LeakIX - Host 178.128.208.34

Host 178.128.208.34

Singapore

DIGITALOCEAN-ASN

Ubuntu

Software information

nginx nginx 1.18.0

tcp/443 tcp/80

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 178.128.208.34
Domain: saclub7.com
Port: 443
URL: https://saclub7.com

First seen 2023-09-17 16:10
Last seen 2023-09-19 06:42
Open for 1 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c2eda814e2eda814e68dc22b67a5c9f92f359605a0fe8c6e1
```
Found 6 files trough .DS_Store spidering:

/actions
/assets
/configs
/includes
/storage
/themes
```
  Found on 2023-09-17 16:10
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 178.128.208.34
Port: 443
URL: https://178.128.208.34/.git/config

First seen 2021-06-07 04:09
Last seen 2022-06-10 09:52
Open for 368 days

Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652209000e9b

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@bitbucket.org:gamursteam/doublexp-main.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "software-update"]
	remote = origin
	merge = refs/heads/software-update
[branch "doublexp-beta"]
	remote = origin
	merge = refs/heads/doublexp-beta
[branch "DXP-298-mobile-description-cut-off"]
	remote = origin
	merge = refs/heads/DXP-298-mobile-description-cut-off
[branch "DXP-278-lessons-have-creators"]
	remote = origin
	merge = refs/heads/DXP-278-lessons-have-creators
[branch "fix-images-creator-profiles"]
	remote = origin
	merge = refs/heads/fix-images-creator-profiles
[branch "doublexp-beta-launch"]
	remote = origin
	merge = refs/heads/doublexp-beta-launch
[branch "DXP-299-handmade-scorms"]
	remote = origin
	merge = refs/heads/DXP-299-handmade-scorms
[branch "dxp-301-edit-slideshows"]
	remote = origin
	merge = refs/heads/dxp-301-edit-slideshows
[branch "DXP-302-Edit-Scorms"]
	remote = origin
	merge = refs/heads/DXP-302-Edit-Scorms
[branch "DXP-305-dynamic-slideshow"]
	remote = origin
	merge = refs/heads/DXP-305-dynamic-slideshow
[branch "DXP-300-mobile-slideshow-redesign"]
	remote = origin
	merge = refs/heads/DXP-300-mobile-slideshow-redesign
[branch "DXP-315-light-theme"]
	remote = origin
	merge = refs/heads/DXP-315-light-theme

Found on 2021-06-07 04:09

1.4 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 178.128.208.34
Port: 443
URL: https://178.128.208.34

First seen 2021-08-01 14:50
Last seen 2022-05-30 09:57
Open for 301 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8efce1938efce193ec59b7f2b394cb195c65a5c8343eb66c

Found 36 files trough .DS_Store spidering:

/api
/application
/change_event_status.php
/cron
/cron_automated_reports.php
/cron_curriculum_alert.php
/cron_curriculum_user_start_date.php
/cron_directory_feed.php
/cron_disable_user_from_feed.php
/cron_scorechart_snapshots.php
/cron_user_curriculum_progress.php
/cron_user_feed.php
/cron_user_scorechart_snapshots.php
/db
/docker-compose.yml
/Dockerfile
/favicon.ico
/gulpfile.babel.js
/index.php
/modules
/package.json
/quiz_template.xls
/README.md
/README_DIRECTORY_STRUCTURE.md
/README_nomenclature.md
/responsive
/robots.txt
/sample_external_import.csv
/script
/send_event_notifications.php
/send_form_notifications.php
/system
/test
/themes
/web
/website

Found on 2021-08-30 09:56

Severity: medium
Fingerprint: 5f32cf5d6962f09cccd847a3ccd847a36b1444e267213fa92799b907eac70cb7

Found 43 files trough .DS_Store spidering:

