.8 - 1.19% CPU load
.101 requests/sec - 83 B/second - 820 B/request - 1258.19 ms/request
1 requests currently being processed, 9 idle workers
________W._.....................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1729996200/491/13842_
82.8147998180442890.00.2711.60
127.0.0.1http/1.1localhost:3240GET /wizwizxui-timebot/settings/gift2all.php HTTP/1.0

1-1729996720/490/14384_
92.8300182489330.00.2810.96
127.0.0.1http/1.1localhost:3240GET /.vscode/sftp.json HTTP/1.0

2-1729996210/496/14381_
75.5547920176300800.00.2812.10
127.0.0.1http/1.1localhost:3240GET /wizwizxui-timebot/settings/rewardReport.php HTTP/1.0

3-1729997060/488/14097_
74.8000172055250.00.2810.32
127.0.0.1http/1.1localhost:3240GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

4-1729997420/480/14783_
80.8800174856790.00.2810.83
127.0.0.1http/1.1localhost:3240GET /v2/_catalog HTTP/1.0

5-1729997760/490/13728_
80.3900169597930.00.299.81
127.0.0.1http/1.1localhost:3240GET /debug/default/view?panel=config HTTP/1.0

6-1729996150/497/14222_
73.6700167868020.00.3012.03
127.0.0.1http/1.1localhost:3240GET / HTTP/1.0

7-1730002970/480/14067_
80.5810170062260.00.3112.37
127.0.0.1http/1.1localhost:3240GET / HTTP/1.0

8-1729996190/489/9799W
81.0400129118790.00.287.44
127.0.0.1http/1.1localhost:3240GET /server-status HTTP/1.0

9-16-0/0/13466.
0.0098985827168747560.00.009.87
127.0.0.1http/1.1

10-1729996160/499/11168_
79.0500145690430.00.298.05
127.0.0.1http/1.1localhost:3240GET /about HTTP/1.0

11-14-0/0/790.
0.00220846219313910.00.000.75
127.0.0.1http/1.1localhost:3240GET /wizpanel1032043/backupnutif.php HTTP/1.0

12-14-0/0/678.
0.00230383146223258780.00.000.74
127.0.0.1http/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss


Apache/2.4.52 (Ubuntu) Server at at-uk4-gcdn.hvps.ir Port 3240

Found on 2024-02-02 05:20

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3194d19f9c94d19f9c6db711a2

Apache Status

Apache Server Status for at-uk4-gcdn.hvps.ir (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) OpenSSL/3.0.2
Server MPM: prefork
Server Built: 2023-10-26T13:44:44

Current Time: Monday, 22-Jan-2024 22:21:51 CST
Restart Time: Tuesday, 16-Jan-2024 11:55:07 CST
Parent Server Config. Generation: 7
Parent Server MPM Generation: 6
Server uptime:  6 days 10 hours 26 minutes 43 seconds
Server load: 0.59 0.51 0.30
Total accesses: 56278 - Total Traffic: 54.6 MB - Total Duration: 55509161
CPU Usage: u698.33 s48.3 cu3993.81 cs173.09 - .884% CPU load
.101 requests/sec - 102 B/second - 1016 B/request - 986.339 ms/request
1 requests currently being processed, 9 idle workers
W_________......................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-623084860/798/5478W
73.590054785470.00.465.30
127.0.0.1http/1.1localhost:3240GET /server-status HTTP/1.0

1-623084840/799/5662_
73.867055630760.00.455.57
127.0.0.1http/1.1localhost:3240GET / HTTP/1.0

2-623084870/801/5417_
69.015053310860.00.465.68
127.0.0.1http/1.1localhost:3240GET /.vscode/sftp.json HTTP/1.0

3-623088530/794/4872_
67.866047602540.00.464.66
127.0.0.1http/1.1localhost:3240GET / HTTP/1.0

4-623084850/801/5481_
76.941048315090.00.485.16
127.0.0.1http/1.1localhost:3240GET /v2/_catalog HTTP/1.0

5-623091780/798/5097_
70.751050477050.00.454.76
127.0.0.1http/1.1localhost:3240GET /debug/default/view?panel=config HTTP/1.0

6-623084880/788/4930_
77.270044138600.00.444.58
127.0.0.1http/1.1localhost:3240GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

7-623095010/808/5488_
70.737052720510.00.455.20
127.0.0.1http/1.1localhost:3240GET / HTTP/1.0

8-623098290/799/3857_
72.215033636810.00.473.81
127.0.0.1http/1.1localhost:3240GET / HTTP/1.0

9-623164390/792/5564_
67.144054499750.00.475.21
127.0.0.1http/1.1localhost:3240GET /about HTTP/1.0

10-5-0/0/3554.
0.008050735137653950.00.003.48
127.0.0.1http/1.1localhost:3240GET /wizwizxui-timebot/settings/gift2all.php HTTP/1.0

11-0-0/0/435.
0.00512507010643900.00.000.55
127.0.0.1http/1.1localhost:3240GET /pingstatus HTTP/1.0

12-0-0/0/443.
0.0051250751711676250.00.000.60
127.0.0.1http/1.1wizp.bestv2rayvpn.store:3241GET /wizwizxui-timebot/settings/gift2all.php HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss


Apache/2.4.52 (Ubuntu) Server at at-uk4-gcdn.hvps.ir Port 3240

Found on 2024-01-22 14:21

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: mastecryder.com
Port: 80
URL: http://mastecryder.com

First seen 2024-01-17 19:46
- Severity: low
  Fingerprint: 5f32cf5d6962f09c47dfe71947dfe719e3814ae5b4ca531405e9897d5e4fe03b
```
Found 16 files trough .DS_Store spidering:

/app
/app/Http
/app/Http/Controllers
/public
/public/dash
/public/dash2
/public/storage
/resources
/resources/views
/resources/views/profile
/resources/views/user
/resources/views/user/theme1
/storage
/storage/app
/storage/framework
/storage/framework/views
```
  Found on 2024-01-17 19:46
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: igelityfol.cz
Port: 80
URL: http://igelityfol.cz

First seen 2024-01-08 17:46
- Severity: low
  Fingerprint: 5f32cf5d6962f09c026392ab026392abc1bb4fa55240c37db117eee00589d426
```
Found 7 files trough .DS_Store spidering:

/wp-admin
/wp-content
/wp-content/plugins
/wp-content/plugins/complianz-gdpr
/wp-content/plugins/wp-rocket
/wp-content/themes
/wp-includes
```
  Found on 2024-01-08 17:46
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: us2.870329.xyz
Port: 443
URL: https://us2.870329.xyz

First seen 2023-07-08 02:30
Last seen 2024-01-07 11:27
Open for 183 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-01-07 11:27
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: tr.2moroark.com
Port: 80
URL: http://tr.2moroark.com

First seen 2022-11-02 12:45
Last seen 2024-01-07 06:19
Open for 430 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-01-07 06:19
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: tr.2moroark.com
Port: 443
URL: https://tr.2moroark.com

First seen 2023-01-01 12:13
Last seen 2024-01-07 00:33
Open for 370 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-01-07 00:33
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: us2.870329.xyz
Port: 80
URL: http://us2.870329.xyz

First seen 2023-03-10 02:53
Last seen 2024-01-07 00:29
Open for 302 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-01-07 00:29
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn.humanstory.cn
Port: 80
URL: http://cdn.humanstory.cn

First seen 2023-02-08 11:59
Last seen 2023-12-26 05:11
Open for 320 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652224b9a8fb
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[branch "master"]
[remote "origin"]
	url = hsc@cloud.lonery.com:git/humanstory.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2023-12-26 05:11
  
  220 Bytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: dhondicdn.jntugv.edu.in
Port: 443
URL: https://dhondicdn.jntugv.edu.in

First seen 2022-10-31 11:37
Last seen 2023-12-25 16:14
Open for 420 days

Severity: low
Fingerprint: 5f32cf5d6962f09cec7f8772ec7f87724131daa30d66975079cebaa19c78ff40

Found 11 files trough .DS_Store spidering:

/.htaccess
/helper.php
/images
/includes
/index.php
/languages
/magnuspop
/mobile.php
/sources
/themes
/themes/dhondi

Found on 2023-12-25 16:14

Severity: medium
Fingerprint: 5f32cf5d6962f09c114fbe07114fbe07727f4d9a4b29bf9b65796a0c10e5a976

Found 47 files trough .DS_Store spidering:

/.htaccess
/helper.php
/images
/images/4c2a5a1dcc84f93f788ffe9181c10440
/includes
/index.php
/languages
/magnuspop
/magnuspop/.htaccess
/magnuspop/common
/magnuspop/error_log
/magnuspop/gama_includes
/magnuspop/helper.php
/magnuspop/index.php
/magnuspop/sharedfiles
/magnuspop/sharedfiles/admin
/magnuspop/sharedfiles/finalverification
/magnuspop/sharedfiles/memoverification
/magnuspop/sharedfiles/raposit
/magnuspop/sharedfiles/raposit/feePendingFiles
/magnuspop/sharedfiles/raposit/finalverification
/magnuspop/sharedfiles/raposit/memoverification
/magnuspop/sharedfiles/raposit/studentDetailsFiles
/magnuspop/sharedfiles/raposit/studentResultsFiles
/magnuspop/themes
/magnuspop/themes/mivo
/magnuspop/themes/mivo/assets
/magnuspop/themes/mivo/assets/css
/magnuspop/themes/mivo/assets/css/bootstrap-theme.min.css
/magnuspop/themes/mivo/assets/css/bootstrap.min.css
/magnuspop/themes/mivo/assets/css/font-awesome
/magnuspop/themes/mivo/assets/css/jquery.dataTables.min.css
/magnuspop/themes/mivo/assets/css/materialize.css
/magnuspop/themes/mivo/assets/css/materialize.min.css
/magnuspop/themes/mivo/assets/css/style.css
/magnuspop/themes/mivo/assets/css/Thumbs.db
/magnuspop/themes/mivo/assets/font
/magnuspop/themes/mivo/assets/images
/magnuspop/themes/mivo/assets/js
/magnuspop/themes/mivo/common
/magnuspop/themes/mivo/common.phtml
/magnuspop/themes/mivo/error.phtml
/magnuspop/themes/mivo/footer.phtml
/magnuspop/themes/mivo/header.phtml
/mobile.php
/sources
/themes

Found on 2023-10-26 16:43

Severity: medium
Fingerprint: 5f32cf5d6962f09cb3107650b31076507d3e0c1993f59466174d256f593cfdbd

Found 39 files trough .DS_Store spidering:

/.htaccess
/helper.php
/images
/images/4c2a5a1dcc84f93f788ffe9181c10440
/includes
/index.php
/languages
/magnuspop
/magnuspop/.htaccess
/magnuspop/common
/magnuspop/error_log
/magnuspop/gama_includes
/magnuspop/helper.php
/magnuspop/index.php
/magnuspop/sharedfiles
/magnuspop/sharedfiles/admin
/magnuspop/sharedfiles/finalverification
/magnuspop/sharedfiles/memoverification
/magnuspop/sharedfiles/raposit
/magnuspop/sharedfiles/raposit/feePendingFiles
/magnuspop/sharedfiles/raposit/finalverification
/magnuspop/sharedfiles/raposit/memoverification
/magnuspop/sharedfiles/raposit/studentDetailsFiles
/magnuspop/sharedfiles/raposit/studentResultsFiles
/magnuspop/themes
/magnuspop/themes/mivo
/magnuspop/themes/mivo/assets
/magnuspop/themes/mivo/assets/css
/magnuspop/themes/mivo/assets/font
/magnuspop/themes/mivo/assets/images
/magnuspop/themes/mivo/assets/js
/magnuspop/themes/mivo/common
/magnuspop/themes/mivo/common.phtml
/magnuspop/themes/mivo/error.phtml
/magnuspop/themes/mivo/footer.phtml
/magnuspop/themes/mivo/header.phtml
/mobile.php
/sources
/themes

Found on 2023-09-16 20:07

Severity: low
Fingerprint: 5f32cf5d6962f09cf35cbfb3f35cbfb3546491a6c78ece878b72bb6061e38406

Found 29 files trough .DS_Store spidering:

/.htaccess
/helper.php
/images
/images/4c2a5a1dcc84f93f788ffe9181c10440
/includes
/index.php
/languages
/magnuspop
/magnuspop/.htaccess
/magnuspop/common
/magnuspop/error_log
/magnuspop/gama_includes
/magnuspop/helper.php
/magnuspop/index.php
/magnuspop/sharedfiles
/magnuspop/sharedfiles/admin
/magnuspop/sharedfiles/finalverification
/magnuspop/sharedfiles/memoverification
/magnuspop/sharedfiles/raposit
/magnuspop/sharedfiles/raposit/feePendingFiles
/magnuspop/sharedfiles/raposit/finalverification
/magnuspop/sharedfiles/raposit/memoverification
/magnuspop/sharedfiles/raposit/studentDetailsFiles
/magnuspop/sharedfiles/raposit/studentResultsFiles
/magnuspop/themes
/magnuspop/themes/mivo
/mobile.php
/sources
/themes

Found on 2023-09-10 18:48

Severity: low
Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea9a061e17462a4b4659cfac89ea3ad9226

Found 23 files trough .DS_Store spidering:

/.htaccess
/helper.php
/images
/images/4c2a5a1dcc84f93f788ffe9181c10440
/includes
/index.php
/languages
/magnuspop
/magnuspop/.htaccess
/magnuspop/common
/magnuspop/error_log
/magnuspop/gama_includes
/magnuspop/helper.php
/magnuspop/index.php
/magnuspop/sharedfiles
/magnuspop/sharedfiles/admin
/magnuspop/sharedfiles/finalverification
/magnuspop/sharedfiles/memoverification
/magnuspop/sharedfiles/raposit
/magnuspop/themes
/mobile.php
/sources
/themes

Found on 2023-08-28 20:55

Severity: medium
Fingerprint: 5f32cf5d6962f09c5a2cc21a5a2cc21a087a3d5bb4a775282d6632399c7e0005

Found 82 files trough .DS_Store spidering:

/.htaccess
/helper.php
/images
/images/4c2a5a1dcc84f93f788ffe9181c10440
/includes
/index.php
/languages
/magnuspop
/magnuspop/.htaccess
/magnuspop/common
/magnuspop/error_log
/magnuspop/gama_includes
/magnuspop/helper.php
/magnuspop/index.php
/magnuspop/sharedfiles
/magnuspop/sharedfiles/admin
/magnuspop/sharedfiles/finalverification
/magnuspop/sharedfiles/memoverification
/magnuspop/sharedfiles/raposit
/magnuspop/sharedfiles/raposit/feePendingFiles
/magnuspop/sharedfiles/raposit/finalverification
/magnuspop/sharedfiles/raposit/memoverification
/magnuspop/sharedfiles/raposit/studentDetailsFiles
/magnuspop/sharedfiles/raposit/studentResultsFiles
/magnuspop/themes
/magnuspop/themes/mivo
/magnuspop/themes/mivo/assets
/magnuspop/themes/mivo/assets/css
/magnuspop/themes/mivo/assets/css/bootstrap-theme.min.css
/magnuspop/themes/mivo/assets/css/bootstrap.min.css
/magnuspop/themes/mivo/assets/css/font-awesome
/magnuspop/themes/mivo/assets/css/jquery.dataTables.min.css
/magnuspop/themes/mivo/assets/css/materialize.css
/magnuspop/themes/mivo/assets/css/materialize.min.css
/magnuspop/themes/mivo/assets/css/style.css
/magnuspop/themes/mivo/assets/css/Thumbs.db
/magnuspop/themes/mivo/assets/font
/magnuspop/themes/mivo/assets/images
/magnuspop/themes/mivo/assets/js
/magnuspop/themes/mivo/common
/magnuspop/themes/mivo/common.phtml
/magnuspop/themes/mivo/error.phtml
/magnuspop/themes/mivo/footer.phtml
/magnuspop/themes/mivo/header.phtml
/mobile.php
/sources
/themes
/themes/dhondi
/themes/dhondi/__MACOSX
/themes/dhondi/assets
/themes/dhondi/assets/css
/themes/dhondi/assets/fonts
/themes/dhondi/assets/fonts/fontawesome-webfont.eot
/themes/dhondi/assets/fonts/fontawesome-webfont.svg
/themes/dhondi/assets/fonts/fontawesome-webfont.ttf
/themes/dhondi/assets/fonts/fontawesome-webfont.woff
/themes/dhondi/assets/fonts/fontawesome-webfont.woff2
/themes/dhondi/assets/fonts/FontAwesome.otf
/themes/dhondi/assets/fonts/glyphicons-halflings-regular.eot
/themes/dhondi/assets/fonts/glyphicons-halflings-regular.svg
/themes/dhondi/assets/fonts/glyphicons-halflings-regular.ttf
/themes/dhondi/assets/fonts/glyphicons-halflings-regular.woff
/themes/dhondi/assets/fonts/GoogleChrome.dmg
/themes/dhondi/assets/fonts/GoogleSans.woff2
/themes/dhondi/assets/fonts/Lato
/themes/dhondi/assets/fonts/Montserrat
/themes/dhondi/assets/fonts/Poppins
/themes/dhondi/assets/fonts/Slide-icons.dev.svg
/themes/dhondi/assets/fonts/Slide-icons.eot
/themes/dhondi/assets/fonts/Slide-icons.svg
/themes/dhondi/assets/fonts/Slide-icons.ttf
/themes/dhondi/assets/fonts/Slide-icons.woff
/themes/dhondi/assets/fonts/Source_Sans_Pro
/themes/dhondi/assets/images
/themes/dhondi/assets/js
/themes/dhondi/images
/themes/dhondi/images/dhondi.png
/themes/dhondi/images/eh.png
/themes/dhondi/images/googleplay.png
/themes/dhondi/images/jntuhceh.png
/themes/dhondi/images/Thumbs.db
/themes/dhondi/layout

Found on 2023-08-27 17:05

Severity: low
Fingerprint: 5f32cf5d6962f09cec7f8772ec7f87724131daa30d66975079cebaa1a247833a

Found 11 files trough .DS_Store spidering:

/.htaccess
/helper.php
/images
/images/4c2a5a1dcc84f93f788ffe9181c10440
/includes
/index.php
/languages
/magnuspop
/mobile.php
/sources
/themes

Found on 2022-12-30 11:14

Severity: low
Fingerprint: 5f32cf5d6962f09c31c2f0b631c2f0b68ab02d77bcd644e4c0a1932d5cc68fc7

Found 28 files trough .DS_Store spidering:

/.htaccess
/helper.php
/images
/images/4c2a5a1dcc84f93f788ffe9181c10440
/includes
/index.php
/languages
/magnuspop
/magnuspop/.htaccess
/magnuspop/common
/magnuspop/error_log
/magnuspop/gama_includes
/magnuspop/helper.php
/magnuspop/index.php
/magnuspop/sharedfiles
/magnuspop/sharedfiles/admin
/magnuspop/sharedfiles/finalverification
/magnuspop/sharedfiles/memoverification
/magnuspop/sharedfiles/raposit
/magnuspop/sharedfiles/raposit/feePendingFiles
/magnuspop/sharedfiles/raposit/finalverification
/magnuspop/sharedfiles/raposit/memoverification
/magnuspop/sharedfiles/raposit/studentDetailsFiles
/magnuspop/sharedfiles/raposit/studentResultsFiles
/magnuspop/themes
/mobile.php
/sources
/themes

Found on 2022-10-31 11:37

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: dhondicdn.jntugv.edu.in
Port: 80
URL: http://dhondicdn.jntugv.edu.in

First seen 2022-09-01 11:52
Last seen 2023-12-25 16:14
Open for 480 days

Severity: low
Fingerprint: 5f32cf5d6962f09cec7f8772ec7f87724131daa30d66975079cebaa19c78ff40

Found 11 files trough .DS_Store spidering:

/.htaccess
/helper.php
/images
/includes
/index.php
/languages
/magnuspop
/mobile.php
/sources
/themes
/themes/dhondi

Found on 2023-12-25 16:14

Severity: medium
Fingerprint: 5f32cf5d6962f09c114fbe07114fbe07727f4d9a4b29bf9b65796a0c10e5a976

Found 47 files trough .DS_Store spidering:

/.htaccess
/helper.php
/images
/images/4c2a5a1dcc84f93f788ffe9181c10440
/includes
/index.php
/languages
/magnuspop
/magnuspop/.htaccess
/magnuspop/common
/magnuspop/error_log
/magnuspop/gama_includes
/magnuspop/helper.php
/magnuspop/index.php
/magnuspop/sharedfiles
/magnuspop/sharedfiles/admin
/magnuspop/sharedfiles/finalverification
/magnuspop/sharedfiles/memoverification
/magnuspop/sharedfiles/raposit
/magnuspop/sharedfiles/raposit/feePendingFiles
/magnuspop/sharedfiles/raposit/finalverification
/magnuspop/sharedfiles/raposit/memoverification
/magnuspop/sharedfiles/raposit/studentDetailsFiles
/magnuspop/sharedfiles/raposit/studentResultsFiles
/magnuspop/themes
/magnuspop/themes/mivo
/magnuspop/themes/mivo/assets
/magnuspop/themes/mivo/assets/css
/magnuspop/themes/mivo/assets/css/bootstrap-theme.min.css
/magnuspop/themes/mivo/assets/css/bootstrap.min.css
/magnuspop/themes/mivo/assets/css/font-awesome
/magnuspop/themes/mivo/assets/css/jquery.dataTables.min.css
/magnuspop/themes/mivo/assets/css/materialize.css
/magnuspop/themes/mivo/assets/css/materialize.min.css
/magnuspop/themes/mivo/assets/css/style.css
/magnuspop/themes/mivo/assets/css/Thumbs.db
/magnuspop/themes/mivo/assets/font
/magnuspop/themes/mivo/assets/images
/magnuspop/themes/mivo/assets/js
/magnuspop/themes/mivo/common
/magnuspop/themes/mivo/common.phtml
/magnuspop/themes/mivo/error.phtml
/magnuspop/themes/mivo/footer.phtml
/magnuspop/themes/mivo/header.phtml
/mobile.php
/sources
/themes

Found on 2023-10-26 16:43

Severity: low
Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea9a061e17462a4b4659cfac89ea3ad9226

Found 23 files trough .DS_Store spidering:

/.htaccess
/helper.php
/images
/images/4c2a5a1dcc84f93f788ffe9181c10440
/includes
/index.php
/languages
/magnuspop
/magnuspop/.htaccess
/magnuspop/common
/magnuspop/error_log
/magnuspop/gama_includes
/magnuspop/helper.php
/magnuspop/index.php
/magnuspop/sharedfiles
/magnuspop/sharedfiles/admin
/magnuspop/sharedfiles/finalverification
/magnuspop/sharedfiles/memoverification
/magnuspop/sharedfiles/raposit
/magnuspop/themes
/mobile.php
/sources
/themes

Found on 2023-08-27 21:45

Severity: medium
Fingerprint: 5f32cf5d6962f09c5a2cc21a5a2cc21a087a3d5bb4a775282d6632399c7e0005

Found 82 files trough .DS_Store spidering:

/.htaccess
/helper.php
/images
/images/4c2a5a1dcc84f93f788ffe9181c10440
/includes
/index.php
/languages
/magnuspop
/magnuspop/.htaccess
/magnuspop/common
/magnuspop/error_log
/magnuspop/gama_includes
/magnuspop/helper.php
/magnuspop/index.php
/magnuspop/sharedfiles
/magnuspop/sharedfiles/admin
/magnuspop/sharedfiles/finalverification
/magnuspop/sharedfiles/memoverification
/magnuspop/sharedfiles/raposit
/magnuspop/sharedfiles/raposit/feePendingFiles
/magnuspop/sharedfiles/raposit/finalverification
/magnuspop/sharedfiles/raposit/memoverification
/magnuspop/sharedfiles/raposit/studentDetailsFiles
/magnuspop/sharedfiles/raposit/studentResultsFiles
/magnuspop/themes
/magnuspop/themes/mivo
/magnuspop/themes/mivo/assets
/magnuspop/themes/mivo/assets/css
/magnuspop/themes/mivo/assets/css/bootstrap-theme.min.css
/magnuspop/themes/mivo/assets/css/bootstrap.min.css
/magnuspop/themes/mivo/assets/css/font-awesome
/magnuspop/themes/mivo/assets/css/jquery.dataTables.min.css
/magnuspop/themes/mivo/assets/css/materialize.css
/magnuspop/themes/mivo/assets/css/materialize.min.css
/magnuspop/themes/mivo/assets/css/style.css
/magnuspop/themes/mivo/assets/css/Thumbs.db
/magnuspop/themes/mivo/assets/font
/magnuspop/themes/mivo/assets/images
/magnuspop/themes/mivo/assets/js
/magnuspop/themes/mivo/common
/magnuspop/themes/mivo/common.phtml
/magnuspop/themes/mivo/error.phtml
/magnuspop/themes/mivo/footer.phtml
/magnuspop/themes/mivo/header.phtml
/mobile.php
/sources
/themes
/themes/dhondi
/themes/dhondi/__MACOSX
/themes/dhondi/assets
/themes/dhondi/assets/css
/themes/dhondi/assets/fonts
/themes/dhondi/assets/fonts/fontawesome-webfont.eot
/themes/dhondi/assets/fonts/fontawesome-webfont.svg
/themes/dhondi/assets/fonts/fontawesome-webfont.ttf
/themes/dhondi/assets/fonts/fontawesome-webfont.woff
/themes/dhondi/assets/fonts/fontawesome-webfont.woff2
/themes/dhondi/assets/fonts/FontAwesome.otf
/themes/dhondi/assets/fonts/glyphicons-halflings-regular.eot
/themes/dhondi/assets/fonts/glyphicons-halflings-regular.svg
/themes/dhondi/assets/fonts/glyphicons-halflings-regular.ttf
/themes/dhondi/assets/fonts/glyphicons-halflings-regular.woff
/themes/dhondi/assets/fonts/GoogleChrome.dmg
/themes/dhondi/assets/fonts/GoogleSans.woff2
/themes/dhondi/assets/fonts/Lato
/themes/dhondi/assets/fonts/Montserrat
/themes/dhondi/assets/fonts/Poppins
/themes/dhondi/assets/fonts/Slide-icons.dev.svg
/themes/dhondi/assets/fonts/Slide-icons.eot
/themes/dhondi/assets/fonts/Slide-icons.svg
/themes/dhondi/assets/fonts/Slide-icons.ttf
/themes/dhondi/assets/fonts/Slide-icons.woff
/themes/dhondi/assets/fonts/Source_Sans_Pro
/themes/dhondi/assets/images
/themes/dhondi/assets/js
/themes/dhondi/images
/themes/dhondi/images/dhondi.png
/themes/dhondi/images/eh.png
/themes/dhondi/images/googleplay.png
/themes/dhondi/images/jntuhceh.png
/themes/dhondi/images/Thumbs.db
/themes/dhondi/layout

Found on 2023-08-27 17:05

Severity: low
Fingerprint: 5f32cf5d6962f09cec7f8772ec7f87724131daa30d66975079cebaa1a247833a

Found 11 files trough .DS_Store spidering:

/.htaccess
/helper.php
/images
/images/4c2a5a1dcc84f93f788ffe9181c10440
/includes
/index.php
/languages
/magnuspop
/mobile.php
/sources
/themes

Found on 2022-12-30 11:14

Severity: low
Fingerprint: 5f32cf5d6962f09c31c2f0b631c2f0b68ab02d77bcd644e4c0a1932d5cc68fc7

Found 28 files trough .DS_Store spidering:

/.htaccess
/helper.php
/images
/images/4c2a5a1dcc84f93f788ffe9181c10440
/includes
/index.php
/languages
/magnuspop
/magnuspop/.htaccess
/magnuspop/common
/magnuspop/error_log
/magnuspop/gama_includes
/magnuspop/helper.php
/magnuspop/index.php
/magnuspop/sharedfiles
/magnuspop/sharedfiles/admin
/magnuspop/sharedfiles/finalverification
/magnuspop/sharedfiles/memoverification
/magnuspop/sharedfiles/raposit
/magnuspop/sharedfiles/raposit/feePendingFiles
/magnuspop/sharedfiles/raposit/finalverification
/magnuspop/sharedfiles/raposit/memoverification
/magnuspop/sharedfiles/raposit/studentDetailsFiles
/magnuspop/sharedfiles/raposit/studentResultsFiles
/magnuspop/themes
/mobile.php
/sources
/themes

Found on 2022-10-31 11:37

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: media.abtakmedia.com
Port: 80
URL: http://media.abtakmedia.com

First seen 2023-12-24 10:37

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31cae02f21cae02f21775eaf66

Apache Status

Apache Server Status for paper.abtakmedia.com (via 127.0.0.1)

Server Version: Apache/2.4.18 (Ubuntu) PHP/7.0.33-0ubuntu0.16.04.16 OpenSSL/1.0.2g
Server MPM: prefork
Server Built: 2019-09-16T13:13:53

Current Time: Sunday, 24-Dec-2023 16:07:58 IST
Restart Time: Sunday, 24-Dec-2023 06:30:03 IST
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  9 hours 37 minutes 54 seconds
Server load: 0.20 0.11 0.10
Total accesses: 2225170 - Total Traffic: 170.1 GB
CPU Usage: u144.03 s110.39 cu0 cs0 - .734% CPU load
64.2 requests/sec - 5.0 MB/second - 80.2 kB/request
153 requests currently being processed, 9 idle workers
KKKKWKKWWKKWRW_KKKW_KKKKKKRWWWWKRKKKWRKRRRRKKWWKRKKKWKWKKKKKKRWW
RKWKKKKKKKKKKKKRKK_KKRKKWKKKKKWWKKK_WWKCKKKKKKKWKWRWKKWWKKKW_RKW
_K....W......._..K.K...R...K.KKKWKKK.K.KK....W.K.K.KW.....KKK...
.W._...K.K.....KK...............................................
................................................................
................................................................
................_...............................................
................................................................
................................................................
................................................................
................................................................
.................K..............................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
............................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-0178133/116/5216K
0.1456040.610.98370.92
49.207.235.70kpepaper.asianetnews.com:443GET /maha/includes/LPheader/css/jquery-ui.min1.css HTTP/1.1

1-0187032/42/4619K
0.0217605.82.49377.82
172.71.186.138amravatimandal.com:443GET /includes/js/rssfeed.js HTTP/1.1

2-0173835/176/4292K
0.3049711059.012.39327.02
27.59.64.138kpepaper.asianetnews.com:443GET /ArticlePage/APpage.php?edn=BENGALURU&articleid=KANPRABHA_B

3-0176001/162/3879K
0.1825104.217.01285.66
162.158.106.111amravatimandal.com:443GET /includes/js/rssfeed.js HTTP/1.1

4-0190462/34/3660W
0.032001232.82.43264.41
127.0.0.1www.enewspapr.com:8080POST //insertmostreadarticle.php HTTP/1.1

5-0190374/24/4107K
0.021074.04.57336.23
106.221.192.169kpepaper.asianetnews.com:443GET /maha/includes/images/datepicker12.png HTTP/1.1

6-0181592/62/3585K
0.2111820430.83.42255.40
49.205.133.21kpepaper.asianetnews.com:443GET /EditionPage/EPpage.php?edn=BENGALURU&isid=KANPRABHA_BG_202

7-0186651/167/4176W
0.202601.012.17347.79
127.0.0.1www.enewspapr.com:8080POST //insertmostreadarticle.php HTTP/1.1

8-0187066/110/4949W
0.107089.76.57369.30
127.0.0.1www.enewspapr.com:8080POST //insertmostreadarticle.php HTTP/1.1

9-0187571/10/4432K
0.0029104.40.02351.13
172.71.186.76amravatimandal.com:443GET /includes/js/jquery.mThumbnailScroller.js HTTP/1.1

10-0180191/90/4889K
0.1518504.72.64411.18
2.50.179.114epaper.chandrikadaily.com:443GET / HTTP/1.1

11-0190474/23/3999W
0.0120010.11.01338.44
127.0.0.1www.enewspapr.com:8080POST //insertmostreadarticle.php HTTP/1.1

12-0188420/87/4427R
0.082700.012.98355.77
223.228.13.81

13-0190482/29/4337W
0.05160399.322.76393.65
127.0.0.1www.enewspapr.com:8080POST //insertmostreadarticle.php HTTP/1.1

14-0187660/51/3342_
0.0801030.01.93275.68
152.58.232.145kpepaper.asianetnews.com:443GET /ArticlePage/APpage.php?edn=MANGALORE&articleid=KANPRABHA_M

15-0173672/212/4318K
0.2494022.512.52374.96
122.161.72.206epaper.dainiksaveratimes.in:443GET /favicon.ico HTTP/1.1

16-0188234/27/3748K
0.05130037.41.54289.06
152.58.231.219kpepaper.asianetnews.com:443GET /maha/ArticlePage/APbody/css/bootstrap.css HTTP/1.1

17-0185644/41/4193K
0.0727720847.51.61354.06
106.206.18.154kpepaper.asianetnews.com:443GET /EditionPage/EPpage.php?edn=UTTARA%20KANNADA&isid=KANPRABHA

18-0183622/68/4523W
0.152002.94.75406.62
127.0.0.1www.enewspapr.com:8080POST //insertmostreadarticle.php HTTP/1.1

19-0175840/245/4759_
0.41030.019.40417.13
127.0.0.1www.enewspapr.com:8080GET /OutSourcingDataChanged.php?operation=getPageArticleDetails

20-0184752/88/4059K
0.107312221.36.50325.37
72.14.199.67kpepaper.asianetnews.com:443GET /ArticlePage/APpage.php?edn=SHIVAMOGGA&articleid=KANPRABHA_

21-0187689/40/4801K
0.1948151120.90.90373.74
157.45.139.4kpepaper.asianetnews.com:443GET /ArticlePage/APpage.php?edn=BENGALURU&articleid=KANPRABHA_B

22-0188243/93/4400K
0.148816546.78.22355.68
157.45.225.62kpepaper.asianetnews.com:443GET /EditionPage/EPpage.php?edn=BENGALURU&isid=KANPRABHA_BG_202

23-0187701/13/3584K
0.0213710318.90.41279.92
152.58.230.65kpepaper.asianetnews.com:443GET / HTTP/1.1

24-0186133/29/4458K
0.02446015.32.23323.75
106.206.18.154kpepaper.asianetnews.com:443GET /maha/ArticlePage/APbody/css/mbodystyle.css HTTP/1.1

25-0173711/363/4686K
0.471203.827.80395.34
223.178.209.93epaper.dainiksaveratimes.in:443GET /favicon.ico HTTP/1.1

26-0170640/143/4182R
0.20000.017.49343.31
106.204.230.142

27-0187123/118/4877W
0.20230146.613.02405.46
127.0.0.1www.enewspapr.com:8080POST //insertmostreadarticle.php HTTP/1.1

28-0182223/167/4490W
0.35505.113.39345.85
127.0.0.1www.enewspapr.com:8080POST //insertmostreadarticle.php HTTP/1.1

29-0188691/134/4508W
0.151101.58.67367.33
127.0.0.1www.enewspapr.com:8080POST //insertmostreadarticle.php HTTP/1.1

30-0186672/241/4305W
0.222805.418.74335.71
127.0.0.1www.enewspapr.com:8080POST //insertmostreadarticle.php HTTP/1.1

31-01882810/12/3928K
0.01233031.30.16344.42
172.70.246.128amravatimandal.com:443GET /Edpageads.php HTTP/1.1

32-0184500/78/3413R
0.13274910.06.14277.64
49.37.163.107

33-0188713/29/4168K
0.064512242.91.77317.50
106.196.20.90kpepaper.asianetnews.com:443GET /ArticlePage/APpage.php?edn=YADAGIRI&articleid=KANPRABHA_YR

34-0187852/29/3738K
0.07281018.51.50283.12
172.71.135.7amravatimandal.com:443GET /includes/js/rssfeed.rss HTTP/1.1

35-0188463/28/4301K
0.0721107.90.89328.19
162.158.106.66amravatimandal.com:443GET /Edpageads.php HTTP/1.1

36-0189973/62/4493W
0.07509.33.83331.10
127.0.0.1www.enewspapr.com:8080POST //insertmostreadarticle.php HTTP/1.1

37-0186140/79/3825R
0.1617170.04.48278.38
103.252.25.172

38-0188491/18/4259K
0.0618303.40.15347.39
136.232.192.178kpepaper.asianetnews.com:443GET /maha/EditionPage/includes/images/rightarrowkey.png HTTP/1.

