LeakIX - Host 149.102.148.110

Host 149.102.148.110

United Kingdom

Contabo GmbH

Ubuntu

Software information

Apache Apache 2.4.41

tcp/443 tcp/80

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 149.102.148.110
Port: 80
URL: http://149.102.148.110

First seen 2022-07-12 09:11
Last seen 2024-06-19 22:55
Open for 708 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c39aac35b39aac35b709e45be822e19d46ba1d45746964fdc
```
Found 14 files trough .DS_Store spidering:

/.htaccess
/.htaccess.save
/bootstrap
/build
/bundles
/css
/images
/images/app_icon.png
/images/logo.png
/images/nhs_logo.png
/images/noprofilepic.png
/index.php
/js
/manifest.webmanifest
```
  Found on 2024-06-19 22:55
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733fd8dfc16210d71178ad205fe3bb0ffc93
```
Found 10 files trough .DS_Store spidering:

/.htaccess
/.htaccess.save
/bootstrap
/build
/bundles
/css
/images
/index.php
/js
/manifest.webmanifest
```
  Found on 2024-05-25 20:36
Create report
Symfony developement panel enabled
The application has Symfony profiling enabled.

It enables an attacker to access the following sensitive content :

System configuration

Request log, including POST request with credentials and/or api keys
IP: 149.102.148.110
Port: 80
URL: http://149.102.148.110/_profiler/empty/search/results

First seen 2022-09-24 19:01
Last seen 2024-06-19 22:55
Open for 634 days
- Fingerprint: 407cf4363b0e62fafca67e07e39bedb2e39bedb2e39bedb2e39bedb2e39bedb2
```
Symfony profiler enabled:
http://149.102.148.110/_profiler/empty/search/results
```
  Found on 2024-06-19 22:55
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 149.102.148.110
Port: 443
URL: https://149.102.148.110

First seen 2022-09-08 13:36
Last seen 2024-06-19 22:50
Open for 650 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c39aac35b39aac35b709e45be822e19d46ba1d45746964fdc
```
Found 14 files trough .DS_Store spidering:

/.htaccess
/.htaccess.save
/bootstrap
/build
/bundles
/css
/images
/images/app_icon.png
/images/logo.png
/images/nhs_logo.png
/images/noprofilepic.png
/index.php
/js
/manifest.webmanifest
```
  Found on 2024-06-19 22:50
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733fd8dfc16210d71178ad205fe3bb0ffc93
```
Found 10 files trough .DS_Store spidering:

/.htaccess
/.htaccess.save
/bootstrap
/build
/bundles
/css
/images
/index.php
/js
/manifest.webmanifest
```
  Found on 2024-06-09 21:49
Create report
Symfony developement panel enabled
The application has Symfony profiling enabled.

It enables an attacker to access the following sensitive content :

System configuration

Request log, including POST request with credentials and/or api keys
IP: 149.102.148.110
Port: 443
URL: https://149.102.148.110/_profiler/empty/search/results

First seen 2022-09-15 05:25
Last seen 2024-06-19 22:50
Open for 643 days
- Fingerprint: 407cf4363b0e62fafca67e07607b6421607b6421607b6421607b6421607b6421
```
Symfony profiler enabled:
https://149.102.148.110/_profiler/empty/search/results
```
  Found on 2024-06-19 22:50
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 149.102.148.110
Domain: smr.p.server.phoneticservices.co.uk
Port: 80
URL: http://smr.p.server.phoneticservices.co.uk

First seen 2022-10-12 21:12
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733fd8dfc16210d71178ad205fe3bb0ffc93
```
Found 10 files trough .DS_Store spidering:

/.htaccess
/.htaccess.save
/bootstrap
/build
/bundles
/css
/images
/index.php
/js
/manifest.webmanifest
```
  Found on 2022-10-12 21:12
Create report
Symfony developement panel enabled
The application has Symfony profiling enabled.

It enables an attacker to access the following sensitive content :

System configuration

Request log, including POST request with credentials and/or api keys
IP: 149.102.148.110
Domain: smr.p.server.phoneticservices.co.uk
Port: 443
URL: https://smr.p.server.phoneticservices.co.uk/_profiler/empty/search/results

First seen 2022-10-12 21:12
- Fingerprint: 407cf4363b0e62fafca67e07681bc45c681bc45c681bc45c681bc45c681bc45c
```
Symfony profiler enabled:
https://smr.p.server.phoneticservices.co.uk/_profiler/empty/search/results
```
  Found on 2022-10-12 21:12
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 149.102.148.110
Domain: smr.p.server.phoneticservices.co.uk
Port: 443
URL: https://smr.p.server.phoneticservices.co.uk

First seen 2022-10-12 21:12
- Severity: low
  Fingerprint: 5f32cf5d6962f09c39aac35b39aac35b709e45be822e19d46ba1d45746964fdc
```
Found 14 files trough .DS_Store spidering:

/.htaccess
/.htaccess.save
/bootstrap
/build
/bundles
/css
/images
/images/app_icon.png
/images/logo.png
/images/nhs_logo.png
/images/noprofilepic.png
/index.php
/js
/manifest.webmanifest
```
  Found on 2022-10-12 21:12
Create report

Open service 149.102.148.110:80

2024-06-19 22:55

HTTP/1.1 302 Found
Date: Wed, 19 Jun 2024 22:55:38 GMT
Server: Apache/2.4.41 (Ubuntu)
Cache-Control: max-age=0, must-revalidate, private
Location: /login
X-Debug-Token: 6dc5ef
X-Debug-Token-Link: http://149.102.148.110/_profiler/6dc5ef
X-Robots-Tag: noindex
Expires: Wed, 19 Jun 2024 22:55:38 GMT
Set-Cookie: sf_redirect=%7B%22token%22%3A%226dc5ef%22%2C%22route%22%3A%22app_default%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CDefaultController%22%2C%22method%22%3A%22app_default%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsrc%5C%2FController%5C%2FDefaultController.php%22%2C%22line%22%3A30%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; httponly; samesite=lax
Set-Cookie: PHPSESSID=nbpvaeb2hj3bptacekhn15vrrs; path=/; httponly; samesite=lax
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 12 hours ago by HttpPlugin

Create report

Open service 149.102.148.110:443

2024-06-19 22:50

HTTP/1.1 302 Found
Date: Wed, 19 Jun 2024 22:50:47 GMT
Server: Apache/2.4.41 (Ubuntu)
Cache-Control: max-age=0, must-revalidate, private
Location: /login
X-Debug-Token: e60298
X-Debug-Token-Link: https://149.102.148.110/_profiler/e60298
X-Robots-Tag: noindex
Expires: Wed, 19 Jun 2024 22:50:47 GMT
Set-Cookie: sf_redirect=%7B%22token%22%3A%22e60298%22%2C%22route%22%3A%22app_default%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CDefaultController%22%2C%22method%22%3A%22app_default%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsrc%5C%2FController%5C%2FDefaultController.php%22%2C%22line%22%3A30%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Set-Cookie: PHPSESSID=ptbhjavbltgqld7edvrshcko7u; path=/; secure; httponly; samesite=lax
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 13 hours ago by HttpPlugin

Create report

Open service 149.102.148.110:80

2024-06-19 22:49

HTTP/1.1 302 Found
Date: Wed, 19 Jun 2024 22:49:28 GMT
Server: Apache/2.4.41 (Ubuntu)
Cache-Control: max-age=0, must-revalidate, private
Location: /login
X-Debug-Token: 73dcb0
X-Debug-Token-Link: http://149.102.148.110/_profiler/73dcb0
X-Robots-Tag: noindex
Expires: Wed, 19 Jun 2024 22:49:28 GMT
Set-Cookie: sf_redirect=%7B%22token%22%3A%2273dcb0%22%2C%22route%22%3A%22app_default%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CDefaultController%22%2C%22method%22%3A%22app_default%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsrc%5C%2FController%5C%2FDefaultController.php%22%2C%22line%22%3A30%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; httponly; samesite=lax
Set-Cookie: PHPSESSID=ji2pvvc53j5br0a3b0b2gefvhd; path=/; httponly; samesite=lax
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 13 hours ago by HttpPlugin

Create report

Open service 149.102.148.110:443

2024-06-19 22:46

HTTP/1.1 302 Found
Date: Wed, 19 Jun 2024 22:46:29 GMT
Server: Apache/2.4.41 (Ubuntu)
Cache-Control: max-age=0, must-revalidate, private
Location: /login
X-Debug-Token: 995d45
X-Debug-Token-Link: https://149.102.148.110/_profiler/995d45
X-Robots-Tag: noindex
Expires: Wed, 19 Jun 2024 22:46:29 GMT
Set-Cookie: sf_redirect=%7B%22token%22%3A%22995d45%22%2C%22route%22%3A%22app_default%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CDefaultController%22%2C%22method%22%3A%22app_default%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsrc%5C%2FController%5C%2FDefaultController.php%22%2C%22line%22%3A30%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Set-Cookie: PHPSESSID=7toeimmondfmqdbkd2a5eugcvr; path=/; secure; httponly; samesite=lax
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 13 hours ago by HttpPlugin

Create report

Open service 149.102.148.110:443

2024-06-17 22:45

HTTP/1.1 302 Found
Date: Mon, 17 Jun 2024 22:45:01 GMT
Server: Apache/2.4.41 (Ubuntu)
Cache-Control: max-age=0, must-revalidate, private
Location: /login
X-Debug-Token: 3f9098
X-Debug-Token-Link: https://149.102.148.110/_profiler/3f9098
X-Robots-Tag: noindex
Expires: Mon, 17 Jun 2024 22:45:01 GMT
Set-Cookie: sf_redirect=%7B%22token%22%3A%223f9098%22%2C%22route%22%3A%22app_default%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CDefaultController%22%2C%22method%22%3A%22app_default%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsrc%5C%2FController%5C%2FDefaultController.php%22%2C%22line%22%3A30%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Set-Cookie: PHPSESSID=8lcpegspvlia36d8tj2o87f6sh; path=/; secure; httponly; samesite=lax
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 149.102.148.110:443

2024-06-17 22:40

HTTP/1.1 302 Found
Date: Mon, 17 Jun 2024 22:40:47 GMT
Server: Apache/2.4.41 (Ubuntu)
Cache-Control: max-age=0, must-revalidate, private
Location: /login
X-Debug-Token: e6123a
X-Debug-Token-Link: https://149.102.148.110/_profiler/e6123a
X-Robots-Tag: noindex
Expires: Mon, 17 Jun 2024 22:40:47 GMT
Set-Cookie: sf_redirect=%7B%22token%22%3A%22e6123a%22%2C%22route%22%3A%22app_default%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CDefaultController%22%2C%22method%22%3A%22app_default%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsrc%5C%2FController%5C%2FDefaultController.php%22%2C%22line%22%3A30%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Set-Cookie: PHPSESSID=u87vvr8gm6vi8sbmuou5es64q0; path=/; secure; httponly; samesite=lax
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 149.102.148.110:80

2024-06-17 22:35

HTTP/1.1 302 Found
Date: Mon, 17 Jun 2024 22:35:54 GMT
Server: Apache/2.4.41 (Ubuntu)
Cache-Control: max-age=0, must-revalidate, private
Location: /login
X-Debug-Token: 91103f
X-Debug-Token-Link: http://149.102.148.110/_profiler/91103f
X-Robots-Tag: noindex
Expires: Mon, 17 Jun 2024 22:35:54 GMT
Set-Cookie: sf_redirect=%7B%22token%22%3A%2291103f%22%2C%22route%22%3A%22app_default%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CDefaultController%22%2C%22method%22%3A%22app_default%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsrc%5C%2FController%5C%2FDefaultController.php%22%2C%22line%22%3A30%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; httponly; samesite=lax
Set-Cookie: PHPSESSID=nlg1g06fo23413psabsodl3mp1; path=/; httponly; samesite=lax
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 149.102.148.110:80

2024-06-17 21:01

HTTP/1.1 302 Found
Date: Mon, 17 Jun 2024 21:01:49 GMT
Server: Apache/2.4.41 (Ubuntu)
Cache-Control: max-age=0, must-revalidate, private
Location: /login
X-Debug-Token: cf3fa8
X-Debug-Token-Link: http://149.102.148.110/_profiler/cf3fa8
X-Robots-Tag: noindex
Expires: Mon, 17 Jun 2024 21:01:49 GMT
Set-Cookie: sf_redirect=%7B%22token%22%3A%22cf3fa8%22%2C%22route%22%3A%22app_default%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CDefaultController%22%2C%22method%22%3A%22app_default%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsrc%5C%2FController%5C%2FDefaultController.php%22%2C%22line%22%3A30%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; httponly; samesite=lax
Set-Cookie: PHPSESSID=domjl3eu85b3td083jbvoogali; path=/; httponly; samesite=lax
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 3 days ago by HttpPlugin