LeakIX - Host ecosystem.showpad.com

Domain ecosystem.showpad.com

United States

GOOGLE-CLOUD-PLATFORM

Software information

cloudflare

tcp/443 tcp/80

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 34.120.230.5
Domain: ecosystem.showpad.com
Port: 443
URL: https://ecosystem.showpad.com

First seen 2023-02-23 16:04
Last seen 2024-07-16 10:16
Open for 508 days
- Severity: high
  Fingerprint: 5f32cf5d6962f09c11d3744d11d3744d186028152d5242d5ebf8b9025ab43f45
```
Found 12 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/packs
/robots.txt
/sitemap.xml
/sitemap.xml.gz
/sitemaps
```
  Found on 2024-07-16 10:16
Create report

Open service 2606:4700:10::6814:1e81:443 · ecosystem.showpad.com

2026-01-11 11:35

HTTP/1.1 200 OK
Date: Sun, 11 Jan 2026 11:35:09 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: public
Content-Security-Policy: 
Last-Modified: Wed, 05 Feb 2025 15:17:23 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=Mgwwo5bVvqI04mi2CZx0sfXsTAQUkhz17NfLWkDrJoA%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1768131309"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=Mgwwo5bVvqI04mi2CZx0sfXsTAQUkhz17NfLWkDrJoA%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1768131309"
Server: cloudflare
Set-Cookie: token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IkltVTVkVWxGVldnM2NVbE5NSGRmTVc5aFIxZEJURUV4TnpZNE1UTXhNekE1TURNM0lnPT0iLCJleHAiOiIyMDI2LTAxLTExVDEyOjA1OjA5LjAzN1oiLCJwdXIiOiJjb29raWUudG9rZW4ifX0%3D--8623831910c784c72432f19b493109e3dbc3b13c; path=/; expires=Thu, 11 Jan 2046 11:35:09 GMT; secure; HttpOnly; SameSite=Strict
Set-Cookie: guest_token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IkltVTVkVWxGVldnM2NVbE5NSGRmTVc5aFIxZEJURUV4TnpZNE1UTXhNekE1TURNM0lnPT0iLCJleHAiOiIyMDI2LTAxLTExVDEyOjA1OjA5LjAzOFoiLCJwdXIiOiJjb29raWUuZ3Vlc3RfdG9rZW4ifX0%3D--821cbd0d14e16a3e8d0c40b576796546a8d33106; path=/; expires=Thu, 11 Jan 2046 11:35:09 GMT; secure; HttpOnly; SameSite=Strict
Set-Cookie: _pf_session=KF4Wlh5caHMG0J%2Fhexh1OunFUSkD7wCFntQsA0OSP6NJARCqgjEgzTY5AJGm5mzjstDntlOym1UvabYLbeVb9ZqFAksF0zkeoZiV1K7pU1bH7JQV5WcxhJBfLssBnAKO0048oP0Dqr%2Bgkc6W%2BuR1m9e3DMgUrNuVBlDheYTckaaOmiNnjCtwA5UuQqLdopXAL5SBYlEDBHudmvUYQcXrNlU9dl%2FZT8iC7u%2Bg9GTZPAm5SaHEAVzsl6uZAnL420j9HpLAoYzsINUl%2BNOcaQRHd%2F%2BYPD7N%2B58e7O737%2F8EXuYzIAdOH3AGb0k%3D--bHSb60Cmj17z%2B3Pj--nyxrOgxK%2B4pOzgu1p9pkhQ%3D%3D; path=/; expires=Sun, 25 Jan 2026 11:35:09 GMT; secure; HttpOnly; SameSite=Lax
Strict-Transport-Security: max-age=2592000; includeSubDomains
Vary: Origin,Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Rack-Cors: miss; no-origin
X-Request-Id: 37866aa3-f7bb-3cd8-6d0a-d3d8149094d6
X-Runtime: 0.143005
X-Xss-Protection: 1; mode=block
cf-cache-status: DYNAMIC
CF-RAY: 9bc41be74ae3d376-FRA

Found 2 days ago by HttpPlugin

Create report

Open service 2606:4700:10::6814:1e81:80 · ecosystem.showpad.com

2026-01-11 11:35

HTTP/1.1 301 Moved Permanently
Date: Sun, 11 Jan 2026 11:35:08 GMT
Content-Length: 0
Connection: close
Location: https://ecosystem.showpad.com/
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 9bc41be329651c44-FRA

