Domain dev-process-confirmation-tcard.ycalabs.com
Software information
cloudflare
tcp/443
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
IP: 188.114.97.3
Domain: dev-process-confirmation-tcard.ycalabs.com
Port: 443
URL: https://dev-process-confirmation-tcard.ycalabs.comFirst seen 2024-12-10 14:53
Last seen 2026-01-02 15:08
Open for 388 days-
Severity: medium
Fingerprint: 5f32cf5d6962f09ca629b8b1a629b8b178995bdfea9adb61db22663cb53601bdFound 34 files trough .DS_Store spidering: /assets /assets/css /assets/cssV5 /assets/demo-image /assets/email /assets/fontawesome /assets/images /assets/imagesV5 /assets/imagesV5/bell-regular.svg /assets/imagesV5/bg.png /assets/imagesV5/dashboard-logo-1.jpg /assets/imagesV5/defect-tag-01-01.png /assets/imagesV5/defect-tag-01.png /assets/imagesV5/demo-logo1.png /assets/imagesV5/demo-logo2.png /assets/imagesV5/error.png /assets/imagesV5/forgot-password.png /assets/imagesV5/forgot-password.svg /assets/imagesV5/login-pic.png /assets/imagesV5/logo-1.png /assets/imagesV5/logo.png /assets/imagesV5/logo2.png /assets/imagesV5/slide-1.jpg /assets/imagesV5/slide-2.jpg /assets/imagesV5/slide-3.jpg /assets/imagesV5/slide-4.jpg /assets/imagesV5/user-dp.jpg /assets/img /assets/js /assets/plugin /assets/questionIcon /assets/scss /assets/uploads /index.php
Found on 2026-01-02 15:08 -
Severity: low
Fingerprint: 5f32cf5d6962f09cc169dbbec169dbbe800eab3a3fec112ea649215d183cbb7bFound 15 files trough .DS_Store spidering: /assets /assets/css /assets/cssV5 /assets/demo-image /assets/email /assets/fontawesome /assets/images /assets/imagesV5 /assets/img /assets/js /assets/plugin /assets/questionIcon /assets/scss /assets/uploads /index.php
Found on 2025-11-30 18:54 -
Severity: low
Fingerprint: 5f32cf5d6962f09c7cf176427cf176423f3e94de568520c1568520c1568520c1Found 2 files trough .DS_Store spidering: /assets /index.php
Found on 2025-03-13 02:48
-
-
Symfony developement panel enabled
The application has Symfony profiling enabled.
It enables an attacker to access the following sensitive content :
- System configuration
- Request log, including POST request with credentials and/or api keys
IP: 2a06:98c1:3120::3
Domain: dev-process-confirmation-tcard.ycalabs.com
Port: 443
URL: https://dev-process-confirmation-tcard.ycalabs.com/_profiler/empty/search/resultsFirst seen 2024-12-10 14:53
Last seen 2026-01-09 14:27
Open for 394 days-
Fingerprint: 407cf4363b0e62fafca67e0756ee26f956ee26f956ee26f956ee26f956ee26f9
Symfony profiler enabled: https://dev-process-confirmation-tcard.ycalabs.com/_profiler/empty/search/results
Found on 2026-01-09 14:27
-
Open service 188.114.97.3:443 · dev-process-confirmation-tcard.ycalabs.com
2026-01-09 14:27
HTTP/1.1 200 OK Date: Fri, 09 Jan 2026 14:27:55 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare X-Powered-By: PHP/8.2.15 Cache-Control: max-age=0, must-revalidate, private X-Debug-Token: 5d209f X-Debug-Token-Link: http://dev-process-confirmation-tcard.ycalabs.com/_profiler/5d209f X-Robots-Tag: none Expires: Fri, 09 Jan 2026 14:27:55 GMT Vary: Accept-Encoding Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=10,cfOrigin;dur=973 Set-Cookie: PHPSESSID=4b3255cf9737bea1943fc14d63c3b025; expires=Sun, 11-Jan-2026 14:27:55 GMT; Max-Age=172800; path=/; httponly; samesite=lax Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=BxMYVojsWnygKp7vQjSNU896%2FcmNBRt91%2B7n1DMYr%2FZ8WFT9McKMfLtA4sGBh2TWBKwlJJ%2FFqLyHaKN95EZWMVzBUNC%2Fks2I3X%2BOBv0G02EAWTufncrJrtFimAFlHQaepymoBnWrOVW%2BAw%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC CF-RAY: 9bb49e3b1f724a2b-EWR alt-svc: h3=":443"; ma=86400Found 2 days ago by HttpPluginCreate report
-
Open service 2a06:98c1:3120::3:443 · dev-process-confirmation-tcard.ycalabs.com
2026-01-09 11:17
HTTP/1.1 200 OK Date: Fri, 09 Jan 2026 11:17:53 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare X-Powered-By: PHP/8.2.15 Cache-Control: max-age=0, must-revalidate, private X-Debug-Token: ae64d1 X-Debug-Token-Link: http://dev-process-confirmation-tcard.ycalabs.com/_profiler/ae64d1 X-Robots-Tag: none Expires: Fri, 09 Jan 2026 11:17:53 GMT Vary: Accept-Encoding Set-Cookie: PHPSESSID=f2c67389e7e8873401c18bc6bca2f2dc; expires=Sun, 11-Jan-2026 11:17:53 GMT; Max-Age=172800; path=/; httponly; samesite=lax Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=f0xxFKZq7fwtAiRBqKk1jfI7zz0ujY8HgV%2FjA2MQYjxUJvGJesrX1ZdTwBkn%2BETTm8Oe%2BWA8gQujP14rXduKsSvrhegMh6reX1jH%2BjXEbFzSChr3HfJzSVFfzR1nW7h8HGT2N4Y66t8UkNm%2BxV%2BfAbxU6QbVaw%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC CF-RAY: 9bb387dd1ba8465b-LHR alt-svc: h3=":443"; ma=86400Found 3 days ago by HttpPluginCreate report
-
Open service 2a06:98c1:3120::3:443 · dev-process-confirmation-tcard.ycalabs.com
2026-01-02 17:04
HTTP/1.1 200 OK Date: Fri, 02 Jan 2026 17:05:00 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare X-Powered-By: PHP/8.2.15 Cache-Control: max-age=0, must-revalidate, private X-Debug-Token: f56227 X-Debug-Token-Link: http://dev-process-confirmation-tcard.ycalabs.com/_profiler/f56227 X-Robots-Tag: none Expires: Fri, 02 Jan 2026 17:05:00 GMT Vary: Accept-Encoding Set-Cookie: PHPSESSID=ed9cd1bb193d2b8308331527940b848b; expires=Sun, 04-Jan-2026 17:05:00 GMT; Max-Age=172800; path=/; httponly; samesite=lax Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=8yNZC%2BpCmNVjtyYzd7n02db3ZAGJFvMtxEq4Q5Gmmo%2BoAsGlTAZaBOdHjEJFZ%2BDmsKehb%2FyYvdoe3ya38hBAAm%2FxP8BALfgZ5%2BfAsbOU2AvfbUn6WZI1xKfAl4Oj2bFYMx%2BxAu8oektTPVbweQVzGde80ODn7A%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC CF-RAY: 9b7bd6b7fe0cd39c-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-02 by HttpPluginCreate report
-
Open service 188.114.97.3:443 · dev-process-confirmation-tcard.ycalabs.com
2026-01-02 15:08
