LeakIX - Host s8.cri9.thinkerp.cc

Domain s8.cri9.thinkerp.cc

Argentina

Telecom Argentina S.A.

Debian

Software information

nginx nginx

tcp/443 tcp/80

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 181.170.194.142
Domain: s8.cri9.thinkerp.cc
Port: 443
URL: https://s8.cri9.thinkerp.cc

First seen 2024-04-05 12:00
Last seen 2024-09-24 14:40
Open for 172 days

Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa544751bf49c0050da8394eb6a646b4e7a5d6

Found 18 files trough .DS_Store spidering:

/.git
/_generator
/_generator/_remote
/_generator/logic
/_generator/logic/__includes
/_generator/logic/views
/_generator/logic/views/app
/_generator/public
/_generator/public/images
/_generator/public/js
/_generator/public/js/autocomplete
/_generator/public/js/bin
/_generator/public/js/dev
/_generator/public/js/libs
/_generator/public/js/modules
/_generator/public/js/renderers
/_generator/public/js/services
/_generator/public/js/utils

Found on 2024-09-24 14:40

Severity: low
Fingerprint: 5f32cf5d6962f09c3838040e3838040e7ad6bcebdd9f1544c35a75990880d91a

Found 20 files trough .DS_Store spidering:

/.git
/_generator
/_generator/_remote
/_generator/logic
/_generator/logic/__includes
/_generator/logic/views
/_generator/logic/views/app
/_generator/public
/_generator/public/images
/_generator/public/js
/_generator/public/js/autocomplete
/_generator/public/js/bin
/_generator/public/js/dev
/_generator/public/js/libs
/_generator/public/js/modules
/_generator/public/js/modules/app
/_generator/public/js/modules/kds
/_generator/public/js/renderers
/_generator/public/js/services
/_generator/public/js/utils

Found on 2024-09-22 19:26

Severity: low
Fingerprint: 5f32cf5d6962f09c8329733f8329733fdb2942380b7527c127a2ef1e7b7b7202

Found 10 files trough .DS_Store spidering:

/.git
/_generator
/_generator/_remote
/_generator/logic
/_generator/logic/__includes
/_generator/logic/views
/_generator/logic/views/app
/_generator/public
/_generator/public/images
/_generator/public/js

Found on 2024-09-06 22:01

Severity: low
Fingerprint: 5f32cf5d6962f09c4239b3d84239b3d80ea47a45b38f9acee77f4b4b8f6db266

Found 8 files trough .DS_Store spidering:

/.git
/_generator
/_generator/_remote
/_generator/logic
/_generator/logic/__includes
/_generator/logic/views
/_generator/logic/views/app
/_generator/public

Found on 2024-05-27 21:32

Severity: low
Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e9579574fa6dd58c13fcf0bbf0a461e6ed

Found 5 files trough .DS_Store spidering:

/.git
/_generator
/_generator/_remote
/_generator/logic
/_generator/public

Found on 2024-05-12 22:41

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

This information can be very useful if the application is sent sensitive information as GET requests. If you monitor this page you might be able to find CSRF tokens, API keys, hidden paths, and other sensitive information being sent to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 209.126.87.5
Domain: s8.cri9.thinkerp.cc
Port: 443
URL: https://s8.cri9.thinkerp.cc

First seen 2023-04-05 22:44

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31f2cd472ff2cd472f5903b6b9

Apache Status

Apache Server Status for s8.cri9.thinkerp.cc (via 192.168.88.10)

Server Version: Apache/2.4.38 (Debian) OpenSSL/1.1.1d
Server MPM: prefork
Server Built: 2021-09-30T03:50:49

Current Time: Wednesday, 05-Apr-2023 19:44:13 -03
Restart Time: Wednesday, 05-Apr-2023 19:31:49 -03
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  12 minutes 23 seconds
Server load: 0.00 0.00 0.00
Total accesses: 37 - Total Traffic: 21 kB - Total Duration: 16
CPU Usage: u.01 s.02 cu0 cs0 - .00404% CPU load
.0498 requests/sec - 28 B/second - 581 B/request - .432432 ms/request
2 requests currently being processed, 5 idle workers
__KW___.........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-026850/6/6_
0.009010.00.000.00
192.168.88.10http/1.1s8.cri9.thinkerp.cc:80GET /_generator/ws/invoicer/print/ HTTP/1.1

1-026860/6/6_
0.0012010.00.000.00
192.168.88.10http/1.1s8.cri9.thinkerp.cc:80GET /_generator/ws/invoicer/generate/ HTTP/1.1

2-026874/9/9K
0.000042.60.010.01
192.168.88.10http/1.1s8.cri9.thinkerp.cc:80GET /s/53e27383e2632313e2930323/_/;/META-INF/maven/com.atlassia

3-026885/10/10W
0.000043.20.010.01
192.168.88.10http/1.1s8.cri9.thinkerp.cc:80GET /server-status HTTP/1.1

4-026890/6/6_
0.0012040.00.000.00
192.168.88.10http/1.1s8.cri9.thinkerp.cc:80GET /favicon.ico HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss


Apache/2.4.38 (Debian) Server at s8.cri9.thinkerp.cc Port 80

Found on 2023-04-05 22:44

Create report

Open service 181.167.45.234:80 · s8.cri9.thinkerp.cc

2024-12-24 06:21

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 24 Dec 2024 06:21:40 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://s8.cri9.thinkerp.cc/

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>nginx</center>
</body>
</html>

Found 2024-12-24 by HttpPlugin

Create report

Open service 181.167.45.234:443 · s8.cri9.thinkerp.cc

2024-12-24 06:21

HTTP/1.1 302 Found
Server: nginx
Date: Tue, 24 Dec 2024 06:21:45 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: close
Location: _generator/app.html
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer-when-downgrade
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'

Found 2024-12-24 by HttpPlugin

Create report

s8.cri9.thinkerp.cc

Fingerprint:

233bed2bfd202772a0eb778fc5886823f9c1149dbc1df6c4122b805be32c1018

CN:

s8.cri9.thinkerp.cc

Key:

ECDSA-256

Issuer:

ZeroSSL ECC Domain Secure Site CA

Not before:

2024-12-02 00:00

Not after:

2025-03-02 23:59

Domain summary

s8.cri9.thinkerp.cc 7

1 recorded

IP summary

181.167.45.234 2 181.170.194.142 1 209.126.87.5 1

3 recorded