RPI Status with PHP
system date : Thu Nov 13 19:46:33 PST 2025
whoami : www-data
uname -a : Linux rpi4bmedia 5.10.103-v7l+ #1529 SMP Tue Mar 8 12:24:00 GMT 2022 armv7l GNU/Linux
uptime : 19:46:33 up 5 days, 8:16, 2 users, load average: 0.42, 0.16, 0.11
File systems on RPI
Filesystem Size Used Avail Use% Mounted on
/dev/root 29G 8.0G 20G 29% /
devtmpfs 1.8G 0 1.8G 0% /dev
tmpfs 1.9G 0 1.9G 0% /dev/shm
tmpfs 1.9G 74M 1.9G 4% /run
tmpfs 5.0M 4.0K 5.0M 1% /run/lock
tmpfs 1.9G 0 1.9G 0% /sys/fs/cgroup
/dev/mmcblk0p1 253M 49M 204M 20% /boot
/dev/sda1 1.9T 23G 1.8T 2% /media/usbdisk2t
tmpfs 384M 4.0K 384M 1% /run/user/1001
ps aux --sort=-pcpu on RPI
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
gottsch 1292 2.4 1.3 450024 52004 ? Sl Nov08 187:04 lxpanel --profile LXDE-pi
gottsch 812 2.3 1.2 448248 49968 ? Sl Nov08 178:28 lxpanel --profile LXDE-pi
root 1031 0.5 1.3 158676 54412 tty7 Ssl+ Nov08 41:04 /usr/lib/xorg/Xorg :0 -seat seat0 -auth /var/run/lightdm/root/:0 -nolisten tcp vt7 -novtswitch
gottsch 673 0.3 0.8 116752 32928 ? Sl Nov08 24:29 /usr/bin/Xvnc-core :1 -auth /home/gottsch/.Xauthority -pn -fp /usr/share/vnc/fonts/ -geometry 1280x1024 -depth 24
www-data 655 0.1 0.2 53288 8224 ? S Nov08 7:49 nginx: worker process
root 1 0.0 0.2 34904 8324 ? Ss Nov08 1:29 /sbin/init splash
root 2 0.0 0.0 0 0 ? S Nov08 0:00 [kthreadd]
root 3 0.0 0.0 0 0 ? I< Nov08 0:00 [rcu_gp]
root 4 0.0 0.0 0 0 ? I< Nov08 0:00 [rcu_par_gp]
root 8 0.0 0.0 0 0 ? I< Nov08 0:00 [mm_percpu_wq]
root 9 0.0 0.0 0 0 ? S Nov08 0:00 [rcu_tasks_rude_]
root 10 0.0 0.0 0 0 ? S Nov08 0:00 [rcu_tasks_trace]
root 11 0.0 0.0 0 0 ? S Nov08 2:38 [ksoftirqd/0]
root 12 0.0 0.0 0 0 ? I Nov08 4:48 [rcu_sched]
root 13 0.0 0.0 0 0 ? S Nov08 0:00 [migration/0]
root 14 0.0 0.0 0 0 ? S Nov08 0:00 [cpuhp/0]
root 15 0.0 0.0 0 0 ? S Nov08 0:00 [cpuhp/1]
root 16 0.0 0.0 0 0 ? S Nov08 0:00 [migration/1]
root 17 0.0 0.0 0 0 ? S Nov08 0:01 [ksoftirqd/1]
root 20 0.0 0.0 0 0 ? S Nov08 0:00 [cpuhp/2]
root 21 0.0 0.0 0 0 ? S Nov08 0:00 [migration/2]
root 22 0.0 0.0 0 0 ? S Nov08 0:06 [ksoftirqd/2]
root 25 0.0 0.0 0 0 ? S Nov08 0:00 [cpuhp/3]
root 26 0.0 0.0 0 0 ? S Nov08 0:00 [migration/3]
root 27 0.0 0.0 0 0 ? S Nov08 0:05 [ksoftirqd/3]
root 30 0.0 0.0 0 0 ? S Nov08 0:00 [kdevtmpfs]
root 31 0.0 0.0 0 0 ? I< Nov08 0:00 [netns]
root 34 0.0 0.0 0 0 ? S Nov08 0:00 [kauditd]
root 36 0.0 0.0 0 0 ? S Nov08 0:00 [khungtaskd]
root 37 0.0 0.0 0 0 ? S Nov08 0:00 [oom_reaper]
root 38 0.0 0.0 0 0 ? I< Nov08 0:00 [writeback]
root 39 0.0 0.0 0 0 ? S Nov08 0:39 [kcompactd0]
root 59 0.0 0.0 0 0 ? I< Nov08 0:00 [kblockd]
root 60 0.0 0.0 0 0 ? I< Nov08 0:00 [blkcg_punt_bio]
root 61 0.0 0.0 0 0 ? S Nov08 0:00 [watchdogd]
root 64 0.0 0.0 0 0 ? I< Nov08 0:00 [rpciod]
root 65 0.0 0.0 0 0 ? I< Nov08 0:00 [kworker/u9:0-hci0]
root 66 0.0 0.0 0 0 ? I< Nov08 0:00 [xprtiod]
root 67 0.0 0.0 0 0 ? S Nov08 0:06 [kswapd0]
root 68 0.0 0.0 0 0 ? I< Nov08 0:00 [nfsiod]
root 69 0.0 0.0 0 0 ? I< Nov08 0:00 [kthrotld]
root 71 0.0 0.0 0 0 ? I< Nov08 0:00 [iscsi_eh]
root 72 0.0 0.0 0 0 ? I< Nov08 0:00 [iscsi_destroy]
root 73 0.0 0.0 0 0 ? I< Nov08 0:00 [nvme-wq]
root 74 0.0 0.0 0 0 ? I< Nov08 0:00 [nvme-reset-wq]
root 75 0.0 0.0 0 0 ? I< Nov08 0:00 [nvme-delete-wq]
root 79 0.0 0.0 0 0 ? I< Nov08 0:00 [DWC Notificatio]
root 80 0.0 0.0 0 0 ? I< Nov08 0:00 [uas]
root 82 0.0 0.0 0 0 ? S< Nov08 0:00 [vchiq-slot/0]
root 83 0.0 0.0 0 0 ? S< Nov08 0:00 [vchiq-recy/0]
root 84 0.0 0.0 0 0 ? S< Nov08 0:00 [vchiq-sync/0]
root 85 0.0 0.0 0 0 ? I< Nov08 0:00 [zswap-shrink]
root 89 0.0 0.0 0 0 ? I< Nov08 0:00 [sdhci]
root 90 0.0 0.0 0 0 ? S Nov08 0:00 [irq/47-mmc0]
root 95 0.0 0.0 0 0 ? I< Nov08 0:00 [mmc_complete]
root 99 0.0 0.0 0 0 ? I< Nov08 0:07 [kworker/2:2H-kblockd]
root 102 0.0 0.0 0 0 ? S Nov08 0:00 [scsi_eh_0]
root 103 0.0 0.0 0 0 ? I< Nov08 0:00 [scsi_tmf_0]
root 104 0.0 0.0 0 0 ? S Nov08 0:11 [usb-storage]
root 105 0.0 0.0 0 0 ? S Nov08 0:24 [jbd2/mmcblk0p2-]
root 106 0.0 0.0 0 0 ? I< Nov08 0:00 [ext4-rsv-conver]
root 107 0.0 0.0 0 0 ? I< Nov08 0:00 [ipv6_addrconf]
root 128 0.0 1.1 78744 44604 ? Ss Nov08 0:43 /lib/systemd/systemd-journald
root 164 0.0 0.1 18472 3956 ? Ss Nov08 0:01 /lib/systemd/systemd-udevd
root 190 0.0 0.0 0 0 ? S Nov08 0:00 [vchiq-keep/0]
root 191 0.0 0.0 0 0 ? S< Nov08 0:00 [SMIO]
root 198 0.0 0.0 0 0 ? I< Nov08 0:00 [mmal-vchiq]
root 200 0.0 0.0 0 0 ? I< Nov08 0:00 [mmal-vchiq]
root 201 0.0 0.0 0 0 ? I< Nov08 0:00 [mmal-vchiq]
root 202 0.0 0.0 0 0 ? I< Nov08 0:00 [mmal-vchiq]
root 203 0.0 0.0 0 0 ? I< Nov08 0:00 [mmal-vchiq]
root 236 0.0 0.0 0 0 ? S Nov08 5:02 [v3d_bin]
root 238 0.0 0.0 0 0 ? S Nov08 7:02 [v3d_render]
root 239 0.0 0.0 0 0 ? S Nov08 0:00 [v3d_tfu]
root 242 0.0 0.0 0 0 ? S Nov08 0:00 [v3d_csd]
root 243 0.0 0.0 0 0 ? S Nov08 0:00 [v3d_cache_clean]
root 250 0.0 0.0 0 0 ? S Nov08 0:00 [card1-crtc0]
root 254 0.0 0.0 0 0 ? I< Nov08 0:00 [cfg80211]
root 256 0.0 0.0 0 0 ? I< Nov08 0:00 [brcmf_wq/mmc1:0]
root 261 0.0 0.0 0 0 ? S Nov08 0:05 [brcmf_wdog/mmc1]
systemd+ 332 0.0 0.1 22384 5604 ? Ssl Nov08 0:01 /lib/systemd/systemd-timesyncd
root 360 0.0 0.0 4068 2612 ? Ss Nov08 3:16 /sbin/mount.ntfs-3g /dev/sda1 /media/usbdisk2t -o rw,nosuid,nodev,uid=1001,gid=1001,user,exec
root 373 0.0 0.0 25500 3004 ? Ssl Nov08 0:08 /usr/sbin/rsyslogd -n -iNONE
nobody 377 0.0 0.0 4316 2116 ? Ss Nov08 0:05 /usr/sbin/thd --triggers /etc/triggerhappy/triggers.d/ --socket /run/thd.socket --user nobody --deviceglob /dev/input/event*
root 383 0.0 0.1 13120 5716 ? Ss Nov08 0:30 /lib/systemd/systemd-logind
root 393 0.0 0.1 11720 4500 ? SNs Nov08 0:00 /usr/sbin/alsactl -E HOME=/run/alsa -s -n 19 -c rdaemon
avahi 396 0.0 0.0 6020 2896 ? Ss Nov08 0:51 avahi-daemon: running [rpi4bmedia.local]
message+ 397 0.0 0.0 6944 3652 ? Ss Nov08 1:11 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only
root 399 0.0 0.0 10712 3716 ? Ss Nov08 0:03 /sbin/wpa_supplicant -u -s -O /run/wpa_supplicant
root 401 0.0 0.2 63308 9248 ? Ssl Nov08 0:05 /usr/lib/udisks2/udisksd
avahi 424 0.0 0.0 5764 252 ? S Nov08 0:00 avahi-daemon: chroot helper
root 465 0.0 0.0 2132 104 ? S Nov08 0:00 /usr/bin/hciattach /dev/serial1 bcm43xx 3000000 flow -
root 467 0.0 0.0 0 0 ? I< Nov08 0:00 [kworker/u9:2-hci0]
root 489 0.0 0.1 39024 6732 ? Ssl Nov08 0:06 /usr/lib/policykit-1/polkitd --no-debug
root 512 0.0 0.0 9524 3328 ? Ss Nov08 0:00 /usr/lib/bluetooth/bluetoothd
root 521 0.0 0.1 11228 4360 ? Ss Nov08 0:07 wpa_supplicant -B -c/etc/wpa_supplicant/wpa_supplicant.conf -iwlan0 -Dnl80211,wext
root 598 0.0 0.0 2900 1908 ? Ss Nov08 0:02 /sbin/dhcpcd -q -w
mosquit+ 599 0.0 0.1 8768 4676 ? Ss Nov08 3:59 /usr/sbin/mosquitto -c /etc/mosquitto/mosquitto.conf
root 600 0.0 0.2 27796 9416 ? Ss Nov08 3:46 /usr/sbin/nmbd --foreground --no-process-group
root 611 0.0 0.3 189100 14860 ? Ss Nov08 0:42 php-fpm: master process (/etc/php/7.3/fpm/php-fpm.conf)
root 618 0.0 0.0 4452 2136 ? Ss Nov08 0:00 /usr/bin/vncserver-x11-serviced -fg
root 621 0.0 0.0 5584 1948 ? Ss Nov08 0:00 /usr/sbin/vsftpd /etc/vsftpd.conf
root 624 0.0 0.0 0 0 ? I< Nov08 0:00 [cifsiod]
root 625 0.0 0.0 0 0 ? I< Nov08 0:00 [smb3decryptd]
root 626 0.0 0.0 0 0 ? I< Nov08 0:00 [cifsfileinfoput]
root 627 0.0 0.0 0 0 ? I< Nov08 0:00 [cifsoplockd]
root 628 0.0 0.0 0 0 ? I< Nov08 0:00 [cifs-dfscache]
root 631 0.0 0.1 10688 5824 ? Ss Nov08 0:04 /usr/sbin/sshd -D
root 632 0.0 0.3 34128 13996 ? Sl Nov08 2:02 /usr/bin/vncserver-x11-core -service
root 654 0.0 0.0 51212 2360 ? Ss Nov08 0:00 nginx: master process /usr/sbin/nginx -g daemon on; master_process on;
www-data 656 0.0 0.2 55164 10080 ? S Nov08 0:28 nginx: worker process
www-data 657 0.0 0.1 52304 6948 ? S Nov08 0:06 nginx: worker process
www-data 658 0.0 0.1 52112 6852 ? S Nov08 0:11 nginx: worker process
gottsch 671 0.0 0.0 6032 3196 ? Ss Nov08 0:00 vncserver :1 -geometry 1280x1024 -depth 24
root 674 0.0 0.1 17160 7180 ? S Nov08 0:00 /usr/bin/Xvnc -rootHelper 1001 4
www-data 675 0.0 0.2 189272 10640 ? S Nov08 0:00 php-fpm: pool www
www-data 676 0.0 0.2 189272 10596 ? S Nov08 0:00 php-fpm: pool www
root 678 0.0 0.4 45016 16556 ? Ss Nov08 0:05 /usr/sbin/smbd --foreground --no-process-group
gottsch 693 0.0 0.0 6544 3344 ? S Nov08 0:00 /usr/bin/dbus-daemon --session --nofork --address=unix:path=/tmp/.vnc-1001/run/session-47bce68b46b642ca/bus --nopidfile --nosyslog
gottsch 694 0.0 0.1 351656 6664 ? Sl Nov08 0:24 /usr/bin/pulseaudio --daemonize=no
gottsch 696 0.0 0.0 1936 388 ? S Nov08 0:00 /bin/sh /etc/vnc/xstartup
rtkit 704 0.0 0.0 23184 2188 ? SNsl Nov08 0:08 /usr/lib/rtkit/rtkit-daemon
gottsch 707 0.0 0.4 38324 15940 ? S Nov08 0:05 /usr/bin/vncserverui virtual 14
root 708 0.0 0.1 41240 5204 ? S Nov08 0:00 /usr/sbin/smbd --foreground --no-process-group
root 711 0.0 0.1 41244 4092 ? S Nov08 0:00 /usr/sbin/smbd --foreground --no-process-group
root 720 0.0 0.1 45004 6696 ? S Nov08 0:06 /usr/sbin/smbd --foreground --no-process-group
gottsch 722 0.0 0.2 50300 10956 ? Sl Nov08 0:00 /usr/bin/lxsession -s LXDE-pi -e LXDE
gottsch 736 0.0 0.4 28168 15920 ? S Nov08 0:00 /usr/bin/vncserverui -statusicon 5
gottsch 757 0.0 0.0 4492 288 ? Ss Nov08 0:02 /usr/bin/ssh-agent x-session-manager
gottsch 781 0.0 0.1 39232 6008 ? Sl Nov08 0:00 /usr/lib/gvfs/gvfsd
gottsch 790 0.0 0.1 54504 5028 ? Sl Nov08 0:00 /usr/lib/gvfs/gvfsd-fuse /tmp/.vnc-1001/run/gvfs -f -o big_writes
gottsch 806 0.0 0.3 57968 14568 ? S Nov08 0:02 openbox --config-file /home/gottsch/.config/openbox/lxde-pi-rc.xml
gottsch 810 0.0 0.4 47480 18884 ? Sl Nov08 0:00 lxpolkit
gottsch 815 0.0 0.6 152148 25616 ? Sl Nov08 0:13 pcmanfm --desktop --profile LXDE-pi
gottsch 822 0.0 0.0 4492 288 ? Ss Nov08 0:00 /usr/bin/ssh-agent -s
gottsch 845 0.0 0.6 41576 26872 ? S Nov08 0:01 /usr/bin/python3 /usr/share/system-config-printer/applet.py
gottsch 864 0.0 0.1 26436 5184 ? Sl Nov08 0:00 /usr/lib/menu-cache/menu-cached /tmp/.vnc-1001/run/menu-cached-:1
gottsch 869 0.0 0.2 93712 9628 ? Sl Nov08 0:00 /usr/lib/gvfs/gvfs-udisks2-volume-monitor
