Domain mfa.tst.exact.com
Germany
Akamai International B.V.
Software information

Microsoft-IIS Microsoft-IIS 10.0

tcp/443

  • Swagger API description is publicly available
    First seen 2025-10-28 14:24
    Last seen 2026-02-08 00:16
    Open for 102 days

    • Severity: info
      Fingerprint: 5733ddf49ff49cd1aad035499d0efe8d324429092f1eeb2a1bb75bdc15bd49ae

      Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/Health
POST /api/v1/Issue/Send
POST /api/v1/Migrate
POST /api/v1/Register/Confirm
POST /api/v1/Register/Create
POST /api/v1/Register/IsRegistered
POST /api/v1/Register/RememberMe
POST /api/v1/Register/Reset
POST /api/v1/Register/ResetAllRememberMe
POST /api/v1/Verify
      Found on 2026-02-08 00:16
    Create report

  • Open service 23.50.131.159:443 · mfa.tst.exact.com

    2026-01-09 05:51 

    HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Server: Microsoft-IIS/10.0
Request-Context: appId=cid-v1:41fd3575-ea52-4265-b632-f4585aabda75
X-Powered-By: ASP.NET
Expires: Fri, 09 Jan 2026 05:51:42 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 09 Jan 2026 05:51:42 GMT
Content-Length: 24
Connection: close
Set-Cookie: ARRAffinity=eb635ef47d9374f47ee1dde305a3c9fdb204691970dda38684f67a86ac3e26fb;Path=/;HttpOnly;Secure;Domain=tst10898oeimfaweuwa.azurewebsites.net
Set-Cookie: ARRAffinitySameSite=eb635ef47d9374f47ee1dde305a3c9fdb204691970dda38684f67a86ac3e26fb;Path=/;HttpOnly;SameSite=None;Secure;Domain=tst10898oeimfaweuwa.azurewebsites.net
Strict-Transport-Security: max-age=15768000 ; includeSubDomains ; preload


Hello, MFA service here!
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 23.50.131.159:443 · mfa.tst.exact.com

    2026-01-02 04:45 

    HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Server: Microsoft-IIS/10.0
Request-Context: appId=cid-v1:41fd3575-ea52-4265-b632-f4585aabda75
X-Powered-By: ASP.NET
Expires: Fri, 02 Jan 2026 04:45:14 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 02 Jan 2026 04:45:14 GMT
Content-Length: 24
Connection: close
Set-Cookie: ARRAffinity=a8a24b3f62c69b42a4ac96c297efbf3d22b162a6d24c134bc00d69c8acc685ab;Path=/;HttpOnly;Secure;Domain=tst10898oeimfaweuwa.azurewebsites.net
Set-Cookie: ARRAffinitySameSite=a8a24b3f62c69b42a4ac96c297efbf3d22b162a6d24c134bc00d69c8acc685ab;Path=/;HttpOnly;SameSite=None;Secure;Domain=tst10898oeimfaweuwa.azurewebsites.net
Strict-Transport-Security: max-age=15768000 ; includeSubDomains ; preload


Hello, MFA service here!
    Found 2026-01-02 by HttpPlugin
    Create report

  • Open service 23.50.131.159:443 · mfa.tst.exact.com

    2025-12-22 18:26 

    HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Server: Microsoft-IIS/10.0
Request-Context: appId=cid-v1:41fd3575-ea52-4265-b632-f4585aabda75
X-Powered-By: ASP.NET
Expires: Mon, 22 Dec 2025 18:26:17 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 22 Dec 2025 18:26:17 GMT
Content-Length: 24
Connection: close
Set-Cookie: ARRAffinity=eb635ef47d9374f47ee1dde305a3c9fdb204691970dda38684f67a86ac3e26fb;Path=/;HttpOnly;Secure;Domain=tst10898oeimfaweuwa.azurewebsites.net
Set-Cookie: ARRAffinitySameSite=eb635ef47d9374f47ee1dde305a3c9fdb204691970dda38684f67a86ac3e26fb;Path=/;HttpOnly;SameSite=None;Secure;Domain=tst10898oeimfaweuwa.azurewebsites.net
Strict-Transport-Security: max-age=15768000 ; includeSubDomains ; preload


Hello, MFA service here!
    Found 2025-12-22 by HttpPlugin
    Create report
start.exactonline.nlacc.exactonline.beacc.exactonline.co.ukacc.exactonline.deacc.exactonline.nlaccountancy.exact.comaccountants.exact.comapigw.exactonline.beapigw.exactonline.co.ukapigw.exactonline.comapigw.exactonline.deapigw.exactonline.esapigw.exactonline.frapigw.exactonline.nlappcenter.exact.comapps.exactonline.beapps.exactonline.co.ukapps.exactonline.comapps.exactonline.deapps.exactonline.esapps.exactonline.frapps.exactonline.nlappstore.exact.combankgateway.dev.exact.combankgateway.exact.combanking.exact.combe.exactonline.combe2.exactonline.comcdn.lsg.exactonline.comde.exactonline.comde2.exactonline.comdev.bankgateway.exact.comdev.exactonline.bedev.exactonline.co.ukdev.exactonline.dedev.exactonline.nldev.ordergateway.exact.comenrolment.acc.exact.comenrolment.dev.exact.comenrolment.exact.comenrolment.tst.exact.comexperts-comptables.exact.comglobalapps.exactonline.comgrs.acc.exact.comgrs.dev.exact.comgrs.tst.exact.cominvoicegateway.exact.cominvoicing.exact.comlsg.exactonline.commfa.acc.exact.commfa.dev.exact.commfa.exact.commfa.tst.exact.comnl.exactonline.comnl2.exactonline.comnp.tst.exactonline.devone.exactonline.comone2.exactonline.comopenaccounting.exact.comopenaccounting2.exact.comordergateway.dev.exact.comordergateway.exact.compayments.exact.comsandbox.exactonline.nlservices.exactonline.comstaging.exactonline.nlstaging2.exactonline.nlstart.exactonline.bestart.exactonline.co.ukstart.exactonline.comstart.exactonline.destart.exactonline.esstart.exactonline.frstart2.exactonline.bestart2.exactonline.co.ukstart2.exactonline.comstart2.exactonline.destart2.exactonline.esstart2.exactonline.frstart2.exactonline.nlstartnl.acc.exact.comsteuerberater.exact.comtst.exactonline.betst.exactonline.co.uktst.exactonline.detst.exactonline.nl
Fingerprint:
825a73c5a55b00556b843c22a2fd6468d5dcabbbdf0c72e4099b67c7afda831e
CN:
start.exactonline.nl
Key:
ECDSA-256
Issuer:
DigiCert Global G3 TLS ECC SHA384 2020 CA1
Not before:
2025-10-28 00:00
Not after:
2026-05-08 23:59
Domain summary

mfa.tst.exact.com 3

1 recorded
IP summary

23.50.131.159 2

1 recorded

© 2026 LeakIX v2.0.49
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice