Host 185.156.26.37
France
Novacio Sasu
Software information

nginx nginx

tcp/443

  • GraphQL introspection is enabled.
    First seen 2025-12-02 22:42
    Last seen 2026-02-01 01:00
    Open for 60 days

    • Severity: medium
      Fingerprint: c2db3a1c40d490db1a0bbaa3be9dc50adeb0c6ba6118edd4e16a6fba7cf16247

      GraphQL introspection enabled at /graphql
Types: 370 (by kind: ENUM: 35, INPUT_OBJECT: 58, INTERFACE: 2, OBJECT: 256, SCALAR: 12, UNION: 7)
Operations:
- Query: Queries | fields: applicationBuildChecksum, applicationConfig, autocompleteSearchAgent, autocompleteSearchGeneric, autocompleteSearchIdoitObjectTypes
- Mutation: Mutations | fields: adminPasswordAuthSend, adminPasswordAuthVerify, channelEmailAdd, channelEmailGuessConfiguration, channelEmailSetNotificationConfiguration
- Subscription: Subscriptions | fields: appMaintenance, checklistTemplateUpdates, configUpdates, linkUpdates, macrosUpdate
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
      Found on 2026-02-01 01:00
      463.3 kBytes
    Create report
  • GraphQL introspection is enabled.
    First seen 2025-12-02 22:42
    Last seen 2026-02-01 01:00
    Open for 60 days

    • Severity: medium
      Fingerprint: c2db3a1c40d490db1a0bbaa3be9dc50adeb0c6ba6118edd4e16a6fba7cf16247

      GraphQL introspection enabled at /graphql
Types: 370 (by kind: ENUM: 35, INPUT_OBJECT: 58, INTERFACE: 2, OBJECT: 256, SCALAR: 12, UNION: 7)
Operations:
- Query: Queries | fields: applicationBuildChecksum, applicationConfig, autocompleteSearchAgent, autocompleteSearchGeneric, autocompleteSearchIdoitObjectTypes
- Mutation: Mutations | fields: adminPasswordAuthSend, adminPasswordAuthVerify, channelEmailAdd, channelEmailGuessConfiguration, channelEmailSetNotificationConfiguration
- Subscription: Subscriptions | fields: appMaintenance, checklistTemplateUpdates, configUpdates, linkUpdates, macrosUpdate
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
      Found on 2026-02-01 01:00
      463.3 kBytes
    Create report

  • Open service 185.156.26.37:443

    2026-01-26 15:20 

    HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 26 Jan 2026 15:20:17 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 73
Connection: close
Cache-Control: no-store
Location: http://helpdesk-stats.novacio.fr:3001/
X-Content-Type-Options: nosniff
X-Frame-Options: deny
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000


<a href="http://helpdesk-stats.novacio.fr:3001/">Moved Permanently</a>.
    Found 2026-01-26 by HttpPlugin
    Create report

  • Open service 185.156.26.37:443 · helpdesk.airelles.com

    2026-01-23 11:27 

    HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Jan 2026 11:27:20 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 2931
Connection: close
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 0
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
link: </assets/application-a5490c9f5e1c06c24451c9c0d5d670c2bb888d3cea0a62c4142257dba8560dcc.css>; rel=preload; as=style; nopush,</assets/application-print-b13bcc6b8c456b67c376ff97d8c717cfa9869ea4412e4f49b65170aa535c5722.css>; rel=preload; as=style; nopush
CSRF-TOKEN: Z6XMq5qkWq2a_uSoa59lCx33rkKIdUHW_Yw19aQTSvdcYlyA-832Pq16rKmbdeAqux8UZ67kRe0FiFPXiFnSEw
ETag: W/"7c3e0fa5c09df9221e73bf83741bf3f5"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: base-uri 'self' https://helpdesk.novacio.fr; default-src 'self' ws: wss: https://images.zammad.com; font-src 'self' data:; img-src * data: blob:; object-src 'none'; script-src 'self' 'unsafe-eval' 'nonce-Ra0Vqhk+RoJMOa4Jq7ThoQ=='; style-src 'self' 'unsafe-inline'; frame-src www.youtube.com player.vimeo.com
Set-Cookie: _zammad_session_a138cfd0f37=adc1a624dd2279c80824c639ced84bae; path=/; secure; HttpOnly
X-Request-Id: 0591b538-44f9-4d86-b8e1-7ca6e156a90d
X-Runtime: 0.028098

