GeneralInformation

Hostnames	aci.whatscontabil.com.br aciapi.whatscontabil.com.br static.84.120.161.5.clients.your-server.de
Domains	whatscontabil.com.br your-server.de
Country	United States
City	Ashburn
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS213230

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

80 443 3000 3001 3051 3055 3306 4000 8054 8055 8080 8081 8083 10050

1651973090 | 2024-12-28T23:11:52.169574

80 / tcp

Welcome to nginx!

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 28 Dec 2024 23:11:51 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Tue, 04 Jul 2023 19:54:49 GMT
Connection: keep-alive
ETag: "64a47909-264"
Accept-Ranges: bytes

CVE-2023-44487 CVE-2021-23017 CVE-2021-3618

-1060095501 | 2024-12-29T11:15:23.372334

443 / tcp

Error

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 29 Dec 2024 11:15:23 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 139
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://aci.whatscontabil.com.br
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:1c:fa:ae:38:11:e5:ed:33:0d:29:ba:07:73:01:03:24:1a
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, O=Let's Encrypt, CN=E6
        Validity
            Not Before: Nov 25 07:02:25 2024 GMT
            Not After : Feb 23 07:02:24 2025 GMT
        Subject: CN=aci.whatscontabil.com.br
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:04:9f:fe:c4:fa:8f:8a:52:3d:3d:40:55:43:e0:
                    d7:14:bb:3f:51:a6:51:d8:04:30:40:2b:a3:92:76:
                    b8:a1:8a:77:49:6e:04:41:8e:da:d0:63:74:a8:22:
                    db:42:d4:95:ec:74:09:e3:fb:c6:74:d0:6b:b9:15:
                    61:6b:df:40:62
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                7C:91:A5:D0:00:F3:D0:E9:0B:DD:C2:A3:21:3B:AA:B9:5A:B4:FA:3C
            X509v3 Authority Key Identifier: 
                93:27:46:98:03:A9:51:68:8E:98:D6:C4:42:48:DB:23:BF:58:94:D2
            Authority Information Access: 
                OCSP - URI:http://e6.o.lencr.org
                CA Issuers - URI:http://e6.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:aci.whatscontabil.com.br, DNS:aciapi.whatscontabil.com.br
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Nov 25 08:00:55.692 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:C7:9B:49:4A:A1:A2:84:48:78:54:68:
                                CF:EA:C3:56:C4:6B:DF:71:D8:6B:D5:68:D2:41:B7:1A:
                                01:30:32:42:78:02:21:00:CF:5A:8D:32:4D:C9:2B:88:
                                75:29:83:A0:7C:69:75:0B:6C:E6:CB:B0:E8:21:D6:30:
                                4A:FD:DB:F5:95:C2:E9:35
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 13:4A:DF:1A:B5:98:42:09:78:0C:6F:EF:4C:7A:91:A4:
                                16:B7:23:49:CE:58:57:6A:DF:AE:DA:A7:C2:AB:E0:22
                    Timestamp : Nov 25 08:00:56.015 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:02:B7:04:A5:17:DF:80:C6:D6:79:0A:66:
                                4B:6E:84:70:03:7E:23:21:85:4F:1D:98:80:2D:63:44:
                                D4:E3:70:0E:02:21:00:D0:C7:86:4F:F7:41:4D:E9:42:
                                53:25:D1:12:00:20:AB:D1:E0:DD:FB:C4:40:95:F6:25:
                                09:D7:77:E6:72:57:9B
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:65:02:30:66:55:f5:b7:3e:dc:69:50:5a:23:23:72:64:44:
        ae:ec:64:a9:41:da:f3:46:4b:55:a3:40:16:4e:21:61:d3:92:
        48:61:13:df:f4:ff:05:7b:ff:47:fc:7b:53:6f:81:d1:02:31:
        00:d6:26:cf:60:1b:de:cc:0a:2a:ee:0a:f3:e0:92:0d:5e:b6:
        f7:11:54:d7:b7:0c:75:ac:cf:9e:5d:66:18:8a:1d:1e:79:00:
        1b:39:9d:c6:a0:f8:f1:44:42:fb:bf:d4:d1

