Apache
tcp/443
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
Severity: low
Fingerprint: 5f32cf5d6962f09cab28146bab28146bd0ed517f42224bebbc96805648eb7a11
Found 21 files trough .DS_Store spidering: /addons /addons/lib /addons/lib/lang /addons/templates /mail /mail/form /sites /sites/sitebuilder /sites/whoapsinstall /sites/whoapsinstall/form /themes /themes/Expertenmodus /themes/Expertenmodus/assets /themes/Expertenmodus/assets/javascripts /themes/Expertenmodus/assets/stylesheets /themes/Expertenmodus/templates /themes/Expertenmodus/templates/db /themes/Expertenmodus/templates/dns /themes/Expertenmodus/templates/mail /themes/Expertenmodus/templates/sites /themes/Standard
Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa54476638d3bb318b7ca7a2e9acca69051fe1
Found 18 files trough .DS_Store spidering: /addons /addons/lib /addons/lib/lang /addons/templates /mail /mail/form /sites /sites/sitebuilder /sites/whoapsinstall /sites/whoapsinstall/form /themes /themes/Expertenmodus /themes/Expertenmodus/assets /themes/Expertenmodus/assets/javascripts /themes/Expertenmodus/assets/stylesheets /themes/Expertenmodus/templates /themes/Expertenmodus/templates/sites /themes/Standard
Severity: low
Fingerprint: 5f32cf5d6962f09c2eda814e2eda814e398d82f379954c1f6110e8c60f08e255
Found 6 files trough .DS_Store spidering: /dashboard /dashboard/dashlets /sites /sites/sitebuilder /sites/whoapsinstall /sites/whoapsinstall/form
Open service 89.107.189.197:443 · mail.vba-muenchen.de
2024-06-18 17:06
HTTP/1.1 302 Found Date: Tue, 18 Jun 2024 17:06:53 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Set-Cookie: ISPCSESS=3d47qmser55k23uv33jbgm9cct; expires=Wed, 18-Jun-2025 17:06:53 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=Lax; HTTPOnly; Secure Upgrade: h2,h2c Connection: Upgrade, close Location: /login/ Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; object-src 'none'; upgrade-insecure-requests X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 Content-Length: 0 Content-Type: text/html; charset=utf-8
Open service 89.107.189.197:443 · mail.vba-muenchen.de
2024-06-16 17:27
HTTP/1.1 302 Found Date: Sun, 16 Jun 2024 17:27:04 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Set-Cookie: ISPCSESS=2kt5rk437a3nbmuh727btpe1pq; expires=Mon, 16-Jun-2025 17:27:04 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=Lax; HTTPOnly; Secure Upgrade: h2,h2c Connection: Upgrade, close Location: /login/ Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; object-src 'none'; upgrade-insecure-requests X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 Content-Length: 0 Content-Type: text/html; charset=utf-8
Open service 89.107.189.197:443 · mail.vba-muenchen.de
2024-06-12 18:20
HTTP/1.1 302 Found Date: Wed, 12 Jun 2024 18:20:47 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Set-Cookie: ISPCSESS=aff585s7jc311i0iji0anu25qr; expires=Thu, 12-Jun-2025 18:20:47 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=Lax; HTTPOnly; Secure Upgrade: h2,h2c Connection: Upgrade, close Location: /login/ Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; object-src 'none'; upgrade-insecure-requests X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 Content-Length: 0 Content-Type: text/html; charset=utf-8
Open service 89.107.189.197:443 · mail.vba-muenchen.de
2024-06-10 16:25
HTTP/1.1 302 Found Date: Mon, 10 Jun 2024 16:25:15 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Set-Cookie: ISPCSESS=v133djr6ka5r9uk47ko9729b3n; expires=Tue, 10-Jun-2025 16:25:15 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=Lax; HTTPOnly; Secure Upgrade: h2,h2c Connection: Upgrade, close Location: /login/ Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; object-src 'none'; upgrade-insecure-requests X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 Content-Length: 0 Content-Type: text/html; charset=utf-8
Open service 89.107.189.197:443 · mail.vba-muenchen.de
2024-06-08 12:56
HTTP/1.1 302 Found Date: Sat, 08 Jun 2024 12:56:44 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Set-Cookie: ISPCSESS=dbhlmct3he7vlnbeid1rjld11n; expires=Sun, 08-Jun-2025 12:56:44 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=Lax; HTTPOnly; Secure Upgrade: h2,h2c Connection: Upgrade, close Location: /login/ Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; object-src 'none'; upgrade-insecure-requests X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 Content-Length: 0 Content-Type: text/html; charset=utf-8
Open service 89.107.189.197:443 · mail.vba-muenchen.de
2024-06-06 13:58
HTTP/1.1 302 Found Date: Thu, 06 Jun 2024 13:58:21 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Set-Cookie: ISPCSESS=rrm05lccsid44vnfsfh1ru5ii0; expires=Fri, 06-Jun-2025 13:58:21 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=Lax; HTTPOnly; Secure Upgrade: h2,h2c Connection: Upgrade, close Location: /login/ Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; object-src 'none'; upgrade-insecure-requests X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 Content-Length: 0 Content-Type: text/html; charset=utf-8
Open service 89.107.189.197:443 · mail.vba-muenchen.de
2024-06-04 12:17
HTTP/1.1 302 Found Date: Tue, 04 Jun 2024 12:17:49 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Set-Cookie: ISPCSESS=ml7vb1b2o1mtggjbl9b36egscj; expires=Wed, 04-Jun-2025 12:17:49 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=Lax; HTTPOnly; Secure Upgrade: h2,h2c Connection: Upgrade, close Location: /login/ Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; object-src 'none'; upgrade-insecure-requests X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 Content-Length: 0 Content-Type: text/html; charset=utf-8
Open service 89.107.189.197:443 · mail.vba-muenchen.de
2024-06-02 09:18
HTTP/1.1 302 Found Date: Sun, 02 Jun 2024 09:18:27 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Set-Cookie: ISPCSESS=fmblhpe3r1qv45j2j0gg6sikfb; expires=Mon, 02-Jun-2025 09:18:27 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=Lax; HTTPOnly; Secure Upgrade: h2,h2c Connection: Upgrade, close Location: /login/ Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; object-src 'none'; upgrade-insecure-requests X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 Content-Length: 0 Content-Type: text/html; charset=utf-8