Page title: Helpdesk

<!DOCTYPE html>
<html>
<head>
  <meta charset="utf-8">
  <meta name="viewport" content="width=device-width">
  <meta http-equiv="X-UA-Compatible" content="IE=edge" />
  <title>Helpdesk</title>
  <link rel="apple-touch-icon" href="apple-touch-icon.png" />
  <link rel="stylesheet" href="/assets/application-a5490c9f5e1c06c24451c9c0d5d670c2bb888d3cea0a62c4142257dba8560dcc.css" media="all" />
  <link rel="stylesheet" href="/assets/application-print-b13bcc6b8c456b67c376ff97d8c717cfa9869ea4412e4f49b65170aa535c5722.css" media="print" />
  <script nonce="Ra0Vqhk+RoJMOa4Jq7ThoQ==">
//<![CDATA[
    if(window.MSInputMethodContext && document.documentMode){
      var polyfillScriptTag = document.createElement('script');
      polyfillScriptTag.setAttribute('src', '/assets/ie11CustomProperties.min-eb19b438c0f5d2010c250595ef6b0b161dacf892c8a6f772dc121e99fc020a2c.js');
      polyfillScriptTag.setAttribute('nonce', 'Ra0Vqhk+RoJMOa4Jq7ThoQ==');
      document.head.appendChild(polyfillScriptTag);
    }

    try {
      if(window.matchMedia('(prefers-color-scheme: dark)').matches && localStorage.getItem('theme') != 'light' && !window.location.href.includes('/tests_') ){
        document.documentElement.dataset.theme = 'dark';
      }
    } catch (e) { };

//]]>
</script>    <script src="/assets/application-3adb299a07b8e1065ebab73f76dee733b586384066da7632534bc1278807a4e0.js" nonce="Ra0Vqhk+RoJMOa4Jq7ThoQ==" defer="defer"></script>

  <script src="/javascripts/../assets/form/form.js" nonce="Ra0Vqhk+RoJMOa4Jq7ThoQ==" defer="defer" id="zammad_form_script"></script>


  <meta name="csrf-param" content="authenticity_token" />
<meta name="csrf-token" content="6njlfhG9PvFIVCHQFhAOlXR6v6u5s9ZL3HR2zSiQJx3Rv3VVcNSSYn_QadHm-ou00pIFjp8i0nAkcBDvBNq_-Q" />
</head>
<body>

  <!-- svgstore fallback -->
<script nonce="Ra0Vqhk+RoJMOa4Jq7ThoQ==">
//<![CDATA[
  /*
    detect if browser is
    - Chrome 14-20
    - Android Browser 4.1+
    - iOS 6-7
    - Safari 6
    - Edge 12
    - IE 9-11
  */
  window.svgPolyfill = /\bEdge\/12\b|\bTrident\/[567]\b|\bVersion\/7.0 Safari\b/.test(navigator.userAgent) || (navigator.userAgent.match(/AppleWebKit\/(\d+)/) || [])[1] < 537;

  (function (doc) {
    if(!svgPolyfill)
      return

    var scripts = doc.getElementsByTagName('script')
    var script = scripts[scripts.length - 1]
    var xhr = new XMLHttpRequest()
    xhr.onload = function () {
      var div = doc.createElement('div')
      div.innerHTML = this.responseText
      div.style.cssText = 'position: absolute; clip: rect(0, 0, 0, 0); z-index: -1;'
      script.parentNode.insertBefore(div, script)
    }
    xhr.open('get', 'assets/images/icons.svg?1765523134', true)
    xhr.send()
  })(document)

//]]>
</script><div id="app"></div>
<div class="splash">
  <svg class="icon icon-logo"><use xlink:href="assets/images/icons.svg?1765523134#icon-logo" /></svg>
  <div class="splash-title">Loading…</div>
</div>


</body>
</html>
    Found 2026-01-23 by HttpPlugin
    Create report

  • Open service 185.156.26.37:443 · helpdesk.novacio.fr

    2026-01-23 05:28 

    HTTP/1.1 200 OK
Server: nginx
Date: Fri, 23 Jan 2026 05:28:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 2931
Connection: close
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 0
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
link: </assets/application-a5490c9f5e1c06c24451c9c0d5d670c2bb888d3cea0a62c4142257dba8560dcc.css>; rel=preload; as=style; nopush,</assets/application-print-b13bcc6b8c456b67c376ff97d8c717cfa9869ea4412e4f49b65170aa535c5722.css>; rel=preload; as=style; nopush
CSRF-TOKEN: 1V0yAwv9IVZgErWosbWKEA3GCXsNuvllumjjeIl0WQ6xjyneRDbnAg4iJFQ8mKOTYtJma3kp9QzIHwDP1jh-nw
ETag: W/"2a7ba0d9b2505566b88b25d1e376d0d3"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: base-uri 'self' https://helpdesk.novacio.fr; default-src 'self' ws: wss: https://images.zammad.com; font-src 'self' data:; img-src * data: blob:; object-src 'none'; script-src 'self' 'unsafe-eval' 'nonce-HaqYp6J0+0/0+JH9bqBu0A=='; style-src 'self' 'unsafe-inline'; frame-src www.youtube.com player.vimeo.com
Set-Cookie: _zammad_session_a138cfd0f37=d572f3b4fa5924c8b1195ca8999db93d; path=/; secure; HttpOnly
X-Request-Id: 86ff2bdb-1a2f-479b-ad6f-4d8df7b811c0
X-Runtime: 0.030027