39-0189800/8/4040R
0.01200.00.55301.84
106.196.82.133

40-0174240/131/3880R
0.172700.07.65335.71
157.45.225.62

41-0190240/20/4908R
0.01500.00.80384.12
106.216.226.239

42-0182260/32/4257R
0.051520.02.76313.61
103.88.101.247

43-0164472/275/4737K
0.497023025.627.36434.61
72.14.199.66kpepaper.asianetnews.com:443GET /EditionPage/EPpage.php?edn=HUBBALLI&isid=KANPRABHA_HL_2023

44-0184523/232/3443K
0.310032.214.54268.63
106.196.82.133epaper.dainiksaveratimes.in:443GET /includes/images/DainikSaveraTimes.jpeg HTTP/1.1

45-0186152/191/4335W
0.2327023572.655.49463.61
127.0.0.1www.enewspapr.com:8080POST //insertmostreadarticle.php HTTP/1.1

46-0187171/126/3809W
0.1523031.510.17273.36
127.0.0.1www.enewspapr.com:8080POST //insertmostreadarticle.php HTTP/1.1

47-0187865/16/4227K
0.0620014359.01.58310.65
136.232.192.178kpepaper.asianetnews.com:443GET /ArticlePage/APpage.php?edn=BENGALURU&articleid=KANPRABHA_B

48-0177430/164/4731R
0.28300.016.83393.71
106.221.192.169

Found on 2023-12-24 10:37

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: gc.donpau.com
Port: 443
URL: https://gc.donpau.com

First seen 2023-12-19 08:17
Last seen 2023-12-24 05:10
Open for 4 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ecbdc84c52

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.56 (Debian) OpenSSL/1.1.1k
Server MPM: event
Server Built: 2023-04-02T03:06:01

Current Time: Sunday, 24-Dec-2023 05:10:50 UTC
Restart Time: Sunday, 24-Dec-2023 04:24:03 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  46 minutes 47 seconds
Server load: 0.00 0.00 0.00
Total accesses: 371 - Total Traffic: 119.2 MB - Total Duration: 25266347
CPU Usage: u.61 s1.21 cu0 cs0 - .0648% CPU load
.132 requests/sec - 43.5 kB/second - 328.9 kB/request - 68103.4 ms/request
1 requests currently being processed, 74 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
0583no1yes025000
1584no3yes124000
2744no21yes025000
Sum3025 174000

__________________________________________W_____________________
___________.....................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-05830/1/1_
0.03127660413604130.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-05830/1/1_
0.0314411019741019740.00.120.12
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-05830/1/1_
0.002525000.00.000.00
167.248.133.189http/1.1hub.paotung.org:8443GET /favicon.ico HTTP/1.1

0-05830/1/1_
0.0216281377391377390.00.030.03
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-05830/1/1_
0.021761302930290.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-05830/1/1_
0.0216511057961057960.00.260.26
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-05830/1/1_
0.0314881027571027570.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-05830/1/1_
0.03128159447594470.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-05830/1/1_
0.03132510348103480.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-05830/1/1_
0.03126360844608440.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-05830/1/1_
0.03126260400604000.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-05830/1/1_
0.0311501019631019630.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-05830/1/1_
0.058071014351014350.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-05830/1/1_
0.058051020781020780.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-05830/1/1_
0.057351075031075030.00.040.04
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-05840/11/11_
1.38537163786571490.06.736.73
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-05840/16/16_
1.384771018056793490.05.265.26
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-05840/11/11_
1.39017804700.00.040.04
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-05840/18/18_
1.39007543390.09.689.68
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

1-05840/13/13_
1.385361006308479530.00.060.06
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-05840/11/11_
1.38537163926945260.017.4517.45
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-05840/12/12_
1.38536422545453120.01.891.89
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-05840/11/11_
1.38536207237437380.01.901.90
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-05840/13/13_
1.39007566250.00.800.80
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

1-05840/8/8_
1.39006453190.01.321.32
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

1-05840/5/5_
1.3853296852911743310.00.230.23
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-05840/13/13_
1.38537985376169100.03.893.89
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-05840/13/13_
1.38537398215891080.03.203.20
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-05840/14/14_
1.39007694730.06.376.37
127.0.0.1http/1.1hub.paotung.org:8443GET /about HTTP/1.1

1-05840/11/11_
1.375731279667666240.05.565.56
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-05840/10/10_
1.3851707101190.09.469.46
127.0.0.1http/1.1hub.paotung.org:8443GET /forum/?subscribe_topic=1%20union%20select%201%20and%20slee

1-05840/12/12_
1.384761014598449770.00.050.05
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-05841/10/10W
1.36007344450.00.420.42
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1

1-05840/8/8_
1.384561014448778910.03.653.65
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-05840/11/11_
1.351671014348177950.04.454.45
127.0.0.1http/1.1

1-05840/8/8_
1.355171020187026430.011.6011.60
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-05840/9/9_
1.3853779256510080.01.881.88
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-05840/13/13_
1.39006427850.01.561.56
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-05840/11/11_
1.375671016407829410.010.1610.16
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-05840/11/11_
1.351672037186726000.03.753.75
127.0.0.1http/1.1

2-07440/3/3_
0.19537397201452430.00.020.02
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-07440/3/3_
0.1783921021083090.00.030.03
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-07440/2/2_
0.188071018211623850.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-07440/3/3_
0.198041016323064770.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-07440/3/3_
0.198061014282637450.00.000.00
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-07440/4/4_
0.196381016183324640.00.060.06
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-07440/3/3_
0.188071014382268360.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-07440/3/3_
0.198051018172649450.00.010.01
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-07440/3/3_
0.198021048512685050.00.090.09
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-07440/4/4_
0.197181014663076260.00.110.11
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-07440/4/4_
0.197171014393183190.06.786.78
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-07440/2/2_
0.17734612822172570.00.020.02
127.0.0.1http/1.1

2-07440/3

Found on 2023-12-24 05:10

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ec9fc0a896

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.56 (Debian) OpenSSL/1.1.1k
Server MPM: event
Server Built: 2023-04-02T03:06:01

Current Time: Tuesday, 19-Dec-2023 08:17:52 UTC
Restart Time: Saturday, 16-Dec-2023 12:52:26 UTC
Parent Server Config. Generation: 4
Parent Server MPM Generation: 3
Server uptime:  2 days 19 hours 25 minutes 25 seconds
Server load: 0.05 0.02 0.00
Total accesses: 14626 - Total Traffic: 5.4 GB - Total Duration: 826735465
CPU Usage: u7.3 s11.82 cu23.1 cs43.41 - .0353% CPU load
.0603 requests/sec - 23.2 kB/second - 385.3 kB/request - 56525.1 ms/request
10 requests currently being processed, 65 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
042810no8yes1015000
242658no1yes025000
342735no0yes025000
Sum309 1065000

__W_WWW_____W_W_WWW__W___.........................______________
____________________________________............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-3428100/23/129_
2.83393221766573320.02.563.63
127.0.0.1http/1.1hub.paotung.org:8443GET /vmess HTTP/1.1

0-3428100/28/120_
2.85183280265074690.014.2116.67
127.0.0.1http/1.1hub.paotung.org:8443GET /vmess HTTP/1.1

0-3428101/29/128W
2.8059065090400.05.6318.83
127.0.0.1http/1.1hub.paotung.org:8443GET /vmess HTTP/1.1

0-3428100/38/133_
2.8515071418000.00.3611.30
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-3428101/33/134W
2.8059061608340.00.531.20
127.0.0.1http/1.1hub.paotung.org:8443GET /vmess HTTP/1.1

0-3428101/30/118W
2.7963067490270.03.388.70
127.0.0.1http/1.1hub.paotung.org:8443GET /vmess HTTP/1.1

0-3428101/29/123W
2.8129065107930.019.6932.05
127.0.0.1http/1.1hub.paotung.org:8443GET /vmess HTTP/1.1

0-3428100/29/131_
2.83293138972323870.06.997.59
127.0.0.1http/1.1hub.paotung.org:8443GET /vmess HTTP/1.1

0-3428100/28/113_
2.83363186169847050.00.825.62
127.0.0.1http/1.1hub.paotung.org:8443GET /vmess HTTP/1.1

0-3428100/27/121_
2.83423163071185370.01.499.44
127.0.0.1http/1.1hub.paotung.org:8443GET /vmess HTTP/1.1

0-3428100/37/146_
2.851061741190.04.697.60
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

0-3428100/37/133_
2.861062299760.07.6412.37
127.0.0.1http/1.1hub.paotung.org:8443GET /.vscode/sftp.json HTTP/1.1

0-3428101/30/118W
2.56184090740990.04.637.87
127.0.0.1http/1.1hub.paotung.org:8443GET /vmess HTTP/1.1

0-3428100/35/120_
2.870076542990.08.9711.56
127.0.0.1http/1.1hub.paotung.org:8443GET /v2/_catalog HTTP/1.1

0-3428101/33/129W
2.8122066494890.010.4913.48
127.0.0.1http/1.1hub.paotung.org:8443GET /vmess HTTP/1.1

0-3428100/35/136_
2.860064009910.00.2210.14
127.0.0.1http/1.1hub.paotung.org:8443GET /debug/default/view?panel=config HTTP/1.1

0-3428101/31/119W
2.8148072460590.00.7223.30
127.0.0.1http/1.1hub.paotung.org:8443GET /vmess HTTP/1.1

0-3428101/31/119W
2.834066376000.02.6313.57
127.0.0.1http/1.1hub.paotung.org:8443GET /vmess HTTP/1.1

0-3428101/29/133W
2.830065952300.00.315.32
127.0.0.1http/1.1hub.paotung.org:8443GET /server-status HTTP/1.1

0-3428100/33/117_
2.870061600800.04.818.53
127.0.0.1http/1.1hub.paotung.org:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-3428100/33/120_
2.83333170063678240.05.881038.35
127.0.0.1http/1.1hub.paotung.org:8443GET /vmess HTTP/1.1

0-3428101/30/125W
2.64147065193230.03.425.10
127.0.0.1http/1.1hub.paotung.org:8443GET /vmess HTTP/1.1

0-3428100/33/138_
2.8521474464253990.08.5114.37
127.0.0.1http/1.1hub.paotung.org:8443GET /vmess HTTP/1.1

0-3428100/35/122_
2.81103197167491870.03.485.14
127.0.0.1http/1.1hub.paotung.org:8443GET /vmess HTTP/1.1

0-3428100/23/114_
2.81105152472051150.00.429.03
127.0.0.1http/1.1hub.paotung.org:8443GET /vmess HTTP/1.1

1-3-0/0/155.
0.00414912507080868230.00.007.84
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/170.
0.00414910540181977420.00.0012.92
127.0.0.1http/1.1

1-3-0/0/165.
0.00414910199185114750.00.0022.23
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/181.
0.00414910146076504570.00.0016.31
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/164.
0.00414910170785186990.00.0020.58
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/165.
0.00414910195881652360.00.0056.77
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/181.
0.00414910186173101090.00.0027.24
127.0.0.1http/1.1

1-3-0/0/162.
0.00414911983880861220.00.0034.44
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/163.
0.00414910136883931650.00.0011.36
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/176.
0.00414910144480928180.00.0014.78
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/154.
0.00414910389587516860.00.0032.70
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/179.
0.00414912217573352950.00.0022.56
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/183.
0.00414912332478969690.00.0017.31
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/159.
0.00414910145274951320.00.0078.70
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/164.
0.004149100596484103980.00.0015.69
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/156.
0.00414910210491078810.00.0086.68
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/176.
0.0041498093779904690.00.0017.08
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/155.
0.0041491970672116270.00.0037.83
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/160.
0.00414910145979318140.00.0028.58
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/166.
0.00414910145372485700.00.0033.70
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/157.
0.00414910187881611780.00.0011.75
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/160.
0.00414919107386035360.00.0049.52
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/148.
0.00414910335786095650.00.0016.79
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/163.
0.00414910238875422150.00.0039.27
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

1-3-0/0/156.
0.004149115276014830.00.0036.76
127.0.0.1http/1.1hub.paotung.org:8443GET / HTTP/1.1

2-3426580/2/120_
0.1545162014193341080.00.0127.19
127.0.0.1http/1.1

2-34265

Found on 2023-12-19 08:17

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: mlyszxy.top
Port: 443
URL: https://mlyszxy.top

First seen 2023-12-10 02:42
Last seen 2023-12-23 20:47
Open for 13 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf1764217fed9ff20c616a320c616a320c616a3
```
Found 2 files trough .DS_Store spidering:

/runtime
/tu
```
  Found on 2023-12-23 20:47
Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: molten-core.trademyskill.ir
Port: 443
URL: https://molten-core.trademyskill.ir

First seen 2023-08-20 13:34
Last seen 2023-12-18 12:41
Open for 119 days

Fingerprint: b18befd9dd653682e653d60ee653d60ee653d60ee653d60ee653d60ee653d60e

{"mobileRedirectBlacklist":["/nft(/.*)?"],"staticPaths":["/static/","/.well-known/"],"firebreak":{"enabled":false,"redirect":{"from":"/:path","to":"/build_firebreak.html","type":"rewrite"}},"redirects":[{"from":"/get(/.*)?","to":"https://go.triller.co/get/","type":"redirect","code":"302"},{"from":"/faq(/.*)?","to":"https://support.triller.co","type":"redirect","code":"302"},{"from":"/resources(/.*)?","to":"https://support.triller.co/hc/en-us/articles/360050629912-Community-Guidelines","type":"redirect","code":"302"},{"from":"/h/:hashtag","to":"/hashtag/:hashtag","type":"redirect","code":"302"},{"from":"/stepup","to":"https://trillerstepup.squarespace.com","type":"redirect","code":"302"},{"from":"/terms/creators_agreement(.html)?","to":"https://support.triller.co/hc/en-us/articles/360055087851-Creators-Agreement","type":"redirect","code":"302"},{"from":"/sytycf/terms","to":"https://support.triller.co/hc/en-us/articles/4901906019469","type":"redirect","code":"302"},{"from":"(/m)?/terms(/.*)?","to":"https://support.triller.co/hc/en-us/articles/360053977612-Terms-of-Service","type":"redirect","code":"302"},{"from":"(/m)?/privacy(/.*)?","to":"https://support.triller.co/hc/en-us/articles/360053977512-Privacy-Policy","type":"redirect","code":"302"},{"from":"/.well-known/apple-app-site-association","to":"/.well-known/apple-app-site-association.json","type":"rewrite"},{"from":"/static/community-guidelines","to":"https://support.triller.co/hc/en-us/articles/360050629912-Community-Guidelines","type":"redirect","code":"302"},{"from":"/static/copyright-complaint","to":"/static/copyright-complaint.html","type":"rewrite"},{"from":"/static/privacy-policy","to":"https://support.triller.co/hc/en-us/articles/360053977512-Privacy-Policy","type":"redirect","code":"302"},{"from":"/static/terms-of-service","to":"https://support.triller.co/hc/en-us/articles/360053977612-Terms-of-Service","type":"redirect","code":"302"},{"from":"/m/index.html","to":"/m","type":"redirect","code":"302"},{"from":"/auth/(.+)/callback","to":"/static/oauth-callback.html","type":"rewrite"},{"from":"/robots.txt","to":"/robots.txt","type":"rewrite"},{"from":"/firebreak","to":"/build_firebreak.html","type":"rewrite"},{"from":"/embed/(.*)","to":"/build_embed.html","type":"rewrite"}]}

Found on 2023-12-18 12:41

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: molten-core.trademyskill.ir
Port: 80
URL: http://molten-core.trademyskill.ir

First seen 2023-06-21 13:40
Last seen 2023-12-18 12:41
Open for 179 days

Fingerprint: b18befd9dd653682e653d60ee653d60ee653d60ee653d60ee653d60ee653d60e

{"mobileRedirectBlacklist":["/nft(/.*)?"],"staticPaths":["/static/","/.well-known/"],"firebreak":{"enabled":false,"redirect":{"from":"/:path","to":"/build_firebreak.html","type":"rewrite"}},"redirects":[{"from":"/get(/.*)?","to":"https://go.triller.co/get/","type":"redirect","code":"302"},{"from":"/faq(/.*)?","to":"https://support.triller.co","type":"redirect","code":"302"},{"from":"/resources(/.*)?","to":"https://support.triller.co/hc/en-us/articles/360050629912-Community-Guidelines","type":"redirect","code":"302"},{"from":"/h/:hashtag","to":"/hashtag/:hashtag","type":"redirect","code":"302"},{"from":"/stepup","to":"https://trillerstepup.squarespace.com","type":"redirect","code":"302"},{"from":"/terms/creators_agreement(.html)?","to":"https://support.triller.co/hc/en-us/articles/360055087851-Creators-Agreement","type":"redirect","code":"302"},{"from":"/sytycf/terms","to":"https://support.triller.co/hc/en-us/articles/4901906019469","type":"redirect","code":"302"},{"from":"(/m)?/terms(/.*)?","to":"https://support.triller.co/hc/en-us/articles/360053977612-Terms-of-Service","type":"redirect","code":"302"},{"from":"(/m)?/privacy(/.*)?","to":"https://support.triller.co/hc/en-us/articles/360053977512-Privacy-Policy","type":"redirect","code":"302"},{"from":"/.well-known/apple-app-site-association","to":"/.well-known/apple-app-site-association.json","type":"rewrite"},{"from":"/static/community-guidelines","to":"https://support.triller.co/hc/en-us/articles/360050629912-Community-Guidelines","type":"redirect","code":"302"},{"from":"/static/copyright-complaint","to":"/static/copyright-complaint.html","type":"rewrite"},{"from":"/static/privacy-policy","to":"https://support.triller.co/hc/en-us/articles/360053977512-Privacy-Policy","type":"redirect","code":"302"},{"from":"/static/terms-of-service","to":"https://support.triller.co/hc/en-us/articles/360053977612-Terms-of-Service","type":"redirect","code":"302"},{"from":"/m/index.html","to":"/m","type":"redirect","code":"302"},{"from":"/auth/(.+)/callback","to":"/static/oauth-callback.html","type":"rewrite"},{"from":"/robots.txt","to":"/robots.txt","type":"rewrite"},{"from":"/firebreak","to":"/build_firebreak.html","type":"rewrite"},{"from":"/embed/(.*)","to":"/build_embed.html","type":"rewrite"}]}

Found on 2023-12-18 12:41

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: coinqe.shop
Port: 443
URL: https://coinqe.shop

First seen 2023-12-13 10:40
- Severity: medium
  Fingerprint: 5f32cf5d6962f09c8efce1938efce19300805a9efa54e74691627cbd3cef4047
```
Found 36 files trough .DS_Store spidering:

/.well-known
/00010101.txt
/adminer.php
/coin_icon
/css
/down
/exchange
/favicon.ico
/files
/h5
/head_image
/images
/index.php
/js
/jump.php
/ludy.html
/ludy_redis_admin_1934cx234
/ludy_redis_admin_1934cx234/.github
/ludy_redis_admin_1934cx234/css
/ludy_redis_admin_1934cx234/images
/ludy_redis_admin_1934cx234/includes
/ludy_redis_admin_1934cx234/js
/ludy_redis_admin_1934cx234/vendor
/nginx.htaccess
/option.pid
/robots.txt
/static
/storage
/subscribe
/swap
/swap.pid
/tinymce
/upload
/vendors
/white_paper
/zozi_setting
```
  Found on 2023-12-13 10:40
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: coinqe.monster
Port: 443
URL: https://coinqe.monster

First seen 2023-12-13 10:40
- Severity: medium
  Fingerprint: 5f32cf5d6962f09c8efce1938efce19300805a9efa54e74691627cbd3cef4047
```
Found 36 files trough .DS_Store spidering:

/.well-known
/00010101.txt
/adminer.php
/coin_icon
/css
/down
/exchange
/favicon.ico
/files
/h5
/head_image
/images
/index.php
/js
/jump.php
/ludy.html
/ludy_redis_admin_1934cx234
/ludy_redis_admin_1934cx234/.github
/ludy_redis_admin_1934cx234/css
/ludy_redis_admin_1934cx234/images
/ludy_redis_admin_1934cx234/includes
/ludy_redis_admin_1934cx234/js
/ludy_redis_admin_1934cx234/vendor
/nginx.htaccess
/option.pid
/robots.txt
/static
/storage
/subscribe
/swap
/swap.pid
/tinymce
/upload
/vendors
/white_paper
/zozi_setting
```
  Found on 2023-12-13 10:40
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: coinqe.one
Port: 443
URL: https://coinqe.one

First seen 2023-12-13 10:40
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7c3d3e457c3d3e45c43e06b0ed68eb4c3ef5675bb45419df
```
Found 30 files trough .DS_Store spidering:

/.well-known
/00010101.txt
/adminer.php
/coin_icon
/css
/down
/exchange
/favicon.ico
/files
/h5
/head_image
/images
/index.php
/js
/jump.php
/ludy.html
/ludy_redis_admin_1934cx234
/nginx.htaccess
/option.pid
/robots.txt
/static
/storage
/subscribe
/swap
/swap.pid
/tinymce
/upload
/vendors
/white_paper
/zozi_setting
```
  Found on 2023-12-13 10:40
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: coinqe.top
Port: 443
URL: https://coinqe.top

First seen 2023-12-13 10:39
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7c3d3e457c3d3e45c43e06b0ed68eb4c3ef5675bb45419df
```
Found 30 files trough .DS_Store spidering:

/.well-known
/00010101.txt
/adminer.php
/coin_icon
/css
/down
/exchange
/favicon.ico
/files
/h5
/head_image
/images
/index.php
/js
/jump.php
/ludy.html
/ludy_redis_admin_1934cx234
/nginx.htaccess
/option.pid
/robots.txt
/static
/storage
/subscribe
/swap
/swap.pid
/tinymce
/upload
/vendors
/white_paper
/zozi_setting
```
  Found on 2023-12-13 10:39
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: coinqe.xyz
Port: 443
URL: https://coinqe.xyz

First seen 2023-12-13 10:39
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7c3d3e457c3d3e45c43e06b0ed68eb4c3ef5675bb45419df
```
Found 30 files trough .DS_Store spidering:

/.well-known
/00010101.txt
/adminer.php
/coin_icon
/css
/down
/exchange
/favicon.ico
/files
/h5
/head_image
/images
/index.php
/js
/jump.php
/ludy.html
/ludy_redis_admin_1934cx234
/nginx.htaccess
/option.pid
/robots.txt
/static
/storage
/subscribe
/swap
/swap.pid
/tinymce
/upload
/vendors
/white_paper
/zozi_setting
```
  Found on 2023-12-13 10:39
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: coinqe.today
Port: 443
URL: https://coinqe.today

First seen 2023-12-13 10:39
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7c3d3e457c3d3e45c43e06b0ed68eb4c3ef5675bb45419df
```
Found 30 files trough .DS_Store spidering:

/.well-known
/00010101.txt
/adminer.php
/coin_icon
/css
/down
/exchange
/favicon.ico
/files
/h5
/head_image
/images
/index.php
/js
/jump.php
/ludy.html
/ludy_redis_admin_1934cx234
/nginx.htaccess
/option.pid
/robots.txt
/static
/storage
/subscribe
/swap
/swap.pid
/tinymce
/upload
/vendors
/white_paper
/zozi_setting
```
  Found on 2023-12-13 10:39
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: gcc.donpau.com
Port: 443
URL: https://gcc.donpau.com

First seen 2023-12-12 11:46

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e61846ece61846ecd662841c

Apache Status

Apache Server Status for hub.paotung.org (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) OpenSSL/3.0.2
Server MPM: event
Server Built: 2023-10-26T13:44:44

Current Time: Tuesday, 12-Dec-2023 11:46:51 UTC
Restart Time: Tuesday, 12-Dec-2023 08:36:26 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 hours 10 minutes 24 seconds
Server load: 0.00 0.00 0.00
Total accesses: 997 - Total Traffic: 3.7 MB - Total Duration: 2230064
CPU Usage: u5.38 s2.31 cu0 cs0 - .0673% CPU load
.0873 requests/sec - 343 B/second - 3937 B/request - 2236.77 ms/request
3 requests currently being processed, 47 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
0891no3yes223000
1892no4yes124000
Sum207 347000

_________________R____R_______________________W___..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-08910/18/18_
3.44886876212320.00.070.07
127.0.0.1http/1.1

0-08910/25/25_
3.37102108311970.00.090.09
127.0.0.1h2oci.cbu.net:8443[0/0] Software caused connection abort

0-08910/20/20_
3.3594205159120.00.080.08
127.0.0.1http/1.1

0-08910/25/25_
3.5510210480.00.090.09
127.0.0.1http/1.1oci.cbu.net:8443GET /v2/_catalog HTTP/1.1

0-08910/24/24_
3.4344696213610.00.090.09
127.0.0.1http/1.1

0-08910/20/20_
3.554833176230.00.070.07
127.0.0.1http/1.1oci.cbu.net:8443GET / HTTP/1.1

0-08910/22/22_
3.2163273165190.00.090.09
127.0.0.1http/1.1

0-08910/25/25_
3.53330802130.00.090.09
127.0.0.1http/1.1

0-08910/20/20_
3.53142387222850.00.080.08
127.0.0.1http/1.1

0-08910/19/19_
3.5288351191000.00.070.07
127.0.0.1http/1.1

0-08910/24/24_
3.53401112281110.00.090.09
127.0.0.1http/1.1

0-08910/17/17_
3.5520133140.00.070.07
127.0.0.1http/1.1oci.cbu.net:8443GET / HTTP/1.1

0-08910/16/16_
3.4067362130890.00.070.07
127.0.0.1h2oci.cbu.net:8443[0/0] Software caused connection abort

0-08910/19/19_
3.4444578167320.00.080.08
127.0.0.1http/1.1

0-08910/17/17_
3.5480104540.00.060.06
127.0.0.1http/1.1oci.cbu.net:8443GET / HTTP/1.0

0-08910/18/18_
3.4933508214950.00.070.07
127.0.0.1http/1.1

0-08910/20/20_
3.54233631160080.00.070.07
127.0.0.1http/1.1oci.cbu.net:8443GET / HTTP/1.1

0-08910/22/22R
3.44248823191040.00.080.08
127.0.0.1http/1.1

0-08910/19/19_
3.1230671198410.00.070.07
127.0.0.1http/1.1

0-08910/23/23_
3.208920160440.00.080.08
127.0.0.1h2oci.cbu.net:8443[0/0] Software caused connection abort

0-08910/23/23_
3.42572332783530.00.080.08
127.0.0.1h2oci.cbu.net:8443[0/0] Software caused connection abort

0-08910/21/21_
3.4288944182360.00.080.08
127.0.0.1h2oci.cbu.net:8443[0/0] Software caused connection abort

0-08910/29/29R
3.47222510398850.00.100.10
127.0.0.1h2oci.cbu.net:8443[0/0] Software caused connection abort

0-08910/19/19_
3.4744295157600.00.070.07
127.0.0.1h2oci.cbu.net:8443[0/0] Software caused connection abort

0-08910/23/23_
3.4194646232060.00.080.08
127.0.0.1http/1.1

1-08920/18/18_
3.32933090722830.00.060.06
127.0.0.1h2oci.cbu.net:8443[0/0] Software caused connection abort

1-08920/21/21_
3.36139702180570.00.080.08
127.0.0.1http/1.1

1-08920/19/19_
3.21130113162580.00.070.07
127.0.0.1http/1.1

1-08920/19/19_
3.4010220260.00.080.08
127.0.0.1http/1.1oci.cbu.net:8443GET /about HTTP/1.1

1-08920/10/10_
2.9657767116950.00.040.04
127.0.0.1http/1.1

1-08920/16/16_
3.26341508128860.00.060.06
127.0.0.1h2oci.cbu.net:8443[0/0] Software caused connection abort

1-08920/26/26_
3.4000158300.00.090.09
127.0.0.1http/1.1oci.cbu.net:8443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-08920/20/20_
3.40207324030.00.070.07
127.0.0.1http/1.1oci.cbu.net:8443GET /.vscode/sftp.json HTTP/1.1

1-08920/23/23_
3.38146579246270.00.090.09
127.0.0.1http/1.1oci.cbu.net:8443GET / HTTP/1.1

1-08920/19/19_
3.37571688253200.00.070.07
127.0.0.1http/1.1

1-08920/15/15_
3.3112134131693510.00.060.06
127.0.0.1http/1.1

1-08920/18/18_
3.3920721450.00.070.07
127.0.0.1http/1.1oci.cbu.net:8443GET / HTTP/1.1

1-08920/16/16_
3.24102305137300.00.060.06
127.0.0.1http/1.1

1-08920/18/18_
3.1667503151280.00.070.07
127.0.0.1http/1.1

1-08920/14/14_
2.4067821139100.00.050.05
127.0.0.1http/1.1

1-08920/20/20_
3.3293277243200.00.080.08
127.0.0.1http/1.1

1-08920/16/16_
3.4010110250.00.060.06
127.0.0.1http/1.1oci.cbu.net:8443GET /debug/default/view?panel=config HTTP/1.1

1-08920/17/17_
3.2537277141810.00.060.06
127.0.0.1http/1.1

1-08920/25/25_
3.2194932198470.00.100.10
127.0.0.1h2oci.cbu.net:8443[0/0] Software caused connection abort

1-08920/18/18_
3.1993691122000.00.070.07
127.0.0.1http/1.1

1-08920/19/19_
3.021210210670.00.060.06
127.0.0.1http/1.1

1-08921/19/19W
3.3400176190.00.070.07
127.0.0.1http/1.1oci.cbu.net:8443GET /server-status HTTP/1.1

1-08920/16/16_
3.39151747113190.00.060.06
127.0.0.1http/1.1oci.cbu.net:8443GET / HTTP/1.1

1-08920/21/21_
3.191211984170970.00.070.07
127.0.0.1h2oci.cbu.net:8443[0/0] Software caused connection abort

1-08920/26/26_
3.2339272295930.00.100.10
127.0.0.1http/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 50subcaches: 32, indexes per subcache: 88time left on oldest entries' objects: avg: 136 seconds, (range: 6...298)index usage: 1%, cache usage: 2%total entries stored since starting: 1956total entries replaced since starting: 0total entries expired since starting: 1898total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 10

Found on 2023-12-12 11:46

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: h5.coinmart.cc
Port: 443
URL: https://h5.coinmart.cc

First seen 2023-11-27 13:13
Last seen 2023-12-11 23:35
Open for 14 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc605481711cdacaad246f5e6a35566703
```
Found 4 files trough .DS_Store spidering:

/.git
/index.html
/static
/static/img
```
  Found on 2023-12-11 23:35
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn.goodtoys.com.ua
Port: 443
URL: https://cdn.goodtoys.com.ua

First seen 2023-04-30 23:14
Last seen 2023-12-11 14:33
Open for 224 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652210800e9a

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@github.com:GoodToys-LLC/goodtoys.com.ua.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[branch "hottest"]
	remote = origin
	merge = refs/heads/hottest
[branch "hotfix"]
	remote = origin
	merge = refs/heads/hotfix
[branch "admin_fix"]
	remote = origin
	merge = refs/heads/admin_fix
[branch "prodaction"]
	remote = origin
	merge = refs/heads/prodaction

Found on 2023-12-11 14:33

532 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522c9367dca

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@github.com:GoodToys-LLC/goodtoys.com.ua.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[branch "hottest"]
	remote = origin
	merge = refs/heads/hottest
[branch "hotfix"]
	remote = origin
	merge = refs/heads/hotfix

Found on 2023-11-17 03:33

394 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652226567432

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@github.com:GoodToys-LLC/goodtoys.com.ua.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main

Found on 2023-11-06 07:12

268 Bytes

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 93.123.11.62
Domain: stormgamez.com
Port: 80
URL: http://stormgamez.com

First seen 2023-09-17 15:02
Last seen 2023-12-11 13:38
Open for 84 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31091e86b8091e86b8a21d10a5

Apache Status

Apache Server Status for stormgamez.com (via 81.0.246.16)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2023-10-26T13:44:44

Current Time: Monday, 11-Dec-2023 14:38:20 CET
Restart Time: Thursday, 23-Nov-2023 06:26:45 CET
Parent Server Config. Generation: 20
Parent Server MPM Generation: 19
Server uptime:  18 days 8 hours 11 minutes 35 seconds
Server load: 0.04 0.05 0.07
Total accesses: 17124 - Total Traffic: 382.7 MB - Total Duration: 11517
CPU Usage: u53.48 s82.12 cu36.12 cs43.52 - .0136% CPU load
.0108 requests/sec - 253 B/second - 22.9 kB/request - .672565 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
0593840no0yes124000
1593841no0yes025000
Sum200 149000

__________W_______________________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-195938400/12/351_
0.5523102090.00.157.53
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-195938400/13/332_
0.4723102060.00.186.91
81.0.246.16http/1.1fqdn.contabo.test:443\x16\x03\x01\x02

0-195938400/14/344_
0.5323102520.00.407.95
81.0.246.16http/1.1

0-195938400/14/341_
0.5523102110.00.367.74
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-195938400/14/342_
0.5423112600.00.257.85
81.0.246.16http/1.1fqdn.contabo.test:443\x16\x03\x01\x02

0-195938400/13/340_
0.52113922480.00.227.68
81.0.246.16http/1.1

0-195938400/14/356_
0.53012630.00.257.96
81.0.246.16http/1.1fqdn.contabo.test:443\x16\x03\x01\x02

0-195938400/14/331_
0.55012100.00.227.50
81.0.246.16http/1.1fqdn.contabo.test:80GET /about HTTP/1.1

0-195938400/14/357_
0.53002340.00.228.12
81.0.246.16http/1.1fqdn.contabo.test:443\x16\x03\x01\x02

0-195938400/13/335_
0.55002070.00.257.44
81.0.246.16http/1.1fqdn.contabo.test:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-195938401/12/352W
0.52002160.00.258.19
81.0.246.16http/1.1fqdn.contabo.test:80GET /server-status HTTP/1.1

0-195938400/14/339_
0.53143602270.00.187.60
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-195938400/13/341_
0.52143602270.00.257.96
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-195938400/13/336_
0.54113972350.00.327.95
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-195938400/13/345_
0.54113902370.00.367.65
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-195938400/11/335_
0.5353702510.00.257.57
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-195938400/14/351_
0.52113912730.00.348.11
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-195938400/13/338_
0.5483902580.00.157.99
81.0.246.16http/1.1fqdn.contabo.test:443\x16\x03\x01\x02

0-195938400/14/335_
0.5283902350.00.227.77
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-195938400/13/343_
0.5483902070.00.297.49
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-195938400/13/331_
0.5283902060.00.257.38
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-195938400/13/340_
0.5453712170.00.258.04
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-195938400/15/338_
0.5453702510.00.297.94
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-195938400/11/345_
0.5353702210.00.157.40
81.0.246.16http/1.1

0-195938400/14/336_
0.5323111960.00.257.72
3.71.189.185http/1.1fqdn.contabo.test:443\x16\x03\x01

1-195938410/9/338_
0.4253702200.00.287.22
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

1-195938410/11/341_
0.44002190.00.327.43
81.0.246.16http/1.1fqdn.contabo.test:80GET /debug/default/view?panel=config HTTP/1.1

1-195938410/10/348_
0.42203802080.00.217.78
81.0.246.16http/1.1fqdn.contabo.test:443\x16\x03\x01\x02

1-195938410/9/352_
0.42012190.00.187.81
81.0.246.16http/1.1fqdn.contabo.test:443\x16\x03\x01\x02

1-195938410/10/343_
0.40233922140.00.327.73
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

1-195938410/10/349_
0.40203812370.00.257.73
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

1-195938410/10/343_
0.42203812350.00.217.59
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

1-195938410/10/345_
0.41203802150.00.287.51
81.0.246.16http/1.1

1-195938410/9/347_
0.38179002540.00.327.39
3.71.189.185http/1.1

1-195938410/11/345_
0.42179502700.00.297.87
3.71.189.185http/1.1fqdn.contabo.test:443\x16\x03\x01

1-195938410/10/352_
0.42179511890.00.257.39
3.71.189.185http/1.1fqdn.contabo.test:443\x16\x03\x01

1-195938410/10/340_
0.41179012100.00.327.29
3.71.189.185http/1.1

1-195938410/9/344_
0.38179502270.00.287.65
81.0.246.16http/1.1

1-195938410/10/345_
0.41179502190.00.287.24
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

1-195938410/10/348_
0.43173812810.00.257.52
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

1-195938410/10/338_
0.41173812350.00.257.94
81.0.246.16http/1.1

1-195938410/10/344_
0.43173802250.00.288.64
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

1-195938410/10/348_
0.41173802800.00.187.46
81.0.246.16http/1.1fqdn.contabo.test:443\x16\x03\x01\x02

1-195938410/10/342_
0.44143612350.00.327.90
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

1-195938410/10/333_
0.42143602030.00.216.94
81.0.246.16http/1.1

1-195938410/11/349_
0.44113912460.00.157.64
81.0.246.16http/1.1fqdn.contabo.test:443\x16\x03\x01\x02

1-195938410/10/341_
0.42113902150.00.227.40
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

1-195938410/11/336_
0.4483902320.00.257.29
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

1-195938410/9/343_
0.4283911950.00.187.64
81.0.246.16http/1.1

1-195938410/11/336_
0.4453702510.00.297.24
81.0.246.16http/1.1fqdn.contabo.test:443\x16\x03\x01\x02


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

mod_fcgid status:
Total FastCGI processe

Found on 2023-12-11 13:38

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31091e86b8091e86b823416bb2

Apache Status

Apache Server Status for stormgamez.com (via 81.0.246.16)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2023-03-08T17:32:01

Current Time: Thursday, 16-Nov-2023 15:59:20 CET
Restart Time: Tuesday, 25-Jul-2023 07:08:27 CEST
Parent Server Config. Generation: 116
Parent Server MPM Generation: 115
Server uptime:  114 days 9 hours 50 minutes 52 seconds
Server load: 0.18 0.14 0.51
Total accesses: 1306149 - Total Traffic: 105.9 GB - Total Duration: 4318464
CPU Usage: u296.19 s525.45 cu1666 cs1718.79 - .0426% CPU load
.132 requests/sec - 11.2 kB/second - 85.0 kB/request - 3.30626 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
04092691no0yes025000
14092692no0yes124000
Sum200 149000

_______________________________________W__________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-11540926910/34/25692_
1.714220811520.00.382112.96
81.0.246.16http/1.1fqdn.contabo.test:80GET /images/egt_desktop/828.png HTTP/1.1

0-11540926910/29/25554_
1.6818011869450.00.522076.03
81.0.246.16http/1.1

0-11540926910/29/25524_
1.684220854080.00.842299.29
81.0.246.16http/1.1fqdn.contabo.test:80GET /images/egt_desktop/825.png HTTP/1.1

0-11540926910/34/25563_
1.733001843630.03.722114.53
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-11540926910/36/25583_
1.7300856140.02.782106.68
81.0.246.16http/1.1fqdn.contabo.test:80GET /images/egt_desktop/828.png HTTP/1.1

0-11540926910/35/25619_
1.7300826840.03.892103.97
81.0.246.16http/1.1fqdn.contabo.test:80GET /debug/default/view?panel=config HTTP/1.1

0-11540926910/32/25563_
1.7322831200.01.252075.09
81.0.246.16http/1.1fqdn.contabo.test:80GET /favicon.ico HTTP/1.1

0-11540926910/30/25513_
1.734220901120.03.802252.76
81.0.246.16http/1.1fqdn.contabo.test:80GET /images/egt_desktop/818.png HTTP/1.1

0-11540926910/30/25535_
1.703002803020.03.612076.78
81.0.246.16http/1.1

0-11540926910/33/25674_
1.7020846690.03.072087.44
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/narcos-client/game/nullfeature-config/netent?

0-11540926910/25/25576_
1.7310855910.00.612040.53
81.0.246.16http/1.1fqdn.contabo.test:80GET /images/egt_desktop/815.png HTTP/1.1

0-11540926910/38/25424_
1.684220823950.01.991994.63
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-11540926910/29/25735_
1.6815011840530.03.372041.01
81.0.246.16http/1.1

0-11540926910/35/25558_
1.734220862070.01.452206.05
81.0.246.16http/1.1fqdn.contabo.test:80GET /images/egt_desktop/826.png HTTP/1.1

0-11540926910/25/25601_
1.654222881750.02.672183.59
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/fairyhansel-client/game/config/audio/legacyAu

0-11540926910/34/25570_
1.734220845990.01.842143.14
81.0.246.16http/1.1fqdn.contabo.test:80GET /images/egt_desktop/825.png HTTP/1.1

0-11540926910/33/25517_
1.714220803540.00.432031.18
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-11540926910/34/25716_
1.7310861160.00.832144.00
81.0.246.16http/1.1fqdn.contabo.test:443\x16\x03\x01\x02

0-11540926910/32/25600_
1.733000856100.00.842078.00
81.0.246.16http/1.1fqdn.contabo.test:443\x16\x03\x01\x02

0-11540926910/32/25584_
1.734220848310.01.051978.66
81.0.246.16http/1.1fqdn.contabo.test:80GET /images/egt_desktop/820.png HTTP/1.1

0-11540926910/30/25697_
1.703000831300.03.492098.76
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/narcos-client/game/multimedia/audio/mobile/NA

0-11540926910/34/25462_
1.674220830620.01.762065.48
81.0.246.16http/1.1fqdn.contabo.test:80GET /images/egt_desktop/825.png HTTP/1.1

0-11540926910/38/25622_
1.734220869080.00.912174.60
81.0.246.16http/1.1fqdn.contabo.test:80GET /images/egt_desktop/823.png HTTP/1.1

0-11540926910/31/25545_
1.714220847840.00.482094.39
81.0.246.16http/1.1fqdn.contabo.test:80GET /images/egt_desktop/821.png HTTP/1.1

0-11540926910/31/25409_
1.734220853640.03.892159.05
81.0.246.16http/1.1fqdn.contabo.test:80GET /images/egt_desktop/829.png HTTP/1.1

1-11540926920/32/26595_
1.8410843340.02.612171.84
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

1-11540926920/28/26730_
1.754220900760.01.882243.62
81.0.246.16http/1.1fqdn.contabo.test:80GET /images/egt_desktop/818.png HTTP/1.1

1-11540926920/44/26646_
1.834220847310.05.572130.98
81.0.246.16http/1.1fqdn.contabo.test:80GET /images/egt_desktop/814.png HTTP/1.1

1-11540926920/39/26696_
1.823000865570.05.042248.52
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

1-11540926920/34/26831_
1.8410869140.04.322246.04
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

1-11540926920/35/26653_
1.843000959000.01.062225.37
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

1-11540926920/36/26718_
1.8200906290.03.792265.25
81.0.246.16http/1.1fqdn.contabo.test:443\x16\x03\x01\x02

1-11540926920/40/26536_
1.824221888730.02.172282.45
81.0.246.16http/1.1fqdn.contabo.test:443\x16\x03\x01\x02

1-11540926920/39/26534_
1.795981852680.02.202098.11
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/narcos-client/game/multimedia/audio/mobile/NA

1-11540926920/35/26627_
1.824220878910.01.392295.94
81.0.246.16http/1.1fqdn.contabo.test:80GET /images/egt_desktop/824.png HTTP/1.1

1-11540926920/42/26688_
1.8401891940.02.322209.69
81.0.246.16http/1.1fqdn.contabo.test:80GET /about HTTP/1.1

1-11540926920/39/26608_
1.824220857570.02.132233.37
81.0.246.16http/1.1fqdn.contabo.test:80GET /images/egt_desktop/817.png HTTP/1.1

1-11540926920/40/26662_
1.8210851190.00.992269.00
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

1-11540926920/35/26641_
1.824220862860.00.672208.19
81.0.246.16http/1.1fqdn.contabo.test:80GET /images/egt_desktop/819.png HTTP/1.1

1-11540926921/37/26799W
1.7400828540.01.362092.45
81.0.246.16http/1.1fqdn.contabo.test:80GET /server-status HTTP/1.1

1-11540926920/39/26703_
1.8211892250.00.842167.43
81.0.246.16http/1.1

1-11540926920/39/26762_
1.825980859810.00.622127.02
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

1-11540926920/31/26420_
1.824223910940.00.962258.40
81.0.246.16http/1.1fqdn.contabo.test:80GET /images/egt_desktop/826.png HTTP/1.1

1-11540926920/33/26665_
1.8201877720.03.972259.11
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

1-11540926920/38/26534_
1.7612430905270.00.922292.17
81.0.246.16http/1.1fqdn.contabo.test:80GET /images/egt_desktop/827.png HTTP/1.1

1-11540926920/37/26684_
1.8400886160.01.092192.34
81.0.246.16http/1.1fqdn.contabo.test:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-11540926920/37/26703_
1.824220922610.00.632211.81
81.0.246.16http/1.1fqdn.contabo.test:80GET /images/egt_desktop/821.png HTTP/1.1

1-11540926920/36/26835_
1.804221842390.01.462255.46
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/narcos-client/game/multimedia/audio/mobile/NA

Found on 2023-11-17 04:01

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31091e86b8091e86b854a60e89

Apache Status

Apache Server Status for stormgamez.com (via 81.0.246.16)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2023-03-08T17:32:01

Current Time: Tuesday, 19-Sep-2023 09:25:01 CEST
Restart Time: Tuesday, 25-Jul-2023 07:08:27 CEST
Parent Server Config. Generation: 58
Parent Server MPM Generation: 57
Server uptime:  56 days 2 hours 16 minutes 33 seconds
Server load: 0.08 0.12 0.56
Total accesses: 969208 - Total Traffic: 75.0 GB - Total Duration: 2974967
CPU Usage: u141.65 s262.53 cu1088.23 cs1182.87 - .0552% CPU load
.2 requests/sec - 16.2 kB/second - 81.2 kB/request - 3.06948 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
0155814no0yes025000
1155815no0yes124000
Sum200 149000

_________________________________________W________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-571558140/14/19055_
1.281240561630.01.181463.89
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-571558140/18/18967_
1.151551583480.00.721426.34
81.0.246.16http/1.1fqdn.contabo.test:443\x16\x03\x01\x02

0-571558140/18/18962_
1.271262589350.01.031671.38
81.0.246.16http/1.1fqdn.contabo.test:443\x16\x03\x01\x02

0-571558140/17/18967_
1.161551573600.00.321485.10
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-571558140/15/19007_
1.271550603390.00.351533.75
81.0.246.16http/1.1fqdn.contabo.test:443\x16\x03\x01\x02

0-571558140/16/18977_
1.279520571340.00.441504.74
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-571558140/18/18981_
1.291268560270.00.561427.15
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/gameinclusion/directory/directory.json HTTP/1.1

0-571558140/17/18956_
1.271562594490.00.671605.22
81.0.246.16http/1.1fqdn.contabo.test:80GET /quickspin/mcasino/secondstrike/game/assets/MyriadPro-BoldC

0-571558140/16/18946_
1.2601556730.00.291496.24
81.0.246.16http/1.1fqdn.contabo.test:80GET /quickspin/mcasino/secondstrike/locale/localization/common_

0-571558140/18/19026_
1.3200568450.00.311438.26
81.0.246.16http/1.1fqdn.contabo.test:80GET /.vscode/sftp.json HTTP/1.1

0-571558140/17/18905_
1.3200603620.00.551434.81
81.0.246.16http/1.1fqdn.contabo.test:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-571558140/16/18919_
1.26475574760.00.291395.11
81.0.246.16http/1.1fqdn.contabo.test:80GET /quickspin/mcasino/secondstrike/keypad-dom-mobile/assets/ha

0-571558140/19/19104_
1.2900573880.00.451465.78
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/fruitshop_mobile_html/game/config/modules.jso

0-571558140/15/18988_
1.291550589130.04.891590.17
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/fruitshop_mobile_html/game/config/archbotTest

0-571558140/17/18971_
1.32470616310.01.021586.27
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-571558140/18/19028_
1.2600595130.00.651545.22
81.0.246.16http/1.1fqdn.contabo.test:80GET /quickspin/mcasino/secondstrike/locale/localization/game_it

0-571558140/17/18937_
1.3200545340.00.371453.43
81.0.246.16http/1.1fqdn.contabo.test:80GET /about HTTP/1.1

0-571558140/14/19078_
1.291553597600.01.021537.48
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/fruitshop_mobile_html/common/config/images.js

0-571558140/14/18969_
1.2547106615890.00.901501.23
81.0.246.16http/1.1fqdn.contabo.test:80GET /quickspin/mcasino/secondstrike/game/js/luckywheel.min.js H

0-571558140/19/18987_
1.291553598910.00.371421.45
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/fruitshop_mobile_html/dist/bundle.js HTTP/1.1

0-571558140/18/19029_
1.301240581170.00.381488.98
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/fruitshop_mobile_html/gamerules/images/audio_

0-571558140/15/18826_
1.311241574200.00.211446.17
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/fruitshop_mobile_html/gamerules/images/Paytab

0-571558140/19/18981_
1.32478602200.00.411513.47
81.0.246.16http/1.1fqdn.contabo.test:443\x16\x03\x01\x02

0-571558140/18/18858_
1.121240566750.01.061464.29
81.0.246.16http/1.1fqdn.contabo.test:80GET /images/egt_mobile/828.png HTTP/1.1

0-571558140/19/18961_
1.311240575330.04.041482.97
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/fruitshop_mobile_html/gamerules/images/game_r

1-571558150/23/19768_
1.721192585750.05.741547.83
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/fruitshop_mobile_html/game/cache.manifest HTT

1-571558150/17/19829_
1.471551622960.03.091594.54
81.0.246.16http/1.1

1-571558150/19/19783_
1.721242576850.03.851514.00
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/fruitshop_mobile_html/gamerules/images/spinbu

1-571558150/16/19810_
1.7115582597960.01.541625.42
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/fruitshop_mobile_html/game/css/style.css HTTP

1-571558150/19/19868_
1.5912531591030.06.161580.37
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/fruitshop_mobile_html/game/javascript/init.js

1-571558150/18/19745_
1.7300696800.01.881576.73
81.0.246.16http/1.1fqdn.contabo.test:80GET /v2/_catalog HTTP/1.1

1-571558150/16/19792_
1.6715524617670.00.211612.10
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/gameinclusion/library/rules/rules_renderer.js HTTP/

1-571558150/14/19745_
1.6715523628750.01.891607.26
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/game-client-components/netent_gcc_toast-view/toast-

1-571558150/21/19579_
1.73471593210.01.651468.14
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

1-571558150/10/19815_
1.721254598830.01.061628.25
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/fruitshop_mobile_html/rules/it/rulestext.json

1-571558150/14/19769_
1.591193597340.01.191505.10
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/fruitshop_mobile_html/game/multimedia/images/

1-571558150/15/19714_
1.5901591120.00.621598.85
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/fruitshop_mobile_html/game/config/config.json

1-571558150/14/19801_
1.591251600590.01.661668.62
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/fruitshop_mobile_html/game/multimedia/fonts/p

1-571558150/18/19697_
1.591241569770.00.671521.18
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/fruitshop_mobile_html/game/multimedia/fonts/N

1-571558150/15/19966_
1.7300572410.00.961477.02
81.0.246.16http/1.1fqdn.contabo.test:80GET /debug/default/view?panel=config HTTP/1.1

1-571558150/20/19813_
1.6007612050.02.121538.29
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/fruitshop_mobile_html/langlib/it/language.xml

1-571558151/17/19875W
1.6000599210.00.351495.95
81.0.246.16http/1.1fqdn.contabo.test:80GET /server-status HTTP/1.1

1-571558150/14/19611_
1.59479630830.02.671576.79
81.0.246.16http/1.1

1-571558150/18/19870_
1.7015571621050.00.661627.30
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/fruitshop_mobile_html/game/javascript/main.js

1-571558150/14/19731_
1.551568612550.00.701625.94
81.0.246.16http/1.1fqdn.contabo.test:80GET /quickspin/mcasino/secondstrike/locale/localization/game_it

1-571558150/13/19869_
1.601560608310.00.311567.12
81.0.246.16http/1.1fqdn.contabo.test:80

Found on 2023-09-19 07:25

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31091e86b8091e86b825cf4dfe

Apache Status

Apache Server Status for stormgamez.com (via 81.0.246.16)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2023-03-08T17:32:01

Current Time: Sunday, 17-Sep-2023 17:02:35 CEST
Restart Time: Tuesday, 25-Jul-2023 07:08:27 CEST
Parent Server Config. Generation: 56
Parent Server MPM Generation: 55
Server uptime:  54 days 9 hours 54 minutes 7 seconds
Server load: 0.05 0.05 0.28
Total accesses: 955824 - Total Traffic: 73.5 GB - Total Duration: 2914547
CPU Usage: u140.82 s258.93 cu1064.23 cs1155.32 - .0557% CPU load
.203 requests/sec - 16.4 kB/second - 80.6 kB/request - 3.04925 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
02344182no0yes025000
12344183no0yes124000
Sum200 149000

______________________________________W___________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-5523441820/77/18804_
5.7704550990.04.021424.72
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/media/E

0-5523441820/72/18697_
5.7702573860.05.971403.07
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/de/adp/

0-5523441820/85/18693_
5.79122580720.09.141639.71
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-5523441820/74/18708_
5.74121563940.07.591436.90
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/media/E

0-5523441820/86/18727_
5.773332592460.06.731503.09
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/de/adp/

0-5523441820/79/18731_
5.7201561870.07.501474.61
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/de/adp/

0-5523441820/76/18715_
5.7900548000.05.271386.15
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-5523441820/82/18701_
5.7900576850.012.211582.32
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-5523441820/83/18685_
5.76930547640.05.311459.25
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/media/E

0-5523441820/85/18765_
5.763350556390.010.941416.10
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/media/E

0-5523441820/83/18655_
5.713330594820.08.281417.42
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/media/E

0-5523441820/83/18671_
5.79936562110.07.611366.63
81.0.246.16http/1.1fqdn.contabo.test:80GET /netent/games/jumanji_mobile_html/game/multimedia/images/96

0-5523441820/83/18848_
5.781290561330.06.391442.93
81.0.246.16http/1.1fqdn.contabo.test:80GET /phpmyadmin/ HTTP/1.1

0-5523441820/87/18726_
5.782030567630.05.701560.28
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

0-5523441820/85/18690_
5.7900603310.07.451525.90
81.0.246.16http/1.1fqdn.contabo.test:80GET /debug/default/view?panel=config HTTP/1.1

0-5523441820/93/18765_
5.7900583170.09.601517.52
81.0.246.16http/1.1fqdn.contabo.test:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-5523441820/83/18704_
5.761290534870.09.011426.78
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/media/E

0-5523441820/89/18815_
5.7601588100.011.141503.05
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/media/E

0-5523441820/86/18694_
5.7701593560.09.321457.80
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/media/E

0-5523441820/79/18721_
5.753331585940.011.021389.98
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/media/E

0-5523441820/88/18764_
5.7900571670.06.521464.78
81.0.246.16http/1.1fqdn.contabo.test:80GET /.vscode/sftp.json HTTP/1.1

0-5523441820/76/18569_
5.712031561880.05.411409.77
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/media/E

0-5523441820/79/18729_
5.7733419590260.010.421479.19
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/de/adp/

0-5523441820/91/18588_
5.7833313557150.07.371435.66
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/de/adp/

0-5523441820/81/18701_
5.773335555070.04.141452.26
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/de/adp/

1-5523441830/103/19479_
5.493351569530.08.491495.13
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/media/E

1-5523441830/98/19540_
5.5100611630.08.211554.72
81.0.246.16http/1.1fqdn.contabo.test:80GET /about HTTP/1.1

1-5523441830/96/19502_
5.51127565650.05.911488.58
81.0.246.16http/1.1fqdn.contabo.test:80GET /favicon.ico HTTP/1.1

1-5523441830/95/19528_
5.5100586940.05.411600.44
81.0.246.16http/1.1fqdn.contabo.test:80GET /v2/_catalog HTTP/1.1

1-5523441830/86/19600_
5.4900577990.08.101539.64
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/media/E

1-5523441830/94/19462_
5.503331686460.010.651541.41
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/de/adp/

1-5523441830/90/19510_
5.493330604540.09.161565.13
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/media/E

1-5523441830/98/19484_
5.4900617850.08.801573.51
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/media/E

1-5523441830/86/19312_
5.493340583290.04.491435.82
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/media/E

1-5523441830/90/19565_
5.492030589270.06.931608.67
81.0.246.16http/1.1

1-5523441830/86/19483_
5.493350585700.06.571473.57
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/media/E

1-5523441830/96/19439_
5.472031579700.07.721567.70
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/de/adp/

1-5523441830/89/19523_
5.503351585500.05.801637.36
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/media/E

1-5523441831/100/19418W
5.4600555480.07.011483.88
81.0.246.16http/1.1fqdn.contabo.test:80GET /server-status HTTP/1.1

1-5523441830/93/19703_
5.463359563760.012.581452.18
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/de/adp/

1-5523441830/98/19530_
5.503341601350.06.911498.17
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/media/E

1-5523441830/109/19598_
5.502030589020.010.601471.72
81.0.246.16http/1.1fqdn.contabo.test:80GET / HTTP/1.1

1-5523441830/89/19347_
5.49120617680.07.771550.36
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/media/E

1-5523441830/93/19603_
5.4900609890.06.551597.87
81.0.246.16http/1.1fqdn.contabo.test:80GET /mercur/gameclient/2.0/adp/xtra10liner/html/private/media/E

1-5523441830/93/19462_
5.5100601780.06.561594.91
81.0.246.16http/1.1fqdn.contabo.test:80GET /.vscode/sftp.json HTTP/1.1

1-

Found on 2023-09-17 15:02

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: rentalcarweb.cc
Port: 443
URL: https://rentalcarweb.cc

First seen 2023-10-24 08:41
Last seen 2023-12-11 13:12
Open for 48 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d28a25ad628a25ad628a25ad628a25ad6
```
Found 1 files trough .DS_Store spidering:

/.git
```
  Found on 2023-12-11 13:12
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: shouda88.cc
Port: 80
URL: http://shouda88.cc

First seen 2023-12-08 08:45
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642fb5d7729a2b4337ea2b4337ea2b4337e
```
Found 2 files trough .DS_Store spidering:

/Application
/vendor
```
  Found on 2023-12-08 08:45
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: c.trevorcarpenter.name
Port: 80
URL: http://c.trevorcarpenter.name

First seen 2022-09-10 20:52
Last seen 2023-12-06 03:38
Open for 451 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b712656bb0d71c37a2cfdbc5691050420b

Found 128 files trough .DS_Store spidering:

/.git
/about
/bio
/documents
/documents/certificates
/documents/certificates/Coursera compdata 2013
/documents/certificates/Coursera datamanagement 2013
/documents/certificates/Coursera neuroethics 2013
/documents/fic
/films-by-frequency
/films-by-frequency/Nicolas Jenson
/films-by-frequency/tmdb-posters
/frequently-anticipated-questions
/glossary
/images
/images/tmdb-posters
/images/tmdb-posters/0abb7b3cf794af64d43df5d00b21ef6f.jpg
/images/tmdb-posters/1cdNSyhJ7cpz0n5qd2V6K7icOzZ.jpg
/images/tmdb-posters/1eZEk793evkaIOjBwNO2cFS6h5x.jpg
/images/tmdb-posters/1W8ZeVzUK79YjBuXonWHSps6D7H.jpg
/images/tmdb-posters/2tZN90vb39CBgKjOXAcGmrFFNaS.jpg
/images/tmdb-posters/3AFEVmISqWoVWpeKDkCVM3Jpj7S.jpg
/images/tmdb-posters/3erJD9QQcx4hhLJ4yaAw8SLWnZN.jpg
/images/tmdb-posters/46LmAPu3HjXknRTzfHgVMRgtAwe.jpg
/images/tmdb-posters/4tC7mrHpWpG5AZmQuVS7sCDzPT.jpg
/images/tmdb-posters/4WqxYBY1OvGhtpyAKam7Cs6GkpC.jpg
/images/tmdb-posters/4XAaMo2nBZR3eH8HU6AbPkBKEXI.jpg
/images/tmdb-posters/4YgdRwJ8pANrooetaaEUxKIXykl.jpg
/images/tmdb-posters/5Oz7iIqZjPTBsyTwfpbAwPlIxFP.jpg
/images/tmdb-posters/5zW3sowkXI1DGaD7ngKbfvD4hTI.jpg
/images/tmdb-posters/6QDeHwBXDHbCbuzStgUpuUAqnap.jpg
/images/tmdb-posters/7Kk1ZsrAul2Lg7Pe45XOcUf2ARQ.jpg
/images/tmdb-posters/7m5bkmTsqHVen6L0BkqSd3KoPL1.jpg
/images/tmdb-posters/7XxOj3vQ701L9u0gkZ2TtliLxjN.jpg
/images/tmdb-posters/84HR8v3vtz91vTouBX3H5eEWJvP.jpg
/images/tmdb-posters/8JGmaQSfFVhOpH3NwdHBw9uJvzs.jpg
/images/tmdb-posters/8JOzt7uFZyshcuzCBmYU6CDJL4D.jpg
/images/tmdb-posters/8ZBbMOrFLSuA1Fe1eOrBEAho4Uv.jpg
/images/tmdb-posters/94m7J9YeO0W7IEbfsOtFbweGgcu.jpg
/images/tmdb-posters/9fManbsdRhwW4QLnmBrrajSeBBb.jpg
/images/tmdb-posters/9ggHy0AOzSD5lAf29mAfHLaM5Sa.jpg
/images/tmdb-posters/a0j18XNVhP4RcW3wXwsqT0kVoQm.jpg
/images/tmdb-posters/Aj8TNw2NbINvr7gvc1XKfEtdEbV.jpg
/images/tmdb-posters/avoKZfgBzyBGJsrAr2WQOwZK978.jpg
/images/tmdb-posters/blmXomqwW7qfBFN0KkwN6GpYZGi.jpg
/images/tmdb-posters/bUyjDLzgwlx44aVE8SaC5jRThzT.jpg
/images/tmdb-posters/cp5b54AtG288dvNIpMIjGeCZ0w4.jpg
/images/tmdb-posters/d3HNrLrqXFY90xBiVhsWlumNUaK.jpg
/images/tmdb-posters/Ded5Kl7MDZQTbFpoNI62tLVWUN.jpg
/images/tmdb-posters/dRchzFXWwdhIcWCazREhF8lj1uy.jpg
/images/tmdb-posters/dTU9aSksoDhnjELPCKhpsSpvbbT.jpg
/images/tmdb-posters/eE3GGSkD8ziNOYgnWGoODlpOZPV.jpg
/images/tmdb-posters/eQ5SVeWsl8bIL3K4TPQC4McA9SG.jpg
/images/tmdb-posters/eWEItyc6NvttKTCGOuhHzypHFqa.jpg
/images/tmdb-posters/ewH7inSEI7IUOkFcwFgpbEQHWK1.jpg
/images/tmdb-posters/eyu2MPT9tLoHg1PgSLcvrH0EgDQ.jpg
/images/tmdb-posters/fhm3SFtrcyzA1rGT00OnOeZ4WDF.jpg
/images/tmdb-posters/fkipS6g260yMr7KYphGgVunkSjY.jpg
/images/tmdb-posters/frZj5djlU9hFEjMcL21RJZVuG5O.jpg
/images/tmdb-posters/g3qZofBWiLauJviv27f8zpEFbki.jpg
/images/tmdb-posters/gHm96BRW4GoI339rF1vYoYTB6Qe.jpg
/images/tmdb-posters/gQB8Y5RCMkv2zwzFHbUJX3kAhvA.jpg
/images/tmdb-posters/hyan5Uc0lGpPuad94DM1pLxneiP.jpg
/images/tmdb-posters/iaSTaVaCelkmMMAj846D925QUpo.jpg
/images/tmdb-posters/IwFugPaYFhJOAkPVFG3I3xR6wA.jpg
/images/tmdb-posters/iyTD2QnySNMPUPE3IedZQipSWfz.jpg
/images/tmdb-posters/jwOPAI4bJQzIRPMeNbZ8fg5Of6R.jpg
/images/tmdb-posters/kAq5XH5sNTHmNASzzMO8L0cBAwC.jpg
/images/tmdb-posters/kho48mWJ5xuiLn5bpuIvO6ZP7ep.jpg
/images/tmdb-posters/kPMx2t4S6KuYRKDKwB3xJTzy2y2.jpg
/images/tmdb-posters/lGgIQ10NJ3d0X0uFbbUN4pRrMFZ.jpg
/images/tmdb-posters/lpVzSwNOYUibQV76yUysTze4vHn.jpg
/images/tmdb-posters/mAH0TZmcNQzJKE16HYhWqK8rxUs.jpg
/images/tmdb-posters/mKr2XAwJDLQR3hDFNoyHALMRspv.jpg
/images/tmdb-posters/mOyZ0UAWaOJartFq2G3Cv0soFtQ.jpg
/images/tmdb-posters/nRa2O99lJOoRSPOGJZsp1Ihc952.jpg
/images/tmdb-posters/nRsB8ucAjQQ0rsctlIQ2RwGHoOo.jpg
/images/tmdb-posters/nXjh15UzrvlkVIVUQJWAuKEsP4w.jpg
/images/tmdb-posters/oHMRhVytkVApLyCNML659LQZiQ1.jpg
/images/tmdb-posters/oHT70ef0lutC0SkiXpTKtwr60KS.jpg
/images/tmdb-posters/olwRQIN5QzDbKmtTqGsNbEPYxC4.jpg
/images/tmdb-posters/pV08yva1qMTal07y63HnniC74JN.jpg
/images/tmdb-posters/pZ3qP5v5Jf0LoRqBC-cJlMQ9qDBgPyUK56ujLFmizw8.jpg
/images/tmdb-posters/r5BgizKTAyoOaVy6Evda86TczSZ.jpg
/images/tmdb-posters/rxlrlqTAXIQ2v4GoE9UAxFUaAZw.jpg
/images/tmdb-posters/sBwJXBWVPSn7tkXoSqFVNRFBGeh.jpg
/images/tmdb-posters/srOo0wG8ELmmVtVxYfgkGVOPjCV.jpg
/images/tmdb-posters/szqoRv1gqhbfB46Xs5bv1v2Fq9h.jpg
/images/tmdb-posters/tNxaR9GBrQVBsGVc5CUxXrUWWxd.jpg
/images/tmdb-posters/uQEVm6yyzt9OhZAfSf6Dg4qexcw.jpg
/images/tmdb-posters/vA4iAPU1St7XNip3UeOd9zu5C2u.jpg
/images/tmdb-posters/vAIq1n0LjePYFLwJlHrGih58bVZ.jpg
/images/tmdb-posters/vL7Xw04nFMHwnvXRFCmYYAzMUvY.jpg
/images/tmdb-posters/w0kxhsv0qobU2P7rTe9qfBQsdQJ.jpg
/images/tmdb-posters/WAllsbrook_TheMirror-Reg_Sm_1024x1024.jpg
/images/tmdb-posters/wO8XKAt3JUpdij27gIq6Maq4JMp.jpg
/images/tmdb-posters/xejFBC19Nc7Xi1MiIvcf84ZCy2g.jpg
/images/tmdb-posters/yY4kbIq3s6JFYagzOJhbQv3heus.jpg
/images/tmdb-posters/zhgzjwrsrgp7RVPOOdiJChOJNEe.jpg
/images/tmdb-posters/zT8XclM0tX5nVsnU3Idsn2Nzdo5.jpg
/intro-old
/juvenilia
/juvenilia/analytical-psych-geb
/juvenilia/being-there
/juvenilia/fungi-network
/juvenilia/how-to-avoid-writing
/juvenilia/masscult
/juvenilia/rr5
/juvenilia/rr7
/juvenilia/still-life-narrative
/juvenilia/why-write
/massive-open-online-courses
/moodboards
/moodboards/A Landscape at evening with travellers and a hunter near classical ruins.jpg
/Nicolas-Jenson
/republished
/republished/affective-key-characteristics
/republished/culture-anesthetic
/republished/free-time
/republished/idletheory
/republished/last-days-of-the-polymath
/republished/of-parts-and-wholes
/republished/overcoming-logos-overcoming-lego
/republished/postmodern-desert-of-cyberspace
/republished/silence
/republished/techniques-in-mass-education
/republished/valedictory-address
/underrated-films-of-the-2010s

Found on 2023-12-06 03:38

Severity: low
Fingerprint: 5f32cf5d6962f09cab28146bab28146b48c39a0c76420b5e32aa90750cc91f1a

Found 21 files trough .DS_Store spidering:

/.git
/about
/bio
/documents
/documents/certificates
/documents/certificates/Coursera compdata 2013
/documents/certificates/Coursera datamanagement 2013
/documents/certificates/Coursera neuroethics 2013
/documents/fic
/films-by-frequency
/frequently-anticipated-questions
/glossary
/images
/intro-old
/juvenilia
/massive-open-online-courses
/moodboards
/Nicolas-Jenson
/republished
/underrated-films-of-the-2010s
/vital-course

Found on 2022-09-10 20:52

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: c.trevorcarpenter.name
Port: 80
URL: http://c.trevorcarpenter.name

First seen 2022-09-10 20:52
Last seen 2023-12-06 03:38
Open for 451 days
- Severity: high
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65220eb5dabf
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = ssh://root@107.189.8.27/var/www/trevorcarpenter/
	fetch = +refs/heads/*:refs/remotes/origin/*
[receive]
	denyCurrentBranch = updateInstead
```
  Found on 2023-12-06 03:38
  
  301 Bytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: gatesio.com
Port: 443
URL: https://gatesio.com

First seen 2023-06-06 04:17
Last seen 2023-11-18 02:45
Open for 164 days

Severity: low
Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc605481711cdacaad246f5e6a35566703
```
Found 4 files trough .DS_Store spidering:

/.git
/index.html
/static
/static/img
```
Found on 2023-11-18 02:45

Severity: high
Fingerprint: 5f32cf5d6962f09ce9dbcc92e9dbcc9219bacfc4340d0e09cc226283aefdc8da

Found 60 files trough .DS_Store spidering:

/.idea
/.well-known
/183.html
/404.html
/appdown
/appdown/android
/appdown/html
/appdown/ios
/Application
/Application/Admin
/Application/Agent
/Application/Common
/Application/Home
/Application/Mobile
/bs.yxci.site
/Database
/Database/www_kcuoin_top.sql
/favicon.ico
/index.html
/index.php
/mynbase.php
/nginx.htaccess
/Public
/Public/Admin
/Public/Home
/Public/intel
/Public/kindeditor
/Public/layer
/Public/layui
/Public/magnific
/Public/Mobile
/Public/Static
/Public/uploadify
/Runtime
/ThinkPHP
/ThinkPHP/Common
/ThinkPHP/Conf
/ThinkPHP/Extend
/ThinkPHP/Home
/ThinkPHP/Lang
/ThinkPHP/Lib
/ThinkPHP/Library
/ThinkPHP/Mode
/ThinkPHP/Tpl
/Upload
/Upload/ad
/Upload/article
/Upload/bank
/Upload/coin
/Upload/ewm
/Upload/face
/Upload/files
/Upload/footer
/Upload/idcard
/Upload/link
/Upload/payimg
/Upload/public
/web.config
/www.Coinbaes.in
/安装教程.txt

Found on 2023-06-06 04:17

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: ttrss.hostlc.link
Port: 80
URL: http://ttrss.hostlc.link

First seen 2023-10-27 18:09
Last seen 2023-11-17 03:33
Open for 20 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65222f6356a6
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://git.tt-rss.org/fox/tt-rss
	fetch = +refs/heads/master:refs/remotes/origin/master
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-11-17 03:33
  
  268 Bytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: mexc.store
Port: 443
URL: https://mexc.store

First seen 2023-10-05 06:16
Last seen 2023-11-17 02:41
Open for 42 days

Severity: high
Fingerprint: 5f32cf5d6962f09c3e8b9cac3e8b9cacebe0932640398d3300b27d8d26296ab9

Found 48 files trough .DS_Store spidering:

/.idea
/.well-known
/183.html
/404.html
/appdown
/appdown/android
/appdown/html
/appdown/ios
/Application
/Application/Admin
/Application/Agent
/Application/Common
/Application/Home
/Application/Mobile
/bs.yxci.site
/Database
/Database/www_kcuoin_top.sql
/favicon.ico
/index.html
/index.php
/mynbase.php
/nginx.htaccess
/Public
/Public/Admin
/Public/Home
/Public/intel
/Public/kindeditor
/Public/layer
/Public/layui
/Public/magnific
/Public/Mobile
/Public/Static
/Public/uploadify
/Runtime
/ThinkPHP
/ThinkPHP/Common
/ThinkPHP/Conf
/ThinkPHP/Extend
/ThinkPHP/Home
/ThinkPHP/Lang
/ThinkPHP/Lib
/ThinkPHP/Library
/ThinkPHP/Mode
/ThinkPHP/Tpl
/Upload
/web.config
/www.Coinbaes.in
/安装教程.txt

Found on 2023-11-17 02:41

Severity: high
Fingerprint: 5f32cf5d6962f09cb3107650b31076505d8d3f5aa3667c7febb26719892bcd2e

Found 39 files trough .DS_Store spidering:

/.idea
/.well-known
/183.html
/404.html
/appdown
/appdown/android
/appdown/html
/appdown/ios
/Application
/Application/Admin
/Application/Agent
/Application/Common
/Application/Home
/Application/Mobile
/bs.yxci.site
/Database
/Database/www_kcuoin_top.sql
/favicon.ico
/index.html
/index.php
/mynbase.php
/nginx.htaccess
/Public
/Public/Admin
/Public/Home
/Public/intel
/Public/kindeditor
/Public/layer
/Public/layui
/Public/magnific
/Public/Mobile
/Public/Static
/Public/uploadify
/Runtime
/ThinkPHP
/Upload
/web.config
/www.Coinbaes.in
/安装教程.txt

Found on 2023-11-06 04:01

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: gatesio.vip
Port: 443
URL: https://gatesio.vip

First seen 2023-06-06 04:13
Last seen 2023-11-17 02:41
Open for 163 days

Severity: low
Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc605481711cdacaad246f5e6a35566703
```
Found 4 files trough .DS_Store spidering:

/.git
/index.html
/static
/static/img
```
Found on 2023-11-17 02:41

Severity: high
Fingerprint: 5f32cf5d6962f09ce9dbcc92e9dbcc9219bacfc4340d0e09cc226283aefdc8da

Found 60 files trough .DS_Store spidering:

/.idea
/.well-known
/183.html
/404.html
/appdown
/appdown/android
/appdown/html
/appdown/ios
/Application
/Application/Admin
/Application/Agent
/Application/Common
/Application/Home
/Application/Mobile
/bs.yxci.site
/Database
/Database/www_kcuoin_top.sql
/favicon.ico
/index.html
/index.php
/mynbase.php
/nginx.htaccess
/Public
/Public/Admin
/Public/Home
/Public/intel
/Public/kindeditor
/Public/layer
/Public/layui
/Public/magnific
/Public/Mobile
/Public/Static
/Public/uploadify
/Runtime
/ThinkPHP
/ThinkPHP/Common
/ThinkPHP/Conf
/ThinkPHP/Extend
/ThinkPHP/Home
/ThinkPHP/Lang
/ThinkPHP/Lib
/ThinkPHP/Library
/ThinkPHP/Mode
/ThinkPHP/Tpl
/Upload
/Upload/ad
/Upload/article
/Upload/bank
/Upload/coin
/Upload/ewm
/Upload/face
/Upload/files
/Upload/footer
/Upload/idcard
/Upload/link
/Upload/payimg
/Upload/public
/web.config
/www.Coinbaes.in
/安装教程.txt

Found on 2023-06-06 04:13

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vgcus.rssw.link
Port: 80
URL: http://vgcus.rssw.link

First seen 2023-08-31 18:12
Last seen 2023-11-17 02:16
Open for 77 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-11-17 02:16
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: ghajm.didinistesh.online
Port: 80
URL: http://ghajm.didinistesh.online

First seen 2023-09-10 19:32
Last seen 2023-11-17 01:33
Open for 67 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522d52ad3e1
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@bitbucket.org:ux928374/landing.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2023-11-17 01:33
  
  259 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: us.gcorecdn.systemapi.cn
Port: 443
URL: https://us.gcorecdn.systemapi.cn

First seen 2023-10-26 06:21
Last seen 2023-11-17 00:23
Open for 21 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652295f09456
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	hooksPath = .husky
[remote "origin"]
	url = https://github.com/Chanzhaoyu/chatgpt-web.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2023-11-17 00:23
  
  286 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vgcus.rssw.link
Port: 443
URL: https://vgcus.rssw.link

First seen 2023-10-30 17:36
Last seen 2023-11-16 22:52
Open for 17 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-11-16 22:52
  
  265 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdn.federicomengascini.com
Port: 443
URL: https://cdn.federicomengascini.com

First seen 2023-10-04 17:16
Last seen 2023-11-16 21:42
Open for 43 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bc97a40ca6fc7bf6c888f451b051cd510c
```
Found 22 files trough .DS_Store spidering:

/404 Error-pana.svg
/chakra-ui-logomark-colored.svg
/favicon.ico
/fede.PNG
/fede_love.png
/instantpy.png
/ipmonitor.png
/Launching-amico.svg
/manifest.json
/next-app-chakra-ts.png
/nextjs-black-logo.svg
/nextjs-icon-dark.svg
/nextjs-icon-light.svg
/no404.png
/onlyipv6.png
/plexpy.png
/switch-off.mp3
/switch-on.mp3
/ts-logo-512.svg
/uptime.png
/vercel.svg
/yunshop.png
```
  Found on 2023-11-16 21:42
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: gatesio.cloud
Port: 443
URL: https://gatesio.cloud

First seen 2023-06-07 07:40
Last seen 2023-11-16 18:28
Open for 162 days

Severity: low
Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc605481711cdacaad246f5e6a35566703
```
Found 4 files trough .DS_Store spidering:

/.git
/index.html
/static
/static/img
```
Found on 2023-11-16 18:28

Severity: high
Fingerprint: 5f32cf5d6962f09ce9dbcc92e9dbcc9219bacfc4340d0e09cc226283aefdc8da

Found 60 files trough .DS_Store spidering:

/.idea
/.well-known
/183.html
/404.html
/appdown
/appdown/android
/appdown/html
/appdown/ios
/Application
/Application/Admin
/Application/Agent
/Application/Common
/Application/Home
/Application/Mobile
/bs.yxci.site
/Database
/Database/www_kcuoin_top.sql
/favicon.ico
/index.html
/index.php
/mynbase.php
/nginx.htaccess
/Public
/Public/Admin
/Public/Home
/Public/intel
/Public/kindeditor
/Public/layer
/Public/layui
/Public/magnific
/Public/Mobile
/Public/Static
/Public/uploadify
/Runtime
/ThinkPHP
/ThinkPHP/Common
/ThinkPHP/Conf
/ThinkPHP/Extend
/ThinkPHP/Home
/ThinkPHP/Lang
/ThinkPHP/Lib
/ThinkPHP/Library
/ThinkPHP/Mode
/ThinkPHP/Tpl
/Upload
/Upload/ad
/Upload/article
/Upload/bank
/Upload/coin
/Upload/ewm
/Upload/face
/Upload/files
/Upload/footer
/Upload/idcard
/Upload/link
/Upload/payimg
/Upload/public
/web.config
/www.Coinbaes.in
/安装教程.txt

Found on 2023-06-07 07:40

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: mexc.world
Port: 443
URL: https://mexc.world

First seen 2023-06-07 07:37
Last seen 2023-11-16 18:28
Open for 162 days
- Severity: high
  Fingerprint: 5f32cf5d6962f09cb3107650b31076505d8d3f5aa3667c7febb26719892bcd2e
```
Found 39 files trough .DS_Store spidering:

/.idea
/.well-known
/183.html
/404.html
/appdown
/appdown/android
/appdown/html
/appdown/ios
/Application
/Application/Admin
/Application/Agent
/Application/Common
/Application/Home
/Application/Mobile
/bs.yxci.site
/Database
/Database/www_kcuoin_top.sql
/favicon.ico
/index.html
/index.php
/mynbase.php
/nginx.htaccess
/Public
/Public/Admin
/Public/Home
/Public/intel
/Public/kindeditor
/Public/layer
/Public/layui
/Public/magnific
/Public/Mobile
/Public/Static
/Public/uploadify
/Runtime
/ThinkPHP
/Upload
/web.config
/www.Coinbaes.in
/安装教程.txt
```
  Found on 2023-11-16 18:28
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: ghajm.didinistesh.online
Port: 443
URL: https://ghajm.didinistesh.online

First seen 2023-09-10 19:32
Last seen 2023-11-16 17:57
Open for 66 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522d52ad3e1
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@bitbucket.org:ux928374/landing.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2023-11-16 17:57
  
  259 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: humanstory.cn
Port: 443
URL: https://humanstory.cn

First seen 2023-04-10 09:30
Last seen 2023-11-03 17:49
Open for 207 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652224b9a8fb
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[branch "master"]
[remote "origin"]
	url = hsc@cloud.lonery.com:git/humanstory.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2023-11-03 17:49
  
  220 Bytes
Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: gravatar.shiyistudios.com
Port: 443
URL: https://gravatar.shiyistudios.com

First seen 2023-06-16 14:46
Last seen 2023-10-26 22:39
Open for 132 days

Fingerprint: b18befd9dd6536820a514fc00a514fc00a514fc00a514fc00a514fc00a514fc0

{"entry":[{"hash":"00c8267d51c7947fbc2e44bbea3db8e0","requestHash":"config","profileUrl":"https:\/\/gravatar.com\/config","preferredUsername":"config","thumbnailUrl":"https:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","photos":[{"value":"https:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","type":"thumbnail"}],"hidden_avatar":false,"displayName":"config","aboutMe":"Founder of config.com, Entrepreneur, and Search Engine Optimizer.\r\n\r\nAuthor of the 1st URL advertised in a computer magazine.","urls":[],"share_flags":{"search_engines":true}}]}

Found on 2023-10-26 22:39

Fingerprint: b18befd9dd65368246d7ef7f46d7ef7f46d7ef7f46d7ef7f46d7ef7f46d7ef7f

{"entry":[{"hash":"00c8267d51c7947fbc2e44bbea3db8e0","requestHash":"config","profileUrl":"https:\/\/gravatar.com\/config","preferredUsername":"config","thumbnailUrl":"https:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","photos":[{"value":"https:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","type":"thumbnail"}],"displayName":"config","aboutMe":"Founder of config.com, Entrepreneur, and Search Engine Optimizer.\r\n\r\nAuthor of the 1st URL advertised in a computer magazine.","urls":[],"share_flags":{"search_engines":true}}]}

Found on 2023-10-14 13:25

Fingerprint: b18befd9dd653682d7b48d7cd7b48d7cd7b48d7cd7b48d7cd7b48d7cd7b48d7c

{"entry":[{"hash":"00c8267d51c7947fbc2e44bbea3db8e0","requestHash":"config","profileUrl":"https:\/\/gravatar.com\/config","preferredUsername":"config","thumbnailUrl":"https:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","photos":[{"value":"https:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","type":"thumbnail"}],"displayName":"config","aboutMe":"Founder of config.com, Entrepreneur, and Search Engine Optimizer.\r\n\r\nAuthor of the 1st URL advertised in a computer magazine.","urls":[]}]}

Found on 2023-08-15 13:53

Fingerprint: b18befd9dd653682f786f4cef786f4cef786f4cef786f4cef786f4cef786f4ce

{"entry":[{"id":"299423","hash":"00c8267d51c7947fbc2e44bbea3db8e0","requestHash":"config","profileUrl":"https:\/\/gravatar.com\/config","preferredUsername":"config","thumbnailUrl":"https:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","photos":[{"value":"https:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","type":"thumbnail"}],"displayName":"config","aboutMe":"Founder of config.com, Entrepreneur, and Search Engine Optimizer.\r\n\r\nAuthor of the 1st URL advertised in a computer magazine.","urls":[]}]}

Found on 2023-06-16 14:46

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 104.16.144.242
Domain: gravatar.xh-ws.com
Port: 443
URL: https://gravatar.xh-ws.com

First seen 2022-07-06 15:31
Last seen 2023-10-26 17:37
Open for 477 days

Fingerprint: b18befd9dd6536820a514fc00a514fc00a514fc00a514fc00a514fc00a514fc0

{"entry":[{"hash":"00c8267d51c7947fbc2e44bbea3db8e0","requestHash":"config","profileUrl":"https:\/\/gravatar.com\/config","preferredUsername":"config","thumbnailUrl":"https:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","photos":[{"value":"https:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","type":"thumbnail"}],"hidden_avatar":false,"displayName":"config","aboutMe":"Founder of config.com, Entrepreneur, and Search Engine Optimizer.\r\n\r\nAuthor of the 1st URL advertised in a computer magazine.","urls":[],"share_flags":{"search_engines":true}}]}

Found on 2023-10-26 17:37

Fingerprint: b18befd9dd65368246d7ef7f46d7ef7f46d7ef7f46d7ef7f46d7ef7f46d7ef7f

{"entry":[{"hash":"00c8267d51c7947fbc2e44bbea3db8e0","requestHash":"config","profileUrl":"https:\/\/gravatar.com\/config","preferredUsername":"config","thumbnailUrl":"https:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","photos":[{"value":"https:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","type":"thumbnail"}],"displayName":"config","aboutMe":"Founder of config.com, Entrepreneur, and Search Engine Optimizer.\r\n\r\nAuthor of the 1st URL advertised in a computer magazine.","urls":[],"share_flags":{"search_engines":true}}]}

Found on 2023-10-11 04:07

Fingerprint: b18befd9dd653682d7b48d7cd7b48d7cd7b48d7cd7b48d7cd7b48d7cd7b48d7c

{"entry":[{"hash":"00c8267d51c7947fbc2e44bbea3db8e0","requestHash":"config","profileUrl":"https:\/\/gravatar.com\/config","preferredUsername":"config","thumbnailUrl":"https:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","photos":[{"value":"https:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","type":"thumbnail"}],"displayName":"config","aboutMe":"Founder of config.com, Entrepreneur, and Search Engine Optimizer.\r\n\r\nAuthor of the 1st URL advertised in a computer magazine.","urls":[]}]}

Found on 2023-08-07 20:18

Fingerprint: b18befd9dd653682f786f4cef786f4cef786f4cef786f4cef786f4cef786f4ce

{"entry":[{"id":"299423","hash":"00c8267d51c7947fbc2e44bbea3db8e0","requestHash":"config","profileUrl":"https:\/\/gravatar.com\/config","preferredUsername":"config","thumbnailUrl":"https:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","photos":[{"value":"https:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","type":"thumbnail"}],"displayName":"config","aboutMe":"Founder of config.com, Entrepreneur, and Search Engine Optimizer.\r\n\r\nAuthor of the 1st URL advertised in a computer magazine.","urls":[]}]}

Found on 2023-06-05 03:26

Fingerprint: b18befd9dd65368245ef0ad145ef0ad145ef0ad145ef0ad145ef0ad145ef0ad1

{"entry":[{"id":"299423","hash":"00c8267d51c7947fbc2e44bbea3db8e0","requestHash":"config","profileUrl":"http:\/\/gravatar.com\/config","preferredUsername":"config","thumbnailUrl":"https:\/\/secure.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","photos":[{"value":"https:\/\/secure.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","type":"thumbnail"}],"displayName":"config","aboutMe":"Founder of config.com, Entrepreneur, and Search Engine Optimizer.\r\n\r\nAuthor of the 1st URL advertised in a computer magazine.","urls":[]}]}

Found on 2022-07-06 15:31

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: rachel.utalkingtome.tk
Port: 443
URL: https://rachel.utalkingtome.tk

First seen 2023-02-16 10:59
Last seen 2023-10-26 17:18
Open for 252 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522c30492df
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/BuckyMaler/global.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-10-26 17:18
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: getbenefits.ru
Port: 80
URL: http://getbenefits.ru

First seen 2023-10-11 17:53
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522f78d34f8
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@bitbucket.org:igramnet/website-laravel.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-10-11 17:53
  
  271 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: ltc.liutc.top
Port: 443
URL: https://ltc.liutc.top

First seen 2023-09-28 05:17
Last seen 2023-10-11 02:42
Open for 12 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642f097af5e8bd6b8758bd6b8758bd6b875
```
Found 2 files trough .DS_Store spidering:

/admin
/usr
```
  Found on 2023-10-11 02:42
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: ld.sockio.com
Port: 80
URL: http://ld.sockio.com

First seen 2023-10-01 10:44
Last seen 2023-10-03 17:00
Open for 2 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-10-03 17:00
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: ld.sockio.com
Port: 443
URL: https://ld.sockio.com

First seen 2023-10-01 10:44
Last seen 2023-10-03 16:54
Open for 2 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-10-03 16:54
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: newnode.myftp.org
Port: 80
URL: http://newnode.myftp.org

First seen 2023-09-21 17:06
Last seen 2023-09-23 09:02
Open for 1 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522704afe32
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/SPIN-UMass/mbwebsite.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2023-09-21 17:06
  
  206 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn.caijunjie.net
Port: 443
URL: https://cdn.caijunjie.net

First seen 2023-02-17 11:49
Last seen 2023-09-23 02:27
Open for 217 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522928289b3
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/cloudreve/Cloudreve.git
	fetch = +refs/heads/master:refs/remotes/origin/master
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-02-17 11:49
  
  277 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: rn-sjc-1-gc.5fq.de
Port: 443
URL: https://rn-sjc-1-gc.5fq.de

First seen 2023-03-16 05:32
Last seen 2023-09-23 00:50
Open for 190 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522e4af0ccb
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/BKcore/HexGL.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-03-16 05:32
  
  260 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: newnode.ddns.net
Port: 80
URL: http://newnode.ddns.net

First seen 2023-09-14 17:38
Last seen 2023-09-23 00:29
Open for 8 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522704afe32
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/SPIN-UMass/mbwebsite.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2023-09-14 17:38
  
  206 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: newnode.ddns.net
Port: 443
URL: https://newnode.ddns.net

First seen 2023-09-14 17:38
Last seen 2023-09-23 00:29
Open for 8 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522704afe32
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/SPIN-UMass/mbwebsite.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2023-09-14 17:38
  
  206 Bytes
Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: gravatar.shiyistudios.com
Port: 80
URL: http://gravatar.shiyistudios.com

First seen 2023-04-17 15:17
Last seen 2023-09-23 00:17
Open for 158 days

Fingerprint: b18befd9dd653682d7b48d7cd7b48d7cd7b48d7cd7b48d7cd7b48d7cd7b48d7c

{"entry":[{"hash":"00c8267d51c7947fbc2e44bbea3db8e0","requestHash":"config","profileUrl":"https:\/\/gravatar.com\/config","preferredUsername":"config","thumbnailUrl":"https:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","photos":[{"value":"https:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","type":"thumbnail"}],"displayName":"config","aboutMe":"Founder of config.com, Entrepreneur, and Search Engine Optimizer.\r\n\r\nAuthor of the 1st URL advertised in a computer magazine.","urls":[]}]}

Found on 2023-08-15 13:53

Fingerprint: b18befd9dd653682f786f4cef786f4cef786f4cef786f4cef786f4cef786f4ce

{"entry":[{"id":"299423","hash":"00c8267d51c7947fbc2e44bbea3db8e0","requestHash":"config","profileUrl":"https:\/\/gravatar.com\/config","preferredUsername":"config","thumbnailUrl":"https:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","photos":[{"value":"https:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","type":"thumbnail"}],"displayName":"config","aboutMe":"Founder of config.com, Entrepreneur, and Search Engine Optimizer.\r\n\r\nAuthor of the 1st URL advertised in a computer magazine.","urls":[]}]}

Found on 2023-06-16 14:46

Fingerprint: b18befd9dd653682018d5c49018d5c49018d5c49018d5c49018d5c49018d5c49

{"entry":[{"id":"299423","hash":"00c8267d51c7947fbc2e44bbea3db8e0","requestHash":"config","profileUrl":"http:\/\/gravatar.com\/config","preferredUsername":"config","thumbnailUrl":"http:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","photos":[{"value":"http:\/\/0.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","type":"thumbnail"}],"displayName":"config","aboutMe":"Founder of config.com, Entrepreneur, and Search Engine Optimizer.\r\n\r\nAuthor of the 1st URL advertised in a computer magazine.","urls":[]}]}

Found on 2023-04-17 15:17

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: bw-gc.5fq.de
Port: 443
URL: https://bw-gc.5fq.de

First seen 2023-03-17 04:14
Last seen 2023-09-23 00:04
Open for 189 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522e4af0ccb
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/BKcore/HexGL.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-03-17 04:14
  
  260 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdn.cindyhodev.com
Port: 443
URL: https://cdn.cindyhodev.com

First seen 2023-02-16 23:10
Last seen 2023-09-22 23:19
Open for 218 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0f7290ab138d2b1d167904e1af7904e1af
```
Found 3 files trough .DS_Store spidering:

/draco
/favicon
/pm-tool_children-tree.jpg
```
  Found on 2023-02-16 23:10
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: bw-gc.5fq.de
Port: 80
URL: http://bw-gc.5fq.de

First seen 2023-03-17 04:14
Last seen 2023-09-22 22:54
Open for 189 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522e4af0ccb
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/BKcore/HexGL.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-03-17 04:14
  
  260 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn.batteryworld.com
Port: 80
URL: http://cdn.batteryworld.com

First seen 2023-04-15 23:10
Last seen 2023-09-22 21:49
Open for 159 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652251b7aded
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@bitbucket.org:mit686/batteryworld.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-04-15 23:10
  
  266 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn.batteryworld.com
Port: 443
URL: https://cdn.batteryworld.com

First seen 2023-04-15 23:10
Last seen 2023-09-16 18:29
Open for 153 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652251b7aded
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@bitbucket.org:mit686/batteryworld.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-04-15 23:10
  
  266 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: rn-sjc-1-gc.5fq.de
Port: 80
URL: http://rn-sjc-1-gc.5fq.de

First seen 2023-03-16 05:32
Last seen 2023-09-16 14:51
Open for 184 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522e4af0ccb
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/BKcore/HexGL.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-03-16 05:32
  
  260 Bytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdn247365.com
Port: 443
URL: https://cdn247365.com

First seen 2023-08-08 14:21
Last seen 2023-09-10 17:12
Open for 33 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b73f639924b96712f21dd42c884b618536

Found 128 files trough .DS_Store spidering:

/404.php
/enrichment.php
/home
/imageidex
/imageidex/0
/imageidex/002a.jpg
/imageidex/0119.png
/imageidex/1
/imageidex/1/k5081qtnr2.png
/imageidex/1/ro6k5cxvw4.png
/imageidex/1/tcuifv56o2.png
/imageidex/1.jpg
/imageidex/10
/imageidex/10.jpg
/imageidex/10267.png
/imageidex/10556.jpeg
/imageidex/10712.png
/imageidex/10756.jpeg
/imageidex/10820.png
/imageidex/10890.png
/imageidex/11.jpg
/imageidex/11067.png
/imageidex/11271.jpeg
/imageidex/11894.png
/imageidex/123399.png
/imageidex/12782.png
/imageidex/12842.png
/imageidex/12982.png
/imageidex/12993.png
/imageidex/13077.png
/imageidex/13630.png
/imageidex/13877.png
/imageidex/13883.png
/imageidex/14125.png
/imageidex/14403.png
/imageidex/14994.png
/imageidex/15363.png
/imageidex/15548.png
/imageidex/15634.png
/imageidex/16051.png
/imageidex/16523.jpeg
/imageidex/172373.jpeg
/imageidex/17362.png
/imageidex/17433.png
/imageidex/17925.jpg
/imageidex/17987.jpeg
/imageidex/18594.png
/imageidex/18700.png
/imageidex/19051.png
/imageidex/19301.png
/imageidex/19327.png
/imageidex/19719.jpeg
/imageidex/19904.png
/imageidex/19905.png
/imageidex/1logo.png
/imageidex/2
/imageidex/2.jpg
/imageidex/20834.png
/imageidex/21205.png
/imageidex/21482.png
/imageidex/2197.png
/imageidex/221.css
/imageidex/22367.jpg
/imageidex/22asd.png
/imageidex/23127.png
/imageidex/2317.png
/imageidex/23190.png
/imageidex/23420.jpeg
/imageidex/23631.png
/imageidex/23803.png
/imageidex/24140.png
/imageidex/2441.png
/imageidex/24957.png
/imageidex/24959.jpeg
/imageidex/2566.jpg
/imageidex/26091.png
/imageidex/26284.png
/imageidex/26631.png
/imageidex/27093.png
/imageidex/27315.png
/imageidex/27343.png
/imageidex/27601.jpeg
/imageidex/27722.png
/imageidex/27898.png
/imageidex/2809.png
/imageidex/28301.png
/imageidex/2831.png
/imageidex/29141.png
/imageidex/29429.png
/imageidex/29908.svg
/imageidex/29912.png
/imageidex/3
/imageidex/3.jpg
/imageidex/300.png
/imageidex/30285.png
/imageidex/30881.png
/imageidex/31133.png
/imageidex/31309.png
/imageidex/31647.jpeg
/imageidex/31731.jpeg
/imageidex/31996.png
/imageidex/32271.png
/imageidex/32284.png
/imageidex/32558.png
/imageidex/32592.png
/imageidex/3261.jpeg
/imageidex/38wul.png
/imageidex/3twz2fc8eb.png
/imageidex/4
/imageidex/4.jpg
/imageidex/4112.png
/imageidex/4135.jpg
/imageidex/4171.jpg
/imageidex/4247.png
/imageidex/4356.png
/imageidex/441234.css
/imageidex/4422.png
/imageidex/4734.png
/imageidex/49l.jpg
/imageidex/5
/imageidex/5/k5081qtnr2.png
/imageidex/5/ro6k5cxvw4.png
/imageidex/5.jpg
/imageidex/5043.jpg
/imageidex/5274.png
/imageidex/5331.css
/imageidex/5582.jpg
/imageidex/5627.jpeg

Found on 2023-08-08 14:21

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdn247365.com
Port: 80
URL: http://cdn247365.com

First seen 2023-08-08 14:21
Last seen 2023-09-10 15:23
Open for 33 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b73f639924b96712f21dd42c884b618536

Found 128 files trough .DS_Store spidering:

/404.php
/enrichment.php
/home
/imageidex
/imageidex/0
/imageidex/002a.jpg
/imageidex/0119.png
/imageidex/1
/imageidex/1/k5081qtnr2.png
/imageidex/1/ro6k5cxvw4.png
/imageidex/1/tcuifv56o2.png
/imageidex/1.jpg
/imageidex/10
/imageidex/10.jpg
/imageidex/10267.png
/imageidex/10556.jpeg
/imageidex/10712.png
/imageidex/10756.jpeg
/imageidex/10820.png
/imageidex/10890.png
/imageidex/11.jpg
/imageidex/11067.png
/imageidex/11271.jpeg
/imageidex/11894.png
/imageidex/123399.png
/imageidex/12782.png
/imageidex/12842.png
/imageidex/12982.png
/imageidex/12993.png
/imageidex/13077.png
/imageidex/13630.png
/imageidex/13877.png
/imageidex/13883.png
/imageidex/14125.png
/imageidex/14403.png
/imageidex/14994.png
/imageidex/15363.png
/imageidex/15548.png
/imageidex/15634.png
/imageidex/16051.png
/imageidex/16523.jpeg
/imageidex/172373.jpeg
/imageidex/17362.png
/imageidex/17433.png
/imageidex/17925.jpg
/imageidex/17987.jpeg
/imageidex/18594.png
/imageidex/18700.png
/imageidex/19051.png
/imageidex/19301.png
/imageidex/19327.png
/imageidex/19719.jpeg
/imageidex/19904.png
/imageidex/19905.png
/imageidex/1logo.png
/imageidex/2
/imageidex/2.jpg
/imageidex/20834.png
/imageidex/21205.png
/imageidex/21482.png
/imageidex/2197.png
/imageidex/221.css
/imageidex/22367.jpg
/imageidex/22asd.png
/imageidex/23127.png
/imageidex/2317.png
/imageidex/23190.png
/imageidex/23420.jpeg
/imageidex/23631.png
/imageidex/23803.png
/imageidex/24140.png
/imageidex/2441.png
/imageidex/24957.png
/imageidex/24959.jpeg
/imageidex/2566.jpg
/imageidex/26091.png
/imageidex/26284.png
/imageidex/26631.png
/imageidex/27093.png
/imageidex/27315.png
/imageidex/27343.png
/imageidex/27601.jpeg
/imageidex/27722.png
/imageidex/27898.png
/imageidex/2809.png
/imageidex/28301.png
/imageidex/2831.png
/imageidex/29141.png
/imageidex/29429.png
/imageidex/29908.svg
/imageidex/29912.png
/imageidex/3
/imageidex/3.jpg
/imageidex/300.png
/imageidex/30285.png
/imageidex/30881.png
/imageidex/31133.png
/imageidex/31309.png
/imageidex/31647.jpeg
/imageidex/31731.jpeg
/imageidex/31996.png
/imageidex/32271.png
/imageidex/32284.png
/imageidex/32558.png
/imageidex/32592.png
/imageidex/3261.jpeg
/imageidex/38wul.png
/imageidex/3twz2fc8eb.png
/imageidex/4
/imageidex/4.jpg
/imageidex/4112.png
/imageidex/4135.jpg
/imageidex/4171.jpg
/imageidex/4247.png
/imageidex/4356.png
/imageidex/441234.css
/imageidex/4422.png
/imageidex/4734.png
/imageidex/49l.jpg
/imageidex/5
/imageidex/5/k5081qtnr2.png
/imageidex/5/ro6k5cxvw4.png
/imageidex/5.jpg
/imageidex/5043.jpg
/imageidex/5274.png
/imageidex/5331.css
/imageidex/5582.jpg
/imageidex/5627.jpeg

Found on 2023-08-08 14:21

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdn.jobicy.com
Port: 80
URL: http://cdn.jobicy.com

First seen 2023-08-24 10:16
- Severity: low
  Fingerprint: 5f32cf5d6962f09c31c2f0b631c2f0b666b2a43afae5272bb02d515177e853a3
```
Found 28 files trough .DS_Store spidering:

/CHANGELOG.md
/config
/console
/CONTRIBUTING.md
/core
/DIObject.php
/index.php
/js
/lang
/LegacyAutoloader.php
/LEGALNOTICE
/libs
/LICENSE
/matomo.js
/matomo.php
/misc
/node_modules
/offline-service-worker.js
/piwik.js
/piwik.php
/plugins
/PRIVACY.md
/README.md
/robots.txt
/SECURITY.md
/tests
/tmp
/vendor
```
  Found on 2023-08-24 10:16
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: u1sbobet.com
Port: 80
URL: http://u1sbobet.com

First seen 2023-04-15 17:43
Last seen 2023-08-20 08:48
Open for 126 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c4239b3d84239b3d8923fd0153b8f180308ba66deff6a3679
```
Found 8 files trough .DS_Store spidering:

/.well-known
/assets
/build
/css
/img
/js
/maintenance
/portal
```
  Found on 2023-04-15 17:43
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: humanstory.cn
Port: 80
URL: http://humanstory.cn

First seen 2023-04-10 09:30
Last seen 2023-08-13 04:27
Open for 124 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652224b9a8fb
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[branch "master"]
[remote "origin"]
	url = hsc@cloud.lonery.com:git/humanstory.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2023-04-10 09:30
  
  220 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: staging.hitent.net
Port: 80
URL: http://staging.hitent.net

First seen 2023-06-13 13:37
Last seen 2023-07-27 11:12
Open for 43 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9db7f4c636b7f4c636b7f4c636b7f4c636
```
Found 1 files trough .DS_Store spidering:

/images
```
  Found on 2023-06-13 13:37
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: orca88djigurda.online
Port: 80
URL: http://orca88djigurda.online

First seen 2023-07-26 11:11
- Severity: high
  Fingerprint: 5f32cf5d6962f09c026392ab026392ab039bd3aba40220cbdc6c82d842f2cd5f
```
Found 7 files trough .DS_Store spidering:

/Archive.zip
/css
/fonts
/handler.php
/images
/index.php
/js
```
  Found on 2023-07-26 11:11
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: betinexch.in
Port: 80
URL: http://betinexch.in

First seen 2023-07-26 08:52
- Severity: low
  Fingerprint: 5f32cf5d6962f09cdc57c57adc57c57a00c49d213a1fa79b69e51c0fe5f8abae
```
Found 19 files trough .DS_Store spidering:

/apk-mobile.html
/apk.html
/app-mobile.html
/app.html
/betting-exchange-mobile.html
/betting-exchange.html
/img
/index-mobile.html
/index.html
/inplay-betting-mobile.html
/inplay-betting.html
/login-mobile.html
/login.html
/mob-betting-mobile.html
/mob-betting.html
/scripts
/styles
/support-mobile.html
/support.html
```
  Found on 2023-07-26 08:52
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdn.steadysub.com
Port: 80
URL: http://cdn.steadysub.com

First seen 2023-01-24 09:51
Last seen 2023-07-23 09:38
Open for 179 days

Severity: low
Fingerprint: 5f32cf5d6962f09c81c345f781c345f7b23a49e11d2ebc41d86ef5e191d63da5

Found 32 files trough .DS_Store spidering:

/adminasset
/adminasset/assets
/adminasset/assets/css
/adminasset/assets/img
/adminasset/assets/js
/adminasset/bootstrap
/adminasset/plugins
/adminasset/sass
/assets
/assets/css
/assets/img
/assets/js
/assets/vendor
/assets/vendor/aos
/assets/vendor/bootstrap
/assets/vendor/bootstrap-icons
/assets/vendor/boxicons
/assets/vendor/glightbox
/assets/vendor/isotope-layout
/assets/vendor/php-email-form
/assets/vendor/swiper
/cdn
/favicon.ico
/frontend
/growth
/hot
/index.php
/js
/profilepic
/robots.txt
/superasset
/vendor

Found on 2023-07-23 09:38

Severity: high
Fingerprint: 5f32cf5d6962f09c114fbe07114fbe0765a29771de7106b1c1c52c718ce57a56

Found 47 files trough .DS_Store spidering:

/adminasset
/adminasset/assets
/adminasset/assets/css
/adminasset/assets/img
/adminasset/assets/js
/adminasset/bootstrap
/adminasset/plugins
/adminasset/sass
/assets
/assets/css
/assets/img
/assets/js
/assets/vendor
/assets/vendor/aos
/assets/vendor/bootstrap
/assets/vendor/bootstrap-icons
/assets/vendor/boxicons
/assets/vendor/glightbox
/assets/vendor/isotope-layout
/assets/vendor/php-email-form
/assets/vendor/swiper
/cdn
/favicon.ico
/frontend
/growth
/growth/images
/growth/jpeg
/growth/mockups
/growth/png
/growth/steadysub-brand guideline.pdf
/growth/steadysub.zip
/growth/svg
/hot
/index.php
/js
/profilepic
/robots.txt
/superasset
/superasset/assets
/superasset/assets/css
/superasset/assets/img
/superasset/assets/js
/superasset/bootstrap
/superasset/plugins
/superasset/sass
/vendor
/vendor/livewire

Found on 2023-05-24 09:42

Severity: low
Fingerprint: 5f32cf5d6962f09c0f8dcf020f8dcf02ed2b90fad71eff7e2843e54ac9c5653b

Found 24 files trough .DS_Store spidering:

/adminasset
/adminasset/assets
/adminasset/assets/css
/adminasset/assets/img
/adminasset/assets/js
/adminasset/bootstrap
/adminasset/plugins
/adminasset/sass
/assets
/assets/css
/assets/img
/assets/js
/assets/vendor
/cdn
/favicon.ico
/frontend
/growth
/hot
/index.php
/js
/profilepic
/robots.txt
/superasset
/vendor

Found on 2023-01-24 09:51

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdn.steadysub.com
Port: 443
URL: https://cdn.steadysub.com

First seen 2023-01-24 09:51
Last seen 2023-07-23 09:38
Open for 179 days

Severity: low
Fingerprint: 5f32cf5d6962f09c81c345f781c345f7b23a49e11d2ebc41d86ef5e191d63da5

Found 32 files trough .DS_Store spidering:

/adminasset
/adminasset/assets
/adminasset/assets/css
/adminasset/assets/img
/adminasset/assets/js
/adminasset/bootstrap
/adminasset/plugins
/adminasset/sass
/assets
/assets/css
/assets/img
/assets/js
/assets/vendor
/assets/vendor/aos
/assets/vendor/bootstrap
/assets/vendor/bootstrap-icons
/assets/vendor/boxicons
/assets/vendor/glightbox
/assets/vendor/isotope-layout
/assets/vendor/php-email-form
/assets/vendor/swiper
/cdn
/favicon.ico
/frontend
/growth
/hot
/index.php
/js
/profilepic
/robots.txt
/superasset
/vendor

Found on 2023-07-23 09:38

Severity: high
Fingerprint: 5f32cf5d6962f09c114fbe07114fbe0765a29771de7106b1c1c52c718ce57a56

Found 47 files trough .DS_Store spidering:

/adminasset
/adminasset/assets
/adminasset/assets/css
/adminasset/assets/img
/adminasset/assets/js
/adminasset/bootstrap
/adminasset/plugins
/adminasset/sass
/assets
/assets/css
/assets/img
/assets/js
/assets/vendor
/assets/vendor/aos
/assets/vendor/bootstrap
/assets/vendor/bootstrap-icons
/assets/vendor/boxicons
/assets/vendor/glightbox
/assets/vendor/isotope-layout
/assets/vendor/php-email-form
/assets/vendor/swiper
/cdn
/favicon.ico
/frontend
/growth
/growth/images
/growth/jpeg
/growth/mockups
/growth/png
/growth/steadysub-brand guideline.pdf
/growth/steadysub.zip
/growth/svg
/hot
/index.php
/js
/profilepic
/robots.txt
/superasset
/superasset/assets
/superasset/assets/css
/superasset/assets/img
/superasset/assets/js
/superasset/bootstrap
/superasset/plugins
/superasset/sass
/vendor
/vendor/livewire

Found on 2023-05-24 09:42

Severity: low
Fingerprint: 5f32cf5d6962f09c0f8dcf020f8dcf02ed2b90fad71eff7e2843e54ac9c5653b

Found 24 files trough .DS_Store spidering:

/adminasset
/adminasset/assets
/adminasset/assets/css
/adminasset/assets/img
/adminasset/assets/js
/adminasset/bootstrap
/adminasset/plugins
/adminasset/sass
/assets
/assets/css
/assets/img
/assets/js
/assets/vendor
/cdn
/favicon.ico
/frontend
/growth
/hot
/index.php
/js
/profilepic
/robots.txt
/superasset
/vendor

Found on 2023-01-24 09:51

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: g100.qwer.fun
Port: 80
URL: http://g100.qwer.fun

First seen 2023-03-12 15:07
Last seen 2023-07-10 14:40
Open for 119 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0fd02d6687ffa752cf31197ce731197ce7
```
Found 3 files trough .DS_Store spidering:

/css
/img
/js
```
  Found on 2023-03-12 15:07
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: g100.qwer.fun
Port: 443
URL: https://g100.qwer.fun

First seen 2023-03-12 15:07
Last seen 2023-07-10 14:40
Open for 119 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0fd02d6687ffa752cf31197ce731197ce7
```
Found 3 files trough .DS_Store spidering:

/css
/img
/js
```
  Found on 2023-03-12 15:07
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: test.hmtech.top
Port: 443
URL: https://test.hmtech.top

First seen 2023-03-11 15:09
Last seen 2023-07-09 14:30
Open for 119 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522928289b3
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/cloudreve/Cloudreve.git
	fetch = +refs/heads/master:refs/remotes/origin/master
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-03-11 15:09
  
  277 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: test.hmtech.top
Port: 80
URL: http://test.hmtech.top

First seen 2023-03-11 15:09
Last seen 2023-07-09 14:30
Open for 119 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522928289b3
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/cloudreve/Cloudreve.git
	fetch = +refs/heads/master:refs/remotes/origin/master
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-03-11 15:09
  
  277 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: mobile.engieenergy.cc
Port: 443
URL: https://mobile.engieenergy.cc

First seen 2023-04-07 09:04
Last seen 2023-07-09 06:31
Open for 92 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dbf6c76b9bf6c76b9bf6c76b9bf6c76b9
```
Found 1 files trough .DS_Store spidering:

/未命名文件夹
```
  Found on 2023-07-09 06:31
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642b9618ce70a3d9e170a3d9e170a3d9e17
```
Found 2 files trough .DS_Store spidering:

/.git
/.hbuilderx
```
  Found on 2023-04-07 09:04
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: mobile.engieenergy.cc
Port: 80
URL: http://mobile.engieenergy.cc

First seen 2023-04-07 09:04
Last seen 2023-07-09 06:31
Open for 92 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dbf6c76b9bf6c76b9bf6c76b9bf6c76b9
```
Found 1 files trough .DS_Store spidering:

/未命名文件夹
```
  Found on 2023-07-09 06:31
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642b9618ce70a3d9e170a3d9e170a3d9e17
```
Found 2 files trough .DS_Store spidering:

/.git
/.hbuilderx
```
  Found on 2023-04-07 09:04
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: v.hmtech.top
Port: 443
URL: https://v.hmtech.top

First seen 2023-03-08 16:58
Last seen 2023-07-06 16:43
Open for 119 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522928289b3
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/cloudreve/Cloudreve.git
	fetch = +refs/heads/master:refs/remotes/origin/master
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-03-08 16:58
  
  277 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: v.hmtech.top
Port: 80
URL: http://v.hmtech.top

First seen 2023-03-08 16:58
Last seen 2023-07-06 16:43
Open for 119 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522928289b3
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/cloudreve/Cloudreve.git
	fetch = +refs/heads/master:refs/remotes/origin/master
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-03-08 16:58
  
  277 Bytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: staging3.icasino247.com
Port: 443
URL: https://staging3.icasino247.com

First seen 2023-07-06 12:42

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b73f74c96adb1fa5e698994b22b26e4839

Found 128 files trough .DS_Store spidering:

/.htaccess
/assets
/assets/css
/assets/fonts
/assets/games_center_panel
/assets/img
/assets/img/aff-top.png
/assets/img/aninda-papara.gif
/assets/img/available-appstore.png
/assets/img/banks
/assets/img/banks/akbank.png
/assets/img/banks/aninda-havale.png
/assets/img/banks/aninda-kredi-karti-cekim.png
/assets/img/banks/aninda-kredi-karti.png
/assets/img/banks/aninda-mefete.png
/assets/img/banks/aninda-papara.png
/assets/img/banks/aninda-qr.png
/assets/img/banks/bank-ak.png
/assets/img/banks/bank-papara.png
/assets/img/banks/bank-PTTBank.png
/assets/img/banks/bank-transfer.png
/assets/img/banks/bipay.png
/assets/img/banks/cep-bank.png
/assets/img/banks/cmt-otomatik.png
/assets/img/banks/community-bank.png
/assets/img/banks/cryptopay.png
/assets/img/banks/denizbank.png
/assets/img/banks/envoy-hizli-havale.png
/assets/img/banks/envoy-hizli-qr.png
/assets/img/banks/fastcoinpay.png
/assets/img/banks/favex.png
/assets/img/banks/finansbank.png
/assets/img/banks/garanti.png
/assets/img/banks/hayhay.png
/assets/img/banks/hayhay1.png
/assets/img/banks/hizli-havale.png
/assets/img/banks/hizlicep.png
/assets/img/banks/hmt-square.png
/assets/img/banks/ing.png
/assets/img/banks/instant-qr.png
/assets/img/banks/isbankasi.png
/assets/img/banks/jet-cmt.png
/assets/img/banks/jeton.png
/assets/img/banks/kassa.png
/assets/img/banks/kuveyturk.png
/assets/img/banks/logoTR_paygiga.png
/assets/img/banks/maksibanktransfer.png
/assets/img/banks/maksicmt.png
/assets/img/banks/maksicreditcard.png
/assets/img/banks/maksicrypto.png
/assets/img/banks/maksihavale.png
/assets/img/banks/maksihayhay.png
/assets/img/banks/maksimefete.png
/assets/img/banks/maksipapara.png
/assets/img/banks/maksipaybol.png
/assets/img/banks/maksipayfix.png
/assets/img/banks/maksipeppara.png
/assets/img/banks/minihavale.png
/assets/img/banks/mobile-odeme.png
/assets/img/banks/otomatik-cmt.png
/assets/img/banks/papara.png
/assets/img/banks/paraode.png
/assets/img/banks/payfix.png
/assets/img/banks/paygiga.png
/assets/img/banks/payturka.png
/assets/img/banks/payznet.png
/assets/img/banks/payznethavale.png
/assets/img/banks/peppara.png
/assets/img/banks/peppara1.png
/assets/img/banks/ptt.png
/assets/img/banks/qr-kod.png
/assets/img/banks/rocketpay.png
/assets/img/banks/trinkparabanktransfer.png
/assets/img/banks/trinkparacreditcard.png
/assets/img/banks/trinkparapapara.png
/assets/img/banks/trinkparapayfix.png
/assets/img/banks/trinkparapep.png
/assets/img/banks/trinkparatakas.png
/assets/img/banks/vakifbank.png
/assets/img/banks/yapikredi.png
/assets/img/bg-bonus.png
/assets/img/bg-casino.png
/assets/img/bg-games.jpg
/assets/img/bg-poker.jpg
/assets/img/bg-poker.png
/assets/img/bg-poker2.png
/assets/img/bg-tombala.png
/assets/img/body.jpg
/assets/img/body.jpg_
/assets/img/body.jpg_dead
/assets/img/casino-games
/assets/img/dealers
/assets/img/deposit
/assets/img/egt.PNG
/assets/img/favicon
/assets/img/flags
/assets/img/gamepro777.png
/assets/img/games
/assets/img/games-body
/assets/img/games-casino
/assets/img/get-it-on-play-store.png
/assets/img/habanero.png
/assets/img/header-bg.png
/assets/img/hitentlogo.png
/assets/img/icons
/assets/img/index_games
/assets/img/jackpot.png
/assets/img/loading.gif
/assets/img/logo-min.png
/assets/img/logo.png
/assets/img/logo.svg
/assets/img/pagi.png
/assets/img/password-icon.png
/assets/img/payment-methods
/assets/img/poker-bg.png
/assets/img/poker-side.png
/assets/img/promotions
/assets/img/qr-code-icon.png
/assets/img/qr-code-scan-icon.png
/assets/img/qr-code.jpg
/assets/img/rgs.png
/assets/img/saglayici.png
/assets/img/slider
/assets/img/slots
/assets/img/social
/assets/img/sonkazananlar.png
/assets/img/tamEkran.png
/assets/img/tombala

Found on 2023-07-06 12:42

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: staging3.icasino247.com
Port: 80
URL: http://staging3.icasino247.com

First seen 2023-07-06 12:42

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b73f74c96adb1fa5e698994b22b26e4839

Found 128 files trough .DS_Store spidering:

/.htaccess
/assets
/assets/css
/assets/fonts
/assets/games_center_panel
/assets/img
/assets/img/aff-top.png
/assets/img/aninda-papara.gif
/assets/img/available-appstore.png
/assets/img/banks
/assets/img/banks/akbank.png
/assets/img/banks/aninda-havale.png
/assets/img/banks/aninda-kredi-karti-cekim.png
/assets/img/banks/aninda-kredi-karti.png
/assets/img/banks/aninda-mefete.png
/assets/img/banks/aninda-papara.png
/assets/img/banks/aninda-qr.png
/assets/img/banks/bank-ak.png
/assets/img/banks/bank-papara.png
/assets/img/banks/bank-PTTBank.png
/assets/img/banks/bank-transfer.png
/assets/img/banks/bipay.png
/assets/img/banks/cep-bank.png
/assets/img/banks/cmt-otomatik.png
/assets/img/banks/community-bank.png
/assets/img/banks/cryptopay.png
/assets/img/banks/denizbank.png
/assets/img/banks/envoy-hizli-havale.png
/assets/img/banks/envoy-hizli-qr.png
/assets/img/banks/fastcoinpay.png
/assets/img/banks/favex.png
/assets/img/banks/finansbank.png
/assets/img/banks/garanti.png
/assets/img/banks/hayhay.png
/assets/img/banks/hayhay1.png
/assets/img/banks/hizli-havale.png
/assets/img/banks/hizlicep.png
/assets/img/banks/hmt-square.png
/assets/img/banks/ing.png
/assets/img/banks/instant-qr.png
/assets/img/banks/isbankasi.png
/assets/img/banks/jet-cmt.png
/assets/img/banks/jeton.png
/assets/img/banks/kassa.png
/assets/img/banks/kuveyturk.png
/assets/img/banks/logoTR_paygiga.png
/assets/img/banks/maksibanktransfer.png
/assets/img/banks/maksicmt.png
/assets/img/banks/maksicreditcard.png
/assets/img/banks/maksicrypto.png
/assets/img/banks/maksihavale.png
/assets/img/banks/maksihayhay.png
/assets/img/banks/maksimefete.png
/assets/img/banks/maksipapara.png
/assets/img/banks/maksipaybol.png
/assets/img/banks/maksipayfix.png
/assets/img/banks/maksipeppara.png
/assets/img/banks/minihavale.png
/assets/img/banks/mobile-odeme.png
/assets/img/banks/otomatik-cmt.png
/assets/img/banks/papara.png
/assets/img/banks/paraode.png
/assets/img/banks/payfix.png
/assets/img/banks/paygiga.png
/assets/img/banks/payturka.png
/assets/img/banks/payznet.png
/assets/img/banks/payznethavale.png
/assets/img/banks/peppara.png
/assets/img/banks/peppara1.png
/assets/img/banks/ptt.png
/assets/img/banks/qr-kod.png
/assets/img/banks/rocketpay.png
/assets/img/banks/trinkparabanktransfer.png
/assets/img/banks/trinkparacreditcard.png
/assets/img/banks/trinkparapapara.png
/assets/img/banks/trinkparapayfix.png
/assets/img/banks/trinkparapep.png
/assets/img/banks/trinkparatakas.png
/assets/img/banks/vakifbank.png
/assets/img/banks/yapikredi.png
/assets/img/bg-bonus.png
/assets/img/bg-casino.png
/assets/img/bg-games.jpg
/assets/img/bg-poker.jpg
/assets/img/bg-poker.png
/assets/img/bg-poker2.png
/assets/img/bg-tombala.png
/assets/img/body.jpg
/assets/img/body.jpg_
/assets/img/body.jpg_dead
/assets/img/casino-games
/assets/img/dealers
/assets/img/deposit
/assets/img/egt.PNG
/assets/img/favicon
/assets/img/flags
/assets/img/gamepro777.png
/assets/img/games
/assets/img/games-body
/assets/img/games-casino
/assets/img/get-it-on-play-store.png
/assets/img/habanero.png
/assets/img/header-bg.png
/assets/img/hitentlogo.png
/assets/img/icons
/assets/img/index_games
/assets/img/jackpot.png
/assets/img/loading.gif
/assets/img/logo-min.png
/assets/img/logo.png
/assets/img/logo.svg
/assets/img/pagi.png
/assets/img/password-icon.png
/assets/img/payment-methods
/assets/img/poker-bg.png
/assets/img/poker-side.png
/assets/img/promotions
/assets/img/qr-code-icon.png
/assets/img/qr-code-scan-icon.png
/assets/img/qr-code.jpg
/assets/img/rgs.png
/assets/img/saglayici.png
/assets/img/slider
/assets/img/slots
/assets/img/social
/assets/img/sonkazananlar.png
/assets/img/tamEkran.png
/assets/img/tombala

Found on 2023-07-06 12:42

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: clouddevhome.com
Port: 80
URL: http://clouddevhome.com

First seen 2023-07-05 15:06
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-07-05 15:06
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: los1.solareclipse.tk
Port: 80
URL: http://los1.solareclipse.tk

First seen 2022-12-30 14:14
Last seen 2023-06-28 17:42
Open for 180 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-12-30 14:14
  
  265 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: web.yaaboo.xyz
Port: 80
URL: http://web.yaaboo.xyz

First seen 2023-06-27 15:27
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc64097d28e92bac7f9ed9ac08b5348044
```
Found 4 files trough .DS_Store spidering:

/img
/img/NEW
/img/NEW/Converted Images 2020-12-28 at 5.02.49 PM
/includes
```
  Found on 2023-06-27 15:27
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: v3.gfyy.eu.org
Port: 80
URL: http://v3.gfyy.eu.org

First seen 2023-06-17 05:24
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-06-17 05:24
  
  265 Bytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: eb8.in
Port: 80
URL: http://eb8.in

First seen 2023-06-15 14:33

Severity: medium
Fingerprint: 5f32cf5d6962f09c3e8b9cac3e8b9cac1ed3429ce50658ad819b1f36806e68ce

Found 48 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/get-test
/layer
/mdate
/p_static1
/p_static1/css
/p_static1/img
/p_static1/img1
/p_static1/js
/public
/public/css
/public/img
/public/js
/red
/red/bootstrap
/red/bootstrap/css
/red/bootstrap/js
/red/swiper
/static
/static/images
/static/myself
/static/plugs
/static/plugs/angular
/static/plugs/awesome
/static/plugs/ckeditor
/static/plugs/echarts
/static/plugs/jquery
/static/plugs/layui
/static/plugs/michat
/static/plugs/require
/static/plugs/socket
/static/plugs/supersized
/static/plugs/ztree
/static/theme
/static_down
/static_indonesia
/static_new
/static_new6
/statics
/upload

Found on 2023-06-15 14:33

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: world.123221.xyz
Port: 80
URL: http://world.123221.xyz

First seen 2022-12-12 03:58
Last seen 2023-06-10 01:49
Open for 179 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-12-12 03:58
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: world.123221.xyz
Port: 443
URL: https://world.123221.xyz

First seen 2022-12-12 03:58
Last seen 2023-06-10 01:49
Open for 179 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-12-12 03:58
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: hktv.fslido.com
Port: 443
URL: https://hktv.fslido.com

First seen 2022-12-09 23:58
Last seen 2023-06-07 23:26
Open for 179 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-12-09 23:58
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: hktv.fslido.com
Port: 80
URL: http://hktv.fslido.com

First seen 2022-12-09 23:58
Last seen 2023-06-07 23:26
Open for 179 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-12-09 23:58
  
  265 Bytes
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: zabbix.decenterlized.host
Port: 443
URL: https://zabbix.decenterlized.host

First seen 2023-06-07 20:26
- Fingerprint: b18befd9dd653682b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4
```
{"auths":{"registry.digitalocean.com":{"auth":"ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ6ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ="}}}
```
  Found on 2023-06-07 20:26
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: zabbix.decenterlized.host
Port: 80
URL: http://zabbix.decenterlized.host

First seen 2023-04-08 20:45
Last seen 2023-06-07 20:26
Open for 59 days
- Fingerprint: b18befd9dd653682b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4
```
{"auths":{"registry.digitalocean.com":{"auth":"ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ6ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ="}}}
```
  Found on 2023-04-08 20:45
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: swarm.dockery.host
Port: 80
URL: http://swarm.dockery.host

First seen 2023-06-07 15:27
- Fingerprint: b18befd9dd653682b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4
```
{"auths":{"registry.digitalocean.com":{"auth":"ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ6ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ="}}}
```
  Found on 2023-06-07 15:27
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: swarm.dockery.host
Port: 443
URL: https://swarm.dockery.host

First seen 2023-06-07 15:27
- Fingerprint: b18befd9dd653682b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4
```
{"auths":{"registry.digitalocean.com":{"auth":"ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ6ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ="}}}
```
  Found on 2023-06-07 15:27
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: ubuntu.cloudmanaged.host
Port: 443
URL: https://ubuntu.cloudmanaged.host

First seen 2023-06-07 15:26
- Fingerprint: b18befd9dd653682b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4
```
{"auths":{"registry.digitalocean.com":{"auth":"ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ6ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ="}}}
```
  Found on 2023-06-07 15:26
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: ubuntu.cloudmanaged.host
Port: 80
URL: http://ubuntu.cloudmanaged.host

First seen 2023-04-08 15:50
Last seen 2023-06-07 15:26
Open for 59 days
- Fingerprint: b18befd9dd653682b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4
```
{"auths":{"registry.digitalocean.com":{"auth":"ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ6ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ="}}}
```
  Found on 2023-04-08 15:50
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: prof.studentpack.tech
Port: 443
URL: https://prof.studentpack.tech

First seen 2023-06-07 07:49
- Fingerprint: b18befd9dd653682b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4
```
{"auths":{"registry.digitalocean.com":{"auth":"ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ6ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ="}}}
```
  Found on 2023-06-07 07:49
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: prof.studentpack.tech
Port: 80
URL: http://prof.studentpack.tech

First seen 2023-04-08 07:52
Last seen 2023-06-07 07:49
Open for 59 days
- Fingerprint: b18befd9dd653682b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4
```
{"auths":{"registry.digitalocean.com":{"auth":"ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ6ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ="}}}
```
  Found on 2023-04-08 07:52
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: mexc.cool
Port: 443
URL: https://mexc.cool

First seen 2023-06-07 07:37
- Severity: high
  Fingerprint: 5f32cf5d6962f09cb3107650b31076505d8d3f5aa3667c7febb26719892bcd2e
```
Found 39 files trough .DS_Store spidering:

/.idea
/.well-known
/183.html
/404.html
/appdown
/appdown/android
/appdown/html
/appdown/ios
/Application
/Application/Admin
/Application/Agent
/Application/Common
/Application/Home
/Application/Mobile
/bs.yxci.site
/Database
/Database/www_kcuoin_top.sql
/favicon.ico
/index.html
/index.php
/mynbase.php
/nginx.htaccess
/Public
/Public/Admin
/Public/Home
/Public/intel
/Public/kindeditor
/Public/layer
/Public/layui
/Public/magnific
/Public/Mobile
/Public/Static
/Public/uploadify
/Runtime
/ThinkPHP
/Upload
/web.config
/www.Coinbaes.in
/安装教程.txt
```
  Found on 2023-06-07 07:37
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: glassdoor.jakoozdoor.tech
Port: 443
URL: https://glassdoor.jakoozdoor.tech

First seen 2023-06-07 07:29
- Fingerprint: b18befd9dd653682b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4
```
{"auths":{"registry.digitalocean.com":{"auth":"ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ6ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ="}}}
```
  Found on 2023-06-07 07:29
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: glassdoor.jakoozdoor.tech
Port: 80
URL: http://glassdoor.jakoozdoor.tech

First seen 2023-04-08 08:05
Last seen 2023-06-07 07:29
Open for 59 days
- Fingerprint: b18befd9dd653682b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4
```
{"auths":{"registry.digitalocean.com":{"auth":"ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ6ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ="}}}
```
  Found on 2023-04-08 08:05
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: minikube.managedkubernetes.cloud
Port: 80
URL: http://minikube.managedkubernetes.cloud

First seen 2023-06-07 07:28
- Fingerprint: b18befd9dd653682b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4
```
{"auths":{"registry.digitalocean.com":{"auth":"ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ6ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ="}}}
```
  Found on 2023-06-07 07:28
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: minikube.managedkubernetes.cloud
Port: 443
URL: https://minikube.managedkubernetes.cloud

First seen 2023-06-07 07:28
- Fingerprint: b18befd9dd653682b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4
```
{"auths":{"registry.digitalocean.com":{"auth":"ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ6ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ="}}}
```
  Found on 2023-06-07 07:28
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: headman.trustcycle.live
Port: 443
URL: https://headman.trustcycle.live

First seen 2023-06-07 00:28
- Fingerprint: b18befd9dd653682b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4
```
{"auths":{"registry.digitalocean.com":{"auth":"ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ6ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ="}}}
```
  Found on 2023-06-07 00:28
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: account.linemastery.cloud
Port: 80
URL: http://account.linemastery.cloud

First seen 2023-04-08 00:39
Last seen 2023-06-07 00:28
Open for 59 days
- Fingerprint: b18befd9dd653682b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4
```
{"auths":{"registry.digitalocean.com":{"auth":"ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ6ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ="}}}
```
  Found on 2023-04-08 00:39
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: account.linemastery.cloud
Port: 443
URL: https://account.linemastery.cloud

First seen 2023-06-07 00:28
- Fingerprint: b18befd9dd653682b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4
```
{"auths":{"registry.digitalocean.com":{"auth":"ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ6ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ="}}}
```
  Found on 2023-06-07 00:28
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: chief.microservicekubernetes.tech
Port: 80
URL: http://chief.microservicekubernetes.tech

First seen 2023-04-08 00:29
Last seen 2023-06-06 11:29
Open for 59 days
- Fingerprint: b18befd9dd653682b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4
```
{"auths":{"registry.digitalocean.com":{"auth":"ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ6ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ="}}}
```
  Found on 2023-04-08 00:29
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: chief.microservicekubernetes.tech
Port: 443
URL: https://chief.microservicekubernetes.tech

First seen 2023-06-06 11:29
- Fingerprint: b18befd9dd653682b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4
```
{"auths":{"registry.digitalocean.com":{"auth":"ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ6ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ="}}}
```
  Found on 2023-06-06 11:29
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: freeazz.tk
Port: 443
URL: https://freeazz.tk

First seen 2022-10-07 22:20
Last seen 2023-06-04 23:00
Open for 240 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf176423f3e94de06389fa006389fa006389fa0
```
Found 2 files trough .DS_Store spidering:

/assets
/gapps
```
  Found on 2022-10-07 22:20
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: freeazz.tk
Port: 80
URL: http://freeazz.tk

First seen 2022-10-07 22:20
Last seen 2023-06-04 23:00
Open for 240 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf176423f3e94de06389fa006389fa006389fa0
```
Found 2 files trough .DS_Store spidering:

/assets
/gapps
```
  Found on 2022-10-07 22:20
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: kr.sajj.live
Port: 443
URL: https://kr.sajj.live

First seen 2023-04-03 11:40
Last seen 2023-06-02 12:02
Open for 60 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-04-03 11:40
  
  265 Bytes
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: cns.learnmore.co
Port: 80
URL: http://cns.learnmore.co

First seen 2023-06-02 10:57

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31935ae804991d85c0d744915e

Apache Status

Apache Server Status for cns.learnmore.co (via 172.26.9.134)
Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Friday, 02-Jun-2023 10:57:14 UTC
Restart Time: Wednesday, 31-May-2023 14:14:50 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime: 1 day 20 hours 42 minutes 23 seconds
Server load: 0.00 0.00 0.00
Total accesses: 33367 - Total Traffic: 209.6 MB
CPU Usage: u10.75 s8.93 cu232.61 cs82.45 - .208% CPU load
.207 requests/sec - 1365 B/second - 6.4 kB/request
1 requests currently being processed, 9 idle workers
__W__.__..__..._................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection,
"S" Starting up,
"R" Reading Request,
"W" Sending Reply,
"K" Keepalive (read),
"D" DNS Lookup,
"C" Closing connection,
"L" Logging,
"G" Gracefully finishing,
"I" Idle cleanup of worker,
"." Open slot with no current process

SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest
0-0159200/586/3031_
36.45000.04.8320.19
92.223.124.45http/1.1learnmore.co:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor
1-0259210/199/1445_
11.74100.01.546.98
92.223.124.27http/1.1learnmore.co:8080GET / HTTP/1.0
2-073960/626/2925W
40.51000.05.2220.49
92.223.124.25http/1.1learnmore.co:8080GET /server-status HTTP/1.0
3-0259640/194/2881_
12.161000.01.5320.03
185.101.136.9http/1.1learnmore.co:8080GET / HTTP/1.0
4-074070/631/3071_
40.9581160.05.3220.60
2804:14c:3d86:9c51::ae55http/1.1yeswhois.com:8080POST / HTTP/1.0
5-0-0/0/2707.
32.461340112850.00.0018.63
172.26.9.134http/1.1
6-0259760/193/2925_
11.63100.01.5719.42
92.223.124.16http/1.1learnmore.co:8080GET /about HTTP/1.0
7-0159990/585/2206_
38.10000.04.9516.92
92.223.124.17http/1.1learnmore.co:8080GET /debug/default/view?panel=config HTTP/1.0
8-0-0/0/2310.
0.291340012720.00.0014.01
172.26.9.134http/1.1
9-0-0/0/1525.
29.451340212880.00.0013.47
172.26.9.134http/1.1
10-0259770/192/2377_
11.97100.01.5616.86
92.223.74.21http/1.1learnmore.co:8080GET /.vscode/sftp.json HTTP/1.0
11-0259340/198/368_
11.73110.01.682.26
92.38.168.6http/1.1learnmore.co:8080GET / HTTP/1.0
12-0-0/0/1373.
11.301340412490.00.004.07
172.26.9.134http/1.1
13-0-0/0/1198.
6.601340312140.00.003.54
172.26.9.134http/1.1
14-0-0/0/1613.
28.041339912850.00.006.94
172.26.9.134http/1.1
15-0259860/194/1412_
11.36000.01.545.24
92.223.124.45http/1.1learnmore.co:8080GET /v2/_catalog HTTP/1.0

 
SrvChild Server number - generation
PIDOS process ID
AccNumber of accesses this connection / this child / this slot
MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
ReqMilliseconds required to process most recent request
ConnKilobytes transferred this connection
ChildMegabytes transferred this child
SlotTotal megabytes transferred this slot


mod_fcgid status:
Total FastCGI processes: 0



SSL/TLS Session Cache Status: 

cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 77total entries replaced since starting: 0total entries expired since starting: 77total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 18 misstotal removes since starting: 0 hit, 1 miss

Found on 2023-06-02 10:57

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: krga.v-svr.ml
Port: 443
URL: https://krga.v-svr.ml

First seen 2023-05-29 10:51
- Fingerprint: b18befd9dd6536aa30550de579643e967c7c09727b390feb4619bccc3da6720e
```
{
    "Debug": true,
    "Retries": 0,
    "ServeNodes": [
        "ss+mws://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@127.0.0.1:3580?path=/f900516fec15go",
	"ss+mwss://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@:5443?cert=/etc/letsencrypt/live/svrsite.ga/fullchain.pem&key=/etc/letsencrypt/live/svrsite.ga/privkey.pem&probe_resist=host:127.0.0.1:80"
    ]
}
```
  Found on 2023-05-29 10:51
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: speedfortest.tk
Port: 80
URL: http://speedfortest.tk

First seen 2023-05-28 23:53

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318790cbbc8790cbbc040a11fd

Apache Status

Apache Server Status for speedfortest.tk (via 185.82.202.98)

Server Version: Apache/2.4.41 (Ubuntu) OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2022-06-14T13:30:55

Current Time: Sunday, 28-May-2023 23:53:16 UTC
Restart Time: Thursday, 20-Apr-2023 09:32:59 UTC
Parent Server Config. Generation: 28
Parent Server MPM Generation: 27
Server uptime:  38 days 14 hours 20 minutes 17 seconds
Server load: 0.01 0.04 0.13
Total accesses: 8094 - Total Traffic: 306.9 MB - Total Duration: 1172933
CPU Usage: u25.98 s49.07 cu5.36 cs8.1 - .00265% CPU load
.00243 requests/sec - 96 B/second - 38.8 kB/request - 144.914 ms/request
5 requests currently being processed, 0 idle workers
KKSKWK..........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2726047671/183/1415K
0.33101800190.818.2566.27
185.82.202.98http/1.1speedfortest.tk:80GET /about HTTP/1.1

1-2726359341/82/1508K
0.17002714300.90.3276.23
185.82.202.98http/1.1speedfortest.tk:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

2-2726795980/0/1081S
0.009922202193050.00.0046.49
127.0.0.1http/1.1

3-2726300561/209/846K
0.23101429680.914.4634.97
185.82.202.98http/1.1speedfortest.tk:80GET /debug/default/view?panel=config HTTP/1.1

4-2726300571/132/431W
0.2500755300.98.6618.67
185.82.202.98http/1.1speedfortest.tk:80GET /server-status HTTP/1.1

5-2726628173/128/817K
0.0920440979.78.6623.72
185.82.202.98http/1.1speedfortest.tk:80GET /.vscode/sftp.json HTTP/1.1

6-27-0/0/144.
0.002603110302950.00.000.36
127.0.0.1http/1.1

7-27-0/0/625.
0.002603100726160.00.0011.73
127.0.0.1http/1.1

8-27-0/0/283.
0.002603120237040.00.0010.23
127.0.0.1http/1.1

9-27-0/0/144.
0.002603120765820.00.003.26
127.0.0.1http/1.1

10-27-0/0/4.
0.00260312010.00.000.00
127.0.0.1http/1.1

11-27-0/0/72.
0.00260312015620.00.008.61
127.0.0.1http/1.1

12-27-0/0/4.
0.00715602010.00.000.00
127.0.0.1http/1.1

13-27-0/0/30.
0.00715603021150.00.000.50
127.0.0.1http/1.1

14-27-0/0/73.
0.00715608063030.00.005.04
127.0.0.1http/1.1

15-27-0/0/109.
0.00715605015490.00.000.08
127.0.0.1http/1.1

16-27-0/0/87.
0.007156010370.00.000.07
127.0.0.1http/1.1

17-27-0/0/4.
0.00715604030.00.000.00
127.0.0.1http/1.1

18-27-0/0/84.
0.007156060280.00.000.06
127.0.0.1http/1.1

19-27-0/0/9.
0.00715607020.00.000.01
127.0.0.1http/1.1

20-27-0/0/173.
0.002915200226280.00.000.46
127.0.0.1http/1.1

21-27-0/0/83.
0.007155890300.00.000.07
127.0.0.1http/1.1

22-27-0/0/1.
0.00715586000.00.000.00
127.0.0.1http/1.1

23-27-0/0/13.
0.007155870280.00.000.02
127.0.0.1http/1.1

24-27-0/0/19.
0.0071559009350.00.000.02
127.0.0.1http/1.1

25-27-0/0/22.
0.00715600011490.00.000.02
127.0.0.1http/1.1

26-27-0/0/1.
0.00715596000.00.000.00
127.0.0.1http/1.1

27-27-0/0/1.
0.00715597000.00.000.00
127.0.0.1http/1.1

28-27-0/0/1.
0.00715593000.00.000.00
127.0.0.1http/1.1

29-27-0/0/1.
0.00715591000.00.000.00
127.0.0.1http/1.1

30-27-0/0/1.
0.00715588000.00.000.00
127.0.0.1http/1.1

31-27-0/0/1.
0.00715594000.00.000.00
127.0.0.1http/1.1

32-27-0/0/1.
0.00715592000.00.000.00
127.0.0.1http/1.1

33-27-0/0/1.
0.00715595000.00.000.00
127.0.0.1http/1.1

34-27-0/0/4.
0.00715599000.00.000.00
127.0.0.1http/1.1

35-27-0/0/1.
0.00715598000.00.000.00
127.0.0.1http/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 74total entries replaced since starting: 0total entries expired since starting: 74total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 5 misstotal removes since starting: 0 hit, 0 miss


Apache/2.4.41 (Ubuntu) Server at speedfortest.tk Port 80

Found on 2023-05-28 23:53

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: or1gc.hunter8687.ml
Port: 443
URL: https://or1gc.hunter8687.ml

First seen 2023-05-23 14:01
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-05-23 14:01
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: or1gc.hunter8687.ml
Port: 80
URL: http://or1gc.hunter8687.ml

First seen 2023-03-24 13:47
Last seen 2023-05-23 14:01
Open for 60 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-03-24 13:47
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vfod.eu.org
Port: 80
URL: http://vfod.eu.org

First seen 2023-05-16 11:24
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65220a69c2a0
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/WebGLSamples/WebGLSamples.github.io.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-05-16 11:24
  
  283 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vfod.eu.org
Port: 443
URL: https://vfod.eu.org

First seen 2023-05-16 11:24
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65220a69c2a0
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/WebGLSamples/WebGLSamples.github.io.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-05-16 11:24
  
  283 Bytes
Create report
Grafana instance publicly available
Grafana instance is open to the public and could leak the following information :

System/internal statistics

Database backend credentials
IP: 81.28.12.12
Domain: graphs.ddns.net
Port: 80
URL: http://graphs.ddns.net/api/datasources

First seen 2023-05-05 18:47
- Fingerprint: afdaacf60309de55fbe6b9b4ceb1989dceb1989dceb1989dceb1989dceb1989d
```
Read-only access:
Title: Ping | path: db/ping | type: dash-db
```
  Found on 2023-05-05 18:47
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: tbt.4ginfo.ir
Port: 80
URL: http://tbt.4ginfo.ir

First seen 2023-05-05 18:20

Severity: medium
Fingerprint: 5f32cf5d6962f09c23a8a26f23a8a26f55053ea765ebd08bc896c148efde224d

Found 98 files trough .DS_Store spidering:

/about-us.html
/category-page.html
/contact-us.html
/css
/çöp
/çöp/blog-detail.html
/çöp/blog.html
/çöp/home.html
/çöp/login.html
/çöp/product-page.html
/çöp/shoping-cart.html
/çöp/shortcodes.html
/fonts
/images
/images/01.png
/images/01_tmp2141498811
/images/02.png
/images/02_tmp1135222693
/images/03.png
/images/03_tmp206165600
/images/About-us.jpg
/images/Hakkimizda.jpg
/images/iletisim.jpg
/images/img02.jpg
/images/img46.jpg
/images/kolleksiyon.jpg
/images/logo.png
/images/svg
/images/TUSSO -1.jpg
/images/TUSSO -10.jpg
/images/TUSSO -11.jpg
/images/TUSSO -12.jpg
/images/TUSSO -13.jpg
/images/TUSSO -14.jpg
/images/TUSSO -15.jpg
/images/TUSSO -16.jpg
/images/TUSSO -17.jpg
/images/TUSSO -18.jpg
/images/TUSSO -19.jpg
/images/TUSSO -2.jpg
/images/TUSSO -20.jpg
/images/TUSSO -21.jpg
/images/TUSSO -22.jpg
/images/TUSSO -23.jpg
/images/TUSSO -24.jpg
/images/TUSSO -25.jpg
/images/TUSSO -26.jpg
/images/TUSSO -27.jpg
/images/TUSSO -28.jpg
/images/TUSSO -29.jpg
/images/TUSSO -3.jpg
/images/TUSSO -30.jpg
/images/TUSSO -31.jpg
/images/TUSSO -32.jpg
/images/TUSSO -35.jpg
/images/TUSSO -36.jpg
/images/TUSSO -37.jpg
/images/TUSSO -38.jpg
/images/TUSSO -39.jpg
/images/TUSSO -4.jpg
/images/TUSSO -40.jpg
/images/TUSSO -41.jpg
/images/TUSSO -42.jpg
/images/TUSSO -43.jpg
/images/TUSSO -44.jpg
/images/TUSSO -45.jpg
/images/TUSSO -46.jpg
/images/TUSSO -47.jpg
/images/TUSSO -48.jpg
/images/TUSSO -49.jpg
/images/TUSSO -5.jpg
/images/TUSSO -50.jpg
/images/TUSSO -51.jpg
/images/TUSSO -52.jpg
/images/TUSSO -53.jpg
/images/TUSSO -54.jpg
/images/TUSSO -55.jpg
/images/TUSSO -56.jpg
/images/TUSSO -57.jpg
/images/TUSSO -58.jpg
/images/TUSSO -59.jpg
/images/TUSSO -6.jpg
/images/TUSSO -60.jpg
/images/TUSSO -61.jpg
/images/TUSSO -62.jpg
/images/TUSSO -63.jpg
/images/TUSSO -64.jpg
/images/TUSSO -65.jpg
/images/TUSSO -66.jpg
/images/TUSSO -67.jpg
/images/TUSSO -68.jpg
/images/TUSSO -7.jpg
/images/TUSSO -8.jpg
/images/TUSSO -9.jpg
/images/user.png
/index.html
/js
/style.css

Found on 2023-05-05 18:20

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: tw3.pokemonpikachu.tk
Port: 80
URL: http://tw3.pokemonpikachu.tk

First seen 2023-05-05 14:53
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-05-05 14:53
  
  265 Bytes
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: gpo.lyncshop.ir
Port: 80
URL: http://gpo.lyncshop.ir

First seen 2023-05-03 08:34
- Fingerprint: b18befd9dd6536aa30550de5bd00e69f8acd8e1ec0cd08fa59c1e8b15ed41fbe
```
{
  "plugins": [{
    "name": "fetch"
  }, {
    "name": "alt-fetch",
    "endpoints": [
      "https://guardianproject.github.io/info/",
      "https://guardianproject.gitlab.io/info/"
    ]
  }],
  "loggedComponents": ["service-worker", "fetch", "alt-fetch"]
}
```
  Found on 2023-05-03 08:34
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: xww.moe
Port: 443
URL: https://xww.moe

First seen 2023-01-05 05:19
Last seen 2023-05-03 07:43
Open for 118 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65221b4bd01a
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/MichaelTan9999/love_for_your_lover.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-05 05:19
  
  282 Bytes
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: asbab.lyncshop.ir
Port: 80
URL: http://asbab.lyncshop.ir

First seen 2023-05-03 07:38
- Fingerprint: b18befd9dd6536aa30550de5bd00e69f8acd8e1ec0cd08fa59c1e8b15ed41fbe
```
{
  "plugins": [{
    "name": "fetch"
  }, {
    "name": "alt-fetch",
    "endpoints": [
      "https://guardianproject.github.io/info/",
      "https://guardianproject.gitlab.io/info/"
    ]
  }],
  "loggedComponents": ["service-worker", "fetch", "alt-fetch"]
}
```
  Found on 2023-05-03 07:38
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cn2.sprite-cutter.com
Port: 443
URL: https://cn2.sprite-cutter.com

First seen 2023-05-02 00:13
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-05-02 00:13
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gc.overcome.cf
Port: 443
URL: https://gc.overcome.cf

First seen 2022-12-23 15:31
Last seen 2023-04-22 14:02
Open for 119 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-12-23 15:31
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gc.overcome.cf
Port: 80
URL: http://gc.overcome.cf

First seen 2022-10-24 16:13
Last seen 2023-04-22 14:02
Open for 179 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-10-24 16:13
  
  265 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: www.kalands.ir
Port: 443
URL: https://www.kalands.ir

First seen 2022-11-20 22:26
Last seen 2023-04-08 08:28
Open for 138 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a0f8c034496914264dc1e1de930146fcd5
```
Found 13 files trough .DS_Store spidering:

/.htaccess
/_d
/_d/.idea
/_d/__c
/_d/__c/composer.json
/_d/__c/composer.lock
/_d/__c/elements
/_d/__c/functions
/_d/__c/page
/_d/__c/vendor
/_d/__h
/_d/__p
/_d/__s
```
  Found on 2023-04-08 08:28
- Severity: high
  Fingerprint: 5f32cf5d6962f09c39aac35b39aac35b709e45be1918cef443128798a7a631c9
```
Found 14 files trough .DS_Store spidering:

/.htaccess
/_d
/_d/.idea
/_d/__c
/_d/__c/composer.json
/_d/__c/composer.lock
/_d/__c/elements
/_d/__c/functions
/_d/__c/page
/_d/__c/vendor
/_d/__h
/_d/__p
/_d/__s
/_d.zip
```
  Found on 2022-11-20 22:26
- Severity: high
  Fingerprint: 5f32cf5d6962f09c87f05b7087f05b7080c85cb9cc5d537d7b5a9c030cfd34ed
```
Found 26 files trough .DS_Store spidering:

/.htaccess
/_d
/_d/.idea
/_d/__c
/_d/__c/composer.json
/_d/__c/composer.lock
/_d/__c/elements
/_d/__c/functions
/_d/__c/page
/_d/__c/vendor
/_d/__h
/_d/__p
/_d/__p/.idea
/_d/__p/ajax.php
/_d/__p/bs-body.php
/_d/__p/bs-head.php
/_d/__p/bs-store.php
/_d/__p/dk-body.php
/_d/__p/dk-head.php
/_d/__p/dk-store.php
/_d/__p/es-body.php
/_d/__p/es-head.php
/_d/__p/es-store.php
/_d/__p/index.php
/_d/__s
/_d.zip
```
  Found on 2022-11-20 22:26
Create report
VSCode SFTP configuration exposed

The following URL is publicly accessible and is leaking deployment credentials

IP: 81.28.12.12
Domain: foodcheezshelf.cloud
Port: 80
URL: http://foodcheezshelf.cloud/.vscode/sftp.json

First seen 2023-04-07 09:45
- Fingerprint: 13b3a7b17cfc7502c36c325ddf7e5b13cd1b62bddd21aece8535fcfd4fbf95f4
```
{
    "name": "choosefrom.tech",
    "host": "94.130.106.93",
    "protocol": "sftp",
    "port": 22,
    "username": "root",
    "password": "UJbqcqVkvxMWubxkLMng",
    "remotePath": "/var/www/html/subscription.choosefrom.tech/",
    "uploadOnSave": true
}
```
  Found on 2023-04-07 09:45
  
  258 Bytes
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: gcore-cdn.qtr4.fun
Port: 80
URL: http://gcore-cdn.qtr4.fun

First seen 2023-02-02 16:18
Last seen 2023-04-03 15:40
Open for 59 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f0a187b7f0a187b76d406df1

Apache Status

Apache Server Status for gcore-cdn.qtr4.fun (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu)
Server MPM: prefork
Server Built: 2022-06-14T13:30:55

Current Time: Monday, 03-Apr-2023 15:40:31 UTC
Restart Time: Monday, 03-Apr-2023 05:00:18 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  10 hours 40 minutes 12 seconds
Server load: 0.78 0.64 0.52
Total accesses: 1521 - Total Traffic: 645.6 MB - Total Duration: 7636
CPU Usage: u1.18 s3.26 cu0 cs0 - .0116% CPU load
.0396 requests/sec - 17.2 kB/second - 434.7 kB/request - 5.02038 ms/request
1 requests currently being processed, 5 idle workers
__W___..........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0530/263/263_
0.470014870.0116.63116.63
127.0.0.1http/1.1cs.qtr4.fun:8880GET / HTTP/1.0

1-0540/260/260_
0.490015110.0129.44129.44
127.0.0.1http/1.1cs.qtr4.fun:8880GET /api/search?folderIds=0 HTTP/1.0

2-0550/260/260W
0.410011610.088.6688.66
127.0.0.1http/1.1cs.qtr4.fun:8880GET /server-status HTTP/1.0

3-0560/261/261_
0.430013480.098.6098.60
127.0.0.1http/1.1cs.qtr4.fun:8880GET /about HTTP/1.0

4-0570/259/259_
0.470112160.0132.00132.00
127.0.0.1http/1.1cs.qtr4.fun:8880GET /v2/_catalog HTTP/1.0

5-0893260/218/218_
0.33009110.080.3180.31
127.0.0.1http/1.1cs.qtr4.fun:8880GET /login.action HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot

Found on 2023-04-03 15:40

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f0a187b7f0a187b774386618

Apache Status

Apache Server Status for gcore-cdn.qtr4.fun (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu)
Server MPM: prefork
Server Built: 2022-06-14T13:30:55

Current Time: Thursday, 02-Feb-2023 16:18:06 UTC
Restart Time: Thursday, 02-Feb-2023 05:00:20 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  11 hours 17 minutes 45 seconds
Server load: 0.41 0.38 0.34
Total accesses: 1838 - Total Traffic: 850.7 MB - Total Duration: 5291
CPU Usage: u.95 s2.57 cu0 cs0 - .00866% CPU load
.0452 requests/sec - 21.4 kB/second - 473.9 kB/request - 2.87867 ms/request
2 requests currently being processed, 4 idle workers
___W_W..........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0530/313/313_
0.32007960.0121.16121.16
127.0.0.1http/1.1cs.qtr4.fun:8880GET / HTTP/1.0

1-0540/311/311_
0.35008690.0143.27143.27
127.0.0.1http/1.1cs.qtr4.fun:8880GET / HTTP/1.0

2-0550/312/312_
0.36009160.0155.62155.62
127.0.0.1http/1.1cs.qtr4.fun:8880GET /.vscode/sftp.json HTTP/1.0

3-0560/310/310W
0.35009470.0147.21147.21
127.0.0.1http/1.1cs.qtr4.fun:8880GET /server-status HTTP/1.0

4-0570/310/310_
0.33008430.0138.58138.58
127.0.0.1http/1.1cs.qtr4.fun:8880GET / HTTP/1.0

5-01109130/284/284_
0.32009180.0144.81144.81
127.0.0.1http/1.1cs.qtr4.fun:8880GET /.DS_Store HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot

Found on 2023-02-02 16:18

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: gcore-cdn.qtr4.fun
Port: 443
URL: https://gcore-cdn.qtr4.fun

First seen 2023-02-02 16:18
Last seen 2023-04-03 15:40
Open for 59 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f0a187b7f0a187b7508836a3

Apache Status

Apache Server Status for gcore-cdn.qtr4.fun (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu)
Server MPM: prefork
Server Built: 2022-06-14T13:30:55

Current Time: Monday, 03-Apr-2023 15:40:30 UTC
Restart Time: Monday, 03-Apr-2023 05:00:18 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  10 hours 40 minutes 11 seconds
Server load: 0.78 0.64 0.52
Total accesses: 1504 - Total Traffic: 645.6 MB - Total Duration: 7613
CPU Usage: u1.18 s3.24 cu0 cs0 - .0115% CPU load
.0392 requests/sec - 17.2 kB/second - 439.6 kB/request - 5.06184 ms/request
1 requests currently being processed, 5 idle workers
_____W..........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0530/259/259_
0.4788114850.0116.62116.62
127.0.0.1http/1.1cs.qtr4.fun:8880GET / HTTP/1.0

1-0540/258/258_
0.490115090.0129.44129.44
127.0.0.1http/1.1cs.qtr4.fun:8880GET / HTTP/1.0

2-0550/258/258_
0.410011590.088.6688.66
127.0.0.1http/1.1cs.qtr4.fun:8880GET / HTTP/1.0

3-0560/257/257_
0.4244113460.098.5998.59
127.0.0.1http/1.1cs.qtr4.fun:8880GET / HTTP/1.0

4-0570/257/257_
0.4658112060.0131.99131.99
127.0.0.1http/1.1cs.qtr4.fun:8880GET / HTTP/1.0

5-0893260/215/215W
0.33009060.080.3080.30
127.0.0.1http/1.1cs.qtr4.fun:8880GET /server-status HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot

Found on 2023-04-03 15:40

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f0a187b7f0a187b774dac950

Apache Status

Apache Server Status for gcore-cdn.qtr4.fun (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu)
Server MPM: prefork
Server Built: 2022-06-14T13:30:55

Current Time: Thursday, 02-Feb-2023 16:18:06 UTC
Restart Time: Thursday, 02-Feb-2023 05:00:20 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  11 hours 17 minutes 45 seconds
Server load: 0.41 0.38 0.34
Total accesses: 1876 - Total Traffic: 850.7 MB - Total Duration: 5322
CPU Usage: u.96 s2.57 cu0 cs0 - .00868% CPU load
.0461 requests/sec - 21.4 kB/second - 464.4 kB/request - 2.83689 ms/request
1 requests currently being processed, 5 idle workers
W_____..........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0530/317/317W
0.32008020.0121.17121.17
127.0.0.1http/1.1cs.qtr4.fun:8880GET /server-status HTTP/1.0

1-0540/317/317_
0.35008730.0143.29143.29
127.0.0.1http/1.1cs.qtr4.fun:8880GET /api/search?folderIds=0 HTTP/1.0

2-0550/318/318_
0.37009200.0155.63155.63
127.0.0.1http/1.1cs.qtr4.fun:8880GET /.vscode/sftp.json HTTP/1.0

3-0560/317/317_
0.35009550.0147.22147.22
127.0.0.1http/1.1cs.qtr4.fun:8880GET /debug/default/view?panel=config HTTP/1.0

4-0570/316/316_
0.33008460.0138.59138.59
127.0.0.1http/1.1cs.qtr4.fun:8880GET /?rest_route=/wp/v2/users/ HTTP/1.0

5-01109130/291/291_
0.32009230.0144.82144.82
127.0.0.1http/1.1cs.qtr4.fun:8880GET /s/2313e22313e28323e21383/_/;/META-INF/maven/com.atlassian.


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot

Found on 2023-02-02 16:18

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: oc.avpa.gq
Port: 443
URL: https://oc.avpa.gq

First seen 2023-03-21 00:50
- Fingerprint: b18befd9dd6536aa30550de579643e967c7c09727b390feb4619bccc3da6720e
```
{
    "Debug": true,
    "Retries": 0,
    "ServeNodes": [
        "ss+mws://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@127.0.0.1:3580?path=/f900516fec15go",
	"ss+mwss://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@:5443?cert=/etc/letsencrypt/live/svrsite.ga/fullchain.pem&key=/etc/letsencrypt/live/svrsite.ga/privkey.pem&probe_resist=host:127.0.0.1:80"
    ]
}
```
  Found on 2023-03-21 00:50
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: oc.avpa.tk
Port: 443
URL: https://oc.avpa.tk

First seen 2023-01-19 23:51
Last seen 2023-03-20 23:51
Open for 59 days
- Fingerprint: b18befd9dd6536aa30550de579643e967c7c09727b390feb4619bccc3da6720e
```
{
    "Debug": true,
    "Retries": 0,
    "ServeNodes": [
        "ss+mws://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@127.0.0.1:3580?path=/f900516fec15go",
	"ss+mwss://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@:5443?cert=/etc/letsencrypt/live/svrsite.ga/fullchain.pem&key=/etc/letsencrypt/live/svrsite.ga/privkey.pem&probe_resist=host:127.0.0.1:80"
    ]
}
```
  Found on 2023-01-19 23:51
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: learn.xvdname.top
Port: 80
URL: http://learn.xvdname.top

First seen 2023-03-19 11:29
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522928289b3
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/cloudreve/Cloudreve.git
	fetch = +refs/heads/master:refs/remotes/origin/master
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-03-19 11:29
  
  277 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: bw-gc.5fq.de
Port: 8443
URL: https://bw-gc.5fq.de:8443

First seen 2023-03-17 04:14
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522e4af0ccb
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/BKcore/HexGL.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-03-17 04:14
  
  260 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vgcus.rssw.app
Port: 8443
URL: https://vgcus.rssw.app:8443

First seen 2023-01-15 08:43
Last seen 2023-03-16 08:53
Open for 60 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-15 08:43
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vgcus.rssw.app
Port: 80
URL: http://vgcus.rssw.app

First seen 2022-11-16 09:36
Last seen 2023-03-16 08:53
Open for 119 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-16 09:36
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vgcus.rssw.app
Port: 443
URL: https://vgcus.rssw.app

First seen 2023-01-15 08:43
Last seen 2023-03-16 08:53
Open for 60 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-15 08:43
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: rn-sjc-1-gc.5fq.de
Port: 8443
URL: https://rn-sjc-1-gc.5fq.de:8443

First seen 2023-03-16 05:32
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522e4af0ccb
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/BKcore/HexGL.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-03-16 05:32
  
  260 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: go.vancouve.xyz
Port: 80
URL: http://go.vancouve.xyz

First seen 2022-11-15 08:15
Last seen 2023-03-15 07:26
Open for 119 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0f361ae9955138760018ff0ca118ff0ca1
```
Found 3 files trough .DS_Store spidering:

/theme
/theme/malio
/theme/malio/js
```
  Found on 2022-11-15 08:15
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: go.vancouve.xyz
Port: 8443
URL: https://go.vancouve.xyz:8443

First seen 2023-01-14 07:43
Last seen 2023-03-15 07:26
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0f361ae9955138760018ff0ca118ff0ca1
```
Found 3 files trough .DS_Store spidering:

/theme
/theme/malio
/theme/malio/js
```
  Found on 2023-01-14 07:43
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: go.vancouve.xyz
Port: 443
URL: https://go.vancouve.xyz

First seen 2023-01-14 07:43
Last seen 2023-03-15 07:26
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0f361ae9955138760018ff0ca118ff0ca1
```
Found 3 files trough .DS_Store spidering:

/theme
/theme/malio
/theme/malio/js
```
  Found on 2023-01-14 07:43
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: uk.362227.top
Port: 80
URL: http://uk.362227.top

First seen 2023-03-14 07:10
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-03-14 07:10
  
  265 Bytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 193.17.93.93
Domain: cdn.akklstudio.com
Port: 80
URL: http://cdn.akklstudio.com

First seen 2023-02-28 19:37
Last seen 2023-03-13 14:00
Open for 12 days

Severity: low
Fingerprint: 5f32cf5d6962f09cec7f8772ec7f87726028bc7258660b9138d10fbf2b36279c

Found 11 files trough .DS_Store spidering:

/css
/fonts
/fonts/flaticon
/images
/images/person_1.jpg
/images/person_2.jpg
/images/person_3.jpg
/index.html
/js
/scss
/scss/bootstrap

Found on 2023-03-13 14:00

Severity: medium
Fingerprint: 5f32cf5d6962f09c75d69a7675d69a76c232644e5426ef95b802bfa3190a0525

Found 51 files trough .DS_Store spidering:

/css
/fonts
/fonts/flaticon
/images
/images/person_1.jpg
/images/person_2.jpg
/images/person_3.jpg
/index.html
/js
/scss
/scss/bootstrap
/scss/bootstrap/_alert.scss
/scss/bootstrap/_badge.scss
/scss/bootstrap/_breadcrumb.scss
/scss/bootstrap/_button-group.scss
/scss/bootstrap/_buttons.scss
/scss/bootstrap/_card.scss
/scss/bootstrap/_carousel.scss
/scss/bootstrap/_close.scss
/scss/bootstrap/_code.scss
/scss/bootstrap/_custom-forms.scss
/scss/bootstrap/_dropdown.scss
/scss/bootstrap/_forms.scss
/scss/bootstrap/_functions.scss
/scss/bootstrap/_grid.scss
/scss/bootstrap/_images.scss
/scss/bootstrap/_input-group.scss
/scss/bootstrap/_jumbotron.scss
/scss/bootstrap/_list-group.scss
/scss/bootstrap/_media.scss
/scss/bootstrap/_mixins.scss
/scss/bootstrap/_modal.scss
/scss/bootstrap/_nav.scss
/scss/bootstrap/_navbar.scss
/scss/bootstrap/_pagination.scss
/scss/bootstrap/_popover.scss
/scss/bootstrap/_print.scss
/scss/bootstrap/_progress.scss
/scss/bootstrap/_reboot.scss
/scss/bootstrap/_root.scss
/scss/bootstrap/_tables.scss
/scss/bootstrap/_tooltip.scss
/scss/bootstrap/_transitions.scss
/scss/bootstrap/_type.scss
/scss/bootstrap/_utilities.scss
/scss/bootstrap/_variables.scss
/scss/bootstrap/bootstrap-grid.scss
/scss/bootstrap/bootstrap-reboot.scss
/scss/bootstrap/bootstrap.scss
/scss/bootstrap/mixins
/scss/bootstrap/utilities

Found on 2023-02-28 19:37

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: g100.qwer.fun
Port: 8443
URL: https://g100.qwer.fun:8443

First seen 2023-03-12 15:07
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0fd02d6687ffa752cf31197ce731197ce7
```
Found 3 files trough .DS_Store spidering:

/css
/img
/js
```
  Found on 2023-03-12 15:07
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: c.trevorcarpenter.name
Port: 8443
URL: https://c.trevorcarpenter.name:8443

First seen 2023-03-11 19:08
- Severity: high
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65220eb5dabf
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = ssh://root@107.189.8.27/var/www/trevorcarpenter/
	fetch = +refs/heads/*:refs/remotes/origin/*
[receive]
	denyCurrentBranch = updateInstead
```
  Found on 2023-03-11 19:08
  
  301 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: c.trevorcarpenter.name
Port: 8443
URL: https://c.trevorcarpenter.name:8443

First seen 2023-03-11 19:08
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0f8dcf020f8dcf02a719fba7e36470ed0b428f5a5a967873
```
Found 24 files trough .DS_Store spidering:

/.git
/about
/bio
/documents
/documents/certificates
/documents/certificates/Coursera compdata 2013
/documents/certificates/Coursera datamanagement 2013
/documents/certificates/Coursera neuroethics 2013
/documents/fic
/films-by-frequency
/films-by-frequency/Nicolas Jenson
/films-by-frequency/tmdb-posters
/frequently-anticipated-questions
/glossary
/images
/images/tmdb-posters
/intro-old
/juvenilia
/massive-open-online-courses
/moodboards
/Nicolas-Jenson
/republished
/underrated-films-of-the-2010s
/vital-course
```
  Found on 2023-03-11 19:08
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: test.hmtech.top
Port: 8443
URL: https://test.hmtech.top:8443

First seen 2023-03-11 15:09
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522928289b3
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/cloudreve/Cloudreve.git
	fetch = +refs/heads/master:refs/remotes/origin/master
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-03-11 15:09
  
  277 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: v.hmtech.top
Port: 8443
URL: https://v.hmtech.top:8443

First seen 2023-03-08 16:58
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522928289b3
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/cloudreve/Cloudreve.git
	fetch = +refs/heads/master:refs/remotes/origin/master
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-03-08 16:58
  
  277 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gc3.burt1025.xyz
Port: 8443
URL: https://gc3.burt1025.xyz:8443

First seen 2023-01-07 12:39
Last seen 2023-03-08 12:17
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-07 12:39
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gc3.burt1025.xyz
Port: 80
URL: http://gc3.burt1025.xyz

First seen 2022-11-08 13:16
Last seen 2023-03-08 12:17
Open for 119 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-08 13:16
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gc3.burt1025.xyz
Port: 443
URL: https://gc3.burt1025.xyz

First seen 2023-01-07 12:39
Last seen 2023-03-08 12:17
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-07 12:39
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gc2.burt1025.xyz
Port: 8443
URL: https://gc2.burt1025.xyz:8443

First seen 2023-01-07 12:39
Last seen 2023-03-08 12:17
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-07 12:39
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gc2.burt1025.xyz
Port: 80
URL: http://gc2.burt1025.xyz

First seen 2022-11-08 13:20
Last seen 2023-03-08 12:17
Open for 119 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-08 13:20
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gc2.burt1025.xyz
Port: 443
URL: https://gc2.burt1025.xyz

First seen 2023-01-07 12:39
Last seen 2023-03-08 12:17
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-07 12:39
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gc1.burt1025.xyz
Port: 8443
URL: https://gc1.burt1025.xyz:8443

First seen 2023-01-07 11:38
Last seen 2023-03-08 11:17
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-07 11:38
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gc1.burt1025.xyz
Port: 80
URL: http://gc1.burt1025.xyz

First seen 2022-11-08 12:24
Last seen 2023-03-08 11:17
Open for 119 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-08 12:24
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gc1.burt1025.xyz
Port: 443
URL: https://gc1.burt1025.xyz

First seen 2023-01-07 11:38
Last seen 2023-03-08 11:17
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-07 11:38
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn.newsmap.pl
Port: 443
URL: https://cdn.newsmap.pl

First seen 2023-03-06 01:45
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227b1508c9
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://appdev-pl.visualstudio.com/newsmap/_git/newsmap
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "dev"]
	remote = origin
	merge = refs/heads/dev
```
  Found on 2023-03-06 01:45
  
  274 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn.newsmap.pl
Port: 80
URL: http://cdn.newsmap.pl

First seen 2023-03-06 01:45
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227b1508c9
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://appdev-pl.visualstudio.com/newsmap/_git/newsmap
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "dev"]
	remote = origin
	merge = refs/heads/dev
```
  Found on 2023-03-06 01:45
  
  274 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn.newsmap.pl
Port: 8443
URL: https://cdn.newsmap.pl:8443

First seen 2023-03-06 01:45
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227b1508c9
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://appdev-pl.visualstudio.com/newsmap/_git/newsmap
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "dev"]
	remote = origin
	merge = refs/heads/dev
```
  Found on 2023-03-06 01:45
  
  274 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: xww.moe
Port: 8443
URL: https://xww.moe:8443

First seen 2023-01-05 05:19
Last seen 2023-03-05 04:56
Open for 58 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65221b4bd01a
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/MichaelTan9999/love_for_your_lover.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-05 05:19
  
  282 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: tr.2moroark.com
Port: 8443
URL: https://tr.2moroark.com:8443

First seen 2023-01-01 12:13
Last seen 2023-03-02 11:55
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-01 12:13
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: store.viyona-coffee.cf
Port: 80
URL: http://store.viyona-coffee.cf

First seen 2023-03-01 16:48
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-03-01 16:48
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: los1.solareclipse.tk
Port: 8443
URL: https://los1.solareclipse.tk:8443

First seen 2022-12-30 14:14
Last seen 2023-03-01 07:27
Open for 60 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-12-30 14:14
  
  265 Bytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: dhondicdn.jntugv.edu.in
Port: 8443
URL: https://dhondicdn.jntugv.edu.in:8443

First seen 2022-10-31 11:37
Last seen 2023-03-01 03:03
Open for 120 days

Severity: low
Fingerprint: 5f32cf5d6962f09cdc57c57adc57c57a87ad063b0f933888e26b2f99ea94e476

Found 19 files trough .DS_Store spidering:

/.htaccess
/helper.php
/images
/images/4c2a5a1dcc84f93f788ffe9181c10440
/includes
/index.php
/languages
/magnuspop
/magnuspop/.htaccess
/magnuspop/common
/magnuspop/error_log
/magnuspop/gama_includes
/magnuspop/helper.php
/magnuspop/index.php
/magnuspop/sharedfiles
/magnuspop/themes
/mobile.php
/sources
/themes

Found on 2022-12-30 11:14

Severity: low
Fingerprint: 5f32cf5d6962f09c31c2f0b631c2f0b68ab02d77bcd644e4c0a1932d5cc68fc7

Found 28 files trough .DS_Store spidering:

/.htaccess
/helper.php
/images
/images/4c2a5a1dcc84f93f788ffe9181c10440
/includes
/index.php
/languages
/magnuspop
/magnuspop/.htaccess
/magnuspop/common
/magnuspop/error_log
/magnuspop/gama_includes
/magnuspop/helper.php
/magnuspop/index.php
/magnuspop/sharedfiles
/magnuspop/sharedfiles/admin
/magnuspop/sharedfiles/finalverification
/magnuspop/sharedfiles/memoverification
/magnuspop/sharedfiles/raposit
/magnuspop/sharedfiles/raposit/feePendingFiles
/magnuspop/sharedfiles/raposit/finalverification
/magnuspop/sharedfiles/raposit/memoverification
/magnuspop/sharedfiles/raposit/studentDetailsFiles
/magnuspop/sharedfiles/raposit/studentResultsFiles
/magnuspop/themes
/mobile.php
/sources
/themes

Found on 2022-10-31 11:37

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: tianti.w3cai.com
Port: 80
URL: http://tianti.w3cai.com

First seen 2023-02-27 02:53
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfcc62bce4973d828e132d6cb0f83e4c7de
```
Found 4 files trough .DS_Store spidering:

/ai
/m
/pc
/php
```
  Found on 2023-02-27 02:53
Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: schildichat.pkuanvil.com
Port: 8443
URL: https://schildichat.pkuanvil.com:8443

First seen 2023-02-24 20:35

Fingerprint: b18befd9dd6536aa30550de524e56a847e3f380cfcac35d6d81b37623197b405

{
    "default_server_config": {
        "m.homeserver": {
            "base_url": "https://matrix.pkuanvil.com",
            "server_name": "pkuanvil.com"
        },
        "m.identity_server": {
            "base_url": "https://vector.im"
        }
    },
    "disable_custom_urls": false,
    "disable_guests": false,
    "disable_login_language_selector": false,
    "disable_3pid_login": false,
    "brand": "SchildiChat",
    "integrations_ui_url": "https://scalar.vector.im/",
    "integrations_rest_url": "https://scalar.vector.im/api",
    "integrations_widgets_urls": [
        "https://scalar.vector.im/_matrix/integrations/v1",
        "https://scalar.vector.im/api",
        "https://scalar-staging.vector.im/_matrix/integrations/v1",
        "https://scalar-staging.vector.im/api",
        "https://scalar-staging.riot.im/scalar/api"
    ],
    "default_country_code": "GB",
    "show_labs_settings": true,
    "features": {},
    "default_federate": false,
    "default_theme": "light",
    "room_directory": {
        "servers": ["matrix.org"]
    },
    "enable_presence_by_hs_url": {
        "https://matrix.org": false,
        "https://matrix-client.matrix.org": false
    },
    "setting_defaults": {
        "breadcrumbs": true
    },
    "jitsi": {
        "preferred_domain": "meet.jit.si"
    },
    "element_call": {
        "url": "https://call.element.io",
        "participant_limit": 8,
        "brand": "Element Call"
    },
    "map_style_url": "https://api.maptiler.com/maps/streets/style.json?key=fU3vlMsMn4Jb6dnEIFsx"
}

Found on 2023-02-24 20:35

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: www.pengqi.club
Port: 8443
URL: https://www.pengqi.club:8443

First seen 2023-02-24 11:54
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0f3fbc98d719ce53b28c5ca56e8c5ca56e
```
Found 3 files trough .DS_Store spidering:

/admin
/admin-2020.php
/assets
```
  Found on 2023-02-24 11:54
Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: matrix.chudbuds.lol
Port: 80
URL: http://matrix.chudbuds.lol

First seen 2022-11-04 17:45
Last seen 2023-02-23 16:58
Open for 110 days

Fingerprint: b18befd9dd6536aa30550de524e56a84d471a9d444375d2f8c549d60ffb9689a

{
    "default_server_config": {
       "m.homeserver": {
         "base_url": "https://chudbud.sbs"
        }
    },
    "user_notice": {
      "title": "Welcome!",
      "description": "Welcome to Chudbuds server v2! We have rebuilt the server from the ground up so rooms have been reset. However, all the same features are still available",
      "show_once": true
    },
    "disable_custom_urls": true,
    "disable_guests": true,
    "disable_login_language_selector": false,
    "disable_3pid_login": true,
    "brand": "Element",
    "default_country_code": "US",
    "show_labs_settings": true,
    "default_federate": true,
    "default_theme": "dark",
    "room_directory": {
        "servers": ["chudbud.sbs", "matrix.org"]
    },
    "features": {
        "feature_video_rooms": true,
        "feature_presence_in_room_list": true,
        "feature_jump_to_date": true
    },
    "branding": {
      "welcome_background_url": "https://matrix.chudbuds.lol/img/ofinterist.png",
      "auth_header_logo_url": "https://matrix.chudbuds.lol/img/cblogo.png",
      "auth_footer_links": [
         {"text": "About and TOS", "url": "https://chudbuds.lol/about"},
         {"text": "The Daily Chud", "url": "https://blog.chudbuds.org/"}
      ]
    },
    "enable_presence_by_hs_url": {
        "https://matrix.org": false,
        "https://matrix-client.matrix.org": false
    },
    "setting_defaults": {
        "UIFeature.registration": false
    }
}

Found on 2023-02-23 16:58

Fingerprint: b18befd9dd6536aa30550de524e56a84d471a9d40837f87880e3fa95863352bf

{
    "default_server_config": {
       "m.homeserver": {
         "base_url": "https://chudbuds.org"
        }
    },
    "user_notice": {
      "title": "Server move",
      "description": "The Matrix server as well as this client have been moved to another server. If you are experiencing any issues please let us know.",
      "show_once": true
    },
    "disable_custom_urls": true,
    "disable_guests": true,
    "disable_login_language_selector": false,
    "disable_3pid_login": true,
    "brand": "Element",
    "default_country_code": "US",
    "show_labs_settings": true,
    "default_federate": true,
    "default_theme": "dark",
    "room_directory": {
        "servers": ["chudbuds.org", "matrix.org"]
    },
    "features": {
        "feature_video_rooms": true,
        "feature_presence_in_room_list": true,
        "feature_jump_to_date": true
    },
    "branding": {
      "welcome_background_url": "https://matrix.chudbuds.lol/img/ofinterist.png",
      "auth_header_logo_url": "https://matrix.chudbuds.lol/img/cblogo.png",
      "auth_footer_links": [
         {"text": "About and TOS", "url": "https://chudbuds.lol/about"},
         {"text": "The Daily Chud", "url": "https://blog.chudbuds.org/"}
      ]
    },
    "enable_presence_by_hs_url": {
        "https://matrix.org": false,
        "https://matrix-client.matrix.org": false
    }
}

Found on 2023-01-10 07:54

Fingerprint: b18befd9dd6536aa30550de5cf28a0223653b10735ab8aef6f5d226f15745160

{
    "default_server_name": "chudbuds.org",
    "disable_custom_urls": true,
    "disable_guests": true,
    "disable_login_language_selector": false,
    "disable_3pid_login": false,
    "brand": "Element",
    "default_country_code": "US",
    "show_labs_settings": true,
    "default_federate": true,
    "default_theme": "light",
    "room_directory": {
        "servers": ["chudbuds.org", "matrix.org"]
    },
    "enable_presence_by_hs_url": {
        "https://matrix.org": false,
        "https://matrix-client.matrix.org": false
    }
}

Found on 2022-11-04 17:45

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: chat.ifl.ee
Port: 443
URL: https://chat.ifl.ee

First seen 2023-02-19 16:18
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652295f09456
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	hooksPath = .husky
[remote "origin"]
	url = https://github.com/Chanzhaoyu/chatgpt-web.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2023-02-19 16:18
  
  286 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: chat.ifl.ee
Port: 80
URL: http://chat.ifl.ee

First seen 2023-02-19 16:18
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652295f09456
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	hooksPath = .husky
[remote "origin"]
	url = https://github.com/Chanzhaoyu/chatgpt-web.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2023-02-19 16:18
  
  286 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: chat.ifl.ee
Port: 8443
URL: https://chat.ifl.ee:8443

First seen 2023-02-19 16:18
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652295f09456
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	hooksPath = .husky
[remote "origin"]
	url = https://github.com/Chanzhaoyu/chatgpt-web.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2023-02-19 16:18
  
  286 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: raksv.tssj.tk
Port: 443
URL: https://raksv.tssj.tk

First seen 2023-02-19 01:50
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-02-19 01:50
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: raksv.tssj.tk
Port: 8443
URL: https://raksv.tssj.tk:8443

First seen 2023-02-19 01:50
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-02-19 01:50
  
  265 Bytes
Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: bili.hybgzs.com
Port: 8443
URL: https://bili.hybgzs.com:8443

First seen 2023-02-18 18:48

Fingerprint: b18befd9dd6536aa30550de58bc5c50c20ef7e196a6a00f51a6302938de1e718

{
  "config_version": 2,
  "auto_update": true,
  "auto_close": true,
  "redis": "redis://127.0.0.1:6379",
  "woker_num": 8,
  "port": 2662,
  "limit_biliroaming_version_open": false,
  "limit_biliroaming_version_min": 64,
  "limit_biliroaming_version_max": 80,
  "rate_limit_per_second": 3,
  "rate_limit_burst": 20,
  "cn_app_playurl_api": "https://api.bilibili.com/pgc/player/api/playurl",
  "tw_app_playurl_api": "https://bili-tw.xwenterprise.com/pgc/player/api/playurl",
  "hk_app_playurl_api": "https://bili-hk.xwenterprise.com/pgc/player/api/playurl",
  "th_app_playurl_api": "https://bili-th.xwenterprise.com/intl/gateway/v2/ogv/playurl",
  "cn_web_playurl_api": "https://api.bilibili.com/pgc/player/web/playurl",
  "tw_web_playurl_api": "https://bili-tw.xwenterprise.com/pgc/player/web/playurl",
  "hk_web_playurl_api": "https://bili-hk.xwenterprise.com/pgc/player/web/playurl",
  "th_web_playurl_api": "https://bili-th.xwenterprise.com/intl/gateway/v2/ogv/playurl",
  "cn_app_search_api": "https://app.bilibili.com/x/v2/search/type",
  "tw_app_search_api": "https://bili-s-tw.xwenterprise.com/x/v2/search/type",
  "hk_app_search_api": "https://bili-s-hk.xwenterprise.com/x/v2/search/type",
  "th_app_search_api": "https://bili-th.xwenterprise.com/intl/gateway/v2/app/search/type",
  "cn_web_search_api": "https://api.bilibili.com/x/web-interface/search/type",
  "tw_web_search_api": "https://bili-s-tw.xwenterprise.com/x/web-interface/search/type",
  "hk_web_search_api": "https://bili-s-hk.xwenterprise.com/x/web-interface/search/type",
  "th_web_search_api": "https://bili-th.xwenterprise.com/intl/gateway/v2/app/search/type",
  "th_app_season_api": "https://bili-th.xwenterprise.com/intl/gateway/v2/ogv/view/app/season",
  "th_app_season_sub_api": "https://示例.永雏塔菲.我爱你/?season_id=",
  "th_app_season_sub_name": "示例永雏塔菲字幕组",
  "th_app_season_sub_open": false,
  "cn_proxy_playurl_url": "127.0.0.1:7890",
  "hk_proxy_playurl_url": "127.0.0.1:7890",
  "tw_proxy_playurl_url": "127.0.0.1:7890",
  "th_proxy_playurl_url": "127.0.0.1:7890",
  "cn_proxy_playurl_open": false,
  "hk_proxy_playurl_open": false,
  "tw_proxy_playurl_open": false,
  "th_proxy_playurl_open": false,
  "cn_proxy_search_url": "127.0.0.1:7890",
  "hk_proxy_search_url": "127.0.0.1:7890",
  "tw_proxy_search_url": "127.0.0.1:7890",
  "th_proxy_search_url": "127.0.0.1:7890",
  "cn_proxy_search_open": false,
  "hk_proxy_search_open": false,
  "tw_proxy_search_open": false,
  "th_proxy_search_open": false,
  "cn_proxy_token_url": "127.0.0.1:7890",
  "th_proxy_token_url": "127.0.0.1:7890",
  "cn_proxy_token_open": false,
  "th_proxy_token_open": true,
  "cn_proxy_accesskey_url": "",
  "cn_proxy_accesskey_open": false,
  "th_proxy_subtitle_url": "127.0.0.1:7890",
  "th_proxy_subtitle_open": true,
  "general_api_bilibili_com_proxy_api": "api.bilibili.com",
  "general_app_bilibili_com_proxy_api": "app.bilibili.com",
  "aid": 127001,
  "aid_replace_open": true,
  "resign_pub": {
    "4": false,
    "1": false,
    "3": false,
    "2": false
  },
  "resign_open": {
    "4": false,
    "1": false,
    "2": false,
    "3": false
  },
  "resign_from_existed_key": false,
  "resign_from_api_open": {
    "4": false,
    "1": false,
    "3": false,
    "2": false
  },
  "resign_api": {
    "3": "",
    "4": "",
    "2": "",
    "1": ""
  },
  "resign_api_sign": {
    "4": "",
    "3": "",
    "2": "",
    "1": ""
  },
  "cache": {
    "-412": 1380,
    "thsub": 14400,
    "other": 1380,
    "-10403": 6480,
    "-404": 1380,
    "0": 6480
  },
  "local_wblist": {
    "114514": [
      false,
      false
    ]
  },
  "blacklist_config": {
    "MixedBlackList": {
      "api": "https://black.qimo.ink/api/users/",
      "api_version": 2
    }
  },
  "appsearch_remake": {
    "example.com": "{\"title\":\"服务器提供者：\\u003cem class\\u003d\\\"keyword\\\"\\u003eXXX\\u003c/em\\u003e\",\"cover\":\"https://示例.永雏塔菲.我爱你/src/fuck_search.jpg\",\"uri\":\"https://bili.pch.pub\",\"param\":\"1\",\"goto\":\"bangumi\",\"ptime\":1500000000,\"season_id\":1,\"season_type\":1,\"season_type_name\":\"番剧\",\"media_type\":1,\"style\":\"切勿宣扬，发现拉黑！\",\"styles\":\"切勿宣扬，发现拉黑！\",\"cv\":\"\",\"rating\":114.514,\"vote\":1919.810,\"area\":\"漫游\",\"staff\":\"无\",\"is_selection\":1,\"badge\":\"公告\",\"episodes\":[{\"position\":1,\"uri\":\"https://www.bilibili.com/video/av928861104\",\"param\":\"1\",\"index\":\"1\"}],\"label\":\"勿谓言之不预也\",\"watch_button\":{\"title\":\"😅\",\"link\":\"https://bili.pch.pub/\"},\"follow_button\":{\"icon\":\"http://i0.hdslb.com/bfs/bangumi/154b6898d2b2c20c21ccef9e41fcf809b518ebb4.png\",\"texts\":{\"0\":\"别点\",\"1\":\"你好闲啊\"},\"status_report\":\"bangumi\"},\"selection_style\":\"horizontal\",\"episodes_new\":[{\"title\":\"教程\",\"uri\":\"https://github.com/yujincheng08/BiliRoaming/wiki#使用方法\"},{\"title\":\"联系方式\",\"uri\":\"https://t.me/chenzerocheng\",\"badges\":[{\"text\":\"tg\",\"text_color\":\"#FFFFFF\",\"text_color_night\":\"#E5E5E5\",\"bg_color\":\"#58DCF9\",\"bg_color_night\":\"#58DCF9\",\"border_color\":\"#58DCF9\",\"border_color_night\":\"#58DCF9\",\"bg_style\":1}]},{\"title\":\"投喂\",\"uri\":\"https://示例.永雏塔菲.我爱你/@pinkchen\",\"badges\":[{\"text\":\"爱发电\",\"text_color\":\"#FFFFFF\",\"text_color_night\":\"#E5E5E5\",\"bg_color\":\"#B85DFF\",\"bg_color_night\":\"#A634FF\",\"border_color\":\"#B85DFF\",\"border_color_night\":\"#A634FF\",\"bg_style\":1}]},{\"title\":\"这里没东西\",\"uri\":\"https://www.bilibili.com/video/av928861104\",\"badges\":[{\"text\":\"愿者上勾\",\"text_color\":\"#FFFFFF\",\"text_color_night\":\"#E5E5E5\",\"bg_color\":\"#FB7299\",\"bg_color_night\":\"#BB5B76\",\"border_color\":\"#FB7299\",\"border_color_night\":\"#BB5B76\",\"bg_style\":1}]}],\"badges\":[{\"text\":\"萨日朗\",\"text_color\":\"#FFFFFF\",\"text_color_night\":\"#E5E5E5\",\"bg_color\":\"#00C0FF\",\"bg_color_night\":\"#0B91BE\",\"bg_style\":1}]}",
    "example2.com": "{\"title\":\"服务器提供者：\\u003cem class\\u003d\\\"keyword\\\"\\u003eXXX\\u003c/em\\u003e\",\"cover\":\"https://示例.永雏塔菲.我爱你/src/fuck_search.jpg\",\"uri\":\"https://bili.pch.pub\",\"param\":\"1\",\"goto\":\"bangumi\",\"ptime\":1500000000,\"season_id\":1,\"season_type\":1,\"season_type_name\":\"番剧\",\"media_type\":1,\"style\":\"切勿宣扬，发现拉黑！\",\"styles\":\"切勿宣扬，发现拉黑！\",\"cv\":\"\",\"rating\":114.514,\"vote\":1919.810,\"area\":\"漫游\",\"staff\":\"无\",\"is_selection\":1,\"badge\":\"公告\",\"episodes\":[{\"position\":1,\"uri\":\"https://www.bilibili.com/video/av928861104\",\"param\":\"1\",\"index\":\"1\"}],\"label\":\"勿谓言之不预也\",\"watch_button\":{\"title\":\"😅\",\"link\":\"https://bili.pch.pub/\"},\"follow_button\":{\"icon\":\"http://i0.hdslb.com/bfs/bangumi/154b6898d2b2c20c21ccef9e41fcf809b518ebb4.png\",\"texts\":{\"0\":\"别点\",\"1\":\"你好闲啊\"},\"status_report\":\"bangumi\"},\"selection_style\":\"horizontal\",\"episodes_new\":[{\"title\":\"教程\",\"uri\":\"https://github.com/yujincheng08/BiliRoaming/wiki#使用方法\"},{\"title\":\"联系方式\",\"uri\":\"https://t.me/chenzerocheng\",\"badges\":[{\"text\":\"tg\",\"text_color\":\"#FFFFFF\",\"text_color_night\":\"#E5E5E5\",\"bg_color\":\"#58DCF9\",\"bg_color_night\":\"#58DCF9\",\"border_color\":\"#58DCF9\",\"border_color_night\":\"#58DCF9\",\"bg_style\":1}]},{\"title\":\"投喂\",\"uri\":\"https://示例.永雏塔菲.我爱你/@pinkchen\",\"badges\":[{\"text\":\"爱发电\",\"text_color\":\"#FFFFFF\",\"text_color_night\":\"#E5E5E5\",\"bg_color\":\"#B85DFF\",\"bg_color_night\":\"#A634FF\",\"border_color\":\"#B85DFF\",\"border_color_night\":\"#A634FF\",\"bg_style\":1}]},{\"title\":\"这里没东西\",\"uri\":\"https://www.bilibili.com/video/av928861104\",\"badges\":[{\"text\":\"愿者上勾\",\"text_color\":\"#FFFFFF\",\"text_color_night\":\"#E5E5E5\",\"bg_color\":\"#FB7299\",\"bg_color_night\":\"#BB5B76\",\"border_color\":\"#FB7299\",\"border_color_night\":\"#BB5B76\",\"bg_style\":1}]}],\"badges\":[{\"text\":\"萨日朗\",\"text_color\":\"#FFFFFF\",\"text_color_night\":\"#E5E5E5\",\"bg_color\":\"#00C0FF\",\"bg_color_night\":\"#0B91BE\",\"bg_style\":1}]}"
  },
  "websearch_remake": {
    "example.com": "{\"type\":\"media_bangumi\",\"media_id\":1,\"title\":\"永雏塔菲喵\",\"org_title\":\"\",\"media_type\":4,\"cv\":\"永雏塔菲\\n\",\"staff\":\"示例内容\\n示例内容\\n示例内容\\n自行修改\",\"season_id\":1,\"is_avid\":false,\"hit_columns\":[],\"hit_epids\":\"1\",\"season_type\":4,\"season_type_name\":\"解析服务器\",\"selection_style\":\"horizontal\",\"ep_size\":2,\"url\":\"https://afdian.net/******\",\"button_text\":\"捐赠\",\"is_follow\":0,\"is_selection\":1,\"eps\":[{\"id\":1,\"cover\":\"https://示例.永雏塔菲.我爱你/src/fuck_search.jpg\",\"title\":\"\\u003cem class=\\\"keyword\\\"\\u003e示例\\u003c/em\\u003e示例\",\"url\":\"https://www.bilibili.com/video/av928861104\",\"release_date\":\"\",\"badges\":null,\"index_title\":\"1\",\"long_title\":\"你好喵\"}],\"badges\":null,\"cover\":\"http://i0.hdslb.com/bfs/bangumi/image/4ddd37596d205978c9f97881b7a56100e85fe2e1.png\",\"areas\":\"示例内容areas\",\"styles\":\"示例内容styles\",\"goto_url\":\"https://www.bilibili.com/video/av928861104\",\"desc\":\"示例内容desc\",\"pubtime\":1609341000,\"media_mode\":2,\"fix_pubtime_str\":\"\",\"media_score\":{\"score\":99.9,\"user_count\":114514},\"display_info\":null,\"pgc_season_id\":1,\"corner\":2,\"index_show\":\"示例内容index_show\"}",
    "example2.com": "{\"type\":\"media_bangumi\",\"media_id\":1,\"title\":\"永雏塔菲喵\",\"org_title\":\"\",\"media_type\":4,\"cv\":\"永雏塔菲\\n\",\"staff\":\"示例内容\\n示例内容\\n示例内容\\n自行修改\",\"season_id\":1,\"is_avid\":false,\"hit_columns\":[],\"hit_epids\":\"1\",\"season_type\":4,\"season_type_name\":\"解析服务器\",\"selection_style\":\"horizontal\",\"ep_size\":2,\"url\":\"https://afdian.net/******\",\"button_text\":\"捐赠\",\"is_follow\":0,\"is_selection\":1,\"eps\":[{\"id\":1,\"cover\":\"https://示例.永雏塔菲.我爱你/src/fuck_search.jpg\",\"title\":\"\\u003cem class=\\\"keyword\\\"\\u003e示例\\u003c/em\\u003e示例\",\"url\":\"https://www.bilibili.com/video/av928861104\",\"release_date\":\"\",\"badges\":null,\"index_title\":\"1\",\"long_title\":\"你好喵\"}],\"badges\":null,\"cover\":\"http://i0.hdslb.com/bfs/bangumi/image/4ddd37596d205978c9f97881b7a56100e85fe2e1.png\",\"areas\":\"示例内容areas\",\"styles\":\"示例内容styles\",\"goto_url\":\"https://www.bilibili.com/video/av928861104\",\"desc\":\"示例内容desc\",\"pubtime\":1609341000,\"media_mode\":2,\"fix_pubtime_str\":\"\",\"media_score\":{\"score\":99.9,\"user_count\":114514},\"display_info\":null,\"pgc_season_id\":1,\"corner\":2,\"index_show\":\"示例内容index_show\"}"
  },
  "donate_url": "https://afdian.net/a/ouyangqiqi",
  "api_sign": "glG060DI",
  "api_assesskey_open": {
    "3": false,
    "4": false,
    "1": false,
    "2": false
  },
  "report_open": false,
  "report_config": {
    "TgBot": {
      "tg_bot_token": "",
      "tg_chat_id": "",
      "tg_proxy_api_open": false,
      "tg_proxy_url": ""
    }
  },
  "area_cache_open": true
}

Found on 2023-02-18 18:48

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: bili.hybgzs.com
Port: 443
URL: https://bili.hybgzs.com

First seen 2023-02-18 18:48

Fingerprint: b18befd9dd6536aa30550de58bc5c50c20ef7e196a6a00f51a6302938de1e718

{
  "config_version": 2,
  "auto_update": true,
  "auto_close": true,
  "redis": "redis://127.0.0.1:6379",
  "woker_num": 8,
  "port": 2662,
  "limit_biliroaming_version_open": false,
  "limit_biliroaming_version_min": 64,
  "limit_biliroaming_version_max": 80,
  "rate_limit_per_second": 3,
  "rate_limit_burst": 20,
  "cn_app_playurl_api": "https://api.bilibili.com/pgc/player/api/playurl",
  "tw_app_playurl_api": "https://bili-tw.xwenterprise.com/pgc/player/api/playurl",
  "hk_app_playurl_api": "https://bili-hk.xwenterprise.com/pgc/player/api/playurl",
  "th_app_playurl_api": "https://bili-th.xwenterprise.com/intl/gateway/v2/ogv/playurl",
  "cn_web_playurl_api": "https://api.bilibili.com/pgc/player/web/playurl",
  "tw_web_playurl_api": "https://bili-tw.xwenterprise.com/pgc/player/web/playurl",
  "hk_web_playurl_api": "https://bili-hk.xwenterprise.com/pgc/player/web/playurl",
  "th_web_playurl_api": "https://bili-th.xwenterprise.com/intl/gateway/v2/ogv/playurl",
  "cn_app_search_api": "https://app.bilibili.com/x/v2/search/type",
  "tw_app_search_api": "https://bili-s-tw.xwenterprise.com/x/v2/search/type",
  "hk_app_search_api": "https://bili-s-hk.xwenterprise.com/x/v2/search/type",
  "th_app_search_api": "https://bili-th.xwenterprise.com/intl/gateway/v2/app/search/type",
  "cn_web_search_api": "https://api.bilibili.com/x/web-interface/search/type",
  "tw_web_search_api": "https://bili-s-tw.xwenterprise.com/x/web-interface/search/type",
  "hk_web_search_api": "https://bili-s-hk.xwenterprise.com/x/web-interface/search/type",
  "th_web_search_api": "https://bili-th.xwenterprise.com/intl/gateway/v2/app/search/type",
  "th_app_season_api": "https://bili-th.xwenterprise.com/intl/gateway/v2/ogv/view/app/season",
  "th_app_season_sub_api": "https://示例.永雏塔菲.我爱你/?season_id=",
  "th_app_season_sub_name": "示例永雏塔菲字幕组",
  "th_app_season_sub_open": false,
  "cn_proxy_playurl_url": "127.0.0.1:7890",
  "hk_proxy_playurl_url": "127.0.0.1:7890",
  "tw_proxy_playurl_url": "127.0.0.1:7890",
  "th_proxy_playurl_url": "127.0.0.1:7890",
  "cn_proxy_playurl_open": false,
  "hk_proxy_playurl_open": false,
  "tw_proxy_playurl_open": false,
  "th_proxy_playurl_open": false,
  "cn_proxy_search_url": "127.0.0.1:7890",
  "hk_proxy_search_url": "127.0.0.1:7890",
  "tw_proxy_search_url": "127.0.0.1:7890",
  "th_proxy_search_url": "127.0.0.1:7890",
  "cn_proxy_search_open": false,
  "hk_proxy_search_open": false,
  "tw_proxy_search_open": false,
  "th_proxy_search_open": false,
  "cn_proxy_token_url": "127.0.0.1:7890",
  "th_proxy_token_url": "127.0.0.1:7890",
  "cn_proxy_token_open": false,
  "th_proxy_token_open": true,
  "cn_proxy_accesskey_url": "",
  "cn_proxy_accesskey_open": false,
  "th_proxy_subtitle_url": "127.0.0.1:7890",
  "th_proxy_subtitle_open": true,
  "general_api_bilibili_com_proxy_api": "api.bilibili.com",
  "general_app_bilibili_com_proxy_api": "app.bilibili.com",
  "aid": 127001,
  "aid_replace_open": true,
  "resign_pub": {
    "4": false,
    "1": false,
    "3": false,
    "2": false
  },
  "resign_open": {
    "4": false,
    "1": false,
    "2": false,
    "3": false
  },
  "resign_from_existed_key": false,
  "resign_from_api_open": {
    "4": false,
    "1": false,
    "3": false,
    "2": false
  },
  "resign_api": {
    "3": "",
    "4": "",
    "2": "",
    "1": ""
  },
  "resign_api_sign": {
    "4": "",
    "3": "",
    "2": "",
    "1": ""
  },
  "cache": {
    "-412": 1380,
    "thsub": 14400,
    "other": 1380,
    "-10403": 6480,
    "-404": 1380,
    "0": 6480
  },
  "local_wblist": {
    "114514": [
      false,
      false
    ]
  },
  "blacklist_config": {
    "MixedBlackList": {
      "api": "https://black.qimo.ink/api/users/",
      "api_version": 2
    }
  },
  "appsearch_remake": {
    "example.com": "{\"title\":\"服务器提供者：\\u003cem class\\u003d\\\"keyword\\\"\\u003eXXX\\u003c/em\\u003e\",\"cover\":\"https://示例.永雏塔菲.我爱你/src/fuck_search.jpg\",\"uri\":\"https://bili.pch.pub\",\"param\":\"1\",\"goto\":\"bangumi\",\"ptime\":1500000000,\"season_id\":1,\"season_type\":1,\"season_type_name\":\"番剧\",\"media_type\":1,\"style\":\"切勿宣扬，发现拉黑！\",\"styles\":\"切勿宣扬，发现拉黑！\",\"cv\":\"\",\"rating\":114.514,\"vote\":1919.810,\"area\":\"漫游\",\"staff\":\"无\",\"is_selection\":1,\"badge\":\"公告\",\"episodes\":[{\"position\":1,\"uri\":\"https://www.bilibili.com/video/av928861104\",\"param\":\"1\",\"index\":\"1\"}],\"label\":\"勿谓言之不预也\",\"watch_button\":{\"title\":\"😅\",\"link\":\"https://bili.pch.pub/\"},\"follow_button\":{\"icon\":\"http://i0.hdslb.com/bfs/bangumi/154b6898d2b2c20c21ccef9e41fcf809b518ebb4.png\",\"texts\":{\"0\":\"别点\",\"1\":\"你好闲啊\"},\"status_report\":\"bangumi\"},\"selection_style\":\"horizontal\",\"episodes_new\":[{\"title\":\"教程\",\"uri\":\"https://github.com/yujincheng08/BiliRoaming/wiki#使用方法\"},{\"title\":\"联系方式\",\"uri\":\"https://t.me/chenzerocheng\",\"badges\":[{\"text\":\"tg\",\"text_color\":\"#FFFFFF\",\"text_color_night\":\"#E5E5E5\",\"bg_color\":\"#58DCF9\",\"bg_color_night\":\"#58DCF9\",\"border_color\":\"#58DCF9\",\"border_color_night\":\"#58DCF9\",\"bg_style\":1}]},{\"title\":\"投喂\",\"uri\":\"https://示例.永雏塔菲.我爱你/@pinkchen\",\"badges\":[{\"text\":\"爱发电\",\"text_color\":\"#FFFFFF\",\"text_color_night\":\"#E5E5E5\",\"bg_color\":\"#B85DFF\",\"bg_color_night\":\"#A634FF\",\"border_color\":\"#B85DFF\",\"border_color_night\":\"#A634FF\",\"bg_style\":1}]},{\"title\":\"这里没东西\",\"uri\":\"https://www.bilibili.com/video/av928861104\",\"badges\":[{\"text\":\"愿者上勾\",\"text_color\":\"#FFFFFF\",\"text_color_night\":\"#E5E5E5\",\"bg_color\":\"#FB7299\",\"bg_color_night\":\"#BB5B76\",\"border_color\":\"#FB7299\",\"border_color_night\":\"#BB5B76\",\"bg_style\":1}]}],\"badges\":[{\"text\":\"萨日朗\",\"text_color\":\"#FFFFFF\",\"text_color_night\":\"#E5E5E5\",\"bg_color\":\"#00C0FF\",\"bg_color_night\":\"#0B91BE\",\"bg_style\":1}]}",
    "example2.com": "{\"title\":\"服务器提供者：\\u003cem class\\u003d\\\"keyword\\\"\\u003eXXX\\u003c/em\\u003e\",\"cover\":\"https://示例.永雏塔菲.我爱你/src/fuck_search.jpg\",\"uri\":\"https://bili.pch.pub\",\"param\":\"1\",\"goto\":\"bangumi\",\"ptime\":1500000000,\"season_id\":1,\"season_type\":1,\"season_type_name\":\"番剧\",\"media_type\":1,\"style\":\"切勿宣扬，发现拉黑！\",\"styles\":\"切勿宣扬，发现拉黑！\",\"cv\":\"\",\"rating\":114.514,\"vote\":1919.810,\"area\":\"漫游\",\"staff\":\"无\",\"is_selection\":1,\"badge\":\"公告\",\"episodes\":[{\"position\":1,\"uri\":\"https://www.bilibili.com/video/av928861104\",\"param\":\"1\",\"index\":\"1\"}],\"label\":\"勿谓言之不预也\",\"watch_button\":{\"title\":\"😅\",\"link\":\"https://bili.pch.pub/\"},\"follow_button\":{\"icon\":\"http://i0.hdslb.com/bfs/bangumi/154b6898d2b2c20c21ccef9e41fcf809b518ebb4.png\",\"texts\":{\"0\":\"别点\",\"1\":\"你好闲啊\"},\"status_report\":\"bangumi\"},\"selection_style\":\"horizontal\",\"episodes_new\":[{\"title\":\"教程\",\"uri\":\"https://github.com/yujincheng08/BiliRoaming/wiki#使用方法\"},{\"title\":\"联系方式\",\"uri\":\"https://t.me/chenzerocheng\",\"badges\":[{\"text\":\"tg\",\"text_color\":\"#FFFFFF\",\"text_color_night\":\"#E5E5E5\",\"bg_color\":\"#58DCF9\",\"bg_color_night\":\"#58DCF9\",\"border_color\":\"#58DCF9\",\"border_color_night\":\"#58DCF9\",\"bg_style\":1}]},{\"title\":\"投喂\",\"uri\":\"https://示例.永雏塔菲.我爱你/@pinkchen\",\"badges\":[{\"text\":\"爱发电\",\"text_color\":\"#FFFFFF\",\"text_color_night\":\"#E5E5E5\",\"bg_color\":\"#B85DFF\",\"bg_color_night\":\"#A634FF\",\"border_color\":\"#B85DFF\",\"border_color_night\":\"#A634FF\",\"bg_style\":1}]},{\"title\":\"这里没东西\",\"uri\":\"https://www.bilibili.com/video/av928861104\",\"badges\":[{\"text\":\"愿者上勾\",\"text_color\":\"#FFFFFF\",\"text_color_night\":\"#E5E5E5\",\"bg_color\":\"#FB7299\",\"bg_color_night\":\"#BB5B76\",\"border_color\":\"#FB7299\",\"border_color_night\":\"#BB5B76\",\"bg_style\":1}]}],\"badges\":[{\"text\":\"萨日朗\",\"text_color\":\"#FFFFFF\",\"text_color_night\":\"#E5E5E5\",\"bg_color\":\"#00C0FF\",\"bg_color_night\":\"#0B91BE\",\"bg_style\":1}]}"
  },
  "websearch_remake": {
    "example.com": "{\"type\":\"media_bangumi\",\"media_id\":1,\"title\":\"永雏塔菲喵\",\"org_title\":\"\",\"media_type\":4,\"cv\":\"永雏塔菲\\n\",\"staff\":\"示例内容\\n示例内容\\n示例内容\\n自行修改\",\"season_id\":1,\"is_avid\":false,\"hit_columns\":[],\"hit_epids\":\"1\",\"season_type\":4,\"season_type_name\":\"解析服务器\",\"selection_style\":\"horizontal\",\"ep_size\":2,\"url\":\"https://afdian.net/******\",\"button_text\":\"捐赠\",\"is_follow\":0,\"is_selection\":1,\"eps\":[{\"id\":1,\"cover\":\"https://示例.永雏塔菲.我爱你/src/fuck_search.jpg\",\"title\":\"\\u003cem class=\\\"keyword\\\"\\u003e示例\\u003c/em\\u003e示例\",\"url\":\"https://www.bilibili.com/video/av928861104\",\"release_date\":\"\",\"badges\":null,\"index_title\":\"1\",\"long_title\":\"你好喵\"}],\"badges\":null,\"cover\":\"http://i0.hdslb.com/bfs/bangumi/image/4ddd37596d205978c9f97881b7a56100e85fe2e1.png\",\"areas\":\"示例内容areas\",\"styles\":\"示例内容styles\",\"goto_url\":\"https://www.bilibili.com/video/av928861104\",\"desc\":\"示例内容desc\",\"pubtime\":1609341000,\"media_mode\":2,\"fix_pubtime_str\":\"\",\"media_score\":{\"score\":99.9,\"user_count\":114514},\"display_info\":null,\"pgc_season_id\":1,\"corner\":2,\"index_show\":\"示例内容index_show\"}",
    "example2.com": "{\"type\":\"media_bangumi\",\"media_id\":1,\"title\":\"永雏塔菲喵\",\"org_title\":\"\",\"media_type\":4,\"cv\":\"永雏塔菲\\n\",\"staff\":\"示例内容\\n示例内容\\n示例内容\\n自行修改\",\"season_id\":1,\"is_avid\":false,\"hit_columns\":[],\"hit_epids\":\"1\",\"season_type\":4,\"season_type_name\":\"解析服务器\",\"selection_style\":\"horizontal\",\"ep_size\":2,\"url\":\"https://afdian.net/******\",\"button_text\":\"捐赠\",\"is_follow\":0,\"is_selection\":1,\"eps\":[{\"id\":1,\"cover\":\"https://示例.永雏塔菲.我爱你/src/fuck_search.jpg\",\"title\":\"\\u003cem class=\\\"keyword\\\"\\u003e示例\\u003c/em\\u003e示例\",\"url\":\"https://www.bilibili.com/video/av928861104\",\"release_date\":\"\",\"badges\":null,\"index_title\":\"1\",\"long_title\":\"你好喵\"}],\"badges\":null,\"cover\":\"http://i0.hdslb.com/bfs/bangumi/image/4ddd37596d205978c9f97881b7a56100e85fe2e1.png\",\"areas\":\"示例内容areas\",\"styles\":\"示例内容styles\",\"goto_url\":\"https://www.bilibili.com/video/av928861104\",\"desc\":\"示例内容desc\",\"pubtime\":1609341000,\"media_mode\":2,\"fix_pubtime_str\":\"\",\"media_score\":{\"score\":99.9,\"user_count\":114514},\"display_info\":null,\"pgc_season_id\":1,\"corner\":2,\"index_show\":\"示例内容index_show\"}"
  },
  "donate_url": "https://afdian.net/a/ouyangqiqi",
  "api_sign": "glG060DI",
  "api_assesskey_open": {
    "3": false,
    "4": false,
    "1": false,
    "2": false
  },
  "report_open": false,
  "report_config": {
    "TgBot": {
      "tg_bot_token": "",
      "tg_chat_id": "",
      "tg_proxy_api_open": false,
      "tg_proxy_url": ""
    }
  },
  "area_cache_open": true
}

Found on 2023-02-18 18:48

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: codingstudy.ml
Port: 80
URL: http://codingstudy.ml

First seen 2022-12-20 14:37
Last seen 2023-02-18 13:48
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65229ae494d2
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/JeremyTsai/JeremyTsai.github.io.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-12-20 14:37
  
  279 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: codingstudy.ml
Port: 8443
URL: https://codingstudy.ml:8443

First seen 2022-12-20 14:37
Last seen 2023-02-18 13:48
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65229ae494d2
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/JeremyTsai/JeremyTsai.github.io.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-12-20 14:37
  
  279 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn.caijunjie.net
Port: 8443
URL: https://cdn.caijunjie.net:8443

First seen 2023-02-17 11:49
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522928289b3
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/cloudreve/Cloudreve.git
	fetch = +refs/heads/master:refs/remotes/origin/master
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-02-17 11:49
  
  277 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: tssj.tk
Port: 443
URL: https://tssj.tk

First seen 2023-02-17 03:10
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-02-17 03:10
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: tssj.tk
Port: 8443
URL: https://tssj.tk:8443

First seen 2023-02-17 03:10
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-02-17 03:10
  
  265 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdn.cindyhodev.com
Port: 8443
URL: https://cdn.cindyhodev.com:8443

First seen 2023-02-16 23:10
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0f7290ab138d2b1d167904e1af7904e1af
```
Found 3 files trough .DS_Store spidering:

/draco
/favicon
/pm-tool_children-tree.jpg
```
  Found on 2023-02-16 23:10
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: rachel.utalkingtome.tk
Port: 8443
URL: https://rachel.utalkingtome.tk:8443

First seen 2023-02-16 10:59
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522c30492df
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/BuckyMaler/global.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-02-16 10:59
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gcore.100688.xyz
Port: 8443
URL: https://gcore.100688.xyz:8443

First seen 2023-02-13 02:20
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-02-13 02:20
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gcore.100688.xyz
Port: 443
URL: https://gcore.100688.xyz

First seen 2023-02-13 02:20
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-02-13 02:20
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: that.wheremyfxxkcode.tk
Port: 80
URL: http://that.wheremyfxxkcode.tk

First seen 2023-02-12 08:49
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-02-12 08:49
  
  265 Bytes
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: t1.nafaxu1.xyz
Port: 80
URL: http://t1.nafaxu1.xyz

First seen 2022-10-13 11:21
Last seen 2023-02-10 10:19
Open for 119 days
- Fingerprint: b18befd9dd6536829e25d9599e25d9599e25d9599e25d9599e25d9599e25d959
```
{"warning":"你的ip已被记录"}
```
  Found on 2022-10-13 11:21
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: en.iedu.buzz
Port: 443
URL: https://en.iedu.buzz

First seen 2022-12-12 08:59
Last seen 2023-02-10 08:21
Open for 59 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c3078a2ae3078a2ae9eb1cb82e8726ae41a6583ec2c692419

Found 73 files trough .DS_Store spidering:

/blog.html
/contact.html
/courses.html
/css
/css/animate.css
/css/bootstrap.css
/css/bootstrap.css.map
/css/flexslider.css
/css/icomoon.css
/css/magnific-popup.css
/css/owl.carousel.min.css
/css/owl.theme.default.min.css
/css/pricing.css
/css/style.css
/css/style.css.map
/fonts
/fonts/.DS_Store
/fonts/bootstrap
/fonts/icomoon
/fonts/icomoon/icomoon.eot
/fonts/icomoon/icomoon.svg
/fonts/icomoon/icomoon.ttf
/fonts/icomoon/icomoon.woff
/images
/images/.DS_Store
/images/img_bg_1.jpg
/images/img_bg_2.jpg
/images/img_bg_3.jpg
/images/img_bg_4.jpg
/images/loader.gif
/images/loc.png
/images/person1.jpg
/images/person2.jpg
/images/person3.jpg
/images/project-1.jpg
/images/project-2.jpg
/images/project-3.jpg
/images/project-4.jpg
/images/project-5.jpg
/images/project-6.jpg
/images/project-7.jpg
/images/project-8.jpg
/images/project-9.jpg
/images/school.jpg
/images/work_1.png
/index.html
/js
/js/.DS_Store
/js/bootstrap.min.js
/js/google_map.js
/js/jquery.countTo.js
/js/jquery.easing.1.3.js
/js/jquery.flexslider-min.js
/js/jquery.magnific-popup.min.js
/js/jquery.min.js
/js/jquery.stellar.min.js
/js/jquery.waypoints.min.js
/js/magnific-popup-options.js
/js/main.js
/js/modernizr-2.6.2.min.js
/js/owl.carousel.min.js
/js/respond.min.js
/js/simplyCountdown.js
/pricing.html
/README.txt
/sass
/sass/.DS_Store
/sass/_bootstrap-compass.scss
/sass/_bootstrap-mincer.scss
/sass/_bootstrap-sprockets.scss
/sass/bootstrap
/sass/bootstrap.scss
/sass/style.scss

Found on 2023-02-10 08:21

Severity: medium
Fingerprint: 5f32cf5d6962f09cfdf2c773fdf2c7732c2cbb1bcd73f34b1b5dcd69518dc24c

Found 50 files trough .DS_Store spidering:

/blog.html
/contact.html
/courses.html
/css
/css/animate.css
/css/bootstrap.css
/css/bootstrap.css.map
/css/flexslider.css
/css/icomoon.css
/css/magnific-popup.css
/css/owl.carousel.min.css
/css/owl.theme.default.min.css
/css/pricing.css
/css/style.css
/css/style.css.map
/fonts
/fonts/.DS_Store
/fonts/bootstrap
/fonts/icomoon
/fonts/icomoon/icomoon.eot
/fonts/icomoon/icomoon.svg
/fonts/icomoon/icomoon.ttf
/fonts/icomoon/icomoon.woff
/images
/images/.DS_Store
/images/img_bg_1.jpg
/images/img_bg_2.jpg
/images/img_bg_3.jpg
/images/img_bg_4.jpg
/images/loader.gif
/images/loc.png
/images/person1.jpg
/images/person2.jpg
/images/person3.jpg
/images/project-1.jpg
/images/project-2.jpg
/images/project-3.jpg
/images/project-4.jpg
/images/project-5.jpg
/images/project-6.jpg
/images/project-7.jpg
/images/project-8.jpg
/images/project-9.jpg
/images/school.jpg
/images/work_1.png
/index.html
/js
/pricing.html
/README.txt
/sass

Found on 2022-12-12 08:59

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: en.iedu.buzz
Port: 80
URL: http://en.iedu.buzz

First seen 2022-12-12 08:59
Last seen 2023-02-10 08:21
Open for 59 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c3b95ca2b3b95ca2b16a9fb0379fbed53cd4474c11b0b8358

Found 58 files trough .DS_Store spidering:

/blog.html
/contact.html
/courses.html
/css
/fonts
/fonts/.DS_Store
/fonts/bootstrap
/fonts/icomoon
/images
/images/.DS_Store
/images/img_bg_1.jpg
/images/img_bg_2.jpg
/images/img_bg_3.jpg
/images/img_bg_4.jpg
/images/loader.gif
/images/loc.png
/images/person1.jpg
/images/person2.jpg
/images/person3.jpg
/images/project-1.jpg
/images/project-2.jpg
/images/project-3.jpg
/images/project-4.jpg
/images/project-5.jpg
/images/project-6.jpg
/images/project-7.jpg
/images/project-8.jpg
/images/project-9.jpg
/images/school.jpg
/images/work_1.png
/index.html
/js
/js/.DS_Store
/js/bootstrap.min.js
/js/google_map.js
/js/jquery.countTo.js
/js/jquery.easing.1.3.js
/js/jquery.flexslider-min.js
/js/jquery.magnific-popup.min.js
/js/jquery.min.js
/js/jquery.stellar.min.js
/js/jquery.waypoints.min.js
/js/magnific-popup-options.js
/js/main.js
/js/modernizr-2.6.2.min.js
/js/owl.carousel.min.js
/js/respond.min.js
/js/simplyCountdown.js
/pricing.html
/README.txt
/sass
/sass/.DS_Store
/sass/_bootstrap-compass.scss
/sass/_bootstrap-mincer.scss
/sass/_bootstrap-sprockets.scss
/sass/bootstrap
/sass/bootstrap.scss
/sass/style.scss

Found on 2023-02-10 08:21

Severity: medium
Fingerprint: 5f32cf5d6962f09cd4047824d40478241186d214b8a2289ab811d12a40537af9

Found 35 files trough .DS_Store spidering:

/blog.html
/contact.html
/courses.html
/css
/fonts
/fonts/.DS_Store
/fonts/bootstrap
/fonts/icomoon
/images
/images/.DS_Store
/images/img_bg_1.jpg
/images/img_bg_2.jpg
/images/img_bg_3.jpg
/images/img_bg_4.jpg
/images/loader.gif
/images/loc.png
/images/person1.jpg
/images/person2.jpg
/images/person3.jpg
/images/project-1.jpg
/images/project-2.jpg
/images/project-3.jpg
/images/project-4.jpg
/images/project-5.jpg
/images/project-6.jpg
/images/project-7.jpg
/images/project-8.jpg
/images/project-9.jpg
/images/school.jpg
/images/work_1.png
/index.html
/js
/pricing.html
/README.txt
/sass

Found on 2022-12-12 08:59

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: en.iedu.buzz
Port: 8443
URL: https://en.iedu.buzz:8443

First seen 2022-12-12 08:59
Last seen 2023-02-10 08:21
Open for 59 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8e4417c08e4417c0cc2ac3108ba44b469bace21e015eb2cb

Found 62 files trough .DS_Store spidering:

/blog.html
/contact.html
/courses.html
/css
/fonts
/fonts/.DS_Store
/fonts/bootstrap
/fonts/icomoon
/fonts/icomoon/icomoon.eot
/fonts/icomoon/icomoon.svg
/fonts/icomoon/icomoon.ttf
/fonts/icomoon/icomoon.woff
/images
/images/.DS_Store
/images/img_bg_1.jpg
/images/img_bg_2.jpg
/images/img_bg_3.jpg
/images/img_bg_4.jpg
/images/loader.gif
/images/loc.png
/images/person1.jpg
/images/person2.jpg
/images/person3.jpg
/images/project-1.jpg
/images/project-2.jpg
/images/project-3.jpg
/images/project-4.jpg
/images/project-5.jpg
/images/project-6.jpg
/images/project-7.jpg
/images/project-8.jpg
/images/project-9.jpg
/images/school.jpg
/images/work_1.png
/index.html
/js
/js/.DS_Store
/js/bootstrap.min.js
/js/google_map.js
/js/jquery.countTo.js
/js/jquery.easing.1.3.js
/js/jquery.flexslider-min.js
/js/jquery.magnific-popup.min.js
/js/jquery.min.js
/js/jquery.stellar.min.js
/js/jquery.waypoints.min.js
/js/magnific-popup-options.js
/js/main.js
/js/modernizr-2.6.2.min.js
/js/owl.carousel.min.js
/js/respond.min.js
/js/simplyCountdown.js
/pricing.html
/README.txt
/sass
/sass/.DS_Store
/sass/_bootstrap-compass.scss
/sass/_bootstrap-mincer.scss
/sass/_bootstrap-sprockets.scss
/sass/bootstrap
/sass/bootstrap.scss
/sass/style.scss

Found on 2023-02-10 08:21

Severity: medium
Fingerprint: 5f32cf5d6962f09c910c508a910c508a8d2c9c7ec2698240262e25709b7b8c19

Found 55 files trough .DS_Store spidering:

/blog.html
/contact.html
/courses.html
/css
/fonts
/fonts/.DS_Store
/fonts/bootstrap
/fonts/icomoon
/fonts/icomoon/icomoon.eot
/fonts/icomoon/icomoon.svg
/fonts/icomoon/icomoon.ttf
/fonts/icomoon/icomoon.woff
/images
/images/.DS_Store
/images/img_bg_1.jpg
/images/img_bg_2.jpg
/images/img_bg_3.jpg
/images/img_bg_4.jpg
/images/loader.gif
/images/loc.png
/images/person1.jpg
/images/person2.jpg
/images/person3.jpg
/images/project-1.jpg
/images/project-2.jpg
/images/project-3.jpg
/images/project-4.jpg
/images/project-5.jpg
/images/project-6.jpg
/images/project-7.jpg
/images/project-8.jpg
/images/project-9.jpg
/images/school.jpg
/images/work_1.png
/index.html
/js
/js/.DS_Store
/js/bootstrap.min.js
/js/google_map.js
/js/jquery.countTo.js
/js/jquery.easing.1.3.js
/js/jquery.flexslider-min.js
/js/jquery.magnific-popup.min.js
/js/jquery.min.js
/js/jquery.stellar.min.js
/js/jquery.waypoints.min.js
/js/magnific-popup-options.js
/js/main.js
/js/modernizr-2.6.2.min.js
/js/owl.carousel.min.js
/js/respond.min.js
/js/simplyCountdown.js
/pricing.html
/README.txt
/sass

Found on 2022-12-12 08:59

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn.bloxtop.com
Port: 80
URL: http://cdn.bloxtop.com

First seen 2022-12-12 04:59
Last seen 2023-02-10 04:20
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-12-12 04:59
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn.bloxtop.com
Port: 8443
URL: https://cdn.bloxtop.com:8443

First seen 2022-12-12 04:59
Last seen 2023-02-10 04:20
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-12-12 04:59
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn.bloxtop.com
Port: 443
URL: https://cdn.bloxtop.com

First seen 2022-12-12 04:59
Last seen 2023-02-10 04:20
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-12-12 04:59
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: www.arhi.cf
Port: 8443
URL: https://www.arhi.cf:8443

First seen 2023-02-08 10:55
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-02-08 10:55
  
  265 Bytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdnimg.magimg.com
Port: 8443
URL: https://cdnimg.magimg.com:8443

First seen 2022-12-10 03:58
Last seen 2023-02-08 03:56
Open for 59 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b711329ff4234c0331bac33aee3d476238

Found 128 files trough .DS_Store spidering:

/a.html
/ads.txt
/css.css
/favicon.ico
/files
/index.html
/upload.php
/uploads
/uploads/00210fe7.jpeg
/uploads/00260f6a.jpeg
/uploads/00262.jpeg
/uploads/010-Editor.GIF
/uploads/010-editor.png
/uploads/1349188.jpg
/uploads/1512988469_acrok-video-converter_01.jpg
/uploads/16502.jpg
/uploads/17690.jpg
/uploads/17797.jpeg
/uploads/18-strings.png
/uploads/1click-duplicate-finder.jpeg
/uploads/1password.jpg
/uploads/1password.png
/uploads/2.png
/uploads/2284.jpg
/uploads/24-hour-wallpaper.jpg
/uploads/25631.png
/uploads/27391.jpg
/uploads/2do.jpg
/uploads/32-lives.jpg
/uploads/32318.png
/uploads/36467.png
/uploads/36705.jpg
/uploads/3d-coat.jpg
/uploads/3d-lut-creator.jpg
/uploads/3dimmaker.jpg
/uploads/3dweather.jpg
/uploads/40014.png
/uploads/404bypass.png
/uploads/44972.png
/uploads/464920.jpeg
/uploads/4678.jpg
/uploads/4ddig.jpg
/uploads/4k-slideshow-maker.jpg
/uploads/4k-stogram.jpg
/uploads/4k-video-downloader.jpg
/uploads/4k-youtube-to-mp3.jpg
/uploads/4kstogram.jpg
/uploads/4mekey.jpg
/uploads/4ukey-password-manager.jpg
/uploads/5.png
/uploads/512900.jpg
/uploads/54091.png
/uploads/6e016c.png
/uploads/7-days-to-die.jpg
/uploads/80-days.jpg
/uploads/86687.png
/uploads/87663.png
/uploads/87666.jpg
/uploads/8dio-studio-saxophones.jpg
/uploads/935368.jpg
/uploads/9452.jpg
/uploads/a-better-finder-attributes.png
/uploads/a-better-finder-rename.jpg
/uploads/a-case-of-distrust.jpg
/uploads/a-game-of-thrones.jpg
/uploads/a-monsters-expedition.jpg
/uploads/aad2014 .png
/uploads/abandon-ship.jpg
/uploads/abbyy-lingvo-european.png
/uploads/ABetterFinderAttributes.jpg
/uploads/ableton-live.jpg
/uploads/ableton-live.png
/uploads/accdb-mdb-explorer.jpg
/uploads/acdsee-photo-studio.jpg
/uploads/acdsee-photo-studio.png
/uploads/acdsee-pro-3.jpg
/uploads/acemovi.png
/uploads/acorn.jpg
/uploads/acoustica.jpg
/uploads/acrobat-pro.jpg
/uploads/acrobat-pro.png
/uploads/acrok-hd-video-converter.jpg
/uploads/acrok-mts-converter.jpeg
/uploads/acrok-mxf-converter.jpeg
/uploads/acrok-video-converter-ultimate.jpg
/uploads/acrok-video-converter.jpeg
/uploads/Acronis_True_Image.jpg
/uploads/activedock.png
/uploads/addism.jpg
/uploads/adguard.jpg
/uploads/adjust.jpg
/uploads/adjust.png
/uploads/adobe-acrobat-pro.jpeg
/uploads/adobe-acrobat-pro.jpg
/uploads/adobe-acrobat-pro.png
/uploads/adobe-acrobat-reader.jpg
/uploads/adobe-acrobat-xi.jpeg
/uploads/adobe-after-effects.jpg
/uploads/adobe-animate-cc-2019.jpg
/uploads/adobe-animate-cc.jpeg
/uploads/adobe-audition-cc-2019.jpg
/uploads/adobe-bridge-cc-2018.png
/uploads/adobe-bridge-cc-2019.jpg
/uploads/adobe-bridge.jpg
/uploads/adobe-camera-raw.png
/uploads/Adobe-Captivate.jpg
/uploads/Adobe-Captivate_7.jpg
/uploads/adobe-character-animator.jpg
/uploads/adobe-dimension-cc-2018.jpg
/uploads/adobe-dimension.jpg
/uploads/adobe-dng-converter.jpg
/uploads/adobe-illustrator-cc.jpg
/uploads/adobe-incopy-cc-2019.jpg
/uploads/adobe-indesign-cc.jpg
/uploads/adobe-master-collection.png
/uploads/adobe-muse-cc-2017.jpg
/uploads/adobe-photoshop-cc-2019.jpg
/uploads/adobe-photoshop-elements.jpg
/uploads/adobe-prelude.jpg
/uploads/adobe-premiere-elements-2021.jpg
/uploads/adobe-premiere-elements.jpg
/uploads/adobe-premiere-pro-.jpg
/uploads/adobe-premiere-pro-cc.jpg
/uploads/adobe-premiere-pro.jpg
/uploads/Adobe-SpeedGrade.jpg
/uploads/adobe-zii-2021.jpg
/uploads/adobe-zii-2021.png
/uploads/adobe-zii-patcher.jpg

Found on 2022-12-10 03:58

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: hktv.fslido.com
Port: 8443
URL: https://hktv.fslido.com:8443

First seen 2022-12-09 23:58
Last seen 2023-02-07 23:54
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-12-09 23:58
  
  265 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: freeazz.tk
Port: 8443
URL: https://freeazz.tk:8443

First seen 2022-10-07 22:20
Last seen 2023-02-04 23:37
Open for 120 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf176423f3e94de06389fa006389fa006389fa0
```
Found 2 files trough .DS_Store spidering:

/assets
/gapps
```
  Found on 2022-10-07 22:20
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: realtydriver.ru
Port: 80
URL: http://realtydriver.ru

First seen 2023-02-02 19:17

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652284ce2947

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@bitbucket.org:hardcode_msk/realtydriver-website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "dev-popov"]
	remote = origin
	merge = refs/heads/dev-popov
[branch "dev"]
	remote = origin
	merge = refs/heads/dev

Found on 2023-02-02 19:17

404 Bytes

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: gcore-cdn.qtr4.fun
Port: 8443
URL: https://gcore-cdn.qtr4.fun:8443

First seen 2023-02-02 16:18

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f0a187b7f0a187b78a65c810

Apache Status

Apache Server Status for gcore-cdn.qtr4.fun (via 127.0.0.1)

Server Version: Apache/2.4.41 (Ubuntu)
Server MPM: prefork
Server Built: 2022-06-14T13:30:55

Current Time: Thursday, 02-Feb-2023 16:18:06 UTC
Restart Time: Thursday, 02-Feb-2023 05:00:20 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  11 hours 17 minutes 45 seconds
Server load: 0.41 0.38 0.34
Total accesses: 1855 - Total Traffic: 850.7 MB - Total Duration: 5306
CPU Usage: u.95 s2.57 cu0 cs0 - .00866% CPU load
.0456 requests/sec - 21.4 kB/second - 469.6 kB/request - 2.86038 ms/request
2 requests currently being processed, 4 idle workers
W_C___..........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0530/315/315W
0.32007970.0121.16121.16
127.0.0.1http/1.1cs.qtr4.fun:8880GET /server-status HTTP/1.0

1-0540/314/314_
0.35008720.0143.28143.28
127.0.0.1http/1.1cs.qtr4.fun:8880GET /s/2313e22313e28323e21383/_/;/META-INF/maven/com.atlassian.

2-0550/315/315_
0.36009190.0155.62155.62
127.0.0.1http/1.1cs.qtr4.fun:8880GET /.DS_Store HTTP/1.0

3-0560/313/313_
0.35019530.0147.22147.22
127.0.0.1http/1.1cs.qtr4.fun:8880GET /.vscode/sftp.json HTTP/1.0

4-0570/312/312R
0.33008440.0138.59138.59
127.0.0.1http/1.1cs.qtr4.fun:8880GET /s/2313e22313e28323e21383/_/;/META-INF/maven/com.atlassian.

5-01109130/286/286R
0.32009200.0144.82144.82
127.0.0.1http/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot

Found on 2023-02-02 16:18

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: rackpn.xx17.work
Port: 80
URL: http://rackpn.xx17.work

First seen 2023-02-01 18:34
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-02-01 18:34
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: rackpn.xx17.work
Port: 8443
URL: https://rackpn.xx17.work:8443

First seen 2023-02-01 18:34
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-02-01 18:34
  
  265 Bytes
Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: gt.jovialchap.com
Port: 443
URL: https://gt.jovialchap.com

First seen 2023-02-01 15:32

Fingerprint: b18befd9dd65368245ef0ad145ef0ad145ef0ad145ef0ad145ef0ad145ef0ad1

{"entry":[{"id":"299423","hash":"00c8267d51c7947fbc2e44bbea3db8e0","requestHash":"config","profileUrl":"http:\/\/gravatar.com\/config","preferredUsername":"config","thumbnailUrl":"https:\/\/secure.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","photos":[{"value":"https:\/\/secure.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","type":"thumbnail"}],"displayName":"config","aboutMe":"Founder of config.com, Entrepreneur, and Search Engine Optimizer.\r\n\r\nAuthor of the 1st URL advertised in a computer magazine.","urls":[]}]}

Found on 2023-02-01 15:32

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: gt.jovialchap.com
Port: 8443
URL: https://gt.jovialchap.com:8443

First seen 2023-02-01 15:32

Fingerprint: b18befd9dd65368245ef0ad145ef0ad145ef0ad145ef0ad145ef0ad145ef0ad1

{"entry":[{"id":"299423","hash":"00c8267d51c7947fbc2e44bbea3db8e0","requestHash":"config","profileUrl":"http:\/\/gravatar.com\/config","preferredUsername":"config","thumbnailUrl":"https:\/\/secure.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","photos":[{"value":"https:\/\/secure.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","type":"thumbnail"}],"displayName":"config","aboutMe":"Founder of config.com, Entrepreneur, and Search Engine Optimizer.\r\n\r\nAuthor of the 1st URL advertised in a computer magazine.","urls":[]}]}

Found on 2023-02-01 15:32

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: v.cnrbz.club
Port: 8443
URL: https://v.cnrbz.club:8443

First seen 2023-01-31 16:55
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-31 16:55
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: v.cnrbz.club
Port: 80
URL: http://v.cnrbz.club

First seen 2023-01-31 16:55
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-31 16:55
  
  265 Bytes
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: muskgc.congressforiran.tk
Port: 80
URL: http://muskgc.congressforiran.tk

First seen 2023-01-31 10:12
- Fingerprint: b18befd9dd653682b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4b57b45d4
```
{"auths":{"registry.digitalocean.com":{"auth":"ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ6ZG9wX3YxXzJmMDhlZGE4OTFkMWExYjdlOGFlMDFkMmVkMjBhZTc1OTE4NWM3YjgyZDY3NDQxMjQzZmFlNDMxODM5MDRlNWQ="}}}
```
  Found on 2023-01-31 10:12
Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: avatars.cdn.expcs.net
Port: 80
URL: http://avatars.cdn.expcs.net

First seen 2023-01-29 17:07

Fingerprint: b18befd9dd65368245ef0ad145ef0ad145ef0ad145ef0ad145ef0ad145ef0ad1

{"entry":[{"id":"299423","hash":"00c8267d51c7947fbc2e44bbea3db8e0","requestHash":"config","profileUrl":"http:\/\/gravatar.com\/config","preferredUsername":"config","thumbnailUrl":"https:\/\/secure.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","photos":[{"value":"https:\/\/secure.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","type":"thumbnail"}],"displayName":"config","aboutMe":"Founder of config.com, Entrepreneur, and Search Engine Optimizer.\r\n\r\nAuthor of the 1st URL advertised in a computer magazine.","urls":[]}]}

Found on 2023-01-29 17:07

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: www.seevid.ir
Port: 8443
URL: https://www.seevid.ir:8443

First seen 2022-10-31 13:55
Last seen 2023-01-28 00:49
Open for 88 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0ff409caf12b390c210acd63e80acd63e8
```
Found 3 files trough .DS_Store spidering:

/assets
/assets/icon
/assets/images
```
  Found on 2023-01-28 00:49
- Severity: low
  Fingerprint: 5f32cf5d6962f09cdc57c57adc57c57a87ad063be36e34830997dfae71015d26
```
Found 19 files trough .DS_Store spidering:

/.htaccess
/App
/App/_a
/App/_a/__c
/App/_a/__c/config
/App/_a/__c/elements
/App/_a/__c/static
/App/_a/__h
/App/_a/__re
/App/_a/__s
/App/_a/__s/__function__bc.php
/App/_a/__s/body.php
/App/_a/__s/function.php
/App/_a/__s/head.php
/App/_a/__s/index.php
/App/_a/__s/main.php
/App/_a/__v
/App/_a/__w
/App/index.php
```
  Found on 2022-11-06 14:38
- Severity: low
  Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a0f8c03449bfa94d35b2340ae8e75c0ff6
```
Found 13 files trough .DS_Store spidering:

/.htaccess
/App
/App/_a
/App/_a/__c
/App/_a/__c/config
/App/_a/__c/elements
/App/_a/__c/static
/App/_a/__h
/App/_a/__re
/App/_a/__s
/App/_a/__v
/App/_a/__w
/App/index.php
```
  Found on 2022-10-31 13:55
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gcore.creatop02.tk
Port: 8443
URL: https://gcore.creatop02.tk:8443

First seen 2023-01-27 13:31
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522928289b3
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/cloudreve/Cloudreve.git
	fetch = +refs/heads/master:refs/remotes/origin/master
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-27 13:31
  
  277 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: www.kijin-seija.life
Port: 8443
URL: https://www.kijin-seija.life:8443

First seen 2022-07-30 03:15
Last seen 2023-01-26 01:45
Open for 179 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-07-30 03:15
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: www.kijin-seija.life
Port: 443
URL: https://www.kijin-seija.life

First seen 2022-07-30 03:15
Last seen 2023-01-26 01:45
Open for 179 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-07-30 03:15
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

Additionally the GIT credentials are present and could give unauthorized access to source code repository of private projects.

IP: 81.28.12.12
Domain: www.kalands.ir
Port: 8443
URL: https://www.kalands.ir:8443

First seen 2022-11-20 22:26
Last seen 2023-01-25 07:08
Open for 65 days
- Severity: critical
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65223a3e7428
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://x-access-token:ghs_Ti7NhKIYnEmYIATO9Uzrw5qwcmkJjL2FS9lE@github.com/javadalmasi/kalands
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2023-01-25 07:08
  
  257 Bytes
- Severity: critical
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65221308b44e
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://x-access-token:ghs_pFXBRR0kkVm9UK8K44ELBk0ijig13533m8Xk@github.com/javadalmasi/kalands
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2022-11-20 22:26
  
  257 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

Additionally the GIT credentials are present and could give unauthorized access to source code repository of private projects.

IP: 81.28.12.12
Domain: www.kalands.ir
Port: 443
URL: https://www.kalands.ir

First seen 2022-11-20 22:26
Last seen 2023-01-25 07:08
Open for 65 days

Severity: critical
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65223a3e7428

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://x-access-token:ghs_Ti7NhKIYnEmYIATO9Uzrw5qwcmkJjL2FS9lE@github.com/javadalmasi/kalands
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2023-01-25 07:08

257 Bytes

Severity: critical
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522455d514b

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://x-access-token:ghs_5avOE2FZ1DQU8WrPytadHRdNOrIdDp1VnIPP@github.com/javadalmasi/kalands
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2022-12-20 09:04

257 Bytes

Severity: critical
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522a55dde0b

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://x-access-token:ghs_gj4sTjwFM5hfTbPw9JZGjGU1pAt6B72R27dH@github.com/javadalmasi/kalands
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2022-12-02 09:38

257 Bytes

Severity: critical
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65221308b44e

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://x-access-token:ghs_pFXBRR0kkVm9UK8K44ELBk0ijig13533m8Xk@github.com/javadalmasi/kalands
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2022-11-20 22:26

257 Bytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdn.steadysub.com
Port: 8443
URL: https://cdn.steadysub.com:8443

First seen 2023-01-24 09:51
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0f8dcf020f8dcf02ed2b90fad71eff7e2843e54ac9c5653b
```
Found 24 files trough .DS_Store spidering:

/adminasset
/adminasset/assets
/adminasset/assets/css
/adminasset/assets/img
/adminasset/assets/js
/adminasset/bootstrap
/adminasset/plugins
/adminasset/sass
/assets
/assets/css
/assets/img
/assets/js
/assets/vendor
/cdn
/favicon.ico
/frontend
/growth
/hot
/index.php
/js
/profilepic
/robots.txt
/superasset
/vendor
```
  Found on 2023-01-24 09:51
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: rak.123221.xyz
Port: 443
URL: https://rak.123221.xyz

First seen 2023-01-23 14:51
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-23 14:51
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: rak.123221.xyz
Port: 80
URL: http://rak.123221.xyz

First seen 2022-11-24 15:00
Last seen 2023-01-23 14:51
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-24 15:00
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: rak.123221.xyz
Port: 8443
URL: https://rak.123221.xyz:8443

First seen 2023-01-23 14:51
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-23 14:51
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: jpvr.lzpp.pub
Port: 443
URL: https://jpvr.lzpp.pub

First seen 2022-07-27 13:23
Last seen 2023-01-23 11:51
Open for 179 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-07-27 13:23
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: jpvr.lzpp.pub
Port: 8443
URL: https://jpvr.lzpp.pub:8443

First seen 2022-07-27 13:23
Last seen 2023-01-23 11:51
Open for 179 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-07-27 13:23
  
  265 Bytes
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: oc.avpa.tk
Port: 80
URL: http://oc.avpa.tk

First seen 2023-01-19 23:51
- Fingerprint: b18befd9dd6536aa30550de579643e967c7c09727b390feb4619bccc3da6720e
```
{
    "Debug": true,
    "Retries": 0,
    "ServeNodes": [
        "ss+mws://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@127.0.0.1:3580?path=/f900516fec15go",
	"ss+mwss://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@:5443?cert=/etc/letsencrypt/live/svrsite.ga/fullchain.pem&key=/etc/letsencrypt/live/svrsite.ga/privkey.pem&probe_resist=host:127.0.0.1:80"
    ]
}
```
  Found on 2023-01-19 23:51
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn.tfrgministry.org
Port: 8443
URL: https://cdn.tfrgministry.org:8443

First seen 2022-09-20 12:36
Last seen 2023-01-18 11:52
Open for 119 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65221f799f7b
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@github.com:skylevelconcepts/tfrgministry.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-09-20 12:36
  
  273 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn.tfrgministry.org
Port: 443
URL: https://cdn.tfrgministry.org

First seen 2022-09-20 12:36
Last seen 2023-01-18 11:52
Open for 119 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65221f799f7b
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@github.com:skylevelconcepts/tfrgministry.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-09-20 12:36
  
  273 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vgcusa2.rssw.app
Port: 80
URL: http://vgcusa2.rssw.app

First seen 2022-11-16 11:41
Last seen 2023-01-15 10:43
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-16 11:41
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vgcusa2.rssw.app
Port: 8443
URL: https://vgcusa2.rssw.app:8443

First seen 2023-01-15 10:42
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-15 10:42
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vgcusa.rssw.app
Port: 8443
URL: https://vgcusa.rssw.app:8443

First seen 2022-11-16 12:32
Last seen 2023-01-15 10:42
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-16 12:32
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vgcusa.rssw.app
Port: 443
URL: https://vgcusa.rssw.app

First seen 2022-11-16 12:32
Last seen 2023-01-15 10:42
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-16 12:32
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vgcusa.rssw.app
Port: 80
URL: http://vgcusa.rssw.app

First seen 2022-11-16 12:32
Last seen 2023-01-15 10:42
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-16 12:32
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vgcuk.rssw.app
Port: 8443
URL: https://vgcuk.rssw.app:8443

First seen 2023-01-15 10:42
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-15 10:42
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vgcuk.rssw.app
Port: 443
URL: https://vgcuk.rssw.app

First seen 2023-01-15 10:42
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-15 10:42
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vgcuk.rssw.app
Port: 80
URL: http://vgcuk.rssw.app

First seen 2022-11-16 11:40
Last seen 2023-01-15 10:42
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-16 11:40
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: hedye.shop
Port: 80
URL: http://hedye.shop

First seen 2023-01-13 10:31
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65228cc8ad43
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/PavelDoGreat/WebGL-Fluid-Simulation
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "gh-pages"]
	remote = origin
	merge = refs/heads/gh-pages
```
  Found on 2023-01-13 10:31
  
  283 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: speed.whosthe.top
Port: 8443
URL: https://speed.whosthe.top:8443

First seen 2022-09-15 05:21
Last seen 2023-01-13 04:42
Open for 119 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e975a091b7c622893a7791249ecb33c970
```
Found 5 files trough .DS_Store spidering:

/assets
/assets/fonts
/assets/packages
/canvaskit
/icons
```
  Found on 2022-09-15 05:21
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: speed.whosthe.top
Port: 443
URL: https://speed.whosthe.top

