LeakIX - Host 20.105.224.8

Host 20.105.224.8

The Netherlands

MICROSOFT-CORP-MSN-AS-BLOCK

Software information

Microsoft-IIS 10.0

tcp/443 tcp/80

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 20.105.224.8
Domain: integrationapi-test.flexforcemonkey.com
Port: 443
URL: https://integrationapi-test.flexforcemonkey.com

First seen 2026-01-06 15:01
Last seen 2026-02-09 14:33
Open for 33 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 14:33
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 20.105.224.8
Domain: integrationapi.test.netive-supplierhub.com
Port: 443
URL: https://integrationapi.test.netive-supplierhub.com

First seen 2026-01-02 17:04
Last seen 2026-01-16 15:09
Open for 13 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-16 15:09
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 20.105.224.8
Domain: rc-16-53-energydemo-slas.syndev.dnv.com
Port: 443
URL: https://rc-16-53-energydemo-slas.syndev.dnv.com

First seen 2025-11-27 16:09
Last seen 2026-01-02 23:00
Open for 36 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-02 23:00
Create report

Open service 20.105.224.8:80 · hub.randersbolig.ntifm.com

2026-02-04 10:17

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Date: Wed, 04 Feb 2026 10:17:42 GMT
Location: https://hub.randersbolig.ntifm.com/

Found 2026-02-04 by HttpPlugin

Create report

Open service 20.105.224.8:80 · admin.qa.makino.eu

2026-01-26 07:46

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Date: Mon, 26 Jan 2026 07:46:59 GMT
Location: https://admin.qa.makino.eu/

Found 2026-01-26 by HttpPlugin

Create report

Open service 20.105.224.8:443 · admin.qa.makino.eu

2026-01-26 07:46

HTTP/1.1 302 Found
Content-Length: 123
Connection: close
Content-Type: text/html; charset=utf-8
Date: Mon, 26 Jan 2026 07:46:58 GMT
Server: Microsoft-IIS/10.0
Location: /admin
Set-Cookie: ARRAffinity=830a19859d46b45c2acd5250eeed051766db150cc39b1f8ec4f7ff401f40633f;Path=/;HttpOnly;Secure;Domain=admin.qa.makino.eu
Set-Cookie: ARRAffinitySameSite=830a19859d46b45c2acd5250eeed051766db150cc39b1f8ec4f7ff401f40633f;Path=/;HttpOnly;SameSite=None;Secure;Domain=admin.qa.makino.eu
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff

Page title: Object moved

<html><head><title>Object moved</title></head><body>
<h2>Object moved to <a href="/admin">here</a>.</h2>
</body></html>

Found 2026-01-26 by HttpPlugin

Create report

Open service 20.105.224.8:80 · qa.makino.com.sg

2026-01-26 07:37

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Date: Mon, 26 Jan 2026 07:38:13 GMT
Location: https://qa.makino.com.sg/

Found 2026-01-26 by HttpPlugin

Create report

Open service 20.105.224.8:443 · qa.makino.com.sg

2026-01-26 07:37

HTTP/1.1 401 Unauthorized
Content-Length: 0
Connection: close
Date: Mon, 26 Jan 2026 07:38:14 GMT
Set-Cookie: ARRAffinity=830a19859d46b45c2acd5250eeed051766db150cc39b1f8ec4f7ff401f40633f;Path=/;HttpOnly;Secure;Domain=qa.makino.com.sg
Set-Cookie: ARRAffinitySameSite=830a19859d46b45c2acd5250eeed051766db150cc39b1f8ec4f7ff401f40633f;Path=/;HttpOnly;SameSite=None;Secure;Domain=qa.makino.com.sg
WWW-Authenticate: Basic Realm=SecureZone
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Feature-Policy: camera 'none'; microphone 'none'; payment 'none';

Found 2026-01-26 by HttpPlugin

Create report

Open service 20.105.224.8:80 · admin.qa.makino.com.sg

2026-01-26 07:36

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Date: Mon, 26 Jan 2026 07:37:21 GMT
Location: https://admin.qa.makino.com.sg/

Found 2026-01-26 by HttpPlugin

Create report

Open service 20.105.224.8:443 · admin.qa.makino.com.sg

2026-01-26 07:36

HTTP/1.1 302 Found
Content-Length: 123
Connection: close
Content-Type: text/html; charset=utf-8
Date: Mon, 26 Jan 2026 07:37:21 GMT
Server: Microsoft-IIS/10.0
Location: /admin
Set-Cookie: ARRAffinity=830a19859d46b45c2acd5250eeed051766db150cc39b1f8ec4f7ff401f40633f;Path=/;HttpOnly;Secure;Domain=admin.qa.makino.com.sg
Set-Cookie: ARRAffinitySameSite=830a19859d46b45c2acd5250eeed051766db150cc39b1f8ec4f7ff401f40633f;Path=/;HttpOnly;SameSite=None;Secure;Domain=admin.qa.makino.com.sg
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff

Page title: Object moved

<html><head><title>Object moved</title></head><body>
<h2>Object moved to <a href="/admin">here</a>.</h2>
</body></html>

Found 2026-01-26 by HttpPlugin

Create report

Open service 20.105.224.8:443 · qa.makino.eu

2026-01-26 07:36

HTTP/1.1 401 Unauthorized
Content-Length: 0
Connection: close
Date: Mon, 26 Jan 2026 07:37:19 GMT
Set-Cookie: ARRAffinity=830a19859d46b45c2acd5250eeed051766db150cc39b1f8ec4f7ff401f40633f;Path=/;HttpOnly;Secure;Domain=qa.makino.eu
Set-Cookie: ARRAffinitySameSite=830a19859d46b45c2acd5250eeed051766db150cc39b1f8ec4f7ff401f40633f;Path=/;HttpOnly;SameSite=None;Secure;Domain=qa.makino.eu
WWW-Authenticate: Basic Realm=SecureZone
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Feature-Policy: camera 'none'; microphone 'none'; payment 'none';

Found 2026-01-26 by HttpPlugin

Create report

Open service 20.105.224.8:80 · qa.makino.eu

2026-01-26 07:36

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Date: Mon, 26 Jan 2026 07:37:20 GMT
Location: https://qa.makino.eu/

Found 2026-01-26 by HttpPlugin

Create report

Open service 20.105.224.8:443 · waws-prod-am2-549.api.azurewebsites.windows.net

2026-01-24 09:47

HTTP/1.1 404 Site Not Found
Content-Length: 2667
Connection: close
Content-Type: text/html
Date: Sat, 24 Jan 2026 09:47:50 GMT

Page title: Microsoft Azure Web App - Error 404

<!DOCTYPE html>
<html>
<head>
    <title>Microsoft Azure Web App - Error 404</title>
    <style type="text/css">
        html {
            height: 100%;
            width: 100%;
        }

        #feature {
            width: 960px;
            margin: 75px auto 0 auto;
            overflow: auto;
        }

        #content {
            font-family: "Segoe UI";
            font-weight: normal;
            font-size: 22px;
            color: #ffffff;
            float: left;
            margin-top: 68px;
            margin-left: 0px;
            vertical-align: middle;
        }

            #content h1 {
                font-family: "Segoe UI Light";
                color: #ffffff;
                font-weight: normal;
                font-size: 60px;
                line-height: 48pt;
                width: 800px;
            }

        a, a:visited, a:active, a:hover {
            color: #ffffff;
        }

        #content a.button {
            background: #0DBCF2;
            border: 1px solid #FFFFFF;
            color: #FFFFFF;
            display: inline-block;
            font-family: Segoe UI;
            font-size: 24px;
            line-height: 46px;
            margin-top: 10px;
            padding: 0 15px 3px;
            text-decoration: none;
        }

            #content a.button img {
                float: right;
                padding: 10px 0 0 15px;
            }

            #content a.button:hover {
                background: #1C75BC;
            }
    </style>
    <script type="text/javascript">
        function toggle_visibility(id) {
            var e = document.getElementById(id);
            if (e.style.display == 'block')
                e.style.display = 'none';
            else
                e.style.display = 'block';
        }
    </script>
</head>
<body bgcolor="#00abec">
    <div id="feature">
        <div id="content">
            <h1>404 Web Site not found.</h1>
            <p>You may be seeing this error due to one of the reasons listed below :</p>
            <ul>
                <li>Custom domain has not been configured inside Azure. See <a href="https://go.microsoft.com/fwlink/?linkid=2194614">how to map an existing domain</a> to resolve this.</li>
                <li>Client cache is still pointing the domain to old IP address. Clear the cache by running the command <i>ipconfig/flushdns.</i></li>
            </ul>
            <p>Checkout <a href="https://go.microsoft.com/fwlink/?linkid=2194451">App Service Domain FAQ</a> for more questions.</p>
        </div>
     </div>
</body>
</html>

Found 2026-01-24 by HttpPlugin

Create report

Open service 20.105.224.8:80 · waws-prod-am2-549.api.azurewebsites.windows.net

2026-01-24 09:47

HTTP/1.1 404 Site Not Found
Content-Length: 2667
Connection: close
Content-Type: text/html
Date: Sat, 24 Jan 2026 09:47:49 GMT

Page title: Microsoft Azure Web App - Error 404

<!DOCTYPE html>
<html>
<head>
    <title>Microsoft Azure Web App - Error 404</title>
    <style type="text/css">
        html {
            height: 100%;
            width: 100%;
        }

        #feature {
            width: 960px;
            margin: 75px auto 0 auto;
            overflow: auto;
        }

        #content {
            font-family: "Segoe UI";
            font-weight: normal;
            font-size: 22px;
            color: #ffffff;
            float: left;
            margin-top: 68px;
            margin-left: 0px;
            vertical-align: middle;
        }

            #content h1 {
                font-family: "Segoe UI Light";
                color: #ffffff;
                font-weight: normal;
                font-size: 60px;
                line-height: 48pt;
                width: 800px;
            }

        a, a:visited, a:active, a:hover {
            color: #ffffff;
        }

        #content a.button {
            background: #0DBCF2;
            border: 1px solid #FFFFFF;
            color: #FFFFFF;
            display: inline-block;
            font-family: Segoe UI;
            font-size: 24px;
            line-height: 46px;
            margin-top: 10px;
            padding: 0 15px 3px;
            text-decoration: none;
        }

            #content a.button img {
                float: right;
                padding: 10px 0 0 15px;
            }

            #content a.button:hover {
                background: #1C75BC;
            }
    </style>
    <script type="text/javascript">
        function toggle_visibility(id) {
            var e = document.getElementById(id);
            if (e.style.display == 'block')
                e.style.display = 'none';
            else
                e.style.display = 'block';
        }
    </script>
</head>
<body bgcolor="#00abec">
    <div id="feature">
        <div id="content">
            <h1>404 Web Site not found.</h1>
            <p>You may be seeing this error due to one of the reasons listed below :</p>
            <ul>
                <li>Custom domain has not been configured inside Azure. See <a href="https://go.microsoft.com/fwlink/?linkid=2194614">how to map an existing domain</a> to resolve this.</li>
                <li>Client cache is still pointing the domain to old IP address. Clear the cache by running the command <i>ipconfig/flushdns.</i></li>
            </ul>
            <p>Checkout <a href="https://go.microsoft.com/fwlink/?linkid=2194451">App Service Domain FAQ</a> for more questions.</p>
        </div>
     </div>
</body>
</html>

Found 2026-01-24 by HttpPlugin

Create report

Open service 20.105.224.8:443 · peeq-commerce-tryout.westeurope.dynamics365commerce.ms

2026-01-23 17:03

HTTP/1.1 200 OK
Connection: close
Content-Type: text/html; charset=utf-8
Date: Fri, 23 Jan 2026 17:04:05 GMT
Access-Control-Allow-Methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
Access-Control-Expose-Headers: Request-Context
Cache-Control: private
Transfer-Encoding: chunked
X-Activity-Id: 0cdc777b-f0a3-4d6e-8d58-cd42c4f804fc
MS-CV: ADxfikf9gkqptrGZ.0
X-AppVersion: 1.0.9375.15163
ms-operation-id: ac9447cfb35a1c3787c76ed790c3349e
P3P: CP="CAO CONi OTR OUR DEM ONL"
Request-Context: appId=cid-v1:2be0ae63-e19c-4db3-8ae5-266670953e78
X-XSS-Protection: 1; mode=block


Unsupported host.

Found 2026-01-23 by HttpPlugin

Create report

Open service 20.105.224.8:80 · peeq-commerce-tryout.dynamics365commerce.ms

2026-01-23 17:03

HTTP/1.1 301 Moved Permanently
Connection: close
Content-Type: text/html; charset=utf-8
Date: Fri, 23 Jan 2026 17:04:05 GMT
Access-Control-Allow-Methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
Access-Control-Expose-Headers: Request-Context
Cache-Control: private
Location: https://peeq-commerce-tryout.dynamics365commerce.ms/
Transfer-Encoding: chunked
X-Activity-Id: 1fa22dc4-7898-456b-9b5b-c3ef6b60b16a
MS-CV: 4ffGMvGVA06D0jQi.0
X-AppVersion: 1.0.9375.15163
ms-operation-id: 71e2f9752d751e0e1669cf6b5534360e
P3P: CP="CAO CONi OTR OUR DEM ONL"
Request-Context: appId=cid-v1:2be0ae63-e19c-4db3-8ae5-266670953e78
X-XSS-Protection: 1; mode=block

Page title: Object moved

<html><head><title>Object moved</title></head><body>
<h2>Object moved to <a href="https://peeq-commerce-tryout.dynamics365commerce.ms/">here</a>.</h2>
</body></html>

