Host 3.161.119.48
United States
AMAZON-02
Software information

CloudFront

tcp/80

cloudflare cloudflare

tcp/443

nginx nginx

tcp/443

openresty openresty

tcp/443

  • MacOS file listing through .DS_Store file
    First seen 2024-09-20 12:37
    Last seen 2024-12-04 19:45
    Open for 75 days
    Create report
  • MacOS file listing through .DS_Store file
    First seen 2024-10-04 16:05
    Last seen 2024-10-08 02:33
    Open for 3 days

    • Severity: low
      Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a0904d808d7e02e9ac8f638f0164866dd3

      Found 13 files trough .DS_Store spidering:

/.git
/.gitignore
/collect_301.html
/enter - 副本.html
/enter.html
/favicon.ico
/iframe.html
/index copy.html
/index.html
/QRcode - 副本.html
/QRcode.html
/README.md
/static
      Found on 2024-10-08 02:33
    Create report
  • Git configuration and history exposed
    First seen 2024-06-01 08:16
    Last seen 2024-10-02 17:55
    Open for 123 days

    • Severity: medium
      Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652201fa2920

      [core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	hooksPath = /dev/null
[remote "origin"]
	url = http://ngit.2jsncsk2dxks.xyz/zhi/zhi-luodiye-guide.git
	fetch = +refs/heads/*:refs/remotes/origin/*
      Found on 2024-10-02 17:55
      240 Bytes

    • Severity: medium
      Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65224a02fe66

      [core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	hooksPath = /dev/null
[remote "origin"]
	url = http://git.2jsncsk2dxks.xyz/zhi/zhi-luodiye-guide.git
	fetch = +refs/heads/*:refs/remotes/origin/*
      Found on 2024-09-08 15:34
      239 Bytes
    Create report
  • Git configuration and history exposed
    First seen 2023-12-07 12:01
    Last seen 2024-02-04 11:39
    Open for 58 days

    • Severity: medium
      Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65224a02fe66

      [core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	hooksPath = /dev/null
[remote "origin"]
	url = http://git.2jsncsk2dxks.xyz/zhi/zhi-luodiye-guide.git
	fetch = +refs/heads/*:refs/remotes/origin/*
      Found on 2024-02-04 11:39
      239 Bytes
    Create report
  • Git configuration and history exposed
    First seen 2023-09-12 15:17
    Last seen 2024-02-02 02:26
    Open for 142 days

    • Severity: medium
      Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522b011144f

      [core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = http://git.2jsncsk2dxks.xyz/pzhan/pzhan-luodiye-guide.git
	fetch = +refs/heads/*:refs/remotes/origin/*
      Found on 2024-02-02 02:26
      220 Bytes
    Create report

  • Open service 3.161.119.48:443 · bannockburnsurgery.co.uk

    2026-01-06 20:59 

    HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Amz-Cf-Pop: VIE50-P4
Date: Tue, 06 Jan 2026 20:59:32 GMT
Location: https://www.bannockburnsurgery.co.uk/
X-Batcache: HIT
Server: nginx
X-Redirect-By: WordPress
Last-Modified: Tue, 06 Jan 2026 20:55:39 GMT
Cache-Control: max-age=67, must-revalidate
Vary: Cookie,Origin
Via: 1.1 b27a50fc86bebfa3ec23c4357aeb68f2.cloudfront.net (CloudFront), 1.1 5745df1556226d8fd37c4e294e779bda.cloudfront.net (CloudFront)
X-Cache: Miss from cloudfront
X-Amz-Cf-Pop: VIE50-P2
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: QcbVFtKaIuZLbswg_9zCtFWHlJvB9EKDm6nU-PF1COF8MOOYpKUIxg==
Age: 2
    Found 2026-01-06 by HttpPlugin
    Create report

  • Open service 3.161.119.48:80 · bannockburnsurgery.co.uk

    2026-01-06 20:59 

    HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Tue, 06 Jan 2026 20:59:34 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://bannockburnsurgery.co.uk/
X-Cache: Redirect from cloudfront
Via: 1.1 8b49735be00c2f56b8beee942c059dda.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: VIE50-P2
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: MwLCagrhIml8TS75nW_qb86Pszzu8s-xq_EgRH5uKCpoBme8Vmak0A==

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>
    Found 2026-01-06 by HttpPlugin
    Create report

  • Open service 3.161.119.48:80 · spnhrt777.com

    2026-01-03 03:55 

    HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sat, 03 Jan 2026 03:55:26 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://spnhrt777.com/
X-Cache: Redirect from cloudfront
Via: 1.1 61059d408bfb8da19f49f0698d5e1608.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: VIE50-P2
X-Amz-Cf-Id: GzMcA1epkdZgZIvlYDf2Or6jcad85tMrPsSXtye6C3pLM6V9ulHVPA==
Vary: Origin