/api
/application
/application/config
/application/controllers
/application/helpers
/application/i18n
/application/libraries
/application/models
/application/views
/change_event_status.php
/cron
/cron_automated_reports.php
/cron_curriculum_alert.php
/cron_curriculum_user_start_date.php
/cron_directory_feed.php
/cron_disable_user_from_feed.php
/cron_scorechart_snapshots.php
/cron_user_curriculum_progress.php
/cron_user_feed.php
/cron_user_scorechart_snapshots.php
/db
/docker-compose.yml
/Dockerfile
/favicon.ico
/gulpfile.babel.js
/index.php
/modules
/package.json
/quiz_template.xls
/README.md
/README_DIRECTORY_STRUCTURE.md
/README_nomenclature.md
/responsive
/robots.txt
/sample_external_import.csv
/script
/send_event_notifications.php
/send_form_notifications.php
/system
/test
/themes
/web
/website

Found on 2021-08-01 14:50

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 178.128.208.34
Domain: dev.doublexp.com
Port: 443
URL: https://dev.doublexp.com

First seen 2021-08-01 14:54
Last seen 2021-12-08 10:47
Open for 128 days

Severity: medium
Fingerprint: 5f32cf5d6962f09cccd847a3ccd847a36b1444e267213fa92799b907eac70cb7

Found 43 files trough .DS_Store spidering:

/api
/application
/application/config
/application/controllers
/application/helpers
/application/i18n
/application/libraries
/application/models
/application/views
/change_event_status.php
/cron
/cron_automated_reports.php
/cron_curriculum_alert.php
/cron_curriculum_user_start_date.php
/cron_directory_feed.php
/cron_disable_user_from_feed.php
/cron_scorechart_snapshots.php
/cron_user_curriculum_progress.php
/cron_user_feed.php
/cron_user_scorechart_snapshots.php
/db
/docker-compose.yml
/Dockerfile
/favicon.ico
/gulpfile.babel.js
/index.php
/modules
/package.json
/quiz_template.xls
/README.md
/README_DIRECTORY_STRUCTURE.md
/README_nomenclature.md
/responsive
/robots.txt
/sample_external_import.csv
/script
/send_event_notifications.php
/send_form_notifications.php
/system
/test
/themes
/web
/website

Found on 2021-08-01 14:54

Create report

Open service 178.128.208.34:443 · zakkdev.publicman.biz.id

2025-12-21 02:45

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: no-cache, private
Date: Sun, 21 Dec 2025 02:45:45 GMT
Set-Cookie: XSRF-TOKEN=eyJpdiI6Imd1cGx1YlFjU3lWNmJOMWFnM2M5OVE9PSIsInZhbHVlIjoic3hINVF6QS9YNjBuYWs1ZW1DYkFweDExL3FYZ0NyME1sKzRmNTM0dzlYaE56VUo3S0JzekNhWGxYVFA3eEN4RVlYS29mUlY0ZGNvb2pLQTZlcUtpcWN6OSszRjVROGpIUDlvSXdXZ1MzTHByKytzRVpKVWc1cUt1Zlh4OThKZjYiLCJtYWMiOiIxOTg5YzU1YmI1NjRhYTU0NjNkZDdhOGVhNjFhMTQ4ODg4YzYwMTc5NmY1YjQ3NDI5ZDdmNDI1Y2RiZDc0ODQzIiwidGFnIjoiIn0%3D; expires=Sun, 21 Dec 2025 14:45:45 GMT; Max-Age=43200; path=/; secure; samesite=lax
Set-Cookie: pterodactyl_session=eyJpdiI6IjE2Wk1aNWNqNXkvb0lwMW9maWptcnc9PSIsInZhbHVlIjoidlRncklzNUxRcmlsaGwyVVp1ZzVkejRka3pvWnRRTEIwcGNWNE5qdjRtL3ZHVXFjRmh5bkRKYmt2YmFKWldreDg4R2lZVWlrTVVTMXp0SmtaY2cxTDJvUmZacW5DazlGeFpSSXdVOTc2WmFjb1Rkd2VrZDVvYlZLNDVxcXhIdnkiLCJtYWMiOiI0YjJjZTQ4N2ZhMDU3YmIzMTIwNDY3Y2NkMWY1YTgyYzk4N2VhOTEyYjliNDQzNGRmYTMyYzMxMjA1Zjk2OWQwIiwidGFnIjoiIn0%3D; expires=Sun, 21 Dec 2025 14:45:45 GMT; Max-Age=43200; path=/; secure; httponly; samesite=lax

Page title: Pterodactyl

<!DOCTYPE html>
<html>
    <head>
        <title>Pterodactyl</title>

                    <meta charset="utf-8">
            <meta http-equiv="X-UA-Compatible" content="IE=edge">
            <meta content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no" name="viewport">
            <meta name="csrf-token" content="Bng8rjJLBUOAgDvVXGJ7fbVdagKuSeHyrhlK83uU">
            <meta name="robots" content="noindex">
            <link rel="apple-touch-icon" sizes="180x180" href="/favicons/apple-touch-icon.png">
            <link rel="icon" type="image/png" href="/favicons/favicon-32x32.png" sizes="32x32">
            <link rel="icon" type="image/png" href="/favicons/favicon-16x16.png" sizes="16x16">
            <link rel="manifest" href="/favicons/manifest.json">
            <link rel="mask-icon" href="/favicons/safari-pinned-tab.svg" color="#bc6e3c">
            <link rel="shortcut icon" href="/favicons/favicon.ico">
            <meta name="msapplication-config" content="/favicons/browserconfig.xml">
            <meta name="theme-color" content="#0e4688">
        
                                                <script>
                    window.SiteConfiguration = {"name":"Pterodactyl","locale":"en","recaptcha":{"enabled":true,"siteKey":"6LcJcjwUAAAAAO_Xqjrtj9wWufUpYRnK6BW8lnfn"}};
                </script>
                            <style>
            @import url('//fonts.googleapis.com/css?family=Rubik:300,400,500&display=swap');
            @import url('//fonts.googleapis.com/css?family=IBM+Plex+Mono|IBM+Plex+Sans:500&display=swap');
        </style>

        
            </head>
    <body class="bg-neutral-800">
                                    <div id="modal-portal"></div>
    <div id="app"></div>
                                        <script src="/assets/bundle.bd8441b2.js" crossorigin="anonymous"></script>
            </body>
</html>

Found 2025-12-21 by HttpPlugin

Create report

Open service 178.128.208.34:80 · zakkdev.publicman.biz.id

2025-12-21 02:45

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 21 Dec 2025 02:45:46 GMT
Content-Type: text/html
Content-Length: 162
Connection: close

Page title: 404 Not Found

<html>
<head><title>404 Not Found</title></head>
<body>
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/1.18.0 (Ubuntu)</center>
</body>
</html>