Found 2026-01-23 by HttpPlugin

Create report

Open service 20.105.224.8:443 · peeq-commerce-tryout.dynamics365commerce.ms

2026-01-23 17:03

HTTP/1.1 404 Not Found
Content-Length: 1344
Connection: close
Content-Type: text/html; charset=utf-8
Date: Fri, 23 Jan 2026 17:04:06 GMT
Access-Control-Allow-Methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
Access-Control-Expose-Headers: Request-Context
Cache-Control: no-cache, no-store
Expires: -1
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Activity-Id: 7a5352f1-c604-4c5d-a118-fa072a3a3200
MS-CV: HXF9qhAyuUOPlJXF.0
X-AppVersion: 1.0.9375.15163
ms-operation-id: 9def1e1925e25b953a424ea6de078e54
P3P: CP="CAO CONi OTR OUR DEM ONL"
X-UA-Compatible: IE=Edge;chrome=1
X-UA-Compatible: IE=Edge;chrome=1
Accept-CH: Sec-CH-UA-Platform
X-Content-Type-Options: nosniff
X-Content-Type-Options: nosniff
Request-Context: appId=cid-v1:2be0ae63-e19c-4db3-8ae5-266670953e78
X-XSS-Protection: 1; mode=block


<html><head data-plat="v:20250901.1,oId:9def1e1925e25b953a424ea6de078e54,env:,dc:WestEurope,tId:peeq-commerce-tryout,cIId:cad27648-3205-4800-9ae7-10f4281b0d45,tc:1,sd:0,sn:onerf,uId:,pId:,nlt:0,chanId:0,catId:0"><style>html, body {width: 100%;height: 95%;padding: 0;margin: 0;background: rgba(34, 34, 34, 0.14);}{    margin-bottom: 10px;}.hs-wrap{max-width: 570px; margin: 0 auto; padding: 47px 30px 53px; position: relative;text-align: center;-webkit-box-sizing: border-box;box-sizing: border-box;border: 1px solid rgba(255,255,255, .5);}.hs-line-13{ margin-top: 0;position: relative;font-size: 96px;line-height: 1;text-transform: none;letter-spacing: 0.3em;}.home-text{display: table-cell;height: 100%;vertical-align: middle;}.hs-line-4{margin-top: 0;position: relative;font-size: 14px;font-weight: 400;text-transform: none;letter-spacing: 3px;color: rgba(255,255,255, .85);}.home-content{   display: table;   width: 100%;   height: 100%;   text-align: center;}</style></head><div class='home-content container'><div class='home-text'><div class='hs-cont'><div class='hs-wrap'><div class='hs-line-13  mb-10'><font face='Segoe UI'>404</font></div><br><div class='hs-line-4 font-alt mb-40'><font face='Segoe UI'>The page you were looking for could not be found.</font></div><div class='local-scroll'></div></div></div></div></div></body></html>

Found 2026-01-23 by HttpPlugin

Create report

Open service 20.105.224.8:80 · peeq-commerce-tryout.westeurope.dynamics365commerce.ms

2026-01-23 17:03

HTTP/1.1 200 OK
Connection: close
Content-Type: text/html; charset=utf-8
Date: Fri, 23 Jan 2026 17:04:05 GMT
Access-Control-Allow-Methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
Access-Control-Expose-Headers: Request-Context
Cache-Control: private
Transfer-Encoding: chunked
X-Activity-Id: 2c7cffbd-4751-4c85-b4b3-e934eefbd2ca
MS-CV: C1lAZ+Ozq0m2tkMA.0
X-AppVersion: 1.0.9375.15163
ms-operation-id: 21e5166e2ec68aa2cf07afc6d5873f41
P3P: CP="CAO CONi OTR OUR DEM ONL"
Request-Context: appId=cid-v1:2be0ae63-e19c-4db3-8ae5-266670953e78
X-XSS-Protection: 1; mode=block


Unsupported host.

Found 2026-01-23 by HttpPlugin

Create report

Open service 20.105.224.8:443 · rc-16-53-energydemo-slas.syndev.dnv.com

2026-01-23 09:03

HTTP/1.1 404 Site Not Found
Content-Length: 2667
Connection: close
Content-Type: text/html
Date: Fri, 23 Jan 2026 09:04:07 GMT

Page title: Microsoft Azure Web App - Error 404

<!DOCTYPE html>
<html>
<head>
    <title>Microsoft Azure Web App - Error 404</title>
    <style type="text/css">
        html {
            height: 100%;
            width: 100%;
        }

        #feature {
            width: 960px;
            margin: 75px auto 0 auto;
            overflow: auto;
        }

        #content {
            font-family: "Segoe UI";
            font-weight: normal;
            font-size: 22px;
            color: #ffffff;
            float: left;
            margin-top: 68px;
            margin-left: 0px;
            vertical-align: middle;
        }

            #content h1 {
                font-family: "Segoe UI Light";
                color: #ffffff;
                font-weight: normal;
                font-size: 60px;
                line-height: 48pt;
                width: 800px;
            }

        a, a:visited, a:active, a:hover {
            color: #ffffff;
        }

        #content a.button {
            background: #0DBCF2;
            border: 1px solid #FFFFFF;
            color: #FFFFFF;
            display: inline-block;
            font-family: Segoe UI;
            font-size: 24px;
            line-height: 46px;
            margin-top: 10px;
            padding: 0 15px 3px;
            text-decoration: none;
        }

            #content a.button img {
                float: right;
                padding: 10px 0 0 15px;
            }

            #content a.button:hover {
                background: #1C75BC;
            }
    </style>
    <script type="text/javascript">
        function toggle_visibility(id) {
            var e = document.getElementById(id);
            if (e.style.display == 'block')
                e.style.display = 'none';
            else
                e.style.display = 'block';
        }
    </script>
</head>
<body bgcolor="#00abec">
    <div id="feature">
        <div id="content">
            <h1>404 Web Site not found.</h1>
            <p>You may be seeing this error due to one of the reasons listed below :</p>
            <ul>
                <li>Custom domain has not been configured inside Azure. See <a href="https://go.microsoft.com/fwlink/?linkid=2194614">how to map an existing domain</a> to resolve this.</li>
                <li>Client cache is still pointing the domain to old IP address. Clear the cache by running the command <i>ipconfig/flushdns.</i></li>
            </ul>
            <p>Checkout <a href="https://go.microsoft.com/fwlink/?linkid=2194451">App Service Domain FAQ</a> for more questions.</p>
        </div>
     </div>
</body>
</html>

Found 2026-01-23 by HttpPlugin

Create report

Open service 20.105.224.8:443 · qa.makino.com

2026-01-23 07:52

HTTP/1.1 401 Unauthorized
Content-Length: 0
Connection: close
Date: Fri, 23 Jan 2026 07:52:31 GMT
Set-Cookie: ARRAffinity=e37f4405361523875c4c355a795e917ae7821a1a0d0cabe60b5b39fae7fd5264;Path=/;HttpOnly;Secure;Domain=qa.makino.com
Set-Cookie: ARRAffinitySameSite=e37f4405361523875c4c355a795e917ae7821a1a0d0cabe60b5b39fae7fd5264;Path=/;HttpOnly;SameSite=None;Secure;Domain=qa.makino.com
WWW-Authenticate: Basic Realm=SecureZone
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Feature-Policy: camera 'none'; microphone 'none'; payment 'none';

Found 2026-01-23 by HttpPlugin

Create report

Open service 20.105.224.8:80 · qa.makino.com

2026-01-23 07:52

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Date: Fri, 23 Jan 2026 07:52:30 GMT
Location: https://qa.makino.com/

Found 2026-01-23 by HttpPlugin

Create report

Open service 20.105.224.8:443 · admin.qa.makino.com

2026-01-23 07:38

HTTP/1.1 302 Found
Content-Length: 123
Connection: close
Content-Type: text/html; charset=utf-8
Date: Fri, 23 Jan 2026 07:38:40 GMT
Server: Microsoft-IIS/10.0
Location: /admin
Set-Cookie: ARRAffinity=e37f4405361523875c4c355a795e917ae7821a1a0d0cabe60b5b39fae7fd5264;Path=/;HttpOnly;Secure;Domain=admin.qa.makino.com
Set-Cookie: ARRAffinitySameSite=e37f4405361523875c4c355a795e917ae7821a1a0d0cabe60b5b39fae7fd5264;Path=/;HttpOnly;SameSite=None;Secure;Domain=admin.qa.makino.com
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff

Page title: Object moved

<html><head><title>Object moved</title></head><body>
<h2>Object moved to <a href="/admin">here</a>.</h2>
</body></html>

Found 2026-01-23 by HttpPlugin

Create report

Open service 20.105.224.8:80 · admin.qa.makino.com

2026-01-23 07:38

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Date: Fri, 23 Jan 2026 07:38:39 GMT
Location: https://admin.qa.makino.com/

Found 2026-01-23 by HttpPlugin

Create report

Open service 20.105.224.8:443 · feapi.turner.streamity.com

2026-01-22 19:42

HTTP/1.1 200 OK
Content-Length: 150093
Connection: close
Content-Type: text/html
Date: Thu, 22 Jan 2026 19:43:11 GMT
Request-Context: appId=cid-v1:650ca60f-ee44-4fc9-b9be-a5c72b2f698a

Page title: Your Azure Function App is up and running.

