LeakIX - Host 104.110.240.144

Host 104.110.240.144

The Netherlands

Akamai International B.V.

Software information

AkamaiGHost

tcp/443

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.110.240.144
Domain: recruitment.pertamina.com
Port: 443
URL: https://recruitment.pertamina.com

First seen 2021-09-14 14:21
Last seen 2026-01-13 19:25
Open for 1582 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d325beceb325beceb325beceb325beceb
```
Found 1 files trough .DS_Store spidering:

/assets
```
  Found on 2026-01-13 19:25
Create report

Open service 104.110.240.144:80 · c.stage.academy-plus.ae

2026-01-26 14:07

HTTP/1.1 302 Moved Temporarily
Content-Length: 0
Location: https://c.stage.academy-plus.ae/
Expires: Mon, 26 Jan 2026 14:08:10 GMT
Cache-Control: max-age=0, no-cache
Pragma: no-cache
Date: Mon, 26 Jan 2026 14:08:10 GMT
Connection: close
Server-Timing: cdn-cache; desc=HIT
Server-Timing: edge; dur=1
Akamai-GRN: 0.8cf06e68.1769436490.cc4579a
Server-Timing: ak_p; desc="1769436490176_1752101004_214194074_17_12040_0_0_-";dur=1

Found 2026-01-26 by HttpPlugin

Create report

Open service 104.110.240.144:443 · c.stage.academy-plus.ae

2026-01-26 14:07
Found 2026-01-26 by HttpPlugin
Create report

Open service 104.110.240.144:443 · recruitment.pertamina.com

2026-01-22 20:02

HTTP/1.0 400 Bad Request
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 312
Expires: Thu, 22 Jan 2026 20:02:04 GMT
Date: Thu, 22 Jan 2026 20:02:04 GMT
Connection: close

Page title: Invalid URL

<HTML><HEAD>
<TITLE>Invalid URL</TITLE>
</HEAD><BODY>
<H1>Invalid URL</H1>
The requested URL "&#91;no&#32;URL&#93;", is invalid.<p>
Reference&#32;&#35;9&#46;9ff06e68&#46;1769112124&#46;247a6fca
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;9&#46;9ff06e68&#46;1769112124&#46;247a6fca</P>
</BODY></HTML>

Found 2026-01-22 by HttpPlugin

Create report

Open service 104.110.240.144:443 · recruitment.pertamina.com

2026-01-08 19:12

HTTP/1.0 400 Bad Request
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 312
Expires: Thu, 08 Jan 2026 19:12:59 GMT
Date: Thu, 08 Jan 2026 19:12:59 GMT
Connection: close

Page title: Invalid URL

<HTML><HEAD>
<TITLE>Invalid URL</TITLE>
</HEAD><BODY>
<H1>Invalid URL</H1>
The requested URL "&#91;no&#32;URL&#93;", is invalid.<p>
Reference&#32;&#35;9&#46;8cf06e68&#46;1767899579&#46;2162702e
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;9&#46;8cf06e68&#46;1767899579&#46;2162702e</P>
</BODY></HTML>

Found 2026-01-08 by HttpPlugin

Create report

Open service 104.110.240.144:80 · vector-limited.nonamesec.com

2026-01-06 11:19

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Location: https://vector-limited.nonamesec.com/
Expires: Tue, 06 Jan 2026 11:20:07 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 06 Jan 2026 11:20:07 GMT
Connection: close

Found 2026-01-06 by HttpPlugin

Create report

Open service 104.110.240.144:443 · vector-limited.nonamesec.com

2026-01-06 11:19

HTTP/1.1 200 OK
Content-Type: text/html
Content-Length: 1190
Last-Modified: Sun, 28 Dec 2025 16:14:18 GMT
ETag: "6951575a-4a6"
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'; upgrade-insecure-requests; block-all-mixed-content; base-uri 'self'; object-src 'none'; form-action 'self'; script-src 'self' 'unsafe-inline' https://static.getbeamer.com https://script.hotjar.com https://static.hotjar.com https://in.hotjar.com https://vc.hotjar.io https://content.hotjar.io https://app.getbeamer.com https://app.pendo.io https://cdn.pendo.io https://pendo-io-static.storage.googleapis.com https://pendo-static-6242423840571392.storage.googleapis.com https://data.pendo.io https://ec.walkme.com https://cdn.walkme.com https://cdn.equalweb.com https://access.equalweb.com https://aacdn.nagich.com https://access.nagich.com https://app.workato.com https://app.eu.workato.com https://app.jp.workato.com https://app.sg.workato.com https://app.au.workato.com https://embedding.workato.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://app.getbeamer.com https://app.pendo.io https://cdn.pendo.io https://pendo-static-6242423840571392.storage.googleapis.com https://ec.walkme.com https://cdn.walkme.com https://cdn.equalweb.com https://access.equalweb.com https://aacdn.nagich.com https://access.nagich.com https://static.hotjar.com https://in.hotjar.com https://vc.hotjar.io https://content.hotjar.io; img-src 'self' data: https://app.getbeamer.com https://in.hotjar.com https://vc.hotjar.io https://script.hotjar.com https://static.hotjar.com https://content.hotjar.io https://cdn.pendo.io https://app.pendo.io https://pendo-static-6242423840571392.storage.googleapis.com https://data.pendo.io https://ec.walkme.com https://cdn.walkme.com https://s3.walkmeusercontent.com https://cdn.equalweb.com https://access.equalweb.com https://aacdn.nagich.com https://access.nagich.com https://validator.swagger.io https://app.workato.com https://app.eu.workato.com https://app.jp.workato.com https://app.sg.workato.com https://app.au.workato.com https://embedding.workato.com https://noname-assets-bucket.s3.amazonaws.com; font-src 'self' data: https://app.getbeamer.com https://fonts.gstatic.com https://fonts.googleapis.com; connect-src 'self' https://backend.getbeamer.com https://in.hotjar.com https://vc.hotjar.io https://script.hotjar.com https://static.hotjar.com https://content.hotjar.io wss://ws.hotjar.com https://app.pendo.io https://data.pendo.io https://pendo-static-6242423840571392.storage.googleapis.com https://ec.walkme.com https://cdn.walkme.com https://ingress.coralogix.us/browser/v1beta/logs https://ingress.us1.rum-ingress-coralogix.com/browser/v1beta/logs https://cdn.equalweb.com https://access.equalweb.com https://aacdn.nagich.com https://access.nagich.com https://app.workato.com https://app.eu.workato.com https://app.jp.workato.com https://app.sg.workato.com https://app.au.workato.com https://embedding.workato.com https://noname-assets-bucket.s3.amazonaws.com; media-src 'self' https://noname-assets-bucket.s3.amazonaws.com; frame-src 'self' https://in.hotjar.com https://vc.hotjar.io https://script.hotjar.com https://static.hotjar.com https://content.hotjar.io https://app.getbeamer.com https://whatsnew.nonamesec.com https://app.pendo.io https://ec.walkme.com https://cdn.walkme.com https://cdn.equalweb.com https://access.equalweb.com https://www.youtube.com https://app.workato.com https://app.eu.workato.com https://app.jp.workato.com https://app.sg.workato.com https://app.au.workato.com https://embedding.workato.com; child-src https://app.pendo.io https://static.hotjar.com https://script.hotjar.com https://in.hotjar.com https://vc.hotjar.io https://content.hotjar.io wss://ws.hotjar.com https://app.workato.com https://app.eu.workato.com https://app.jp.workato.com https://app.sg.workato.com https://app.au.workato.com https://embedding.workato.com https://noname-assets-bucket.s3.amazonaws.com;
X-Content-Type-Options: nosniff
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
Referrer-Policy: strict-origin-when-cross-origin
Accept-Ranges: bytes
Expires: Tue, 06 Jan 2026 11:19:26 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 06 Jan 2026 11:19:26 GMT
Connection: close
Strict-Transport-Security: max-age=86400

Page title: API Security

<!DOCTYPE html>
<html lang="en">

<head>
  <meta charset="UTF-8" />
  <link rel="icon" href="/favicon.ico" />
  <meta name="viewport" content="width=device-width, initial-scale=1.0" />
  <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
  <title>API Security</title>
  <script type="module" crossorigin src="/assets/index-3e91b443.js"></script>
  <link rel="stylesheet" href="/assets/index-fca8c021.css">
</head>

<body>
  <div id="app"></div>
  <script>
    (function (apiKey) {
      (function (p, e, n, d, o) {
        var v, w, x, y, z; o = p[d] = p[d] || {}; o._q = o._q || [];
        v = ['initialize', 'identify', 'updateOptions', 'pageLoad', 'track']; for (w = 0, x = v.length; w < x; ++w)(function (m) {
          o[m] = o[m] || function () { o._q[m === v[0] ? 'unshift' : 'push']([m].concat([].slice.call(arguments, 0))); };
        })(v[w]);
        y = e.createElement(n); y.async = !0; y.src = 'https://cdn.pendo.io/agent/static/' + apiKey + '/pendo.js';
        z = e.getElementsByTagName(n)[0]; z.parentNode.insertBefore(y, z);
      })(window, document, 'script', 'pendo');
    })('5b51d9c1-53d8-45dc-64a5-bb70f9f98137');
  </script>
  
</body>

</html>

Found 2026-01-06 by HttpPlugin

Create report

Open service 104.110.240.144:443 · www.johnsonsbaby.com.co

2026-01-06 11:11

HTTP/1.1 403 Forbidden
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 381
Expires: Tue, 06 Jan 2026 11:11:53 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 06 Jan 2026 11:11:53 GMT
Connection: close
Alt-Svc: h3=":443"; ma=93600
Akamai-GRN: 0.64f06e68.1767697913.19c46c34

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;www&#46;johnsonsbaby&#46;com&#46;co&#47;" on this server.<P>
Reference&#32;&#35;18&#46;64f06e68&#46;1767697913&#46;19c46c34
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;64f06e68&#46;1767697913&#46;19c46c34</P>
</BODY>
</HTML>

Found 2026-01-06 by HttpPlugin

Create report

Open service 104.110.240.144:80 · www.johnsonsbaby.com.co

2026-01-06 11:11

HTTP/1.1 403 Forbidden
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 381
Expires: Tue, 06 Jan 2026 11:12:33 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 06 Jan 2026 11:12:33 GMT
Connection: close
Akamai-GRN: 0.8cf06e68.1767697953.189ac3e7

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;www&#46;johnsonsbaby&#46;com&#46;co&#47;" on this server.<P>
Reference&#32;&#35;18&#46;8cf06e68&#46;1767697953&#46;189ac3e7
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;8cf06e68&#46;1767697953&#46;189ac3e7</P>
</BODY>
</HTML>

Found 2026-01-06 by HttpPlugin

Create report

Open service 104.110.240.144:443 · recruitment.pertamina.com

2026-01-01 20:05

HTTP/1.0 400 Bad Request
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 310
Expires: Thu, 01 Jan 2026 20:05:06 GMT
Date: Thu, 01 Jan 2026 20:05:06 GMT
Connection: close

Page title: Invalid URL

<HTML><HEAD>
<TITLE>Invalid URL</TITLE>
</HEAD><BODY>
<H1>Invalid URL</H1>
The requested URL "&#91;no&#32;URL&#93;", is invalid.<p>
Reference&#32;&#35;9&#46;8cf06e68&#46;1767297906&#46;7b0c43a
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;9&#46;8cf06e68&#46;1767297906&#46;7b0c43a</P>
</BODY></HTML>

Found 2026-01-01 by HttpPlugin

Create report

c.stage.academy-plus.ae

Fingerprint:

6ef8a28738cd06a4af68845a80a15fe36e5ee942b5e89d3754567d7ae3ad1e7e

CN:

c.stage.academy-plus.ae

Key:

ECDSA-256

Issuer:

Not before:

2025-11-21 13:56

Not after:

2026-02-19 13:56

recruitment.pertamina.com

Fingerprint:

27ec7a82ea020f7588eb60233b02ec4a4daf5bbd70b6f221c0823b3ce34f4d1c

CN:

recruitment.pertamina.com

Key:

RSA-2048

Issuer:

R10

Not before:

2025-07-04 23:08

Not after:

2025-10-02 23:08

vector-limited.nonamesec.com

Fingerprint:

48f47fa40a42995ab0c00f4bdaa03f1be0a8e07f8702833ff8eac13238ad7947

CN:

vector-limited.nonamesec.com

Key:

RSA-2048

Issuer:

R13

Not before:

2025-10-28 10:45

Not after:

2026-01-26 10:45

www.johnsonsbaby.com.co

Fingerprint:

0479a9217e10ea47fc68c73d9bd5b4375bb78dbafcf5a9871b98fe002d68ddbd

CN:

www.johnsonsbaby.com.co

Key:

ECDSA-256

Issuer:

Not before:

2025-11-01 09:54

Not after:

2026-01-30 09:54

Domain summary

recruitment.pertamina.com 3 c.stage.academy-plus.ae 1 vector-limited.nonamesec.com 1 www.johnsonsbaby.com.co 1

4 recorded

Host 104.110.240.144

The Netherlands

Software information

MacOS file listing through .DS_Store file

c.stage.academy-plus.ae

recruitment.pertamina.com

vector-limited.nonamesec.com

www.johnsonsbaby.com.co

Domain summary