LeakIX - Host 34.170.178.64

Host 34.170.178.64

United States

GOOGLE-CLOUD-PLATFORM

Software information

nginx nginx 1.18.0

tcp/443 tcp/80

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 34.170.178.64
Domain: mantenedor-dev3.tsgenviro.com
Port: 443
URL: https://mantenedor-dev3.tsgenviro.com

First seen 2023-04-22 13:55
Last seen 2026-02-09 13:56
Open for 1024 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0ff409caf14ba0527170ea6cb970ea6cb9
```
Found 3 files trough .DS_Store spidering:

/assets
/css
/js
```
  Found on 2026-02-09 13:56
Create report

Open service 34.170.178.64:443 · mantenedor-dev3.tsgenviro.com

2026-01-23 05:18

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Fri, 23 Jan 2026 05:18:10 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Set-Cookie: PHPSESSID=rl8r7fptcp33f1afcuir8qc8b5; path=/; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN


<script language="javascript">document.location.href='login.php';</script>

Found 2026-01-23 by HttpPlugin

Create report

Open service 34.170.178.64:443 · mantenedor-dev.tsgenviro.com

2026-01-05 05:15

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Mon, 05 Jan 2026 05:15:19 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Set-Cookie: PHPSESSID=9vqpnegaqga6diorfpeu0amnf0; path=/; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN


<script language="javascript">document.location.href='login.php';</script>

Found 2026-01-05 by HttpPlugin

Create report

Open service 34.170.178.64:80 · mantenedor-dev.tsgenviro.com

2026-01-05 05:15

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0
Date: Mon, 05 Jan 2026 05:15:19 GMT
Content-Type: text/html
Content-Length: 169
Connection: close
Location: https://mantenedor-dev.tsgenviro.com/

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>nginx/1.18.0</center>
</body>
</html>

Found 2026-01-05 by HttpPlugin

Create report

Open service 34.170.178.64:443 · dashboard-dev.tsgenviro.com

2026-01-05 05:15

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Mon, 05 Jan 2026 05:15:06 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close

Page title: Login Clientes

<html>
  <head>
    <title>Login Clientes</title>
    <!-- <META http-equiv="refresh" content="0;URL=./login.php"> -->
      <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no, user-scalable=0">
      <script type="text/javascript">
        fetch('https://ipinfo.io/json')
        .then(response => response.json())
        .then(data => {
            const country = data.country;
            const subdomain = window.location.hostname; // Obtiene el subdominio actual
            if (screen.width<800) {
              if (country == "BR" || country == "BRA" || country == "BRAZIL" || country == "Brazil") {
                window.location.href="https://dashboardm.tsgenviro.com/";
              }
              else{
                window.location.href="https://" + subdomain + "/webmovil/app.php";
              }
            }
            else{
              window.location.href="https://" + subdomain + "/login.php";
            }
        })
        .catch(error => {
          if (screen.width<800) {
            window.location.href="https://" + subdomain + "/webmovil/app.php";
          }
          else{
            window.location.href="https://" + subdomain + "/login.php";
          }
        });
        
        </script>
  </head>
  <body bgcolor="#ffffff">
  </body>
</html>

Found 2026-01-05 by HttpPlugin

Create report

Open service 34.170.178.64:80 · dashboard-dev.tsgenviro.com

2026-01-05 05:15

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0
Date: Mon, 05 Jan 2026 05:15:06 GMT
Content-Type: text/html
Content-Length: 169
Connection: close
Location: https://dashboard-dev.tsgenviro.com/

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>nginx/1.18.0</center>
</body>
</html>

Found 2026-01-05 by HttpPlugin

Create report

mantenedor-dev3.tsgenviro.com

Fingerprint:

31e0226b4828b8b4e4b0b6349dcac0583c1be3f52426056275aa9ae798cd697c

CN:

mantenedor-dev3.tsgenviro.com

Key:

RSA-2048

Issuer:

Not before:

2023-11-14 17:31

Not after:

2024-02-12 17:31

mantenedor-dev.tsgenviro.com

Fingerprint:

9399b2c419aabe5fd54674887119d5f1ee28bfd35a84bf5ddeca1bd1bcd0428a

CN:

mantenedor-dev.tsgenviro.com

Key:

RSA-2048

Issuer:

R12

Not before:

2026-01-05 04:15

Not after:

2026-04-05 04:15

dashboard-dev.tsgenviro.com

Fingerprint:

1626b7d07f79906d555303597fddcb329caf05b313a19145b29b687036b261b8

CN:

dashboard-dev.tsgenviro.com

Key:

RSA-2048

Issuer:

R13

Not before:

2026-01-05 04:15

Not after:

2026-04-05 04:15

Domain summary

mantenedor-dev3.tsgenviro.com 1 mantenedor-dev.tsgenviro.com 1 dashboard-dev.tsgenviro.com 1

3 recorded

Host 34.170.178.64

United States

Software information

MacOS file listing through .DS_Store file

Create report

Create report

Create report

Create report

Create report

mantenedor-dev3.tsgenviro.com

mantenedor-dev.tsgenviro.com

dashboard-dev.tsgenviro.com

Domain summary