Found 2 days ago by HttpPlugin

Create report

Open service 172.66.166.11:8443 · ecosystem.showpad.com

2026-01-11 11:35
Found 2 days ago by HttpPlugin
Create report

Open service 172.66.166.11:443 · ecosystem.showpad.com

2026-01-11 11:35

HTTP/1.1 200 OK
Date: Sun, 11 Jan 2026 11:35:08 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: public
Content-Security-Policy: 
Last-Modified: Wed, 05 Feb 2025 15:17:23 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=fOgnMbRSP9RlNQccEaoAgERcFqPsgLHoaLFg%2BMftHMQ%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1768131308"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=fOgnMbRSP9RlNQccEaoAgERcFqPsgLHoaLFg%2BMftHMQ%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1768131308"
Server: cloudflare
Set-Cookie: token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IklscFhSM3BCUkZkM2RYSm1NM1ZWVWs4dE1WQnNZM2N4TnpZNE1UTXhNekE0TWpjMElnPT0iLCJleHAiOiIyMDI2LTAxLTExVDEyOjA1OjA4LjI3NFoiLCJwdXIiOiJjb29raWUudG9rZW4ifX0%3D--c160cc05511cb46a1f32996dabb84bdad3d5191b; path=/; expires=Thu, 11 Jan 2046 11:35:08 GMT; secure; HttpOnly; SameSite=Strict
Set-Cookie: guest_token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IklscFhSM3BCUkZkM2RYSm1NM1ZWVWs4dE1WQnNZM2N4TnpZNE1UTXhNekE0TWpjMElnPT0iLCJleHAiOiIyMDI2LTAxLTExVDEyOjA1OjA4LjI3NFoiLCJwdXIiOiJjb29raWUuZ3Vlc3RfdG9rZW4ifX0%3D--d30de75e620f002c35b9d586f85a7a306b70df6c; path=/; expires=Thu, 11 Jan 2046 11:35:08 GMT; secure; HttpOnly; SameSite=Strict
Set-Cookie: _pf_session=%2BxrZy6Xo68dysTBb5n3OAHxrBnAsVe63hCZr%2Fair6X%2BGBvOIWXoS7NlxdA%2BH4J52cYukty2U5Z%2F6ohNW5Ie3U3CF%2BUFceN6gQjvQKlcXohVPMM%2FXwstTsjfJWJBsbuFTRCwf9mVmYju1nLlGNJT7HqokdjzV%2BT7au5%2B847oFZeNkTtyhofA%2FpquDtebEpU%2F9d%2BBTRXrq2CxacY038ExXgcy4ZRoK8rO%2FMdtjFNLDpOpfZdZJ5lLEQT1GnXpe8dQBNzSa5yZ5TeRMetprAlyZEB2vZoK16DHaGP36iMeea4JshFfbP%2B0yT98%3D--zgHV9ms8KTSkiuji--uW4dPiJA41l3qloUsvXHdA%3D%3D; path=/; expires=Sun, 25 Jan 2026 11:35:08 GMT; secure; HttpOnly; SameSite=Lax
Strict-Transport-Security: max-age=2592000; includeSubDomains
Vary: Origin,Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Rack-Cors: miss; no-origin
X-Request-Id: 19efe227-69fd-563f-a40b-cf82268e5c87
X-Runtime: 0.170377
X-Xss-Protection: 1; mode=block
cf-cache-status: DYNAMIC
CF-RAY: 9bc41be428ecccb6-EWR

Found 2 days ago by HttpPlugin

Create report

Open service 2606:4700:10::ac42:a60b:8443 · ecosystem.showpad.com

2026-01-11 11:35
Found 2 days ago by HttpPlugin
Create report

Open service 2606:4700:10::ac42:a60b:80 · ecosystem.showpad.com

2026-01-11 11:35

HTTP/1.1 301 Moved Permanently
Date: Sun, 11 Jan 2026 11:35:08 GMT
Content-Length: 0
Connection: close
Location: https://ecosystem.showpad.com/
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 9bc41be32b2df5cf-AMS