Found 2025-12-21 by HttpPlugin

Create report

Open service 178.128.208.34:443 · zakkdev.privatboy.biz.id

2025-12-21 02:44

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: no-cache, private
Date: Sun, 21 Dec 2025 02:44:27 GMT
Set-Cookie: XSRF-TOKEN=eyJpdiI6IlZscTR0RkhmU3NZWmphajlmL1VVQ3c9PSIsInZhbHVlIjoiaFkrSk9sYnJmK0NZSEorRUZxeWVDSEhpR0g1SGI1NWZLSk9HcExENkx6eS9LSFFuVGpWdWptcnZTZVlleVkwVVZVSU5MT0xJd29IYmdBSXpjSGhDWjZYUU1UaUpOR244MEVRRytRVFUzVHN1dFVscmFEL2JrQlVlUytsbUZ6WWciLCJtYWMiOiJiMzcxZjkzMmViNGE3NjBmZDE0ZjJjZGY1ZWIzNWFmNjExYmFjZDczOTJjZmUxNjMxNDNlODAyODU2NjdhMDc5IiwidGFnIjoiIn0%3D; expires=Sun, 21 Dec 2025 14:44:27 GMT; Max-Age=43200; path=/; secure; samesite=lax
Set-Cookie: pterodactyl_session=eyJpdiI6IlFCL3JZQzhOUzRqZ29FVmdwdnJRS2c9PSIsInZhbHVlIjoiSisxUk9aZ1pTKzJncHRXSTVDY2NyOHFFOEdhRDk3SUVsemJ3VUhDR0VocDZSbmtadlNYSVNmWkFIVGg2TFJJMXJRKzN5anloVENHak1sY1JZYVJaVHc2WEluTTdoS2pMZmxDTDBld0xhdEdHZW90bXVRQm52OG1XM0Nsb1l6NGciLCJtYWMiOiI4MzdiODU4YTU3ZGQ4MGJkZWM1NmUzNDNjNDU1ZTFmNWZiNTNjZDhhMjNjYTg2MzllYjUwYTI3NWJjMTA2Y2U0IiwidGFnIjoiIn0%3D; expires=Sun, 21 Dec 2025 14:44:27 GMT; Max-Age=43200; path=/; secure; httponly; samesite=lax

Page title: Pterodactyl

<!DOCTYPE html>
<html>
    <head>
        <title>Pterodactyl</title>

                    <meta charset="utf-8">
            <meta http-equiv="X-UA-Compatible" content="IE=edge">
            <meta content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no" name="viewport">
            <meta name="csrf-token" content="dI0oTw1CMyoX7YpmGpFmK6FEqW9h1HqvAO1eDprL">
            <meta name="robots" content="noindex">
            <link rel="apple-touch-icon" sizes="180x180" href="/favicons/apple-touch-icon.png">
            <link rel="icon" type="image/png" href="/favicons/favicon-32x32.png" sizes="32x32">
            <link rel="icon" type="image/png" href="/favicons/favicon-16x16.png" sizes="16x16">
            <link rel="manifest" href="/favicons/manifest.json">
            <link rel="mask-icon" href="/favicons/safari-pinned-tab.svg" color="#bc6e3c">
            <link rel="shortcut icon" href="/favicons/favicon.ico">
            <meta name="msapplication-config" content="/favicons/browserconfig.xml">
            <meta name="theme-color" content="#0e4688">
        
                                                <script>
                    window.SiteConfiguration = {"name":"Pterodactyl","locale":"en","recaptcha":{"enabled":true,"siteKey":"6LcJcjwUAAAAAO_Xqjrtj9wWufUpYRnK6BW8lnfn"}};
                </script>
                            <style>
            @import url('//fonts.googleapis.com/css?family=Rubik:300,400,500&display=swap');
            @import url('//fonts.googleapis.com/css?family=IBM+Plex+Mono|IBM+Plex+Sans:500&display=swap');
        </style>

        
            </head>
    <body class="bg-neutral-800">
                                    <div id="modal-portal"></div>
    <div id="app"></div>
                                        <script src="/assets/bundle.bd8441b2.js" crossorigin="anonymous"></script>
            </body>
</html>

Found 2025-12-21 by HttpPlugin

Create report

Open service 178.128.208.34:80 · zakkdev.privatboy.biz.id

2025-12-21 02:44

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 21 Dec 2025 02:44:26 GMT
Content-Type: text/html
Content-Length: 178
Connection: close
Location: https://zakkdev.privatboy.biz.id/

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>nginx/1.18.0 (Ubuntu)</center>
</body>
</html>

Found 2025-12-21 by HttpPlugin

Create report

zakkdev.privatboy.biz.id

Fingerprint:

8c20f7a1b7fef102ff4506904e78025fa779c5ce9afea28897ff5962b6412c04

CN:

zakkdev.privatboy.biz.id

Key:

RSA-2048

Issuer:

R12

Not before:

2025-12-21 01:45

Not after:

2026-03-21 01:45

Domain summary

saclub7.com 1 dev.doublexp.com 1 zakkdev.publicman.biz.id 1 zakkdev.privatboy.biz.id 1

4 recorded