HTTP/1.1 200 OK Date: Fri, 02 Jan 2026 15:08:45 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare X-Powered-By: PHP/8.2.15 Cache-Control: max-age=0, must-revalidate, private X-Debug-Token: 77c778 X-Debug-Token-Link: http://dev-process-confirmation-tcard.ycalabs.com/_profiler/77c778 X-Robots-Tag: none Expires: Fri, 02 Jan 2026 15:08:45 GMT Vary: Accept-Encoding Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=10,cfOrigin;dur=940 Set-Cookie: PHPSESSID=304cf94fdec43cfe8dc3c444657395a7; expires=Sun, 04-Jan-2026 15:08:45 GMT; Max-Age=172800; path=/; httponly; samesite=lax Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=TonoUaqesyOs%2FuSvz1yEzHV%2BMef2lISAvM3ElPiIVDPzY0mUL9Cnvg%2Fn94L5b3n%2FduVN3GwdvBaui3s7OOA0FAef%2BwHWYK%2F7qSvNRo4rwbGQH7dceWXVV8fCz%2B%2FdmnOzsgUlBS4pgnm5bA%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC CF-RAY: 9b7b2c6b9c37cf82-SJC alt-svc: h3=":443"; ma=86400Found 2026-01-02 by HttpPluginCreate report
-
Open service 188.114.97.3:443 · dev-process-confirmation-tcard.ycalabs.com
2025-12-23 06:03
HTTP/1.1 200 OK Date: Tue, 23 Dec 2025 06:03:36 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare X-Powered-By: PHP/8.2.15 Cache-Control: max-age=0, must-revalidate, private X-Debug-Token: a02ff5 X-Debug-Token-Link: http://dev-process-confirmation-tcard.ycalabs.com/_profiler/a02ff5 X-Robots-Tag: none Expires: Tue, 23 Dec 2025 06:03:36 GMT Vary: Accept-Encoding Set-Cookie: PHPSESSID=9e0a9a160e45c283195ed25971c326fd; expires=Thu, 25-Dec-2025 06:03:36 GMT; Max-Age=172800; path=/; httponly; samesite=lax Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=oAXutPSYez5wxliSPCezLMTHjoQGpYuY85xOjbwlT527WPLW0ygNMS9iits8tSGE%2F4LyF%2Bfkw%2BlRx5WXh%2BHfKKVJjBxIVDbTel3f7hMBwnlIs%2BNsZ3lGhvc4ZyiNuao%2F2eD9hUZO1NzQ6Q%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC CF-RAY: 9b25a81e7d4e6674-AMS alt-svc: h3=":443"; ma=86400Found 2025-12-23 by HttpPluginCreate report
-
Open service 2a06:98c1:3120::3:443 · dev-process-confirmation-tcard.ycalabs.com
2025-12-23 02:00
HTTP/1.1 200 OK Date: Tue, 23 Dec 2025 02:00:04 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare X-Powered-By: PHP/8.2.15 Cache-Control: max-age=0, must-revalidate, private X-Debug-Token: 101897 X-Debug-Token-Link: http://dev-process-confirmation-tcard.ycalabs.com/_profiler/101897 X-Robots-Tag: none Expires: Tue, 23 Dec 2025 02:00:04 GMT Vary: Accept-Encoding Set-Cookie: PHPSESSID=d145fb87f298cd7b6d1fa5599d10acb5; expires=Thu, 25-Dec-2025 02:00:04 GMT; Max-Age=172800; path=/; httponly; samesite=lax Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=IFyoq3C5f6ppXMc23dLOj%2FT9RjMGHnbHwt5jE04G1BJJhvZjVmQWdXUuVu6VUgijBd2grmMW9HjH5hH8BCDK4awGxUo9vrjtT8HxETr853o0R39VoBnv2n1sGE05RnqMbQHbEA3e0eGBLlKEWt6TUtKL8KP94g%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC CF-RAY: 9b24436078f1946d-LHR alt-svc: h3=":443"; ma=86400Found 2025-12-23 by HttpPluginCreate report
-
Open service 2a06:98c1:3120::3:443 · dev-process-confirmation-tcard.ycalabs.com