<!DOCTYPE html>
<html>
<head>
    <title>Your Azure Function App is up and running.</title>
    <style type="text/css">
        @font-face {
            font-family: 'SegoeLight';
            src: url(//:) format('no404'), url(data:font/woff;charset=utf-8;base64,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

Found 2026-01-22 by HttpPlugin

Create report

Open service 20.105.224.8:443 · sales-demo.westeurope.dynamics365commerce.ms

2026-01-21 15:56

HTTP/1.1 200 OK
Connection: close
Content-Type: text/html; charset=utf-8
Date: Wed, 21 Jan 2026 15:56:39 GMT
Access-Control-Allow-Methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
Access-Control-Expose-Headers: Request-Context
Cache-Control: private
Transfer-Encoding: chunked
X-Activity-Id: 72a315d2-5631-422f-aabb-1a5fba10b4eb
MS-CV: 2XQ4xHGmh06UcT9e.0
X-AppVersion: 1.0.9375.15163
ms-operation-id: b60c35a5074e0bf80b583aba8ec094c5
P3P: CP="CAO CONi OTR OUR DEM ONL"
Request-Context: appId=cid-v1:2be0ae63-e19c-4db3-8ae5-266670953e78
X-XSS-Protection: 1; mode=block


Unsupported host.

Found 2026-01-21 by HttpPlugin

Create report

Open service 20.105.224.8:80 · sales-demo.dynamics365commerce.ms

2026-01-21 15:56

HTTP/1.1 301 Moved Permanently
Connection: close
Content-Type: text/html; charset=utf-8
Date: Wed, 21 Jan 2026 15:56:39 GMT
Access-Control-Allow-Methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
Access-Control-Expose-Headers: Request-Context
Cache-Control: private
Location: https://sales-demo.dynamics365commerce.ms/
Transfer-Encoding: chunked
X-Activity-Id: 9212e44b-bdb7-4b05-b542-b7d56d74f468
MS-CV: WHupWsBIXE2uPaQw.0
X-AppVersion: 1.0.9375.15163
ms-operation-id: 779af3c5af20cba06410d76f04ab3795
P3P: CP="CAO CONi OTR OUR DEM ONL"
Request-Context: appId=cid-v1:2be0ae63-e19c-4db3-8ae5-266670953e78
X-XSS-Protection: 1; mode=block

Page title: Object moved

<html><head><title>Object moved</title></head><body>
<h2>Object moved to <a href="https://sales-demo.dynamics365commerce.ms/">here</a>.</h2>
</body></html>

Found 2026-01-21 by HttpPlugin

Create report

Open service 20.105.224.8:80 · sales-demo.westeurope.dynamics365commerce.ms

2026-01-21 15:56

HTTP/1.1 200 OK
Connection: close
Content-Type: text/html; charset=utf-8
Date: Wed, 21 Jan 2026 15:56:38 GMT
Access-Control-Allow-Methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
Access-Control-Expose-Headers: Request-Context
Cache-Control: private
Transfer-Encoding: chunked
X-Activity-Id: b7cb0c17-0940-4515-a21f-8218c2dafc55
MS-CV: W4IZd0sK9UKkOXrY.0
X-AppVersion: 1.0.9375.15163
ms-operation-id: e043f3ef9253326158f0b8fc0a0b3b2f
P3P: CP="CAO CONi OTR OUR DEM ONL"
Request-Context: appId=cid-v1:2be0ae63-e19c-4db3-8ae5-266670953e78
X-XSS-Protection: 1; mode=block


Unsupported host.

Found 2026-01-21 by HttpPlugin

Create report

Open service 20.105.224.8:443 · sales-demo.dynamics365commerce.ms

2026-01-21 15:56

HTTP/1.1 404 Not Found
Content-Length: 1334
Connection: close
Content-Type: text/html; charset=utf-8
Date: Wed, 21 Jan 2026 15:56:39 GMT
Access-Control-Allow-Methods: HEAD,GET,POST,PATCH,PUT,OPTIONS
Access-Control-Expose-Headers: Request-Context
Cache-Control: no-cache, no-store
Expires: -1
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Activity-Id: d432ce93-44e3-49c1-80e7-5cade2223165
MS-CV: acsIQ0TGeEq5OSRz.0
X-AppVersion: 1.0.9375.15163
ms-operation-id: 2addffa4a3dea67f10f8df23be200382
P3P: CP="CAO CONi OTR OUR DEM ONL"
X-UA-Compatible: IE=Edge;chrome=1
X-UA-Compatible: IE=Edge;chrome=1
Accept-CH: Sec-CH-UA-Platform
X-Content-Type-Options: nosniff
X-Content-Type-Options: nosniff
Request-Context: appId=cid-v1:2be0ae63-e19c-4db3-8ae5-266670953e78
X-XSS-Protection: 1; mode=block


<html><head data-plat="v:20250901.1,oId:2addffa4a3dea67f10f8df23be200382,env:,dc:WestEurope,tId:sales-demo,cIId:cad27648-3205-4800-9ae7-10f4281b0d45,tc:1,sd:0,sn:onerf,uId:,pId:,nlt:0,chanId:0,catId:0"><style>html, body {width: 100%;height: 95%;padding: 0;margin: 0;background: rgba(34, 34, 34, 0.14);}{    margin-bottom: 10px;}.hs-wrap{max-width: 570px; margin: 0 auto; padding: 47px 30px 53px; position: relative;text-align: center;-webkit-box-sizing: border-box;box-sizing: border-box;border: 1px solid rgba(255,255,255, .5);}.hs-line-13{ margin-top: 0;position: relative;font-size: 96px;line-height: 1;text-transform: none;letter-spacing: 0.3em;}.home-text{display: table-cell;height: 100%;vertical-align: middle;}.hs-line-4{margin-top: 0;position: relative;font-size: 14px;font-weight: 400;text-transform: none;letter-spacing: 3px;color: rgba(255,255,255, .85);}.home-content{   display: table;   width: 100%;   height: 100%;   text-align: center;}</style></head><div class='home-content container'><div class='home-text'><div class='hs-cont'><div class='hs-wrap'><div class='hs-line-13  mb-10'><font face='Segoe UI'>404</font></div><br><div class='hs-line-4 font-alt mb-40'><font face='Segoe UI'>The page you were looking for could not be found.</font></div><div class='local-scroll'></div></div></div></div></div></body></html>

Found 2026-01-21 by HttpPlugin

Create report

Open service 20.105.224.8:443 · admin.askiraski.fi

2026-01-12 21:55

HTTP/1.1 200 OK
Content-Length: 20577
Connection: close
Content-Type: text/html
Date: Mon, 12 Jan 2026 21:56:36 GMT
Server: Microsoft-IIS/10.0
Set-Cookie: ARRAffinity=55c266085e977e859e7de3e14495c483adbc695926ce46b6f5eb2d4cd73c26da;Path=/;HttpOnly;Secure;Domain=admin.askiraski.fi
Set-Cookie: ARRAffinitySameSite=55c266085e977e859e7de3e14495c483adbc695926ce46b6f5eb2d4cd73c26da;Path=/;HttpOnly;SameSite=None;Secure;Domain=admin.askiraski.fi
Vary: Accept
X-Powered-By: ASP.NET

Page title: Aski Raski Finnish Admin

<!DOCTYPE html>
<!--[if lt IE 7]>      <html lang="en" ng-app="askiRaski" class="no-js lt-ie9 lt-ie8 lt-ie7"> <![endif]-->
<!--[if IE 7]>         <html lang="en" ng-app="askiRaski" class="no-js lt-ie9 lt-ie8"> <![endif]-->
<!--[if IE 8]>         <html lang="en" ng-app="askiRaski" class="no-js lt-ie9"> <![endif]-->
<!--[if gt IE 8]><!-->
<html lang="en" ng-app="askiRaski" class="no-js">
<!--<![endif]-->
<head>
    <base href="/" />
    <meta charset="utf-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge">

    <title>Aski Raski Finnish Admin</title>
    <meta name="description" content="">
    <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
    <link rel="stylesheet" href="app/bower_components/tether/dist/css/tether.min.css">
    <link rel="stylesheet" href="app/bower_components/bootstrap/dist/css/bootstrap.min.css">
    <link rel="stylesheet" href="app/bower_components/font-awesome/css/font-awesome.min.css">
    <link rel="stylesheet" href="app/bower_components/ng-sortable/dist/ng-sortable.min.css">

    <link rel="stylesheet" href="app/app.css">
    <link rel="shortcut icon" type="image/x-icon" href="app/favicon.ico">
    <link href="https://fonts.googleapis.com/css?family=Roboto" rel="stylesheet">

    <script src="https://accounts.google.com/gsi/client" async defer></script>
    <script>
        window.__baseLanguage = 'fi';
        window.__moduleId = 'fi';
        window.__moduleTitle = 'Aski Raski Finnish Admin';
        window.__supportedModules = 'fi';
        window.__feideSupport = 'false';
        window.__uniloginSupport = 'false';
        window.__iltSupport = 'true';
    </script>
</head>
<body ng-cloak class="background">

    <!--[if lt IE 7]>
        <p class="browsehappy">You are using an <strong>outdated</strong> browser. Please <a href="http://browsehappy.com/">upgrade your browser</a> to improve your experience.</p>
    <![endif]-->

    <div data-ng-controller="LogInOrOutCtrl as vm">
        <nav class="navbar navbar-fixed-top navbar-dark" ng-class="{'production-warning': vm.showProductionWarning()}" ng-show="vm.state == 'loggedin'">

