Domain www.h83666.com
United States
Software information
nginx
tcp/443 tcp/80 tcp/8443
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2023-10-27 16:16
Last seen 2024-08-10 23:41
Open for 288 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c3838040e3838040e20ea313fb1107a584014935d5082f7b9Found 20 files trough .DS_Store spidering: /888 /app-deskservice /app-download /check.html /event /index.html /landing /landing-login /landing-login/css /landing-login/css/h5 /landing-login/images /landing-login/images/pc /landing-login/js /new-download /qphtml /robots.txt /static /static-amhg /ts-download /tsnew-download
Found on 2024-08-10 23:41 -
Severity: low
Fingerprint: 5f32cf5d6962f09cdc57c57adc57c57a1f217733f233f1045be972698f21c736Found 19 files trough .DS_Store spidering: /888 /app-deskservice /app-download /check.html /event /index.html /landing /landing-login /landing-login/css /landing-login/css/h5 /landing-login/images /landing-login/js /new-download /qphtml /robots.txt /static /static-amhg /ts-download /tsnew-download
Found on 2024-07-12 00:54 -
Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa544730fcf4a60cb65561e8aa6102580f82e9Found 18 files trough .DS_Store spidering: /888 /app-deskservice /app-download /check.html /event /index.html /landing /landing-login /landing-login/css /landing-login/images /landing-login/js /new-download /qphtml /robots.txt /static /static-amhg /ts-download /tsnew-download
Found on 2024-07-02 21:37 -
Severity: low
Fingerprint: 5f32cf5d6962f09cc169dbbec169dbbef3dc898f318c42689ecaaaadff8588dfFound 15 files trough .DS_Store spidering: /888 /app-deskservice /app-download /check.html /event /index.html /landing /landing-login /new-download /qphtml /robots.txt /static /static-amhg /ts-download /tsnew-download
Found on 2024-06-28 03:13 -
Severity: low
Fingerprint: 5f32cf5d6962f09c47dfe71947dfe719a4a4af442167a743ba16540496b581bcFound 16 files trough .DS_Store spidering: /888 /app-deskservice /app-download /check.html /event /index.html /landing /landing-login /m /new-download /qphtml /robots.txt /static /static-amhg /ts-download /tsnew-download
Found on 2023-12-28 00:06
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2023-07-24 03:03
Last seen 2024-10-18 16:37
Open for 452 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c3838040e3838040e20ea313fb1107a584014935d5082f7b9Found 20 files trough .DS_Store spidering: /888 /app-deskservice /app-download /check.html /event /index.html /landing /landing-login /landing-login/css /landing-login/css/h5 /landing-login/images /landing-login/images/pc /landing-login/js /new-download /qphtml /robots.txt /static /static-amhg /ts-download /tsnew-download
Found on 2024-10-18 16:37 -
Severity: low
Fingerprint: 5f32cf5d6962f09cc169dbbec169dbbef3dc898f318c42689ecaaaadff8588dfFound 15 files trough .DS_Store spidering: /888 /app-deskservice /app-download /check.html /event /index.html /landing /landing-login /new-download /qphtml /robots.txt /static /static-amhg /ts-download /tsnew-download
Found on 2024-08-20 17:04 -
Severity: low
Fingerprint: 5f32cf5d6962f09cab28146bab28146b29698dc24b634645055bd0e663a19706Found 21 files trough .DS_Store spidering: /888 /app-deskservice /app-download /check.html /event /index.html /landing /landing-login /landing-login/css /landing-login/css/h5 /landing-login/images /landing-login/images/pc /landing-login/js /m /new-download /qphtml /robots.txt /static /static-amhg /ts-download /tsnew-download
Found on 2024-03-28 03:20 -
Severity: low
Fingerprint: 5f32cf5d6962f09c47dfe71947dfe719a4a4af442167a743ba16540496b581bcFound 16 files trough .DS_Store spidering: /888 /app-deskservice /app-download /check.html /event /index.html /landing /landing-login /m /new-download /qphtml /robots.txt /static /static-amhg /ts-download /tsnew-download
Found on 2023-12-28 00:06
-
-
Git configuration and history exposed
The following URL (usually
/.git/config) is publicly accessible and is leaking source code and repository configuration.First seen 2023-07-24 03:03
Last seen 2024-10-18 16:37
Open for 452 days-
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522def08037[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] url = root@6669786.com:lottery-site/lottery-repo-amhg fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master
Found on 2024-10-18 16:37272 Bytes
-
-
Git configuration and history exposed
The following URL (usually
/.git/config) is publicly accessible and is leaking source code and repository configuration.First seen 2023-10-27 16:16
Last seen 2024-08-10 23:41
Open for 288 days-
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522def08037[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] url = root@6669786.com:lottery-site/lottery-repo-amhg fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master