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>
    Found 2026-01-03 by HttpPlugin
    Create report

  • Open service 3.161.119.48:443 · spnhrt777.com

    2026-01-03 03:55 

    HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Server: openresty
Date: Sat, 03 Jan 2026 03:55:26 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Accept-Encoding
X-Cache: Miss from cloudfront
Via: 1.1 e72e5f48f0da91aae20d958e6142d90c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: VIE50-P2
X-Amz-Cf-Id: G2pCYXPXwTheC8iO1yXXw3V0Dz5BtOL4sMhyXdnNK4BNplSex81HDA==

Page title: Bergabunglah dalam SpinHarta!

<!DOCTYPE html>
<html>
    <head>
        <meta property="og:url" content="/" />
        <meta property="og:type"          content="website" />
        <meta property="og:image:width"          content="600" />
        <meta property="og:image:height"          content="314" />
        <meta property="og:title"         content="Bergabunglah dengan anggota SpinHarta!" />
        <meta property="og:description"   content="Mainkan 70+ Game. Menangkan Hingga 10 Miliar Setiap Hari.&lt;br&gt;Mainkan di Aplikasi Game Terbaik Indonesia untuk Poker Domino Slots Aviator." />
        <meta property="og:image"         content="./share102.jpg" />
        <meta property="fb:app_id" content="275231247713364" />

        <meta name="apple-mobile-web-app-capable" content="yes">
        <meta name="apple-mobile-web-app-status-bar-style" content="black-translucent" />
        <meta content="telephone=no" name="format-detection" /> 
        <meta property="url" content="/">
        <meta property="type" content="website">
        <meta property="title" content="Bergabunglah dalam SpinHarta!">
        <meta property="description" content="Selamat datang di SpinHarta! Temukan beragam permainan menarik, termasuk slot, Rummy, Teenpatti, Aviator, dan banyak lagi. Sebagai platform game online terkemuka di India, kami memberikan peluang tanpa batas untuk memenangkan hadiah uang tunai dalam jumlah besar. Jangan lewatkan bonus misteri harian kami untuk mendapatkan lebih banyak peluang mendapatkan jackpot! Bergabunglah dengan komunitas gamer kami dan mulailah menang di SpinHarta hari ini!">

        <meta charset="UTF-8">
        <meta name="viewport" content="width=720, user-scalable=no"> 
        <title>Bergabunglah dalam SpinHarta!</title>
        <link rel="icon" href="./favicon.png" mce_href="./favicon.png" type="image/png">
        <link rel="shortcut icon" href="./favicon.png" mce_href="./favicon.png" type="image/png">
        <script>
            // Initialize the agent at application startup.
            const fpPromise = import('/src/js/fingerprintjs.js')
                .then(FingerprintJS => FingerprintJS.load())

            // Get the visitor identifier when you need it.
            fpPromise
                .then(fp => fp.get())
                .then(result => {
                    // This is the visitor identifier:
                    const visitorId = result.visitorId
                    console.log(visitorId);
                    var url = '/getapk.php?vid='+visitorId+'&code=&mb=';
                    var xhr = new XMLHttpRequest();
                    xhr.onreadystatechange = function() {
                        if (xhr.readyState == 4) {
                            if (xhr.status == 200) {
                                var data = xhr.responseText;
                                console.log(data);
                                if(data.indexOf('http') == 0) {
                                    // window.location.href = data;
                                    // document.getElementById("playnow").href=data;
                                    document.getElementById("down_apk_2").href=data;
                                    //document.getElementById("down_apk_2").target="_blank"
                                    //document.getElementById("playnow").target="_blank"
                                    document.getElementById("down_apk_2").setAttribute("target","_blank")
                                    //document.getElementById("playnow").setAttribute("target","_blank")
                                    document.getElementById("wait_download").style.display="none"
                                    document.getElementById("can_download").style.display="inline"
                                } else {
                                    alert('Gagal mendapatkan tautan dari server')
                                }
                            } else {
                                alert('Gagal mendapatkan tautan')
                            }
                        }
                    }
                    xhr.open
    Found 2026-01-03 by HttpPlugin
    Create report

  • Open service 3.161.119.48:443 · tk7pwz3zo6.xyz

    2025-12-30 16:11 

    HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: close
cf-cache-status: DYNAMIC
CF-RAY: 9b54521b891e8f3b-FRA
Server: cloudflare
Last-Modified: Thu, 24 Jul 2025 14:04:57 GMT
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=sjFQDIBh8xEyF%2FMJuZsluTOzSY88%2Fx2vBlRiWb8gubnA4rJR6wHch90VA3qqi2jWy0X1plCJ8NQS%2BCHb4a88arn2vHEK6e2WN5NDz347bTbW"}]}
Accept-Ranges: bytes
Date: Mon, 29 Dec 2025 22:44:27 GMT
ETag: "68823d89-12ee"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 50755d2085d3b2c5c8cb4d6cb8bd7d3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: VIE50-P2
X-Amz-Cf-Id: XiQVyh_BMhtLu5qgtwSlm7RwnrcrGi1EU6hZP7jj9X-F7U_p_4LPxw==
Age: 62794


<!DOCTYPE html><html lang="zh-CN"><head><meta charset="utf-8"><meta http-equiv="X-UA-Compatible" content="IE=edge"><meta name="viewport" content="width=device-width,initial-scale=1,maximum-scale=1,minimum-scale=1,user-scalable=no"><meta name="referrer" content="no-referrer"><meta name="theme-color" content="#ffffff"><meta name="apple-mobile-web-app-capable" content="yes"><meta name="apple-mobile-web-app-status-bar-style" content="black"><meta name="format-detection" content="telphone=no, email=no"><meta name="renderer" content="webkit"><meta name="HandheldFriendly" content="true"><meta name="MobileOptimized" content="320"><meta name="screen-orientation" content="portrait"><meta name="x5-orientation" content="portrait"><meta name="full-screen" content="yes"><meta name="x5-fullscreen" content="true"><meta name="browsermode" content="application"><meta name="x5-page-mode" content="app"><meta name="msapplication-tap-highlight" content="no"><link rel="icon" href="./favicon.ico"><title></title><script>window["\x64\x6f\x63\x75\x6d\x65\x6e\x74"]['\x74\x69\x74\x6c\x65'] = "\x50\u7ad9\u89c6\u9891"
        window.parent.postMessage({ type: "child" }, '*');
        var pathIndex = getCookie('pathIndex') || 0;
        var hadSetNext = false;

        function setCookie(name, value) {
          document.cookie = name + '=' + encodeURI(value);
        }
        function getCookie(name) {
          let arr, reg = new RegExp('(^| )' + name + '=([^;]*)(;|$)');
          if (arr = document.cookie.match(reg)) {
            return decodeURI(arr[2]);
          } else {
            return null;
          }
        }
        function loadError() {
          if (hadSetNext) return;
          if (pathIndex >= pathList.length - 1) {
            if (pathList[pathIndex] == './') {
              return;
            }
            pathIndex = 0;
          } else {
            pathIndex++;
          }
          hadSetNext = true;
          setCookie('pathIndex', pathIndex);
          window.location.reload();
        };</script><style type="text/css">html,
        body {
          font-family: "Microsoft YaHei";
          background-color: #000;
        }

        #appLoading {
          font-size: 18px;
          text-align: center;
          color: #fff;
          position: absolute;
          top: 30%;
          left: 50%;
          transform: translateX(-50%) translateY(-50%);
        }</style><link href="static/cdn/css/nprogress.css?v=4.6.0" rel="stylesheet"><link href="static/20250724220001/css/chunk-vendors.css" rel="stylesheet"><link href="static/20250724220001/css/styles.css" rel="stylesheet"><link href="static/20250724220001/css/app.css" rel="stylesheet"></head><body><div id="app"><div id="appLoading">&#x9875;&#x9762;&#x52A0;&#x8F7D;&#x4E2D;...</div></div><script src="static/cdn/js/crypto-js.min.js?v=4.6.0"></script><script src="static/cdn/js/axios.min.js?v=4.6.0"></script><script src="static/cdn/js/lodash.min.js?v=4.6.0"></script><script src="static/cdn/js/nprogress.js?v=4.6.0"></script><script src="static/cdn/js/hls.min.js?v=4.6.0"></script><script src="static/cdn/js/artplayer.js?v=4.6.0"></script><script src="static/cdn/js/DPlayer.min.js?v=4.6.0"></script><script src="static/cdn/js/jsjiami.js?v=4.6.0"></script><script>var osType = `h5`,
              googletagmanager = osType === "h5" ? 'G-VSYFB4DK6Y' : 'G-403XVWWB0G',
              immediately = true;
            window.onload = function () {
              setTimeout(() => {
                loadJS("https://www.googletagmanager.com/gtag/js?id=" + googletagmanager, true)
                window.dataLayer = window.dataLayer || [];
                function gtag() { dataLayer.push(arguments); }
                gtag('js', new Date());
                gtag('config', googletagmanager);
              }, 1000)
            }
            function loadJS(url, bol = false) {
              var script = document.createElement('script')
              script.setAttribute("src", url);
              if (bol) {
                script.setAttribute("async
    Found 2025-12-30 by HttpPlugin
    Create report

  • Open service 3.161.119.48:80 · tk7pwz3zo6.xyz

    2025-12-30 16:11 

    HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Tue, 30 Dec 2025 16:11:01 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://tk7pwz3zo6.xyz/
X-Cache: Redirect from cloudfront
Via: 1.1 93c19401e4c3042840b49b10b9478098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: VIE50-P2
X-Amz-Cf-Id: rkBSMFKdi0fhcFFcdYLrNLgNpiiHWjEmXGMlCyKbhxkv0n7qniTiRg==

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>
    Found 2025-12-30 by HttpPlugin
    Create report
www.bannockburnsurgery.co.ukbannockburnsurgery.co.uk
Fingerprint:
d78fa626207d3af428b469b19abddb42fd3fe211babf1dda0aa97e1ef7d4b508
CN:
www.bannockburnsurgery.co.uk
Key:
RSA-2048
Issuer:
Amazon RSA 2048 M04
Not before:
2025-11-12 00:00
Not after:
2026-12-11 23:59
spinha.net*.spinharta4.comspnharta777.netspinharta19.comspnharta777.app*.spinharta21.comspnharta.app*.spinharta13.comspinharta27.comspnharta.netspinharta6.comspnhrt777.appspinharta7.comspinharta18.comspnhrt777.net*.spinharta11.comspinharta26.com*.spnharta777.com*.spinharta12.com*.ssharta.comspinharta17.com*.spinharta29.com*.ssspharta.com*.spinharta5.comspinharta8.comspnharta777.com*.spinharta23.comssharta.app*.spnhrt.appspnharta.com*.spnharta777.net*.spinharta19.comssharta.net*.spinharta6.comspinharta29.comspinharta16.com*.spinharta22.com*.spnhrt777.netspnhrt.net*.spnhrt777.app*.spnharta777.appspnhrt.appssspharta.com*.sspharta.net*.spharta.netspinharta28.com*.spinharta18.comsxharta.com*.spnhrt.netspinharta9.com*.spinharta7.comspinharta15.comspinharta1.com*.spinharta9.comspinharta23.comssharta.com*.spnhrt.com*.sxharta.com*.spinharta8.com*.spinharta26.com*.spinharta17.comspinharta14.comspinharta2.com*.spnharta.comspinharta13.com*.spnhrt777.com*.spinharta24.comsspharta.netspnhrt.comspinharta21.com*.spinharta25.comspinharta22.com*.spinharta1.comspharta.netspinharta3.com*.spinharta16.com*.spinharta28.comspinharta12.comspinharta25.com*.spinharta15.com*.spinharta2.comspnhrt777.comspinharta4.com*.spnharta.appspinharta24.com*.spinharta27.com*.spnharta.net*.spinha.net*.ssharta.netspinharta11.com*.ssharta.app*.spinharta14.comspinharta5.com*.spinharta3.com
Fingerprint:
8edae75ab260292fda14e3569587c315b3cd2b5c8e3293fb62b4388d3c41ce12
CN:
spinha.net
Key:
RSA-2048
Issuer:
Amazon RSA 2048 M02
Not before:
2025-06-25 00:00
Not after:
2026-07-24 23:59
yzvnja0g97.xyza0thgkklef.xyzo8f4ykliir.xyzwptmhq3eo2.xyz217p08nvp5.xyzijdj9sk32b.xyztk7pwz3zo6.xyz0gs3wjjbke.xyzth46v2rzjw.xyzdxacku523l.xyz
Fingerprint:
20119a6f1026d72d6496a74112eb3c2fa51ac40599650f8934aa50e2dde9fe3b
CN:
yzvnja0g97.xyz
Key:
RSA-2048
Issuer:
Amazon RSA 2048 M03
Not before:
2025-09-10 00:00
Not after:
2026-10-09 23:59
Domain summary

fxmrqz65o07c.xyz 3 spinharta4.com 1 mg1ny6acd.xyz 1 wpw5ce78yn7n.xyz 1 bannockburnsurgery.co.uk 1 spnhrt777.com 1 tk7pwz3zo6.xyz 1

7 recorded

© 2026 LeakIX v2.0.49
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice