LeakIX - Host mcleak.ru

Domain mcleak.ru

Russia

Ddos-guard Ltd

Software information

nginx nginx 1.28.0

tcp/443 tcp/80

sw-cp-server

tcp/8443

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 95.129.234.85
Domain: www.mcleak.ru
Port: 443
URL: https://www.mcleak.ru

First seen 2025-10-05 03:07
Last seen 2025-11-12 19:31
Open for 38 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d8c99f75a8c99f75a8c99f75a8c99f75a
```
Found 1 files trough .DS_Store spidering:

/src
```
  Found on 2025-11-12 19:31
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.214.211
Domain: mcleak.ru
Port: 443
URL: https://mcleak.ru

First seen 2024-02-26 00:45
Last seen 2026-01-26 18:20
Open for 700 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d8c99f75a8c99f75a8c99f75a8c99f75a
```
Found 1 files trough .DS_Store spidering:

/src
```
  Found on 2026-01-26 18:20
Create report

Open service 185.189.167.236:80 · scan.mcleak.ru

2026-01-12 00:53

HTTP/1.1 301 Moved Permanently
Server: nginx/1.28.0
Date: Mon, 12 Jan 2026 00:53:44 GMT
Content-Type: text/html
Content-Length: 169
Connection: close
Location: https://scan.mcleak.ru/

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>nginx/1.28.0</center>
</body>
</html>

Found 2026-01-12 by HttpPlugin

Create report

Open service 185.189.167.236:443 · scan.mcleak.ru

2026-01-12 00:53

HTTP/1.1 200 OK
Server: nginx/1.28.0
Date: Mon, 12 Jan 2026 00:53:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Vary: Accept-Encoding
X-Powered-By: PHP/8.1.34
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
Referrer-Policy: no-referrer
Permissions-Policy: geolocation=(), camera=(), microphone=(), payment=(), usb=(), interest-cohort=()
Cross-Origin-Resource-Policy: same-origin
Content-Security-Policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; upgrade-insecure-requests; block-all-mixed-content
Strict-Transport-Security: max-age=31536000
Vary: Accept-Encoding
Strict-Transport-Security: max-age=15768000; includeSubDomains
X-Powered-By: PleskLin

Page title: PluginScan - Minecraft plugin inspector

<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <title>PluginScan - Minecraft plugin inspector</title>
    <meta name="viewport" content="width=device-width, initial-scale=1">
    <link rel="icon" type="image/x-icon" href="favicon.ico">

    <meta name="description" content="Online Minecraft plugin anti-malware scanner.">

    <!-- OpenGraph -->
    <meta property="og:title" content="PluginScan - Minecraft plugin inspector">
    <meta property="og:description" content="Online Minecraft plugin anti-malware scanner.">
    <meta property="og:image" content="logo.png">
    <meta property="og:site_name" content="PluginScan">
    <meta property="og:type" content="website">

    <!-- Twitter -->
    <meta name="twitter:card" content="summary">
    <meta name="twitter:title" content="PluginScan - Minecraft plugin inspector">
    <meta name="twitter:description" content="Online Minecraft plugin anti-malware scanner.">
    <meta name="twitter:image" content="logo.png">
</head>
<body>
<noscript>This site requires JavaScript to run the local (in-browser) scan.</noscript>
<script src="scan.js" defer></script>
</body>
</html>

Found 2026-01-12 by HttpPlugin

Create report

Open service 185.189.167.236:8443 · scan.mcleak.ru

2026-01-12 00:53

HTTP/1.1 303 See Other
Server: sw-cp-server
Date: Mon, 12 Jan 2026 00:53:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Expires: Fri, 28 May 1999 00:00:00 GMT
Last-Modified: Mon, 12 Jan 2026 00:53:44 GMT
Cache-Control: no-store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Pragma: no-cache
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Location: https://scan.mcleak.ru/login.php
X-Content-Type-Options: nosniff

Found 2026-01-12 by HttpPlugin

Create report

scan.mcleak.ru

Fingerprint:

b004f09374f12e102857c5ad91003ffab0d4e8184670749cfbeab6abb6250e92

CN:

scan.mcleak.ru

Key:

RSA-2048

Issuer:

R13

Not before:

2026-01-11 23:54

Not after:

2026-04-11 23:54

panel.mcdev.su

Fingerprint:

9b72bd65026c5b712c3a93b423494c94140b545796332d6c1b1074785b357975

CN:

panel.mcdev.su

Key:

RSA-2048

Issuer:

R12

Not before:

2025-12-06 09:47

Not after:

2026-03-06 09:47

Domain summary

www.mcleak.ru 1 mcleak.ru 1 scan.mcleak.ru 2

3 recorded

IP summary

185.189.167.236 2 95.129.234.85 1 172.67.214.211 1

3 recorded

Domain mcleak.ru

Russia

Software information

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

Create report

Create report

Create report

scan.mcleak.ru

panel.mcdev.su

Domain summary

IP summary