Found on 2024-08-10 23:41272 Bytes
-
-
Open service 104.160.179.231:80 · www.h83666.com
2024-10-18 16:37
HTTP/1.1 301 Moved Permanently Server: nginx Date: Fri, 18 Oct 2024 16:37:15 GMT Content-Type: text/html Content-Length: 163 Connection: close Location: https://www.h83666.com:789/ platform: polestarcloud.com Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx </center> </body> </html>
Found 2024-10-18 by HttpPluginCreate report
-
Open service 104.160.179.231:8443 · www.h83666.com
2024-10-18 16:37
HTTP/1.1 200 OK Server: nginx Date: Fri, 18 Oct 2024 16:37:16 GMT Content-Type: application/octet-stream Transfer-Encoding: chunked Connection: close Expires: Fri, 18 Oct 2024 16:37:15 GMT Cache-Control: no-cache success
Found 2024-10-18 by HttpPluginCreate report
-
Open service 104.160.179.231:443 · www.h83666.com
2024-10-18 16:37
HTTP/1.1 200 OK Server: nginx Date: Fri, 18 Oct 2024 16:37:17 GMT Content-Type: text/html; charset=utf-8 Content-Length: 4350 Connection: close Vary: Accept-Encoding Last-Modified: Fri, 31 May 2024 14:25:45 GMT ETag: "6659dde9-10fe" platform: polestarcloud.com Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Accept-Ranges: bytes Page title: Welcome <!DOCTYPE html> <html style="height: 100%;"> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Welcome</title> <script> function isMobile() { return !!(navigator.userAgent.match( /(phone|pad|pod|iPhone|iPod|ios|iPad|android|Mobile|BlackBerry|IEMobile|MQQBrowser|JUC|Fennec|wOSBrowser|BrowserNG|WebOS|Symbian|Windows Phone)/i )) } if (isMobile() !== false) { if (location.href.indexOf('#') > -1) { location.href = location.origin + '/m/#/home?' + (location.href.split('#')[1].split('?')[1] || '') } else { location.href = location.origin + '/m/#/home' + location.search } } (function () { var url = window.location.href, obj = {}, keyvalue = [], key = '', value = '', parseString = url.substring(url.indexOf('?') + 1, url.length).split('&') for (var i in parseString) { keyvalue = parseString[i].split('=') key = keyvalue[0] value = keyvalue[1] && keyvalue[1].includes('#/') ? keyvalue[1].split('#/')[0] : keyvalue[1] obj[key] = value } if (obj.agent) { localStorage.setItem('agent', obj.agent) } if (obj.isPcInfo) { isPcInfo = obj.isPcInfo; } if(obj.register){ if(!localStorage.token){ localStorage.setItem('register', obj.register) } } })() window.vis = true window.onblur = function () { window.vis = false } window.onfocus = function () { window.vis = true if (typeof window.balanceTask === 'function') { window.balanceTask() } } if(!document.querySelector('.statistics')) { let head = document.head || document.getElementsByTagName('head')[0]; let script = document.createElement('script'); let div = document.createElement('div'); div.classList = 'statistics' div.style.position = 'fixed' div.style.left = '-9999px' div.style.top = '-9999px' script.setAttribute("src", "https://hm.baidu.com/hm.js?d31496c5dd1bc8f680917e22dbaf6106"); div.appendChild(script); head.appendChild(div); } if(!isMobile()) { function loadJS( url, callback ) { var script = document.createElement('script'), fn = callback || function(){}; script.type = 'text/javascript'; //IE if(script.readyState){ script.onreadystatechange = function(){ if( script.readyState == 'loaded' || script.readyState == 'complete' ){ script.onreadystatechange = null; fn() } } }else{ // 其他浏览器 script.onload = function(){ fn() } } script.src = url; document.getElementsByTagName('head')[0].appendChild(script); } let loadTable = ['/static/public/js/stomp.js', '/static/public/js/qrcode.js' , `https://cstaticdun.126.net/load.min.js?t=1717142374234`, `https://acstatic-dun.126.net/tool.min.js?t=1717142374234` ] // 用法 loadTable.forEach( (url) => { loadJS(url,function(e){ // console.log("🚀 ~ file: index.html ~ line 85 ~ loadJS ~ url loaded success", url) }) }) } </script> <link rel="shortcut icon" href="/static/amhg/img/favicon.ico" type="image/x-icon"> <!-- <script src="/static/public/js/stomp.js"></script> <script src="/static/public/js/qrcode.js"></script> <script src="https://cstaticdun.126.net/load.min.js?t=201903281201"></script> <script type="text/javascript" src="https://acstatic-dun.126.net/tool.min.js?t=201903281201"></script> --> <link href="/static-amhg/style.css" rel="stylesheet"><link href="/static-amhg/css/pages/amhg/index.8bfb4b34772a4d6c5f2662681cce9f34.css" rel="stylesheet"></head> <body style="height: 100%;"> <div id="klkApp"> </div> <script type="text/javascript" src="/static-amhg/js/manifest.142858a41513079e9c82.js?v=2024-5-31-15:59:00"></script><Found 2024-10-18 by HttpPluginCreate report