            <ul class="nav navbar-nav">

                <li class="nav-item btn-group">
                    <a class="nav-link" type="button" id="publishDropdownMenu-small" ng-click="vm.publishDropdownClicked()" data-toggle="dropdown" aria-haspopup="true" aria-expanded="false" href="#" style="margin-top: 12px;">
                        <i class="fa fa-bars fa-2x"></i>
                    </a>
                    <div class="dropdown-menu" aria-labelledby="publishDropdownMenu-small">
                        <div ng-include="'app/logo.html'" style="margin-left: 20px;margin-top: 5px;"></div>

                        <div class="dropdown-divider"></div>
                        <a class="dropdown-item" href="levels/nb-NO" ng-if="vm.getBaseLanguage() === 'no'">Exercises bokmål</a>
                        <a class="dropdown-item" href="levels/nn-NO" ng-if="vm.getBaseLanguage() === 'no'">Exercises nynorsk</a>
                        <a class="dropdown-item" href="levels/{{vm.getBaseLanguage()}}" ng-if="vm.getBaseLanguage() !== 'no'">Exercises in {{vm.getBaseLanguageForDisplay() | lowercase}}</a>
                        <a class="dropdown-item" href="assessmenttests">Assessment</a>

                        <div class="dropdown-divider"></div>
                        <a href="accessmanagement/schools" class="dropdown-item">Users and access</a>
                        <a class="dropdown-item" href="#" ng-click="vm.showSoundRecordingList()">Recording list</a>
                        <a class="dropdown-item" href="#" ng-click="vm.createExerciseRecordingList()">Exercise list</a>
                        <a class="dropdown-item" href="#" ng-click="vm.mapFileShare()">Map network drive</a>

                        <div class="dropdown-divider"></div>
                        <a class="dropdown-item" href="#" ng-click="vm.publish()"><i class="fa fa-cloud-upload"></i>&nbsp;&

Found 2026-01-12 by HttpPlugin

Create report

Open service 20.105.224.8:80 · admin.askiraski.fi

2026-01-12 21:55

HTTP/1.1 303 See Other
Content-Length: 0
Connection: close
Content-Type: text/html
Date: Mon, 12 Jan 2026 21:56:36 GMT
Server: Microsoft-IIS/10.0
Cache-Control: private
Location: https://admin.askiraski.fi
Set-Cookie: ARRAffinity=55c266085e977e859e7de3e14495c483adbc695926ce46b6f5eb2d4cd73c26da;Path=/;HttpOnly;Domain=admin.askiraski.fi
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET

Found 2026-01-12 by HttpPlugin

Create report

Open service 20.105.224.8:80 · pr3176.neptune-api.uno-mon.net

2026-01-12 14:44

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Date: Mon, 12 Jan 2026 14:45:46 GMT
Location: https://pr3176.neptune-api.uno-mon.net/

Found 2026-01-12 by HttpPlugin

Create report

Open service 20.105.224.8:443 · pr3176.neptune-api.uno-mon.net

2026-01-12 14:44

HTTP/1.1 503 Server has been shutdown
Content-Length: 27
Connection: close
Content-Type: text/html
Date: Mon, 12 Jan 2026 14:45:51 GMT


The service is unavailable.

Found 2026-01-12 by HttpPlugin

Create report

Open service 20.105.224.8:80 · api.test.netive-supplierhub.com

2026-01-12 13:19

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Date: Mon, 12 Jan 2026 13:20:12 GMT
Location: https://api.test.netive-supplierhub.com/

Found 2026-01-12 by HttpPlugin

Create report

Open service 20.105.224.8:443 · api.test.netive-supplierhub.com

2026-01-12 13:19

HTTP/1.1 404 Not Found
Content-Length: 0
Connection: close
Date: Mon, 12 Jan 2026 13:20:14 GMT
Set-Cookie: ARRAffinity=02a625df599971699df94ae9f48dab1d7d3947fef4081592ed09b392b919c2f0;Path=/;HttpOnly;Secure;Domain=api.test.netive-supplierhub.com
Set-Cookie: ARRAffinitySameSite=02a625df599971699df94ae9f48dab1d7d3947fef4081592ed09b392b919c2f0;Path=/;HttpOnly;SameSite=None;Secure;Domain=api.test.netive-supplierhub.com
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; style-src 'self' 'unsafe-inline'; object-src 'none'; img-src 'self' data:; frame-ancestors 'none'; sandbox allow-modals allow-forms allow-same-origin allow-scripts; base-uri 'self'; upgrade-insecure-requests
X-Content-Security-Policy: default-src 'self'; style-src 'self' 'unsafe-inline'; object-src 'none'; img-src 'self' data:; frame-ancestors 'none'; sandbox allow-modals allow-forms allow-same-origin allow-scripts; base-uri 'self'; upgrade-insecure-requests
Referrer-Policy: strict-origin-when-cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups

Found 2026-01-12 by HttpPlugin