cloudflare
tcp/443
nginx 1.12.2
tcp/443
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
Severity: medium
Fingerprint: 5f32cf5d6962f09ca629b8b1a629b8b1461559c22d7bc4fbb26f1eace36e6351
Found 34 files trough .DS_Store spidering: /.git /888 /app-download /app-download/images /app-download/js /check.html /index.html /m /qphtml /qphtml/active /qphtml/css /qphtml/favicon.ico /qphtml/img /qphtml/img/active /qphtml/img/agency /qphtml/img/agent /qphtml/img/attendrule /qphtml/img/public /qphtml/img/sites /qphtml/img/sites/839qp /qphtml/img/sites/839qp/static /qphtml/img/sites/cpyb /qphtml/img/src /qphtml/img/vipdetail /qphtml/index.html /qphtml/js /qphtml/mp4 /README.md /robots.txt /static /static-839qp /ts-download /tsnew-download /yuebao
Severity: medium
Fingerprint: 5f32cf5d6962f09c8f03d7bd8f03d7bd6e3758f603d4b1a76c90cc28e107f0f6
Found 38 files trough .DS_Store spidering: /.git /888 /app-download /app-download/images /app-download/js /check.html /index.html /m /qphtml /qphtml/active /qphtml/css /qphtml/favicon.ico /qphtml/img /qphtml/img/active /qphtml/img/agency /qphtml/img/agent /qphtml/img/attendrule /qphtml/img/public /qphtml/img/sites /qphtml/img/sites/839qp /qphtml/img/sites/839qp/static /qphtml/img/sites/cpyb /qphtml/img/src /qphtml/img/vipdetail /qphtml/index.html /qphtml/js /qphtml/mp4 /README.md /robots.txt /static /static-839qp /ts-download /ts-download/css /ts-download/images /ts-download/js /ts-download/muse-ui /tsnew-download /yuebao
Severity: low
Fingerprint: 5f32cf5d6962f09c2a439cf82a439cf8ce7a926524c89518ee8eb21dfc5172d4
Found 31 files trough .DS_Store spidering: /.git /888 /app-download /app-download/images /app-download/js /check.html /index.html /m /qphtml /qphtml/active /qphtml/css /qphtml/favicon.ico /qphtml/img /qphtml/img/active /qphtml/img/agency /qphtml/img/agent /qphtml/img/attendrule /qphtml/img/public /qphtml/img/sites /qphtml/img/src /qphtml/img/vipdetail /qphtml/index.html /qphtml/js /qphtml/mp4 /README.md /robots.txt /static /static-839qp /ts-download /tsnew-download /yuebao
Severity: medium
Fingerprint: 5f32cf5d6962f09c92dfb71592dfb7159851d7eecf36c59f164488b096814dd5
Found 45 files trough .DS_Store spidering: /.git /888 /app-download /app-download/images /app-download/js /check.html /index.html /m /qphtml /qphtml/active /qphtml/css /qphtml/favicon.ico /qphtml/img /qphtml/img/active /qphtml/img/agency /qphtml/img/agent /qphtml/img/attendrule /qphtml/img/public /qphtml/img/sites /qphtml/img/sites/839qp /qphtml/img/sites/839qp/static /qphtml/img/sites/cpyb /qphtml/img/src /qphtml/img/vipdetail /qphtml/index.html /qphtml/js /qphtml/mp4 /README.md /robots.txt /static /static-839qp /ts-download /ts-download/css /ts-download/images /ts-download/js /ts-download/muse-ui /tsnew-download /tsnew-download/css /tsnew-download/images /tsnew-download/js /tsnew-download/muse-ui /yuebao /yuebao/css /yuebao/img /yuebao/js
Severity: low
Fingerprint: 5f32cf5d6962f09c47dfe71947dfe719155d132a71296f03309f7ec4e2c2d678
Found 16 files trough .DS_Store spidering: /.git /888 /app-download /app-download/images /app-download/js /check.html /index.html /m /qphtml /README.md /robots.txt /static /static-839qp /ts-download /tsnew-download /yuebao
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
Severity: low
Fingerprint: 5f32cf5d6962f09c47dfe71947dfe719155d132a71296f03309f7ec4e2c2d678
Found 16 files trough .DS_Store spidering: /.git /888 /app-download /app-download/images /app-download/js /check.html /index.html /m /qphtml /README.md /robots.txt /static /static-839qp /ts-download /tsnew-download /yuebao
Severity: low
Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea9026c29bae627df73f73da934337687e8
Found 23 files trough .DS_Store spidering: /.git /888 /app-download /app-download/images /app-download/js /check.html /index.html /m /qphtml /qphtml/active /qphtml/css /qphtml/favicon.ico /qphtml/img /qphtml/index.html /qphtml/js /qphtml/mp4 /README.md /robots.txt /static /static-839qp /ts-download /tsnew-download /yuebao
The following URL (usually /.git/config
) is publicly accessible and is leaking source code and repository configuration.
