Domain v66952.com
Hong Kong
Software information
nginx
tcp/443
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2025-05-06 08:30
Last seen 2026-02-09 22:32
Open for 279 days-
Severity: medium
Fingerprint: 5f32cf5d6962f09c8f03d7bd8f03d7bd6e3758f6f78b7f93dffea9ca42b41e53Found 38 files trough .DS_Store spidering: /.git /.vscode /888 /app-download /app-download/images /app-download/js /dy /dy/css /dy/images /dy/js /m /new-download /qphtml /qphtml/active /qphtml/css /qphtml/img /qphtml/js /qphtml/mp4 /qphtml/static /static /static-vns81 /ts-download /ts-download/.vscode /ts-download/css /ts-download/images /ts-download/js /ts-download/muse-ui /ts2-download /ts2-download/css /ts2-download/images /ts2-download/js /ts2-download/muse-ui /tsnew-download /tsnew-download/.vscode /tsnew-download/css /tsnew-download/images /tsnew-download/js /tsnew-download/muse-ui
Found on 2026-02-09 22:32 -
Severity: low
Fingerprint: 5f32cf5d6962f09c0f8dcf020f8dcf02a719fba72269ac0ec68e593f1483a129Found 24 files trough .DS_Store spidering: /.git /.vscode /888 /app-download /app-download/images /app-download/js /dy /dy/css /dy/images /dy/js /m /new-download /qphtml /qphtml/active /qphtml/css /qphtml/img /qphtml/js /qphtml/mp4 /qphtml/static /static /static-vns81 /ts-download /ts2-download /tsnew-download
Found on 2025-10-17 05:09 -
Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa544751bf49c0f7025fade1f151606ba097c6Found 18 files trough .DS_Store spidering: /.git /.vscode /888 /app-download /app-download/images /app-download/js /dy /dy/css /dy/images /dy/js /m /new-download /qphtml /static /static-vns81 /ts-download /ts2-download /tsnew-download
Found on 2025-10-09 16:20
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2025-05-06 08:30
Last seen 2026-02-09 22:34
Open for 279 days-
Severity: medium
Fingerprint: 5f32cf5d6962f09c8f03d7bd8f03d7bd6e3758f6f78b7f93dffea9ca42b41e53Found 38 files trough .DS_Store spidering: /.git /.vscode /888 /app-download /app-download/images /app-download/js /dy /dy/css /dy/images /dy/js /m /new-download /qphtml /qphtml/active /qphtml/css /qphtml/img /qphtml/js /qphtml/mp4 /qphtml/static /static /static-vns81 /ts-download /ts-download/.vscode /ts-download/css /ts-download/images /ts-download/js /ts-download/muse-ui /ts2-download /ts2-download/css /ts2-download/images /ts2-download/js /ts2-download/muse-ui /tsnew-download /tsnew-download/.vscode /tsnew-download/css /tsnew-download/images /tsnew-download/js /tsnew-download/muse-ui
Found on 2026-02-09 22:34 -
Severity: low
Fingerprint: 5f32cf5d6962f09c0f8dcf020f8dcf02a719fba72269ac0ec68e593f1483a129Found 24 files trough .DS_Store spidering: /.git /.vscode /888 /app-download /app-download/images /app-download/js /dy /dy/css /dy/images /dy/js /m /new-download /qphtml /qphtml/active /qphtml/css /qphtml/img /qphtml/js /qphtml/mp4 /qphtml/static /static /static-vns81 /ts-download /ts2-download /tsnew-download
Found on 2025-11-28 11:20 -
Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa544751bf49c0f7025fade1f151606ba097c6Found 18 files trough .DS_Store spidering: /.git /.vscode /888 /app-download /app-download/images /app-download/js /dy /dy/css /dy/images /dy/js /m /new-download /qphtml /static /static-vns81 /ts-download /ts2-download /tsnew-download
Found on 2025-11-22 18:18 -
Severity: low
Fingerprint: 5f32cf5d6962f09cf35cbfb3f35cbfb3af8132f4bc8b99e1c4514d0ce01dd639Found 29 files trough .DS_Store spidering: /.git /.vscode /888 /app-download /app-download/images /app-download/js /dy /dy/css /dy/images /dy/js /m /new-download /qphtml /qphtml/active /qphtml/css /qphtml/img /qphtml/js /qphtml/mp4 /qphtml/static /static /static-vns81 /ts-download /ts-download/.vscode /ts-download/css /ts-download/images /ts-download/js /ts-download/muse-ui /ts2-download /tsnew-download
Found on 2025-10-23 00:59 -
Severity: medium
Fingerprint: 5f32cf5d6962f09c99d3320899d33208c3af8875dfe722dceacefe61c5c51bf6Found 44 files trough .DS_Store spidering: /.git /.vscode /888 /app-download /app-download/images /app-download/js /dy /dy/css /dy/images /dy/js /m /new-download /qphtml /qphtml/active /qphtml/css /qphtml/img /qphtml/js /qphtml/mp4 /qphtml/static /static /static/public /static/vns81 /static-vns81 /static-vns81/css /static-vns81/fonts /static-vns81/img /static-vns81/js /ts-download /ts-download/.vscode /ts-download/css /ts-download/images /ts-download/js /ts-download/muse-ui /ts2-download /ts2-download/css /ts2-download/images /ts2-download/js /ts2-download/muse-ui /tsnew-download /tsnew-download/.vscode /tsnew-download/css /tsnew-download/images /tsnew-download/js /tsnew-download/muse-ui
Found on 2025-05-06 08:30
-
-
Git configuration and history exposed
The following URL (usually
/.git/config) is publicly accessible and is leaking source code and repository configuration.First seen 2025-05-06 08:30
Last seen 2026-02-09 22:32
Open for 279 days-
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652287ac2080[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] url = root@6669786.com:lottery-site/lottery-repo-vns81 fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master
Found on 2026-02-09 22:32273 Bytes
-
-
Git configuration and history exposed
The following URL (usually
/.git/config) is publicly accessible and is leaking source code and repository configuration.First seen 2025-05-06 08:30
Last seen 2026-02-09 22:34
Open for 279 days-
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652287ac2080[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] url = root@6669786.com:lottery-site/lottery-repo-vns81 fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master
Found on 2026-02-09 22:34273 Bytes
-
-
Open service 43.240.15.43:443 · v66952.com
2026-01-23 07:49
HTTP/1.0 400 Bad Request Client sent an HTTP request to an HTTPS server.
Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.160.179.251:443 · v66952.com
2026-01-23 07:49
HTTP/1.1 200 OK Server: nginx Date: Fri, 23 Jan 2026 07:49:35 GMT Content-Type: text/html; charset=utf-8 Content-Length: 4586 Connection: close Vary: Accept-Encoding Last-Modified: Fri, 03 Oct 2025 04:07:06 GMT ETag: "68df4bea-11ea" Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Accept-Ranges: bytes Page title: Welcome <!DOCTYPE html> <html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Welcome</title> <style> html{ height: 100%; } body{ height: 100%; } </style> <script> function isMobile() { return !!(navigator.userAgent.match( /(phone|pad|pod|iPhone|iPod|ios|iPad|android|Mobile|BlackBerry|IEMobile|MQQBrowser|JUC|Fennec|wOSBrowser|BrowserNG|WebOS|Symbian|Windows Phone)/i )) } if (isMobile() !== false) { if (location.href.indexOf('#') > -1) { location.href = location.origin + '/m/#/home?' + (location.href.split('#')[1].split('?')[1] || '') } else { location.href = location.origin + '/m/#/home' + location.search } } (function () { var url = window.location.href, obj = {}, keyvalue = [], key = '', value = '', parseString = url.substring(url.indexOf('?') + 1, url.length).split('&') for (var i in parseString) { keyvalue = parseString[i].split('=') key = keyvalue[0] value = keyvalue[1] && keyvalue[1].includes('#/') ? keyvalue[1].split('#/')[0] : keyvalue[1] obj[key] = value } if (obj.agent) { localStorage.setItem('agent', obj.agent) // 特别要求 localStorage.setItem('register', obj.register) } if(obj.register){ if(!localStorage.token){ localStorage.setItem('register', obj.register) } } })() window.vis = true window.onblur = function () { window.vis = false } window.onfocus = function () { window.vis = true if (typeof window.balanceTask === 'function') { window.balanceTask() } } if(!document.querySelector('.statistics')) { let head = document.head || document.getElementsByTagName('head')[0]; let script = document.createElement('script'); let div = document.createElement('div'); div.classList = 'statistics' div.style.position = 'fixed' div.style.left = '-9999px' div.style.top = '-9999px' script.setAttribute("src", "https://v1.cnzz.com/z_stat.php?id=1280473206&web_id=1280473206"); div.appendChild(script); head.appendChild(div); } if(!isMobile()) { function loadJS( url, callback ) { var script = document.createElement('script'), fn = callback || function(){}; script.type = 'text/javascript'; //IE if(script.readyState){ script.onreadystatechange = function(){ if( script.readyState == 'loaded' || script.readyState == 'complete' ){ script.onreadystatechange = null; fn() } } }else{ // 其他浏览器 script.onload = function(){ fn() } } script.src = url; document.getElementsByTagName('head')[0].appendChild(script); } let loadTable = ['/static/public/js/stomp.js', '/static/public/js/qrcode.js' , `https://cstaticdun.126.net/load.min.js?t=1759394161063`, `https://acstatic-dun.126.net/tool.min.js?t=1759394161063` ] // 用法 loadTable.forEach( (url) => { loadJS(url,function(e){ // console.log("🚀 ~ file: index.html ~ line 85 ~ loadJS ~ url loaded success", url) }) }) } </script> <link rel="shortcut icon" href="/static/vns81/img/favicon.ico" type="image/x-icon"> <!-- <script src="/static/public/js/stomp.js"></script> --> <!-- <script src="/static/public/js/qrcode.js"></script> --> <!-- <script src="http://cstaticdun.126.net/load.min.js"></script> --> <!-- <script src="https://cstaticdun.126.net/load.min.js?t=1759394161063"></script> --> <!-- <script type="text/javascript" src="https://acstatic-dun.126.net/tool.min.js?t=1759394161063"></script> --> <!-- <script src="/static/public//js/tn_code.js"></script> --> <link href="/static-vns81/style.css" rel="stylesheet"><link href="/static-vns81/css/pagesFound 2026-01-23 by HttpPluginCreate report