Page title: Helpdesk

<!DOCTYPE html>
<html>
<head>
  <meta charset="utf-8">
  <meta name="viewport" content="width=device-width">
  <meta http-equiv="X-UA-Compatible" content="IE=edge" />
  <title>Helpdesk</title>
  <link rel="apple-touch-icon" href="apple-touch-icon.png" />
  <link rel="stylesheet" href="/assets/application-a5490c9f5e1c06c24451c9c0d5d670c2bb888d3cea0a62c4142257dba8560dcc.css" media="all" />
  <link rel="stylesheet" href="/assets/application-print-b13bcc6b8c456b67c376ff97d8c717cfa9869ea4412e4f49b65170aa535c5722.css" media="print" />
  <script nonce="HaqYp6J0+0/0+JH9bqBu0A==">
//<![CDATA[
    if(window.MSInputMethodContext && document.documentMode){
      var polyfillScriptTag = document.createElement('script');
      polyfillScriptTag.setAttribute('src', '/assets/ie11CustomProperties.min-eb19b438c0f5d2010c250595ef6b0b161dacf892c8a6f772dc121e99fc020a2c.js');
      polyfillScriptTag.setAttribute('nonce', 'HaqYp6J0+0/0+JH9bqBu0A==');
      document.head.appendChild(polyfillScriptTag);
    }

    try {
      if(window.matchMedia('(prefers-color-scheme: dark)').matches && localStorage.getItem('theme') != 'light' && !window.location.href.includes('/tests_') ){
        document.documentElement.dataset.theme = 'dark';
      }
    } catch (e) { };

//]]>
</script>    <script src="/assets/application-3adb299a07b8e1065ebab73f76dee733b586384066da7632534bc1278807a4e0.js" nonce="HaqYp6J0+0/0+JH9bqBu0A==" defer="defer"></script>

  <script src="/javascripts/../assets/form/form.js" nonce="HaqYp6J0+0/0+JH9bqBu0A==" defer="defer" id="zammad_form_script"></script>


  <meta name="csrf-param" content="authenticity_token" />
<meta name="csrf-token" content="7nGyG3_zHyQ6jls_F8nDVxW0aSmrYn-5SKJ-hf3kcbaKo6nGMDjZcFS-ysOa5OrUeqAGOd_xc9A61Z0yoqhWJw" />
</head>
<body>

  <!-- svgstore fallback -->
<script nonce="HaqYp6J0+0/0+JH9bqBu0A==">
//<![CDATA[
  /*
    detect if browser is
    - Chrome 14-20
    - Android Browser 4.1+
    - iOS 6-7
    - Safari 6
    - Edge 12
    - IE 9-11
  */
  window.svgPolyfill = /\bEdge\/12\b|\bTrident\/[567]\b|\bVersion\/7.0 Safari\b/.test(navigator.userAgent) || (navigator.userAgent.match(/AppleWebKit\/(\d+)/) || [])[1] < 537;

  (function (doc) {
    if(!svgPolyfill)
      return

    var scripts = doc.getElementsByTagName('script')
    var script = scripts[scripts.length - 1]
    var xhr = new XMLHttpRequest()
    xhr.onload = function () {
      var div = doc.createElement('div')
      div.innerHTML = this.responseText
      div.style.cssText = 'position: absolute; clip: rect(0, 0, 0, 0); z-index: -1;'
      script.parentNode.insertBefore(div, script)
    }
    xhr.open('get', 'assets/images/icons.svg?1765523134', true)
    xhr.send()
  })(document)

//]]>
</script><div id="app"></div>
<div class="splash">
  <svg class="icon icon-logo"><use xlink:href="assets/images/icons.svg?1765523134#icon-logo" /></svg>
  <div class="splash-title">Loading…</div>
</div>


</body>
</html>
    Found 2026-01-23 by HttpPlugin
    Create report
helpdesk-stats.novacio.fr
Fingerprint:
80d9fed5542ee28b339c29b068cec715ddf8b7603f0a576b1b014d8c4f2d7815
CN:
helpdesk-stats.novacio.fr
Key:
RSA-2048
Issuer:
R12
Not before:
2026-01-15 01:43
Not after:
2026-04-15 01:43
helpdesk.airelles.comhelpdesk.novacio.fr
Fingerprint:
6eb455e4d29f5e6cb1ca9772cd3abadf3499ece39ce33b9231eaf13c9318ffd2
CN:
helpdesk.novacio.fr
Key:
RSA-2048
Issuer:
R13
Not before:
2025-12-02 21:43
Not after:
2026-03-02 21:43
Domain summary

helpdesk.airelles.com 1 helpdesk.novacio.fr 1

2 recorded

© 2026 LeakIX v2.0.49
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice