Domain app.deco-drop.com
United States
Software information
Heroku
tcp/443
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2025-01-05 19:13
Last seen 2026-01-02 19:05
Open for 361 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8Found 10 files trough .DS_Store spidering: /404.html /422.html /blank.png /confirmation.html /favicon.ico /packs /portraits /pulse.svg /spinner.svg /tangrams
Found on 2026-01-02 19:05 -
Severity: low
Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772159855a0eb5bbe5662f82d32553b6d83Found 11 files trough .DS_Store spidering: /404.html /422.html /assets /blank.png /confirmation.html /favicon.ico /packs /portraits /pulse.svg /spinner.svg /tangrams
Found on 2025-05-29 04:29
-
-
Open service 3.33.241.96:443 · app.deco-drop.com
2026-01-09 18:52
HTTP/1.1 302 Found Cache-Control: no-cache Content-Length: 0 Content-Type: text/html; charset=utf-8 Feature-Policy: geolocation 'self'; camera 'none'; microphone 'none'; usb 'none'; fullscreen 'self'; payment 'self' Location: https://app.deco-drop.com/login Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Referrer-Policy: strict-origin-when-cross-origin Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=WgCIZ%2FDCASBBZEEpbEB9b9xN3eJwyBFcvNBqaDDNWKQ%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1767984762"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=WgCIZ%2FDCASBBZEEpbEB9b9xN3eJwyBFcvNBqaDDNWKQ%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1767984762" Server: Heroku Set-Cookie: logged_in=false; path=/; samesite=lax Strict-Transport-Security: max-age=63072000; includeSubDomains Vary: Accept-Encoding Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Permitted-Cross-Domain-Policies: none X-Request-Id: 5ba6d8ab-aa96-7bfa-8210-ce3e9412147a X-Runtime: 0.019092 X-Xss-Protection: 0 Date: Fri, 09 Jan 2026 18:52:42 GMT Connection: closeFound 2026-01-09 by HttpPluginCreate report
-
Open service 3.33.241.96:443 · app.deco-drop.com
2026-01-02 19:05
HTTP/1.1 302 Found Cache-Control: no-cache Content-Length: 0 Content-Type: text/html; charset=utf-8 Feature-Policy: geolocation 'self'; camera 'none'; microphone 'none'; usb 'none'; fullscreen 'self'; payment 'self' Location: https://app.deco-drop.com/login Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Referrer-Policy: strict-origin-when-cross-origin Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=dScWmFCVXQaaudWSLK%2BjhN7xvQsWRezzvJccRd6%2Fcjc%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1767380716"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=dScWmFCVXQaaudWSLK%2BjhN7xvQsWRezzvJccRd6%2Fcjc%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1767380716" Server: Heroku Set-Cookie: logged_in=false; path=/; samesite=lax Strict-Transport-Security: max-age=63072000; includeSubDomains Vary: Accept-Encoding Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Permitted-Cross-Domain-Policies: none X-Request-Id: 0afc459b-82a8-4a95-64dc-6944c73b46b2 X-Runtime: 0.035217 X-Xss-Protection: 0 Date: Fri, 02 Jan 2026 19:05:16 GMT Connection: closeFound 2026-01-02 by HttpPluginCreate report
-
Open service 3.33.241.96:443 · app.deco-drop.com
2025-12-23 08:01
HTTP/1.1 302 Found Cache-Control: no-cache Content-Length: 0 Content-Type: text/html; charset=utf-8 Feature-Policy: geolocation 'self'; camera 'none'; microphone 'none'; usb 'none'; fullscreen 'self'; payment 'self' Location: https://app.deco-drop.com/login Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Referrer-Policy: strict-origin-when-cross-origin Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=Mm3CNqOuA%2F44AYPxQZa%2FOSLs%2BpdUcrbLY71B76xRN5I%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1766476919"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=Mm3CNqOuA%2F44AYPxQZa%2FOSLs%2BpdUcrbLY71B76xRN5I%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1766476919" Server: Heroku Set-Cookie: logged_in=false; path=/; samesite=lax Strict-Transport-Security: max-age=63072000; includeSubDomains Vary: Accept-Encoding Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Permitted-Cross-Domain-Policies: none X-Request-Id: 0aa8b6d9-94ae-4cb2-2df6-c71654c98579 X-Runtime: 0.015551 X-Xss-Protection: 0 Date: Tue, 23 Dec 2025 08:01:59 GMT Connection: closeFound 2025-12-23 by HttpPluginCreate report
-
Open service 3.33.241.96:443 · app.deco-drop.com
2025-12-21 04:25
HTTP/1.1 302 Found Cache-Control: no-cache Content-Length: 0 Content-Type: text/html; charset=utf-8 Feature-Policy: geolocation 'self'; camera 'none'; microphone 'none'; usb 'none'; fullscreen 'self'; payment 'self' Location: https://app.deco-drop.com/login Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Referrer-Policy: strict-origin-when-cross-origin Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=LBZ7M57MXKta0CDvAOsO%2BQBrwr99Gi1WnBn3lsTkAfc%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1766291128"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=LBZ7M57MXKta0CDvAOsO%2BQBrwr99Gi1WnBn3lsTkAfc%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1766291128" Server: Heroku Set-Cookie: logged_in=false; path=/; samesite=lax Strict-Transport-Security: max-age=63072000; includeSubDomains Vary: Accept-Encoding Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Permitted-Cross-Domain-Policies: none X-Request-Id: 38d0cd5f-297d-fd73-3c1c-31f0d60c2d58 X-Runtime: 0.021490 X-Xss-Protection: 0 Date: Sun, 21 Dec 2025 04:25:28 GMT Connection: closeFound 2025-12-21 by HttpPluginCreate report
-
Open service 3.33.241.96:443 · app.deco-drop.com
2025-12-19 01:17
HTTP/1.1 302 Found Cache-Control: no-cache Content-Length: 0 Content-Type: text/html; charset=utf-8 Feature-Policy: geolocation 'self'; camera 'none'; microphone 'none'; usb 'none'; fullscreen 'self'; payment 'self' Location: https://app.deco-drop.com/login Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Referrer-Policy: strict-origin-when-cross-origin Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=PdRkIxEcqZWlJbnKDaSySW1PN7rlzw5iizstju%2BSo%2FM%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1766107080"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=PdRkIxEcqZWlJbnKDaSySW1PN7rlzw5iizstju%2BSo%2FM%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1766107080" Server: Heroku Set-Cookie: logged_in=false; path=/; samesite=lax Strict-Transport-Security: max-age=63072000; includeSubDomains Vary: Accept-Encoding Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Permitted-Cross-Domain-Policies: none X-Request-Id: 1cefbde2-478b-ebc2-9e16-ae1d6c07ee03 X-Runtime: 0.021976 X-Xss-Protection: 0 Date: Fri, 19 Dec 2025 01:18:00 GMT Connection: closeFound 2025-12-19 by HttpPluginCreate report