CVE-2023-44487 CVE-2021-23017 CVE-2021-3618

304992832 | 2024-12-26T13:33:51.185650

3000 / tcp

WhatsContábil

HTTP/1.1 200 OK
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 15 Oct 2024 19:18:37 GMT
ETag: W/"c2a-192919e3536"
Content-Type: text/html; charset=UTF-8
Content-Length: 3114
Date: Thu, 26 Dec 2024 13:33:51 GMT
Connection: keep-alive
Keep-Alive: timeout=5

511073722 | 2024-12-29T12:46:56.739493

3001 / tcp

HTTP/1.1 200 OK
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 15 Oct 2024 19:26:24 GMT
ETag: W/"c2a-19291a5532b"
Content-Type: text/html; charset=UTF-8
Content-Length: 3114
Date: Sun, 29 Dec 2024 12:46:53 GMT
Connection: keep-alive
Keep-Alive: timeout=5

<!doctype html><html lang="pt-br"><head><title>WhatsContábil</title><link rel="stylesheet" href="https://fonts.googleapis.com/css?family=Roboto:300,400,500,700&display=swap"/><link rel="apple-touch-icon" href="/apple-touch-icon.png"/><link rel="icon" href="/favicon.ico"/><link rel="”shortcut" icon” href="”/favicon.ico”"><link rel="manifest" href="/manifest.json"/><meta name="theme-color" content="#000000"/><meta name="viewport" content="minimum-scale=1,initial-scale=1,width=device-width"/><link href="/static/css/2.38dcfae8.chunk.css" rel="stylesheet"></head><body><noscript>You need to enable JavaScript to run this app.</noscript><div id="root"></div><script>!function(e){function r(r){for(var n,i,a=r[0],c=r[1],l=r[2],s=0,p=[];s<a.length;s++)i=a[s],Object.prototype.hasOwnProperty.call(o,i)&&o[i]&&p.push(o[i][0]),o[i]=0;for(n in c)Object.prototype.hasOwnProperty.call(c,n)&&(e[n]=c[n]);for(f&&f(r);p.length;)p.shift()();return u.push.apply(u,l||[]),t()}function t(){for(var e,r=0;r<u.length;r++){for(var t=u[r],n=!0,a=1;a<t.length;a++){var c=t[a];0!==o[c]&&(n=!1)}n&&(u.splice(r--,1),e=i(i.s=t[0]))}return e}var n={},o={1:0},u=[];function i(r){if(n[r])return n[r].exports;var t=n[r]={i:r,l:!1,exports:{}};return e[r].call(t.exports,t,t.exports,i),t.l=!0,t.exports}i.e=function(e){var r=[],t=o[e];if(0!==t)if(t)r.push(t[2]);else{var n=new Promise((function(r,n){t=o[e]=[r,n]}));r.push(t[2]=n);var u,a=document.createElement("script");a.charset="utf-8",a.timeout=120,i.nc&&a.setAttribute("nonce",i.nc),a.src=function(e){return i.p+"static/js/"+({}[e]||e)+"."+{3:"c2e7e6e0"}[e]+".chunk.js"}(e);var c=new Error;u=function(r){a.onerror=a.onload=null,clearTimeout(l);var t=o[e];if(0!==t){if(t){var n=r&&("load"===r.type?"missing":r.type),u=r&&r.target&&r.target.src;c.message="Loading chunk "+e+" failed.\n("+n+": "+u+")",c.name="ChunkLoadError",c.type=n,c.request=u,t[1](c)}o[e]=void 0}};var l=setTimeout((function(){u({type:"timeout",target:a})}),12e4);a.onerror=a.onload=u,document.head.appendChild(a)}return Promise.all(r)},i.m=e,i.c=n,i.d=function(e,r,t){i.o(e,r)||Object.defineProperty(e,r,{enumerable:!0,get:t})},i.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},i.t=function(e,r){if(1&r&&(e=i(e)),8&r)return e;if(4&r&&"object"==typeof e&&e&&e.__esModule)return e;var t=Object.create(null);if(i.r(t),Object.defineProperty(t,"default",{enumerable:!0,value:e}),2&r&&"string"!=typeof e)for(var n in e)i.d(t,n,function(r){return e[r]}.bind(null,n));return t},i.n=function(e){var r=e&&e.__esModule?function(){return e.default}:function(){return e};return i.d(r,"a",r),r},i.o=function(e,r){return Object.prototype.hasOwnProperty.call(e,r)},i.p="/",i.oe=function(e){throw console.error(e),e};var a=this.webpackJsonpfrontend=this.webpackJsonpfrontend||[],c=a.push.bind(a);a.push=r,a=a.slice();for(var l=0;l<a.length;l++)r(a[l]);var f=c;t()}([])</script><script src="/static/js/2.3332baf5.chunk.js"></script><script src="/static/js/main.0e861861.chunk.js"></script></body></html>

432744492 | 2024-12-26T07:48:39.167897

3051 / tcp

WhatsContábil

HTTP/1.1 200 OK
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 15 Oct 2024 19:09:04 GMT
ETag: W/"c2a-192919576cf"
Content-Type: text/html; charset=UTF-8
Content-Length: 3114
Date: Thu, 26 Dec 2024 07:48:38 GMT
Connection: keep-alive
Keep-Alive: timeout=5

-72845426 | 2024-12-19T00:05:18.118527

3055 / tcp

WhatsContábil

HTTP/1.1 200 OK
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 15 Oct 2024 19:11:22 GMT
ETag: W/"c2a-19291979028"
Content-Type: text/html; charset=UTF-8
Content-Length: 3114
Date: Thu, 19 Dec 2024 00:05:17 GMT
Connection: keep-alive
Keep-Alive: timeout=5

-1304455383 | 2024-12-29T02:47:55.627671

3306 / tcp

MariaDB:
  Protocol Version: 10
  Version: 11.0.2-MariaDB-1:11.0.2+maria~ubu2204
  Capabilities: 63486
  Server Language: 46
  Server Status: 2
  Extended Server Capabilities: 33279
  Authentication Plugin: mysql_native_password

-1246004407 | 2024-12-25T00:55:13.896820

4000 / tcp

HTTP/1.1 400 Bad Request
Connection: close

-1060095501 | 2024-12-17T22:26:29.177720

8054 / tcp

Error

HTTP/1.1 404 Not Found
X-Powered-By: Express
Access-Control-Allow-Origin: https://jmachado.whatscontabil.com.br
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
Date: Tue, 17 Dec 2024 22:26:29 GMT
Connection: keep-alive
Keep-Alive: timeout=5

-1060095501 | 2024-12-18T09:54:18.240385

8055 / tcp

Error

HTTP/1.1 404 Not Found
X-Powered-By: Express
Access-Control-Allow-Origin: https://bascon.whatscontabil.com.br
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
Date: Wed, 18 Dec 2024 09:54:18 GMT
Connection: keep-alive
Keep-Alive: timeout=5

-1060095501 | 2024-12-24T22:51:34.411819

8080 / tcp

Error

HTTP/1.1 404 Not Found
X-Powered-By: Express
Access-Control-Allow-Origin: https://iguacu.whatscontabil.com.br
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
Date: Tue, 24 Dec 2024 22:51:31 GMT
Connection: keep-alive
Keep-Alive: timeout=5

-214235947 | 2024-12-18T06:37:51.949963

8081 / tcp

HTTP/1.1 404 Not Found
X-Powered-By: Express
Access-Control-Allow-Origin: https://rudio2.whatscontabil.net
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
Date: Wed, 18 Dec 2024 06:37:51 GMT
Connection: keep-alive
Keep-Alive: timeout=5

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

1942034349 | 2024-12-26T05:21:26.929796

8083 / tcp

HTTP/1.1 404 Not Found
X-Powered-By: Express
Access-Control-Allow-Origin: https://perfil.whatscontabil.com.br
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
Date: Thu, 26 Dec 2024 05:21:26 GMT
Connection: keep-alive
Keep-Alive: timeout=5

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

5.161.120.84

Last Seen: 2024-12-29

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1651973090 | 2024-12-28T23:11:52.169574
80 / tcp

nginx1.18.0

-1060095501 | 2024-12-29T11:15:23.372334
443 / tcp

nginx1.18.0

304992832 | 2024-12-26T13:33:51.185650
3000 / tcp

511073722 | 2024-12-29T12:46:56.739493
3001 / tcp

432744492 | 2024-12-26T07:48:39.167897
3051 / tcp

-72845426 | 2024-12-19T00:05:18.118527
3055 / tcp

-1304455383 | 2024-12-29T02:47:55.627671
3306 / tcp

MariaDB11.0.2-MariaDB-1:11.0.2+maria~ubu2204

-1246004407 | 2024-12-25T00:55:13.896820
4000 / tcp

-1060095501 | 2024-12-17T22:26:29.177720
8054 / tcp

-1060095501 | 2024-12-18T09:54:18.240385
8055 / tcp

-1060095501 | 2024-12-24T22:51:34.411819
8080 / tcp

-214235947 | 2024-12-18T06:37:51.949963
8081 / tcp

1942034349 | 2024-12-26T05:21:26.929796
8083 / tcp

Products

Pricing

Contact Us

5.161.120.84

Last Seen: 2024-12-29

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

1651973090 | 2024-12-28T23:11:52.169574 80 / tcp

nginx1.18.0

-1060095501 | 2024-12-29T11:15:23.372334 443 / tcp

nginx1.18.0

304992832 | 2024-12-26T13:33:51.185650 3000 / tcp

511073722 | 2024-12-29T12:46:56.739493 3001 / tcp

432744492 | 2024-12-26T07:48:39.167897 3051 / tcp

-72845426 | 2024-12-19T00:05:18.118527 3055 / tcp

-1304455383 | 2024-12-29T02:47:55.627671 3306 / tcp

MariaDB11.0.2-MariaDB-1:11.0.2+maria~ubu2204

-1246004407 | 2024-12-25T00:55:13.896820 4000 / tcp

-1060095501 | 2024-12-17T22:26:29.177720 8054 / tcp

-1060095501 | 2024-12-18T09:54:18.240385 8055 / tcp

-1060095501 | 2024-12-24T22:51:34.411819 8080 / tcp

-214235947 | 2024-12-18T06:37:51.949963 8081 / tcp

1942034349 | 2024-12-26T05:21:26.929796 8083 / tcp

Products

Pricing

Contact Us

Vulnerabilities

1651973090 | 2024-12-28T23:11:52.169574
80 / tcp

-1060095501 | 2024-12-29T11:15:23.372334
443 / tcp

304992832 | 2024-12-26T13:33:51.185650
3000 / tcp

511073722 | 2024-12-29T12:46:56.739493
3001 / tcp

432744492 | 2024-12-26T07:48:39.167897
3051 / tcp

-72845426 | 2024-12-19T00:05:18.118527
3055 / tcp

-1304455383 | 2024-12-29T02:47:55.627671
3306 / tcp

-1246004407 | 2024-12-25T00:55:13.896820
4000 / tcp

-1060095501 | 2024-12-17T22:26:29.177720
8054 / tcp

-1060095501 | 2024-12-18T09:54:18.240385
8055 / tcp

-1060095501 | 2024-12-24T22:51:34.411819
8080 / tcp

-214235947 | 2024-12-18T06:37:51.949963
8081 / tcp

1942034349 | 2024-12-26T05:21:26.929796
8083 / tcp