gottsch 878 0.0 0.1 35924 4316 ? Sl Nov08 0:00 /usr/lib/gvfs/gvfs-goa-volume-monitor
gottsch 885 0.0 0.1 37492 4880 ? Sl Nov08 0:00 /usr/lib/gvfs/gvfs-gphoto2-volume-monitor
gottsch 895 0.0 0.1 51976 6996 ? Sl Nov08 0:00 /usr/lib/gvfs/gvfs-afc-volume-monitor
gottsch 907 0.0 0.1 35924 4608 ? Sl Nov08 0:00 /usr/lib/gvfs/gvfs-mtp-volume-monitor
root 909 0.0 0.0 3772 2296 ? Ss Nov08 0:03 /usr/sbin/cron -f
root 917 0.0 0.0 28676 80 ? SLsl Nov08 0:08 /usr/sbin/rngd -r /dev/hwrng
root 948 0.0 0.1 46816 5928 ? Ssl Nov08 0:01 /usr/sbin/lightdm
root 1032 0.0 0.0 5616 2480 tty1 Ss Nov08 0:00 /bin/login -f
gottsch 1085 0.0 0.1 48888 6624 ? Sl Nov08 0:00 /usr/lib/gvfs/gvfsd-trash --spawner :1.4 /org/gtk/gvfs/exec_spaw/0
gottsch 1149 0.0 0.1 26800 4332 ? Sl Nov08 0:00 /usr/lib/gvfs/gvfsd-metadata
root 1155 0.0 0.1 7308 4148 ? S Nov08 0:00 /usr/bin/vncagent service 15
root 1215 0.0 0.1 29900 6244 ? Sl Nov08 0:00 lightdm --session-child 14 17
gottsch 1220 0.0 0.1 14692 7364 ? Ss Nov08 0:00 /lib/systemd/systemd --user
gottsch 1221 0.0 0.0 16924 1888 ? S Nov08 0:00 (sd-pam)
gottsch 1231 0.0 0.2 50364 11196 ? Ssl Nov08 0:00 /usr/bin/lxsession -s LXDE-pi -e LXDE
gottsch 1239 0.0 0.0 6540 3460 ? Ss Nov08 0:00 /usr/bin/dbus-daemon --session --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only
gottsch 1263 0.0 0.0 4492 288 ? Ss Nov08 0:02 /usr/bin/ssh-agent x-session-manager
gottsch 1274 0.0 0.1 39232 5940 ? Ssl Nov08 0:00 /usr/lib/gvfs/gvfsd
gottsch 1279 0.0 0.1 53480 5144 ? Sl Nov08 0:00 /usr/lib/gvfs/gvfsd-fuse /run/user/1001/gvfs -f -o big_writes
gottsch 1288 0.0 0.3 57304 13920 ? S Nov08 0:00 openbox --config-file /home/gottsch/.config/openbox/lxde-pi-rc.xml
gottsch 1290 0.0 0.2 42956 8820 ? Sl Nov08 0:03 lxpolkit
gottsch 1294 0.0 0.6 119252 23940 ? Sl Nov08 0:00 pcmanfm --desktop --profile LXDE-pi
gottsch 1303 0.0 0.0 4492 288 ? Ss Nov08 0:00 /usr/bin/ssh-agent -s
gottsch 1305 0.0 0.0 4868 1028 ? S Nov08 0:00 xcompmgr -aR
gottsch 1318 0.0 0.6 41576 26900 ? S Nov08 0:00 /usr/bin/python3 /usr/share/system-config-printer/applet.py
gottsch 1320 0.0 0.2 363604 8700 ? S
ddclient in /var/log/daemon.log
/var/log/nginx/access.log
165.22.126.30 - - [13/Nov/2025:18:59:19 -0800] "GET /.git/config HTTP/1.1" 400 271 "-" "Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);"
193.34.213.150 - - [13/Nov/2025:19:01:01 -0800] "GET /dispatch.asp HTTP/1.1" 404 199 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46"
172.71.234.15 - - [13/Nov/2025:19:02:23 -0800] "GET /kitt_peak/visitor/visitor.html HTTP/1.1" 200 2453 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36"
204.76.203.18 - - [13/Nov/2025:19:02:49 -0800] "GET /bin/ HTTP/1.1" 404 169 "-" "-"
204.76.203.28 - - [13/Nov/2025:19:05:04 -0800] "\x05\x02\x00\x02" 400 173 "-" "-"
204.76.203.28 - - [13/Nov/2025:19:05:04 -0800] "\x04\x01\x00P\x01\x01\x01\x01\x00" 400 173 "-" "-"
204.76.203.28 - - [13/Nov/2025:19:05:05 -0800] "CONNECT 1.1.1.1:443 HTTP/1.0" 400 173 "-" "-"
204.76.203.28 - - [13/Nov/2025:19:05:05 -0800] "CONNECT 204.76.203.28:80 HTTP/1.0" 400 173 "-" "-"
204.76.203.28 - - [13/Nov/2025:19:05:06 -0800] "CONNECT 204.76.203.28:80 HTTP/1.0" 400 173 "-" "-"
204.76.203.28 - - [13/Nov/2025:19:05:06 -0800] "CONNECT 204.76.203.28:80 HTTP/1.0" 400 173 "-" "-"
204.76.203.28 - - [13/Nov/2025:19:05:07 -0800] "CONNECT 204.76.203.28:80 HTTP/1.0" 400 173 "-" "-"
204.76.203.28 - - [13/Nov/2025:19:05:08 -0800] "CONNECT 204.76.203.28:80 HTTP/1.0" 400 173 "-" "-"
204.76.203.28 - - [13/Nov/2025:19:05:09 -0800] "CONNECT 204.76.203.28:80 HTTP/1.0" 400 173 "-" "-"
204.76.203.28 - - [13/Nov/2025:19:05:10 -0800] "CONNECT 204.76.203.28:80 HTTP/1.0" 400 173 "-" "-"
204.76.203.28 - - [13/Nov/2025:19:05:11 -0800] "CONNECT 204.76.203.28:80 HTTP/1.0" 400 173 "-" "-"
162.216.150.77 - - [13/Nov/2025:19:06:14 -0800] "GET / HTTP/1.1" 200 4541 "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity"
172.68.19.134 - - [13/Nov/2025:19:10:46 -0800] "GET /kitt_peak/ergebnisse/ngc1253l.html HTTP/1.1" 200 611 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_6) AppleWebKit/537.36 (KHTML, like Gecko) Brave Chrome/86.0.4240.183 Safari/537.36"
172.71.215.20 - - [13/Nov/2025:19:11:17 -0800] "GET /download/hfd_comp_m.jpg HTTP/1.1" 200 337886 "https://www.cloudynights.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36"
172.68.211.86 - - [13/Nov/2025:19:11:19 -0800] "GET /download/hfd_plot.jpg HTTP/1.1" 200 82965 "https://www.cloudynights.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36"
104.23.254.95 - - [13/Nov/2025:19:11:44 -0800] "GET /Lunar_cycle/19days_detail.htm HTTP/1.1" 200 527 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.122 Safari/537.36"
45.82.78.114 - - [13/Nov/2025:19:22:51 -0800] "GET /favicon.ico HTTP/1.1" 404 199 "http://67.160.240.135:8000/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36"
157.173.115.185 - - [13/Nov/2025:19:26:44 -0800] "GET /mofi_141008/small/Mondfinsternis_20141008_Phasen_IMG_5767.JPG HTTP/1.1" 200 17068 "-" "Python/3.12 aiohttp/3.13.2"
172.69.151.175 - - [13/Nov/2025:19:26:48 -0800] "GET /CCD_Galery/ngc6611_asi2600mc_txt_s.jpg HTTP/1.1" 200 44322 "-" "Python/3.12 aiohttp/3.13.2"
172.71.170.155 - - [13/Nov/2025:19:29:03 -0800] "GET /CCD_Galery/ngc1976_Mosaic_st10xme.html HTTP/1.1" 200 728 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/537.36 (KHTML, like Gecko) Brave Chrome/87.0.4280.141 Safari/537.36"
172.70.34.138 - - [13/Nov/2025:19:29:20 -0800] "GET / HTTP/1.1" 200 4541 "-" "okhttp/4.9.2"
104.23.209.43 - - [13/Nov/2025:19:29:20 -0800] "GET /favicon.ico HTTP/1.1" 404 143 "-" "okhttp/4.9.2"
104.23.209.152 - - [13/Nov/2025:19:29:21 -0800] "GET /favicon.png HTTP/1.1" 404 143 "-" "okhttp/4.9.2"
172.71.170.155 - - [13/Nov/2025:19:30:00 -0800] "GET /sun_2015/solar_campaign_2015.html HTTP/1.1" 200 7312 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.54 Safari/537.36"
167.71.235.104 - - [13/Nov/2025:19:33:12 -0800] "GET /+CSCOL+/Java.jar HTTP/1.1" 404 199 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36"
167.71.235.104 - - [13/Nov/2025:19:33:13 -0800] "GET /+CSCOE+/logon_forms.js HTTP/1.1" 404 199 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36"
167.71.235.104 - - [13/Nov/2025:19:33:15 -0800] "GET /+CSCOL+/a1.jar HTTP/1.1" 404 199 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36"
167.71.235.104 - - [13/Nov/2025:19:33:16 -0800] "GET /+CSCOE+/transfer.js HTTP/1.1" 404 199 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36"
202.76.189.169 - - [13/Nov/2025:19:36:16 -0800] "GET /presentations/digital_cameras_2003.pdf HTTP/1.1" 200 5401251 "-" "Mozilla/5.0 (X11; U; Linux x86_64; pl-PL; rv:1.9.2.13) Gecko/20101206 Ubuntu/10.04 (lucid) Firefox/3.6.13"
172.68.19.134 - - [13/Nov/2025:19:36:27 -0800] "GET /mercury_transit2006/merkur_blk.html HTTP/1.1" 200 470 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.43 Safari/537.36"
66.249.70.196 - - [13/Nov/2025:19:39:44 -0800] "GET /sofi_170821/sofi.html HTTP/1.1" 200 2498 "-" "Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/141.0.7390.122 Mobile Safari/537.36 (compatible; GoogleOther)"
172.70.142.87 - - [13/Nov/2025:19:40:12 -0800] "GET /add_images/add_de.htm HTTP/1.1" 200 2224 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.6478.114 Safari/537.36"
162.158.108.13 - - [13/Nov/2025:19:40:13 -0800] "GET /venus_merkur/venus_merkur.html HTTP/1.1" 200 1359 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.6478.114 Safari/537.36"
162.158.170.4 - - [13/Nov/2025:19:40:39 -0800] "GET /cc_st10/cc_pos_st10.html HTTP/1.1" 200 2109 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.6478.114 Safari/537.36"
47.128.61.157 - - [13/Nov/2025:19:41:32 -0800] "GET / HTTP/1.1" 200 4541 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; spider-feedback@bytedance.com)"
47.128.96.197 - - [13/Nov/2025:19:41:49 -0800] "GET / HTTP/1.1" 200 4541 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; TikTokSpider; ttspider-feedback@tiktok.com)"
47.128.96.197 - - [13/Nov/2025:19:41:50 -0800] "GET /23_Canon400mm_640.jpg HTTP/1.1" 206 500 "https://drgert.dyndns.ws/" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; TikTokSpider; ttspider-feedback@tiktok.com)"
47.128.96.197 - - [13/Nov/2025:19:41:50 -0800] "GET /TVS_logo.png HTTP/1.1" 206 500 "https://drgert.dyndns.ws/" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; TikTokSpider; ttspider-feedback@tiktok.com)"
47.128.96.197 - - [13/Nov/2025:19:41:50 -0800] "GET /astrotreff_logo.png HTTP/1.1" 206 500 "https://drgert.dyndns.ws/" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; TikTokSpider; ttspider-feedback@tiktok.com)"
47.128.96.197 - - [13/Nov/2025:19:41:50 -0800] "GET /ngc6523hrgb_st10xme_m2_txt.jpg HTTP/1.1" 206 500 "https://drgert.dyndns.ws/" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; TikTokSpider; ttspider-feedback@tiktok.com)"
47.128.96.197 - - [13/Nov/2025:19:41:50 -0800] "GET /Mond_20090526_AP130_350D_5568m2.jpg HTTP/1.1" 206 500 "https://drgert.dyndns.ws/" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; TikTokSpider; ttspider-feedback@tiktok.com)"
47.128.96.197 - - [13/Nov/2025:19:41:50 -0800] "GET /planets_2016/Jupiter_20160417_060631_txt.jpg HTTP/1.1" 206 500 "https://drgert.dyndns.ws/" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; TikTokSpider; ttspider-feedback@tiktok.com)"
43.153.26.165 - - [13/Nov/2025:19:42:00 -0800] "GET / HTTP/1.1" 200 4541 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
172.68.234.150 - - [13/Nov/2025:19:43:44 -0800] "GET /planeten_2003/mars/bilder/mars_20030816.html HTTP/1.1" 200 714 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36"
172.70.142.86 - - [13/Nov/2025:19:44:17 -0800] "GET /h2o/h2o_en.htm HTTP/1.1" 200 2145 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
104.23.211.235 - - [13/Nov/2025:19:45:43 -0800] "GET /hc11_drift/hc11_10.asm HTTP/1.1" 200 43804 "-" "meta-webindexer/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)"
/var/log/nginx/error.log
/var/log/syslog
Failed root login attempts