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65229a6ca707
[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] url = root@6669786.com:lottery-site/lottery-repo-839qp fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master
The following URL (usually /.git/config
) is publicly accessible and is leaking source code and repository configuration.
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65229a6ca707
[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] url = root@6669786.com:lottery-site/lottery-repo-839qp fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master
Open service 137.220.225.155:80 · www.51866k.com
2024-11-03 01:04
HTTP/1.1 301 Moved Permanently Content-Type: text/html; charset=utf-8 Location: https://www.51866k.com/ Date: Sun, 03 Nov 2024 01:04:43 GMT Content-Length: 58 Connection: close
Open service 137.220.225.126:443 · www.51866k.com
2024-11-03 01:04
HTTP/1.1 200 OK Content-Type: text/html Date: Sun, 03 Nov 2024 01:04:44 GMT Etag: W/"6635ec42-ee7" Last-Modified: Sat, 04 May 2024 08:05:22 GMT Server: nginx/1.12.2 X-Cache: BYPASS Connection: close Transfer-Encoding: chunked Page title: Welcome <!DOCTYPE html> <html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Welcome</title> <style> html{ height: 100%; } body{ height: 100%; } </style> <script> function isMobile() { return !!(navigator.userAgent.match( /(phone|pad|pod|iPhone|iPod|ios|iPad|android|Mobile|BlackBerry|IEMobile|MQQBrowser|JUC|Fennec|wOSBrowser|BrowserNG|WebOS|Symbian|Windows Phone)/i )) } if (isMobile() !== false) { if (location.href.indexOf('#') > -1) { location.href = location.origin + '/m/#/home?' + (location.href.split('#')[1].split('?')[1] || '') } else { location.href = location.origin + '/m/#/home' + location.search } } (function () { var url = window.location.href, obj = {}, keyvalue = [], key = '', value = '', parseString = url.substring(url.indexOf('?') + 1, url.length).split('&') for (var i in parseString) { keyvalue = parseString[i].split('=') key = keyvalue[0] value = keyvalue[1] && keyvalue[1].includes('#/') ? keyvalue[1].split('#/')[0] : keyvalue[1] obj[key] = value } if (obj.agent) { localStorage.setItem('agent', obj.agent) } if(obj.register){ if(!localStorage.token){ localStorage.setItem('register', obj.register) } } })() window.vis = true window.onblur = function () { window.vis = false } window.onfocus = function () { window.vis = true if (typeof window.balanceTask === 'function') { window.balanceTask() } } if(!isMobile()) { function loadJS( url, callback ) { var script = document.createElement('script'), fn = callback || function(){}; script.type = 'text/javascript'; //IE if(script.readyState){ script.onreadystatechange = function(){ if( script.readyState == 'loaded' || script.readyState == 'complete' ){ script.onreadystatechange = null; fn() } } }else{ // 其他浏览器 script.onload = function(){ fn() } } script.src = url; document.getElementsByTagName('head')[0].appendChild(script); } let loadTable = ['/static/public/js/stomp.js', '/static/public/js/qrcode.js' , `https://cstaticdun.126.net/load.min.js?t=1714127654714`, `https://acstatic-dun.126.net/tool.min.js?t=1714127654714` ] // 用法 loadTable.forEach( (url) => { loadJS(url,function(e){ // console.log("🚀 ~ file: index.html ~ line 85 ~ loadJS ~ url loaded success", url) }) }) } </script> <link rel="shortcut icon" href="/static/839qp/img/favicon.ico" type="image/x-icon"> <!-- <script src="/static/public/js/stomp.js"></script> <script src="/static/public/js/qrcode.js"></script> <script src="https://cstaticdun.126.net/load.min.js?t=201903281201"></script> <script type="text/javascript" src="https://acstatic-dun.126.net/tool.min.js?t=201903281201"></script> --> <link href="/static-839qp/style.css" rel="stylesheet"><link href="/static-839qp/css/pages/839qp/index.7ffac360b0fff44d6e838b140222279b.css" rel="stylesheet"></head> <body> <div id="vnstApp"> </div> <script type="text/javascript" src="/static-839qp/js/manifest.253ee9371934bde266a4.js?v=2024-4-26-18:33:27"></script><script type="text/javascript" src="/static-839qp/js/vendor.f2fd394ddb8b1898e20a.js?v=2024-4-26-18:33:27"></script><script type="text/javascript" src="/static-839qp/js/pages/839qp/index.2af5021e5386dc53640e.js?v=2024-4-26-18:33:27"></script></body> </html>
Open service 137.220.225.155:443 · www.51866k.com
2024-11-03 01:04
HTTP/1.1 200 OK Content-Type: text/html Date: Sun, 03 Nov 2024 01:04:43 GMT Etag: W/"6635ec42-ee7" Last-Modified: Sat, 04 May 2024 08:05:22 GMT Server: nginx/1.12.2 X-Cache: BYPASS Connection: close Transfer-Encoding: chunked Page title: Welcome <!DOCTYPE html> <html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Welcome</title> <style> html{ height: 100%; } body{ height: 100%; } </style> <script> function isMobile() { return !!(navigator.userAgent.match( /(phone|pad|pod|iPhone|iPod|ios|iPad|android|Mobile|BlackBerry|IEMobile|MQQBrowser|JUC|Fennec|wOSBrowser|BrowserNG|WebOS|Symbian|Windows Phone)/i )) } if (isMobile() !== false) { if (location.href.indexOf('#') > -1) { location.href = location.origin + '/m/#/home?' + (location.href.split('#')[1].split('?')[1] || '') } else { location.href = location.origin + '/m/#/home' + location.search } } (function () { var url = window.location.href, obj = {}, keyvalue = [], key = '', value = '', parseString = url.substring(url.indexOf('?') + 1, url.length).split('&') for (var i in parseString) { keyvalue = parseString[i].split('=') key = keyvalue[0] value = keyvalue[1] && keyvalue[1].includes('#/') ? keyvalue[1].split('#/')[0] : keyvalue[1] obj[key] = value } if (obj.agent) { localStorage.setItem('agent', obj.agent) } if(obj.register){ if(!localStorage.token){ localStorage.setItem('register', obj.register) } } })() window.vis = true window.onblur = function () { window.vis = false } window.onfocus = function () { window.vis = true if (typeof window.balanceTask === 'function') { window.balanceTask() } } if(!isMobile()) { function loadJS( url, callback ) { var script = document.createElement('script'), fn = callback || function(){}; script.type = 'text/javascript'; //IE if(script.readyState){ script.onreadystatechange = function(){ if( script.readyState == 'loaded' || script.readyState == 'complete' ){ script.onreadystatechange = null; fn() } } }else{ // 其他浏览器 script.onload = function(){ fn() } } script.src = url; document.getElementsByTagName('head')[0].appendChild(script); } let loadTable = ['/static/public/js/stomp.js', '/static/public/js/qrcode.js' , `https://cstaticdun.126.net/load.min.js?t=1714127654714`, `https://acstatic-dun.126.net/tool.min.js?t=1714127654714` ] // 用法 loadTable.forEach( (url) => { loadJS(url,function(e){ // console.log("🚀 ~ file: index.html ~ line 85 ~ loadJS ~ url loaded success", url) }) }) } </script> <link rel="shortcut icon" href="/static/839qp/img/favicon.ico" type="image/x-icon"> <!-- <script src="/static/public/js/stomp.js"></script> <script src="/static/public/js/qrcode.js"></script> <script src="https://cstaticdun.126.net/load.min.js?t=201903281201"></script> <script type="text/javascript" src="https://acstatic-dun.126.net/tool.min.js?t=201903281201"></script> --> <link href="/static-839qp/style.css" rel="stylesheet"><link href="/static-839qp/css/pages/839qp/index.7ffac360b0fff44d6e838b140222279b.css" rel="stylesheet"></head> <body> <div id="vnstApp"> </div> <script type="text/javascript" src="/static-839qp/js/manifest.253ee9371934bde266a4.js?v=2024-4-26-18:33:27"></script><script type="text/javascript" src="/static-839qp/js/vendor.f2fd394ddb8b1898e20a.js?v=2024-4-26-18:33:27"></script><script type="text/javascript" src="/static-839qp/js/pages/839qp/index.2af5021e5386dc53640e.js?v=2024-4-26-18:33:27"></script></body> </html>
Open service 137.220.225.81:80 · www.51866k.com
2024-11-03 01:04
HTTP/1.1 301 Moved Permanently Content-Type: text/html; charset=utf-8 Location: https://www.51866k.com/ Date: Sun, 03 Nov 2024 01:04:41 GMT Content-Length: 58 Connection: close
Open service 137.220.225.126:80 · www.51866k.com
2024-11-03 01:04
HTTP/1.1 301 Moved Permanently Content-Type: text/html; charset=utf-8 Location: https://www.51866k.com/ Date: Sun, 03 Nov 2024 01:04:39 GMT Content-Length: 58 Connection: close
Open service 154.218.15.27:443 · www.51866k.com
2024-11-02 03:48
HTTP/1.1 400 Bad Request Server: cloudflare Date: Sat, 02 Nov 2024 03:48:42 GMT Content-Type: text/html Content-Length: 655 Connection: close CF-RAY: - Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>cloudflare</center> </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page -->
Open service 154.218.15.27:443 · www.51866k.com
2024-11-01 01:41
HTTP/1.1 400 Bad Request Server: cloudflare Date: Fri, 01 Nov 2024 01:41:11 GMT Content-Type: text/html Content-Length: 655 Connection: close CF-RAY: - Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>cloudflare</center> </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page -->
Open service 154.218.15.27:443 · www.51866k.com
2024-10-30 02:54
HTTP/1.1 400 Bad Request Server: cloudflare Date: Wed, 30 Oct 2024 02:54:56 GMT Content-Type: text/html Content-Length: 655 Connection: close CF-RAY: - Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>cloudflare</center> </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page -->
Open service 154.218.15.27:443 · www.51866k.com
2024-10-22 01:31
HTTP/1.1 400 Bad Request Server: cloudflare Date: Tue, 22 Oct 2024 01:31:16 GMT Content-Type: text/html Content-Length: 655 Connection: close CF-RAY: - Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>cloudflare</center> </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page -->
Open service 154.218.15.27:443 · www.51866k.com
2024-10-20 01:38
HTTP/1.1 400 Bad Request Server: cloudflare Date: Sun, 20 Oct 2024 01:38:43 GMT Content-Type: text/html Content-Length: 655 Connection: close CF-RAY: - Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>cloudflare</center> </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page -->
Open service 154.218.15.27:443 · www.51866k.com
2024-10-18 01:22
HTTP/1.1 400 Bad Request Server: cloudflare Date: Fri, 18 Oct 2024 01:22:55 GMT Content-Type: text/html Content-Length: 655 Connection: close CF-RAY: - Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>cloudflare</center> </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page -->
Open service 154.218.15.27:443 · www.51866k.com
2024-10-16 03:21
HTTP/1.1 400 Bad Request Server: cloudflare Date: Wed, 16 Oct 2024 03:21:22 GMT Content-Type: text/html Content-Length: 655 Connection: close CF-RAY: - Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>cloudflare</center> </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page -->
Open service 154.218.15.27:443 · www.51866k.com
2024-10-02 01:33
HTTP/1.1 400 Bad Request Server: cloudflare Date: Wed, 02 Oct 2024 01:33:46 GMT Content-Type: text/html Content-Length: 655 Connection: close CF-RAY: - Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>cloudflare</center> </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page -->
Open service 154.218.15.27:443 · www.51866k.com
2024-09-30 01:42
HTTP/1.1 400 Bad Request Server: cloudflare Date: Mon, 30 Sep 2024 01:42:27 GMT Content-Type: text/html Content-Length: 655 Connection: close CF-RAY: - Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>cloudflare</center> </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page -->
Open service 154.218.15.27:443 · www.51866k.com
2024-09-28 01:41
HTTP/1.1 400 Bad Request Server: cloudflare Date: Sat, 28 Sep 2024 01:41:19 GMT Content-Type: text/html Content-Length: 655 Connection: close CF-RAY: - Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>cloudflare</center> </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page -->