Found 2 days ago by HttpPlugin

Create report

Open service 104.20.30.129:443 · ecosystem.showpad.com

2026-01-11 11:35

HTTP/1.1 200 OK
Date: Sun, 11 Jan 2026 11:35:09 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: public
Content-Security-Policy: 
Last-Modified: Wed, 05 Feb 2025 15:17:23 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=Mgwwo5bVvqI04mi2CZx0sfXsTAQUkhz17NfLWkDrJoA%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1768131309"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=Mgwwo5bVvqI04mi2CZx0sfXsTAQUkhz17NfLWkDrJoA%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1768131309"
Server: cloudflare
Set-Cookie: token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IklqTnVkMEpyTVZWUWJHZzNOM1owYnkwNVpXRkdlRUV4TnpZNE1UTXhNekE1TURrNElnPT0iLCJleHAiOiIyMDI2LTAxLTExVDEyOjA1OjA5LjA5OFoiLCJwdXIiOiJjb29raWUudG9rZW4ifX0%3D--da7e46e9aab5c981b310d0bc2f3016b2de4103ad; path=/; expires=Thu, 11 Jan 2046 11:35:09 GMT; secure; HttpOnly; SameSite=Strict
Set-Cookie: guest_token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IklqTnVkMEpyTVZWUWJHZzNOM1owYnkwNVpXRkdlRUV4TnpZNE1UTXhNekE1TURrNElnPT0iLCJleHAiOiIyMDI2LTAxLTExVDEyOjA1OjA5LjA5OVoiLCJwdXIiOiJjb29raWUuZ3Vlc3RfdG9rZW4ifX0%3D--9142eb31d16dfd25f9632f81c38b0c8f7bbe680d; path=/; expires=Thu, 11 Jan 2046 11:35:09 GMT; secure; HttpOnly; SameSite=Strict
Set-Cookie: _pf_session=Y68h92Te6tOTlsaDx5%2Bk%2B8UFl5qiFVsbG2%2BR4XVAxuhfFox1vz2Sv8VkDDFBc9ho56t8O3BvdaL5ZvvrFolRN1igIZ%2BNfYYntLVdLXRdJAa2uzPX2Om2bPcXDZ6UZwMij6HoW2ZpeDhXJj6OB0lgFtAl%2FHVbLkskt3ValmxSjmSdrRtNK0eoPP2TzogN0djD75Cxv0AVOWQLCQx2gTH%2F%2BouuoGapfT1o39OXECn6dsRkrEXYMLWYUgJRmyIEqA0LecLVmNIvs9qfG2p7S1%2Fka4i1aD2SH0lryjIbixQOo26k9x0kPW%2BTmts%3D--z4wqYLNNGlzGDf1Y--%2FhDVUhgiY2sAfH3YK8XnBg%3D%3D; path=/; expires=Sun, 25 Jan 2026 11:35:09 GMT; secure; HttpOnly; SameSite=Lax
Strict-Transport-Security: max-age=2592000; includeSubDomains
Vary: Origin,Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Rack-Cors: miss; no-origin
X-Request-Id: 838307f8-681f-786d-f122-cfc4747a5e79
X-Runtime: 0.159371
X-Xss-Protection: 1; mode=block
cf-cache-status: DYNAMIC
CF-RAY: 9bc41be78c9eb32c-FRA

Found 2 days ago by HttpPlugin

Create report

Open service 2606:4700:10::6814:1e81:8443 · ecosystem.showpad.com

2026-01-11 11:35
Found 2 days ago by HttpPlugin
Create report

Open service 172.66.166.11:80 · ecosystem.showpad.com

2026-01-11 11:35

HTTP/1.1 301 Moved Permanently
Date: Sun, 11 Jan 2026 11:35:07 GMT
Content-Length: 0
Connection: close
Location: https://ecosystem.showpad.com/
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 9bc41be26d94af3d-BLR