2025-12-21 08:46
HTTP/1.1 200 OK Date: Sun, 21 Dec 2025 08:46:42 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare X-Powered-By: PHP/8.2.15 Cache-Control: max-age=0, must-revalidate, private X-Debug-Token: 04c7bb X-Debug-Token-Link: http://dev-process-confirmation-tcard.ycalabs.com/_profiler/04c7bb X-Robots-Tag: none Expires: Sun, 21 Dec 2025 08:46:42 GMT Vary: Accept-Encoding Set-Cookie: PHPSESSID=545fa99c4581a1102194539f93b6c4b8; expires=Tue, 23-Dec-2025 08:46:42 GMT; Max-Age=172800; path=/; httponly; samesite=lax Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=m%2Fx7c4bDPvwKfki4bdJBdJQJEA9pAFJl8Jy%2BVY2SzlTytOEkQp%2F3R8qSRaiRalKKMjexBz2nSDCpIEOM6NpBAn%2BL05zW%2FNxmbN8OhnBlRxoGC%2BwOKxrthFnxhY5z4OU2MfmYZePg0%2FdNDwMs6s7xjHRSFWbbaA%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC CF-RAY: 9b161c45bbb2670b-AMS alt-svc: h3=":443"; ma=86400Found 2025-12-21 by HttpPluginCreate report
-
Open service 188.114.97.3:443 · dev-process-confirmation-tcard.ycalabs.com
2025-12-21 03:33
HTTP/1.1 200 OK Date: Sun, 21 Dec 2025 03:33:37 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare X-Powered-By: PHP/8.2.15 Cache-Control: max-age=0, must-revalidate, private X-Debug-Token: 1ce2ad X-Debug-Token-Link: http://dev-process-confirmation-tcard.ycalabs.com/_profiler/1ce2ad X-Robots-Tag: none Expires: Sun, 21 Dec 2025 03:33:37 GMT Vary: Accept-Encoding Set-Cookie: PHPSESSID=3d750d7cccfd6bb697bcdd236f4ad921; expires=Tue, 23-Dec-2025 03:33:37 GMT; Max-Age=172800; path=/; httponly; samesite=lax Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=7szrUnM3eEnLU%2FmLddayujBD%2BAE0jQPhenulksTZNqRkOlHBMCK7i8qdTbQrfE0bYV0DhGwHIOAs1wco7QyJAOC1EKKvTmt3yOtdUILBn1R9qnqnjaZpaNMTTd1y8nbGmZJgnkO0KJn0Aw%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC CF-RAY: 9b1451a8ab001e58-FRA alt-svc: h3=":443"; ma=86400Found 2025-12-21 by HttpPluginCreate report
-
Open service 188.114.97.3:443 · dev-process-confirmation-tcard.ycalabs.com
2025-12-19 05:11
HTTP/1.1 200 OK Date: Fri, 19 Dec 2025 05:11:06 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare X-Powered-By: PHP/8.2.15 Cache-Control: max-age=0, must-revalidate, private X-Debug-Token: 009405 X-Debug-Token-Link: http://dev-process-confirmation-tcard.ycalabs.com/_profiler/009405 X-Robots-Tag: none Expires: Fri, 19 Dec 2025 05:11:06 GMT Vary: Accept-Encoding Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=7,cfOrigin;dur=156 Set-Cookie: PHPSESSID=abd70848e492b9c4499ba135aca28545; expires=Sun, 21-Dec-2025 05:11:06 GMT; Max-Age=172800; path=/; httponly; samesite=lax Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=KTLBwkWlu2MUHF7HZC1A8ZN6oYI7frjWBXpFlkOHrD2tyuGyPyIpxhsglOr%2FkwG1c31VtVHoyZ6cGWHAdFrno79Sn0%2B%2B0TOdWlkb9b3WPB%2FpJg7LeFXp8SBLNwXjcklphM8k60FSvuq8DQ%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC CF-RAY: 9b0465b6df374015-BOM alt-svc: h3=":443"; ma=86400Found 2025-12-19 by HttpPluginCreate report