First seen 2022-09-15 05:21
Last seen 2023-01-13 04:42
Open for 119 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e975a091b7c622893a7791249ecb33c970
```
Found 5 files trough .DS_Store spidering:

/assets
/assets/fonts
/assets/packages
/canvaskit
/icons
```
  Found on 2022-09-15 05:21
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gc5.burt1025.xyz
Port: 8443
URL: https://gc5.burt1025.xyz:8443

First seen 2023-01-07 12:39
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-07 12:39
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gc5.burt1025.xyz
Port: 80
URL: http://gc5.burt1025.xyz

First seen 2022-11-08 13:21
Last seen 2023-01-07 12:39
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-08 13:21
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gc5.burt1025.xyz
Port: 443
URL: https://gc5.burt1025.xyz

First seen 2023-01-07 12:39
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-07 12:39
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gc4.burt1025.xyz
Port: 443
URL: https://gc4.burt1025.xyz

First seen 2023-01-07 12:39
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-07 12:39
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gc4.burt1025.xyz
Port: 80
URL: http://gc4.burt1025.xyz

First seen 2022-11-08 13:03
Last seen 2023-01-07 12:39
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-08 13:03
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gc4.burt1025.xyz
Port: 8443
URL: https://gc4.burt1025.xyz:8443

First seen 2023-01-07 12:39
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-07 12:39
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn.tuirewdsfhl.tk
Port: 8443
URL: https://cdn.tuirewdsfhl.tk:8443

First seen 2023-01-01 11:13
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-01 11:13
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn.tuirewdsfhl.tk
Port: 80
URL: http://cdn.tuirewdsfhl.tk

First seen 2022-11-02 11:58
Last seen 2023-01-01 11:13
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-02 11:58
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn.tuirewdsfhl.tk
Port: 443
URL: https://cdn.tuirewdsfhl.tk

First seen 2023-01-01 11:13
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-01-01 11:13
  
  265 Bytes
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn.digitalmara.com
Port: 80
URL: http://cdn.digitalmara.com

First seen 2022-12-26 07:32

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227900ad7b

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@gitlab.com:U.Danilau/digitalmara-website-bugs.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "SUPPORT-1171"]
	remote = origin
	merge = refs/heads/SUPPORT-1171
[branch "dev"]
	remote = origin
	merge = refs/heads/dev
[branch "SUPPORT-1282"]
	remote = origin
	merge = refs/heads/SUPPORT-1282
[branch "rc-1"]
	remote = origin
	merge = refs/heads/rc-1
[branch "SUPPORT-1298"]
	remote = origin
	merge = refs/heads/SUPPORT-1298
[branch "rc-2"]
	remote = origin
	merge = refs/heads/rc-2

Found on 2022-12-26 07:32

672 Bytes

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gc.overcome.cf
Port: 8443
URL: https://gc.overcome.cf:8443

First seen 2022-12-23 15:31
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-12-23 15:31
  
  265 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: www.digilance.co.za
Port: 80
URL: http://www.digilance.co.za

First seen 2022-12-21 12:16
- Severity: low
  Fingerprint: 5f32cf5d6962f09cab28146bab28146b567d1c98a3fc99864df0dcac6ba6279d
```
Found 21 files trough .DS_Store spidering:

/index.php
/license.txt
/readme.html
/web.config
/wp-activate.php
/wp-admin
/wp-blog-header.php
/wp-comments-post.php
/wp-config-sample.php
/wp-config.php
/wp-content
/wp-cron.php
/wp-includes
/wp-links-opml.php
/wp-load.php
/wp-login.php
/wp-mail.php
/wp-settings.php
/wp-signup.php
/wp-trackback.php
/xmlrpc.php
```
  Found on 2022-12-21 12:16
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: kr.jpga.eu.org
Port: 8443
URL: https://kr.jpga.eu.org:8443

First seen 2022-12-17 15:28
- Fingerprint: b18befd9dd6536aa30550de579643e967c7c09727b390feb4619bccc3da6720e
```
{
    "Debug": true,
    "Retries": 0,
    "ServeNodes": [
        "ss+mws://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@127.0.0.1:3580?path=/f900516fec15go",
	"ss+mwss://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@:5443?cert=/etc/letsencrypt/live/svrsite.ga/fullchain.pem&key=/etc/letsencrypt/live/svrsite.ga/privkey.pem&probe_resist=host:127.0.0.1:80"
    ]
}
```
  Found on 2022-12-17 15:28
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdn.cindyhodev.com
Port: 80
URL: http://cdn.cindyhodev.com

First seen 2022-12-16 13:51
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0f7290ab138d2b1d167904e1af7904e1af
```
Found 3 files trough .DS_Store spidering:

/draco
/favicon
/pm-tool_children-tree.jpg
```
  Found on 2022-12-16 13:51
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: kr.jpml.eu.org
Port: 8443
URL: https://kr.jpml.eu.org:8443

First seen 2022-12-14 16:35
- Fingerprint: b18befd9dd6536aa30550de579643e967c7c09727b390feb4619bccc3da6720e
```
{
    "Debug": true,
    "Retries": 0,
    "ServeNodes": [
        "ss+mws://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@127.0.0.1:3580?path=/f900516fec15go",
	"ss+mwss://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@:5443?cert=/etc/letsencrypt/live/svrsite.ga/fullchain.pem&key=/etc/letsencrypt/live/svrsite.ga/privkey.pem&probe_resist=host:127.0.0.1:80"
    ]
}
```
  Found on 2022-12-14 16:35
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: kr.jpml.eu.org
Port: 443
URL: https://kr.jpml.eu.org

First seen 2022-12-14 16:35
- Fingerprint: b18befd9dd6536aa30550de579643e967c7c09727b390feb4619bccc3da6720e
```
{
    "Debug": true,
    "Retries": 0,
    "ServeNodes": [
        "ss+mws://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@127.0.0.1:3580?path=/f900516fec15go",
	"ss+mwss://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@:5443?cert=/etc/letsencrypt/live/svrsite.ga/fullchain.pem&key=/etc/letsencrypt/live/svrsite.ga/privkey.pem&probe_resist=host:127.0.0.1:80"
    ]
}
```
  Found on 2022-12-14 16:35
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: kr.ksvr.eu.org
Port: 443
URL: https://kr.ksvr.eu.org

First seen 2022-12-14 16:35
- Fingerprint: b18befd9dd6536aa30550de579643e967c7c09727b390feb4619bccc3da6720e
```
{
    "Debug": true,
    "Retries": 0,
    "ServeNodes": [
        "ss+mws://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@127.0.0.1:3580?path=/f900516fec15go",
	"ss+mwss://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@:5443?cert=/etc/letsencrypt/live/svrsite.ga/fullchain.pem&key=/etc/letsencrypt/live/svrsite.ga/privkey.pem&probe_resist=host:127.0.0.1:80"
    ]
}
```
  Found on 2022-12-14 16:35
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: world.123221.xyz
Port: 8443
URL: https://world.123221.xyz:8443

First seen 2022-12-12 03:58
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-12-12 03:58
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn2.izyxw.co
Port: 80
URL: http://cdn2.izyxw.co

First seen 2022-12-09 07:44
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522f1ff5f2c
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/react-china/nav.react-china.org.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-12-09 07:44
  
  279 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn.yangyi.site
Port: 80
URL: http://cdn.yangyi.site

First seen 2022-12-05 13:09
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-12-05 13:09
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vm01.greenwms.top
Port: 80
URL: http://vm01.greenwms.top

First seen 2022-12-05 10:14
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-12-05 10:14
  
  265 Bytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdn.liveu.lk
Port: 80
URL: http://cdn.liveu.lk

First seen 2022-10-06 05:13
Last seen 2022-12-05 04:31
Open for 59 days

Severity: low
Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bcea7bb95a742ddf95aa439f6740bd8cf8

Found 22 files trough .DS_Store spidering:

/google8fc08589a1e95d18.html
/index.php
/license.txt
/local-phpinfo.php
/readme.html
/wp-activate.php
/wp-admin
/wp-blog-header.php
/wp-comments-post.php
/wp-config-sample.php
/wp-config.php
/wp-content
/wp-cron.php
/wp-includes
/wp-links-opml.php
/wp-load.php
/wp-login.php
/wp-mail.php
/wp-settings.php
/wp-signup.php
/wp-trackback.php
/xmlrpc.php

Found on 2022-12-05 04:31

Severity: low
Fingerprint: 5f32cf5d6962f09c7c3d3e457c3d3e4594c50ecfdad4f5f4722317a215881e2d

Found 30 files trough .DS_Store spidering:

/google8fc08589a1e95d18.html
/index.php
/license.txt
/local-phpinfo.php
/readme.html
/wp-activate.php
/wp-admin
/wp-blog-header.php
/wp-comments-post.php
/wp-config-sample.php
/wp-config.php
/wp-content
/wp-content/index.php
/wp-content/languages
/wp-content/mu-plugins
/wp-content/plugins
/wp-content/themes
/wp-content/upgrade
/wp-content/uploads
/wp-content/wpvividbackups
/wp-cron.php
/wp-includes
/wp-links-opml.php
/wp-load.php
/wp-login.php
/wp-mail.php
/wp-settings.php
/wp-signup.php
/wp-trackback.php
/xmlrpc.php

Found on 2022-10-06 05:13

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdn.liveu.lk
Port: 443
URL: https://cdn.liveu.lk

First seen 2022-12-05 04:31
- Severity: low
  Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bcea7bb95a742ddf95aa439f6740bd8cf8
```
Found 22 files trough .DS_Store spidering:

/google8fc08589a1e95d18.html
/index.php
/license.txt
/local-phpinfo.php
/readme.html
/wp-activate.php
/wp-admin
/wp-blog-header.php
/wp-comments-post.php
/wp-config-sample.php
/wp-config.php
/wp-content
/wp-cron.php
/wp-includes
/wp-links-opml.php
/wp-load.php
/wp-login.php
/wp-mail.php
/wp-settings.php
/wp-signup.php
/wp-trackback.php
/xmlrpc.php
```
  Found on 2022-12-05 04:31
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdn.liveu.lk
Port: 8443
URL: https://cdn.liveu.lk:8443

First seen 2022-12-05 04:31
- Severity: low
  Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bcea7bb95a742ddf95aa439f6740bd8cf8
```
Found 22 files trough .DS_Store spidering:

/google8fc08589a1e95d18.html
/index.php
/license.txt
/local-phpinfo.php
/readme.html
/wp-activate.php
/wp-admin
/wp-blog-header.php
/wp-comments-post.php
/wp-config-sample.php
/wp-config.php
/wp-content
/wp-cron.php
/wp-includes
/wp-links-opml.php
/wp-load.php
/wp-login.php
/wp-mail.php
/wp-settings.php
/wp-signup.php
/wp-trackback.php
/xmlrpc.php
```
  Found on 2022-12-05 04:31
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gcore.creatop02.tk
Port: 80
URL: http://gcore.creatop02.tk

First seen 2022-11-28 14:09
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522928289b3
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/cloudreve/Cloudreve.git
	fetch = +refs/heads/master:refs/remotes/origin/master
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-28 14:09
  
  277 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gcore.creatop04.tk
Port: 80
URL: http://gcore.creatop04.tk

First seen 2022-11-26 16:24
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522928289b3
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/cloudreve/Cloudreve.git
	fetch = +refs/heads/master:refs/remotes/origin/master
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-26 16:24
  
  277 Bytes
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: kr.avpa.tk
Port: 80
URL: http://kr.avpa.tk

First seen 2022-11-21 01:03
- Fingerprint: b18befd9dd6536aa30550de579643e967c7c09727b390feb4619bccc3da6720e
```
{
    "Debug": true,
    "Retries": 0,
    "ServeNodes": [
        "ss+mws://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@127.0.0.1:3580?path=/f900516fec15go",
	"ss+mwss://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@:5443?cert=/etc/letsencrypt/live/svrsite.ga/fullchain.pem&key=/etc/letsencrypt/live/svrsite.ga/privkey.pem&probe_resist=host:127.0.0.1:80"
    ]
}
```
  Found on 2022-11-21 01:03
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: kr.avpa.ml
Port: 80
URL: http://kr.avpa.ml

First seen 2022-11-20 16:54
- Fingerprint: b18befd9dd6536aa30550de579643e967c7c09727b390feb4619bccc3da6720e
```
{
    "Debug": true,
    "Retries": 0,
    "ServeNodes": [
        "ss+mws://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@127.0.0.1:3580?path=/f900516fec15go",
	"ss+mwss://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@:5443?cert=/etc/letsencrypt/live/svrsite.ga/fullchain.pem&key=/etc/letsencrypt/live/svrsite.ga/privkey.pem&probe_resist=host:127.0.0.1:80"
    ]
}
```
  Found on 2022-11-20 16:54
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: kr.avpa.ga
Port: 80
URL: http://kr.avpa.ga

First seen 2022-11-20 16:24
- Fingerprint: b18befd9dd6536aa30550de579643e967c7c09727b390feb4619bccc3da6720e
```
{
    "Debug": true,
    "Retries": 0,
    "ServeNodes": [
        "ss+mws://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@127.0.0.1:3580?path=/f900516fec15go",
	"ss+mwss://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@:5443?cert=/etc/letsencrypt/live/svrsite.ga/fullchain.pem&key=/etc/letsencrypt/live/svrsite.ga/privkey.pem&probe_resist=host:127.0.0.1:80"
    ]
}
```
  Found on 2022-11-20 16:24
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: kr.avpa.cf
Port: 80
URL: http://kr.avpa.cf

First seen 2022-11-20 14:08
- Fingerprint: b18befd9dd6536aa30550de579643e967c7c09727b390feb4619bccc3da6720e
```
{
    "Debug": true,
    "Retries": 0,
    "ServeNodes": [
        "ss+mws://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@127.0.0.1:3580?path=/f900516fec15go",
	"ss+mwss://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@:5443?cert=/etc/letsencrypt/live/svrsite.ga/fullchain.pem&key=/etc/letsencrypt/live/svrsite.ga/privkey.pem&probe_resist=host:127.0.0.1:80"
    ]
}
```
  Found on 2022-11-20 14:08
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: kr.vpssvr.tk
Port: 80
URL: http://kr.vpssvr.tk

First seen 2022-11-20 13:36
- Fingerprint: b18befd9dd6536aa30550de579643e967c7c09727b390feb4619bccc3da6720e
```
{
    "Debug": true,
    "Retries": 0,
    "ServeNodes": [
        "ss+mws://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@127.0.0.1:3580?path=/f900516fec15go",
	"ss+mwss://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@:5443?cert=/etc/letsencrypt/live/svrsite.ga/fullchain.pem&key=/etc/letsencrypt/live/svrsite.ga/privkey.pem&probe_resist=host:127.0.0.1:80"
    ]
}
```
  Found on 2022-11-20 13:36
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: sfnet.cf
Port: 80
URL: http://sfnet.cf

First seen 2022-10-05 13:23
Last seen 2022-11-16 11:37
Open for 41 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-10-05 13:23
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: sfnet.cf
Port: 8443
URL: https://sfnet.cf:8443

First seen 2022-10-05 13:23
Last seen 2022-11-16 11:37
Open for 41 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-10-05 13:23
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: movie.nimama.buzz
Port: 80
URL: http://movie.nimama.buzz

First seen 2022-11-16 01:14
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-16 01:14
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: www.nimama.buzz
Port: 80
URL: http://www.nimama.buzz

First seen 2022-11-15 17:12
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-15 17:12
  
  265 Bytes
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: mrally.udrohan.com
Port: 80
URL: http://mrally.udrohan.com

First seen 2022-11-14 02:27

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31252a0442252a0442fa8d495d

Apache Status

Apache Server Status for mrally.udrohan.com

Server Version: Apache/2.2.21 (Win32) mod_ssl/2.2.21 OpenSSL/1.0.0e PHP/5.3.8 mod_perl/2.0.4 Perl/v5.10.1
Server Built: Sep 10 2011 11:34:11

Current Time: Monday, 14-Nov-2022 02:27:51 Coordinated Universal Time
Restart Time: Monday, 14-Nov-2022 01:08:17 Coordinated Universal Time
Parent Server Generation: 0
Server uptime:  1 hour 19 minutes 33 seconds
2 requests currently being processed, 148 idle workers
________________________________________________________________
________________________________________________________________
____________W______W__..........................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process

PID Key: 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: W 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: W ,   7832 in state: _ ,   7832 in state: _ 


To obtain a full report with current status information you need to use the ExtendedStatus On directive.



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current sessions: 0subcaches: 32, indexes per subcache: 133index usage: 0%, cache usage: 0%total sessions stored since starting: 1total sessions expired since starting: 1total (pre-expiry) sessions scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2022-11-14 02:27

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: cpass.udrohan.com
Port: 80
URL: http://cpass.udrohan.com

First seen 2022-11-14 02:25

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb311e6654871e665487dbf5932e

Apache Status

Apache Server Status for cpass.udrohan.com

Server Version: Apache/2.2.21 (Win32) mod_ssl/2.2.21 OpenSSL/1.0.0e PHP/5.3.8 mod_perl/2.0.4 Perl/v5.10.1
Server Built: Sep 10 2011 11:34:11

Current Time: Monday, 14-Nov-2022 02:25:27 Coordinated Universal Time
Restart Time: Monday, 14-Nov-2022 01:08:17 Coordinated Universal Time
Parent Server Generation: 0
Server uptime:  1 hour 17 minutes 10 seconds
11 requests currently being processed, 139 idle workers
________________________________________________________________
________________________________________________________________
_______CCCCCCCWCW___C_..........................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process

PID Key: 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: C ,   7832 in state: C ,   7832 in state: C 
   7832 in state: C ,   7832 in state: C ,   7832 in state: C 
   7832 in state: C ,   7832 in state: W ,   7832 in state: C 
   7832 in state: W ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: C ,   7832 in state: _ 


To obtain a full report with current status information you need to use the ExtendedStatus On directive.



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current sessions: 0subcaches: 32, indexes per subcache: 133index usage: 0%, cache usage: 0%total sessions stored since starting: 1total sessions expired since starting: 1total (pre-expiry) sessions scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2022-11-14 02:25

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: glogo.udrohan.com
Port: 80
URL: http://glogo.udrohan.com

First seen 2022-11-14 02:02

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31d6d748f9d6d748f9672305d5

Apache Status

Apache Server Status for glogo.udrohan.com

Server Version: Apache/2.2.21 (Win32) mod_ssl/2.2.21 OpenSSL/1.0.0e PHP/5.3.8 mod_perl/2.0.4 Perl/v5.10.1
Server Built: Sep 10 2011 11:34:11

Current Time: Monday, 14-Nov-2022 02:02:43 Coordinated Universal Time
Restart Time: Monday, 14-Nov-2022 01:08:17 Coordinated Universal Time
Parent Server Generation: 0
Server uptime:  54 minutes 25 seconds
8 requests currently being processed, 142 idle workers
________________________________________________________________
________________________________________________________________
______________WWCCCCCC..........................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process

PID Key: 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: _ ,   7832 in state: _ 
   7832 in state: _ ,   7832 in state: W ,   7832 in state: W 
   7832 in state: C ,   7832 in state: C ,   7832 in state: C 
   7832 in state: C ,   7832 in state: C ,   7832 in state: C 


To obtain a full report with current status information you need to use the ExtendedStatus On directive.



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current sessions: 0subcaches: 32, indexes per subcache: 133index usage: 0%, cache usage: 0%total sessions stored since starting: 0total sessions expired since starting: 0total (pre-expiry) sessions scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2022-11-14 02:02

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: digikalabazzarcloud.ml
Port: 8443
URL: https://digikalabazzarcloud.ml:8443

First seen 2022-11-13 09:17
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-13 09:17
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: digikalabazzarcloud.ml
Port: 443
URL: https://digikalabazzarcloud.ml

First seen 2022-11-13 09:17
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-13 09:17
  
  265 Bytes
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: www.udrohan.com
Port: 80
URL: http://www.udrohan.com

First seen 2022-10-31 08:27
Last seen 2022-11-13 03:53
Open for 12 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3101c4816601c481665fca7baf

Apache Status

Apache Server Status for www.udrohan.com

Server Version: Apache/2.2.21 (Win32) mod_ssl/2.2.21 OpenSSL/1.0.0e PHP/5.3.8 mod_perl/2.0.4 Perl/v5.10.1
Server Built: Sep 10 2011 11:34:11

Current Time: Sunday, 13-Nov-2022 03:53:32 Coordinated Universal Time
Restart Time: Sunday, 13-Nov-2022 02:05:11 Coordinated Universal Time
Parent Server Generation: 0
Server uptime:  1 hour 48 minutes 21 seconds
11 requests currently being processed, 139 idle workers
________________________________________________________________
__________________________________________________________W_W___
__C__C_C_C_CC______CCC..........................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process

PID Key: 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: W 
   5280 in state: _ ,   5280 in state: W ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: C ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: C ,   5280 in state: _ 
   5280 in state: C ,   5280 in state: _ ,   5280 in state: C 
   5280 in state: _ ,   5280 in state: C ,   5280 in state: C 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: _ ,   5280 in state: _ ,   5280 in state: _ 
   5280 in state: C ,   5280 in state: C ,   5280 in state: C 


To obtain a full report with current status information you need to use the ExtendedStatus On directive.



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current sessions: 0subcaches: 32, indexes per subcache: 133index usage: 0%, cache usage: 0%total sessions stored since starting: 5total sessions expired since starting: 5total (pre-expiry) sessions scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2022-11-13 03:53

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3101c4816601c48166084b5700

Apache Status

Apache Server Status for www.udrohan.com

Server Version: Apache/2.2.21 (Win32) mod_ssl/2.2.21 OpenSSL/1.0.0e PHP/5.3.8 mod_perl/2.0.4 Perl/v5.10.1
Server Built: Sep 10 2011 11:34:11

Current Time: Monday, 31-Oct-2022 15:27:42 Coordinated Universal Time
Restart Time: Monday, 31-Oct-2022 12:58:37 Coordinated Universal Time
Parent Server Generation: 0
Server uptime:  2 hours 29 minutes 5 seconds
18 requests currently being processed, 132 idle workers
_________________________________________________________C___C_C
_C_C_C_C_C_C_C_W_C_W_C_C_C_C____________________________________
_____C________________..........................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process

PID Key: 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: C ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: C ,   324 in state: _ 
   324 in state: C ,   324 in state: _ ,   324 in state: C 
   324 in state: _ ,   324 in state: C ,   324 in state: _ 
   324 in state: C ,   324 in state: _ ,   324 in state: C 
   324 in state: _ ,   324 in state: C ,   324 in state: _ 
   324 in state: C ,   324 in state: _ ,   324 in state: C 
   324 in state: _ ,   324 in state: W ,   324 in state: _ 
   324 in state: C ,   324 in state: _ ,   324 in state: W 
   324 in state: _ ,   324 in state: C ,   324 in state: _ 
   324 in state: C ,   324 in state: _ ,   324 in state: C 
   324 in state: _ ,   324 in state: C ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: C ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 
   324 in state: _ ,   324 in state: _ ,   324 in state: _ 


To obtain a full report with current status information you need to use the ExtendedStatus On directive.



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current sessions: 2subcaches: 32, indexes per subcache: 133time left on oldest entries' SSL sessions: avg: 124 seconds, (range: 59...189)index usage: 0%, cache usage: 0%total sessions stored since starting: 8total sessions expired since starting: 6total (pre-expiry) sessions scrolled out of the cache: 0total retrieves since starting: 0 hit, 11 misstotal removes since starting: 0 hit, 0 miss

Found on 2022-10-31 08:27

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: xg1gco.sdff9.top
Port: 80
URL: http://xg1gco.sdff9.top

First seen 2022-11-09 11:57
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-09 11:57
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: mg1gco.sdff9.top
Port: 80
URL: http://mg1gco.sdff9.top

First seen 2022-11-09 08:15
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-09 08:15
  
  265 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: static.spusdt.net
Port: 80
URL: http://static.spusdt.net

First seen 2022-11-03 08:23
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0f6170d50862c53ff76fd164c96fd164c9
```
Found 3 files trough .DS_Store spidering:

/.git
/.gitignore
/.idea
```
  Found on 2022-11-03 08:23
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cocoservice.spusdt.net
Port: 80
URL: http://cocoservice.spusdt.net

First seen 2022-11-03 08:20
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0f6170d50862c53ff76fd164c96fd164c9
```
Found 3 files trough .DS_Store spidering:

/.git
/.gitignore
/.idea
```
  Found on 2022-11-03 08:20
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: wdnc3.indaeuab.top
Port: 80
URL: http://wdnc3.indaeuab.top

First seen 2022-11-02 14:27
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-02 14:27
  
  265 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cocoagent.spusdt.net
Port: 80
URL: http://cocoagent.spusdt.net

First seen 2022-11-02 12:36
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0f6170d50862c53ff76fd164c96fd164c9
```
Found 3 files trough .DS_Store spidering:

/.git
/.gitignore
/.idea
```
  Found on 2022-11-02 12:36
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: spusdt.net
Port: 80
URL: http://spusdt.net

First seen 2022-11-02 12:30
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0f6170d50862c53ff76fd164c96fd164c9
```
Found 3 files trough .DS_Store spidering:

/.git
/.gitignore
/.idea
```
  Found on 2022-11-02 12:30
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gcore.greatsharp.xyz
Port: 80
URL: http://gcore.greatsharp.xyz

First seen 2022-11-01 07:43
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-11-01 07:43
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: cdn.travletheworld.top
Port: 80
URL: http://cdn.travletheworld.top

First seen 2022-10-30 16:24
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-10-30 16:24
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: js.lzpp.pub
Port: 8443
URL: https://js.lzpp.pub:8443

First seen 2022-07-02 06:52
Last seen 2022-10-30 06:31
Open for 119 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-07-02 06:52
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: js.lzpp.pub
Port: 443
URL: https://js.lzpp.pub

First seen 2022-07-02 06:52
Last seen 2022-10-30 06:31
Open for 119 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-07-02 06:52
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vip1.astch.eu.org
Port: 80
URL: http://vip1.astch.eu.org

First seen 2022-10-26 08:14
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522e707c883
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@github.com:zlind0/onkey-installation.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-10-26 08:14
  
  269 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vgcus.rssw.eu.org
Port: 80
URL: http://vgcus.rssw.eu.org

First seen 2022-10-19 14:59
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-10-19 14:59
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vgcusa2.rssw.eu.org
Port: 80
URL: http://vgcusa2.rssw.eu.org

First seen 2022-10-19 14:50
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-10-19 14:50
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: rachel.utalkingtome.tk
Port: 80
URL: http://rachel.utalkingtome.tk

First seen 2022-10-19 11:52
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522c30492df
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/BuckyMaler/global.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-10-19 11:52
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vgc.us.rssw.eu.org
Port: 80
URL: http://vgc.us.rssw.eu.org

First seen 2022-10-19 11:20
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-10-19 11:20
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gteq.mymoe.in
Port: 80
URL: http://gteq.mymoe.in

First seen 2022-10-19 09:56
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-10-19 09:56
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: ioit.buzz
Port: 80
URL: http://ioit.buzz

First seen 2022-10-16 03:30
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65225a483793
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/oborseth/porkbun-parking.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2022-10-16 03:30
  
  268 Bytes
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: kr.v-svr.ml
Port: 80
URL: http://kr.v-svr.ml

First seen 2022-10-15 17:13
- Fingerprint: b18befd9dd6536aa30550de579643e967c7c09727b390feb4619bccc3da6720e
```
{
    "Debug": true,
    "Retries": 0,
    "ServeNodes": [
        "ss+mws://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@127.0.0.1:3580?path=/f900516fec15go",
	"ss+mwss://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@:5443?cert=/etc/letsencrypt/live/svrsite.ga/fullchain.pem&key=/etc/letsencrypt/live/svrsite.ga/privkey.pem&probe_resist=host:127.0.0.1:80"
    ]
}
```
  Found on 2022-10-15 17:13
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: kr.ksvr.eu.org
Port: 80
URL: http://kr.ksvr.eu.org

First seen 2022-10-15 17:03
- Fingerprint: b18befd9dd6536aa30550de579643e967c7c09727b390feb4619bccc3da6720e
```
{
    "Debug": true,
    "Retries": 0,
    "ServeNodes": [
        "ss+mws://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@127.0.0.1:3580?path=/f900516fec15go",
	"ss+mwss://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@:5443?cert=/etc/letsencrypt/live/svrsite.ga/fullchain.pem&key=/etc/letsencrypt/live/svrsite.ga/privkey.pem&probe_resist=host:127.0.0.1:80"
    ]
}
```
  Found on 2022-10-15 17:03
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: kr.jpcf.eu.org
Port: 80
URL: http://kr.jpcf.eu.org

First seen 2022-10-15 16:55
- Fingerprint: b18befd9dd6536aa30550de579643e967c7c09727b390feb4619bccc3da6720e
```
{
    "Debug": true,
    "Retries": 0,
    "ServeNodes": [
        "ss+mws://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@127.0.0.1:3580?path=/f900516fec15go",
	"ss+mwss://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@:5443?cert=/etc/letsencrypt/live/svrsite.ga/fullchain.pem&key=/etc/letsencrypt/live/svrsite.ga/privkey.pem&probe_resist=host:127.0.0.1:80"
    ]
}
```
  Found on 2022-10-15 16:55
Create report
A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: oc.jpml.eu.org
Port: 80
URL: http://oc.jpml.eu.org

First seen 2022-10-15 16:13
- Fingerprint: b18befd9dd6536aa30550de579643e967c7c09727b390feb4619bccc3da6720e
```
{
    "Debug": true,
    "Retries": 0,
    "ServeNodes": [
        "ss+mws://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@127.0.0.1:3580?path=/f900516fec15go",
	"ss+mwss://aes-128-gcm:5a78a057-df85-440a-9b6d-de307ba57ec9@:5443?cert=/etc/letsencrypt/live/svrsite.ga/fullchain.pem&key=/etc/letsencrypt/live/svrsite.ga/privkey.pem&probe_resist=host:127.0.0.1:80"
    ]
}
```
  Found on 2022-10-15 16:13
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdn.bootgrafmonumenten.nl
Port: 80
URL: http://cdn.bootgrafmonumenten.nl

First seen 2022-10-14 13:41
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf176422d6714d6678d2b4e678d2b4e678d2b4e
```
Found 2 files trough .DS_Store spidering:

/photos
/video
```
  Found on 2022-10-14 13:41
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: status.digikalabazzarcloud.ml
Port: 80
URL: http://status.digikalabazzarcloud.ml

First seen 2022-10-12 21:35
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-10-12 21:35
  
  265 Bytes
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 81.28.12.12
Domain: starsentangled.com
Port: 80
URL: http://starsentangled.com

First seen 2022-10-12 07:16

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3173b47e8573b47e85c73acce4

Apache Status

Apache Server Status for starsentangled.com (via 127.0.0.1)

Server Version: Apache/2.4.38 (Debian) mod_fcgid/2.3.9 OpenSSL/1.1.1n
Server MPM: prefork
Server Built: 2022-06-20T19:03:00

Current Time: Wednesday, 12-Oct-2022 15:16:15 CST
Restart Time: Wednesday, 12-Oct-2022 10:49:56 CST
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 hours 26 minutes 19 seconds
Server load: 0.00 0.00 0.00
Total accesses: 22 - Total Traffic: 31 kB - Total Duration: 158
CPU Usage: u.41 s.82 cu0 cs0 - .0077% CPU load
.00138 requests/sec - 1 B/second - 1442 B/request - 7.18182 ms/request
7 requests currently being processed, 0 idle workers
KKKCKKW.........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-05831/4/4K
0.0401130.90.000.00
127.0.0.1http/1.1www.starsentangled.com:8080GET /telescope/requests HTTP/1.1

1-05841/4/4K
0.0203480.90.000.00
127.0.0.1http/1.1www.starsentangled.com:8080GET /.git/config HTTP/1.1

2-05851/3/3K
0.010480.90.000.00
127.0.0.1http/1.1www.starsentangled.com:8080GET /debug/default/view?panel=config HTTP/1.1

3-05862/5/5C
0.0210176.70.010.01
127.0.0.1http/1.1www.starsentangled.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

4-05871/4/4K
0.0106200.90.000.00
127.0.0.1http/1.1www.starsentangled.com:8080GET /.DS_Store HTTP/1.1

5-016211/2/2K
0.01012502.40.010.01
127.0.0.1http/1.1www.starsentangled.com:8080GET /?rest_route=/wp/v2/users/ HTTP/1.1

6-051600/0/0W
0.000000.00.000.00
127.0.0.1http/1.1www.starsentangled.com:8080GET /server-status HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

mod_fcgid status:
Total FastCGI processes: 0



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss


Apache/2.4.38 (Debian) Server at starsentangled.com Port 80

Found on 2022-10-12 07:16

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: cdngc.fscdnweb.top
Port: 80
URL: http://cdngc.fscdnweb.top

First seen 2022-10-10 16:20
Last seen 2022-10-12 06:26
Open for 1 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3af247253af247252af0f35dcc8ff3ade94d81d5236a624b
```
Found 9 files trough .DS_Store spidering:

/css
/img
/js
/lib
/lib/animate
/lib/easing
/lib/owlcarousel
/mail
/scss
```
  Found on 2022-10-10 16:20
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vgc.uk.swbee.ga
Port: 80
URL: http://vgc.uk.swbee.ga

First seen 2022-10-12 03:33
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-10-12 03:33
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vgc.usa.swbee.ga
Port: 80
URL: http://vgc.usa.swbee.ga

First seen 2022-10-12 03:20
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-10-12 03:20
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: vgc.us.swbee.ga
Port: 80
URL: http://vgc.us.swbee.ga

First seen 2022-10-11 03:04
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-10-11 03:04
  
  265 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 81.28.12.12
Domain: voila.ng
Port: 80
URL: http://voila.ng

First seen 2022-09-20 13:47
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0ff409caf136a0309dbd9bcb65bd9bcb65
```
Found 3 files trough .DS_Store spidering:

/assets
/cdn
/css
```
  Found on 2022-09-20 13:47
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: gcore.crystalshows.com
Port: 80
URL: http://gcore.crystalshows.com

First seen 2022-08-25 06:30
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-08-25 06:30
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 81.28.12.12
Domain: zbr.vai1u0s3.moviehanter.com
Port: 80
URL: http://zbr.vai1u0s3.moviehanter.com

First seen 2022-08-15 13:45
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227eddc385
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/wulabing/3DCEList.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-08-15 13:45
  
  265 Bytes
Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: gravatar.xh-ws.com
Port: 8443
URL: https://gravatar.xh-ws.com:8443

First seen 2022-07-06 15:31

Fingerprint: b18befd9dd65368245ef0ad145ef0ad145ef0ad145ef0ad145ef0ad145ef0ad1

{"entry":[{"id":"299423","hash":"00c8267d51c7947fbc2e44bbea3db8e0","requestHash":"config","profileUrl":"http:\/\/gravatar.com\/config","preferredUsername":"config","thumbnailUrl":"https:\/\/secure.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","photos":[{"value":"https:\/\/secure.gravatar.com\/avatar\/00c8267d51c7947fbc2e44bbea3db8e0","type":"thumbnail"}],"displayName":"config","aboutMe":"Founder of config.com, Entrepreneur, and Search Engine Optimizer.\r\n\r\nAuthor of the 1st URL advertised in a computer magazine.","urls":[]}]}

Found on 2022-07-06 15:31

Create report

A JSON configuration file has been found

A JSON configuration file has been found at config.json.

It may contains application configuration such as credentials.

False positive might happen when hitting a JSON API endpoint.

IP: 81.28.12.12
Domain: iframe.ex-staging.domain69.tk
Port: 80
URL: http://iframe.ex-staging.domain69.tk

First seen 2022-06-29 11:02

Fingerprint: b18befd9dd6536aa30550de54e698bcc1e20e93fdf9bb51b1141cbf9a30dad4b

{
    "API_URL":"https://api.staging.gmstd.dev/",
    "SOCKET_URL": "wss://sock.staging.gmstd.dev",
    "USER_TOKEN": "user_token",
    "LOGIN_IFRAME": true,
    "URL_TOKEN": "token",
    "URL_CODE": "code",
    "LOBBY_SCENE_NAME": "lobby-staging-test",
    "LOGIN_SCENE_NAME": "login-staging-test",
    "IPMaster1": "wss://staging.fish.gmstd.dev/lobby/",
    "IPMaster2": "wss://staging.fish.gmstd.dev/lobby-1998/",
    "IPMaster3": "wss://staging.fish.gmstd.dev/fish-3-lobby/",
    "IPMaster4": "wss://staging.fish.gmstd.dev/lobby-1994zh/",
    "IPMaster5": "wss://staging.fish.gmstd.dev/lobby-1995/",
    "IPMaster6": "wss://staging.fish.gmstd.dev/lobby-1992/",
    "IPMaster7": "wss://staging.fish.gmstd.dev/lobby-1990/",
    "IPMaster8": "wss://staging.fish.gmstd.dev/lobby-1988/",
    "IPMaster88": "wss://staging.fish.gmstd.dev/lobby-1993/",
    "IPMaster9": "wss://staging.fish.gmstd.dev/lobby-1993/",
    "IPMaster10": "wss://staging.fish.gmstd.dev/lobby-1996/",
    "IPMaster11": "wss://dev.fish.gmstd.dev/lobby-1985/"
}

Found on 2022-06-29 11:02

Create report

Open service 81.28.12.12:443 · cdn3.rayks.com

2024-11-21 14:14

HTTP/1.1 504 Gateway Time-out
Server: nginx
Date: Thu, 21 Nov 2024 14:14:54 GMT
Content-Type: text/html
Content-Length: 562
Connection: close
traceparent: 00-dfd1a135ebe63268c8b3d2e407d744b8-e1f06263d9e4c5b2-01
X-ID: am3-hw-edge-gpig-gc96
Access-Control-Allow-Origin: *
Host: cdn3.rayks.com
Cache: MISS
X-ID-FE: am3-hw-edge-gpig-gc96

Page title: 504 Gateway Time-out

<html>
<head><title>504 Gateway Time-out</title></head>
<body>
<center><h1>504 Gateway Time-out</h1></center>
<hr><center>nginx</center>
</body>
</html>
<!-- a padding to disable MSIE and Chrome friendly error page -->
<!-- a padding to disable MSIE and Chrome friendly error page -->
<!-- a padding to disable MSIE and Chrome friendly error page -->
<!-- a padding to disable MSIE and Chrome friendly error page -->
<!-- a padding to disable MSIE and Chrome friendly error page -->
<!-- a padding to disable MSIE and Chrome friendly error page -->

Found 3 days ago by HttpPlugin

Host 81.28.12.12

The Netherlands

Software information

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

Git configuration and history exposed

A JSON configuration file has been found

Apache server-status page is publicly available

Git configuration and history exposed

A JSON configuration file has been found

MacOS file listing through .DS_Store file

Git configuration and history exposed

Git configuration and history exposed

MacOS file listing through .DS_Store file

A JSON configuration file has been found

A JSON configuration file has been found

Apache server-status page is publicly available

Laravel development panel enabled

A JSON configuration file has been found

Git configuration and history exposed

A JSON configuration file has been found

Apache server-status page is publicly available

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

Git configuration and history exposed

A JSON configuration file has been found

Git configuration and history exposed

MacOS file listing through .DS_Store file

A JSON configuration file has been found

Git configuration and history exposed

A JSON configuration file has been found

Git configuration and history exposed

A JSON configuration file has been found

Git configuration and history exposed

Git configuration and history exposed

Git configuration and history exposed

Git configuration and history exposed

A JSON configuration file has been found

A JSON configuration file has been found

Apache server-status page is publicly available

Laravel development panel enabled

MacOS file listing through .DS_Store file

A JSON configuration file has been found

A JSON configuration file has been found

A JSON configuration file has been found

Git configuration and history exposed

Git configuration and history exposed

Apache server-status page is publicly available

A JSON configuration file has been found

A JSON configuration file has been found

A JSON configuration file has been found

A JSON configuration file has been found

A JSON configuration file has been found

MacOS file listing through .DS_Store file

A JSON configuration file has been found

A JSON configuration file has been found

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

A JSON configuration file has been found

A JSON configuration file has been found

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

Git configuration and history exposed

MacOS file listing through .DS_Store file

A JSON configuration file has been found

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

Git configuration and history exposed

A JSON configuration file has been found

A JSON configuration file has been found

A JSON configuration file has been found

MacOS file listing through .DS_Store file

A JSON configuration file has been found

A JSON configuration file has been found

A JSON configuration file has been found

A JSON configuration file has been found

MacOS file listing through .DS_Store file