Found 2 days ago by HttpPlugin

Create report

Open service 2606:4700:10::ac42:a60b:443 · ecosystem.showpad.com

2026-01-11 11:35

HTTP/1.1 200 OK
Date: Sun, 11 Jan 2026 11:35:09 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: public
Content-Security-Policy: 
Last-Modified: Wed, 05 Feb 2025 15:17:23 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=fOgnMbRSP9RlNQccEaoAgERcFqPsgLHoaLFg%2BMftHMQ%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1768131308"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=fOgnMbRSP9RlNQccEaoAgERcFqPsgLHoaLFg%2BMftHMQ%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1768131308"
Server: cloudflare
Set-Cookie: token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IklqRXlaM05aY0ZsRVl6bERXbWhEVlhoaGVYZFRabEV4TnpZNE1UTXhNekE0T1RVMUlnPT0iLCJleHAiOiIyMDI2LTAxLTExVDEyOjA1OjA4Ljk1NVoiLCJwdXIiOiJjb29raWUudG9rZW4ifX0%3D--8a832bdeb3023fda6fe1ce108a70f62fd2b58b3b; path=/; expires=Thu, 11 Jan 2046 11:35:08 GMT; secure; HttpOnly; SameSite=Strict
Set-Cookie: guest_token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IklqRXlaM05aY0ZsRVl6bERXbWhEVlhoaGVYZFRabEV4TnpZNE1UTXhNekE0T1RVMUlnPT0iLCJleHAiOiIyMDI2LTAxLTExVDEyOjA1OjA4Ljk1NVoiLCJwdXIiOiJjb29raWUuZ3Vlc3RfdG9rZW4ifX0%3D--3e69d830a559f3f1a9dda4f95b8445b4e9a2506f; path=/; expires=Thu, 11 Jan 2046 11:35:08 GMT; secure; HttpOnly; SameSite=Strict
Set-Cookie: _pf_session=Oo5sDSJO8PgDF2Shuvk%2FkELf%2FJ6cMZ%2BtoiJ5FdBH3KnZwgz3lV7lQ3%2FMVcGTCaHrQq4eLq%2BE4kRufZtQZmuK5iinf2HCyiJZoKuB3g1APMtpGu8ohnkwJieuHGBrbvjIORb2D1yhTYeo8H4Gy%2BojhzOzrPvHfPRT4wV7OaG4%2BR%2BedMr%2Bp2WVZHZLGJdK5TEP7wZLGw0keyryA5oiYPjkUwWoOnuBd6qv3pxjqHPsyFG9qWVLBg%2BA43OxLj8EC1fYfB3%2FmSGwcCiETHHWeBnUrFjXjXlYYVmeGmNHsCTsk8B15Sca2M%2FfHzI%3D--ctjU4Na9t43Y1LYJ--t8vTWxJ44fJzHc500zAA%2Bg%3D%3D; path=/; expires=Sun, 25 Jan 2026 11:35:09 GMT; secure; HttpOnly; SameSite=Lax
Strict-Transport-Security: max-age=2592000; includeSubDomains
Vary: Origin,Accept-Encoding
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Rack-Cors: miss; no-origin
X-Request-Id: a06a57be-d5a3-4530-e1b7-3142ce7de499
X-Runtime: 0.212097
X-Xss-Protection: 1; mode=block
cf-cache-status: DYNAMIC
CF-RAY: 9bc41be6db65cd6e-SJC

Found 2 days ago by HttpPlugin

Create report

Open service 104.20.30.129:8443 · ecosystem.showpad.com

2026-01-11 11:35
Found 2 days ago by HttpPlugin
Create report

Open service 104.20.30.129:80 · ecosystem.showpad.com

2026-01-11 11:35

HTTP/1.1 301 Moved Permanently
Date: Sun, 11 Jan 2026 11:35:07 GMT
Content-Length: 0
Connection: close
Location: https://ecosystem.showpad.com/
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 9bc41be2192aa1e6-YYZ

Found 2 days ago by HttpPlugin

Create report

ecosystem.showpad.com

Fingerprint:

6a409202ec2a760d3bd1ace53d21c6dfc17f731c7833318fb8c24451cd6a24fc

CN:

ecosystem.showpad.com

Key:

ECDSA-256

Issuer:

Not before:

2026-01-11 10:36

Not after:

2026-04-11 10:36

Domain summary

ecosystem.showpad.com 12

1 recorded

IP summary

2606:4700:10::6814:1e81 2 172.66.166.11 1 2606:4700:10::ac42:a60b 1 104.20.30.129 1 34.120.230.5 1

5 recorded

Domain ecosystem.showpad.com

United States

Software information

MacOS file listing through .DS_Store file

ecosystem.showpad.com

Domain summary

IP summary