GeneralInformation

Hostnames	grafik.krakow.agmertaxi.pl www.grafik.krakow.agmertaxi.pl vps-ec27544e.vps.ovh.net
Domains	agmertaxi.pl ovh.net
Country	Poland
City	Warsaw
Organization	OVH Sp. z o. o.
ISP	OVH SAS
ASN	AS16276

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 1337 5000

-527822277 | 2024-04-17T18:16:37.300873

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDFyj/aOMJUAbD/yCa+f8aVE+mpum5h0WGGbQHZhtsPV7BQ
x9LLaKvxTWOSbZHfLkrh6vwOw9m9q4y9goXmIy1lbGHLUzh2ogCJuQIEviaKtrjSl+9gvQhoPyIO
CaH8xfEMKt+MlPFblWb5QLQv/bTcHbvaxDsrC42myBhvDVBNeobU7JCHCqEk3TWODMKkODqYKGnr
T8zISGnfbhUmBakbLDIRczEp0kyoQ8ueeb2R9uOTRJ79uF+kkOyJ6EFa9GGNBYK1E54+2r4Ur4MW
DcSusdrxBxCeR+TL7EQsE1VK7iubQwr9uCI3OiolRhUuHtU1wNWZHA8W6Agzul9uHYzrsu6wdFn9
mAhdQnVk6fHYI5yxK5G7KoAejUDGNbD0fExvWx3eulcTgmcaBlgkQ6ESJnJZLT7OU5BEE/9Cwbiw
bOQOQ8xQSYg1OWz+Z5ILp8PvZw9bUOQFMpx1eaugHmOHUgSKbSh9ObmNAl43LIBRhjFBIOB8wwmz
AqdGQNOnPKc=
Fingerprint: 6a:8d:8e:cb:f0:cd:8b:bc:e5:eb:f2:ca:11:f3:a4:4f

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

677579724 | 2024-04-13T17:35:25.491054

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 13 Apr 2024 17:35:25 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

-2034890988 | 2024-04-20T12:54:39.634859

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 20 Apr 2024 12:54:39 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 614
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Thu, 11 Apr 2024 18:41:52 GMT
ETag: W/"266-18ece775ade"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:16:20:fc:2d:c6:b7:3b:5d:f7:56:e0:54:1a:95:91:2d:1b
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 15 08:29:26 2024 GMT
            Not After : Jul 14 08:29:25 2024 GMT
        Subject: CN=grafik.krakow.agmertaxi.pl
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d2:f4:be:50:b4:38:61:a5:52:67:29:44:e4:8c:
                    39:ae:a2:20:67:0d:a6:64:26:9e:65:20:5e:ec:bc:
                    26:1c:ee:94:7b:bc:ce:b0:f1:30:cb:35:b7:ec:54:
                    26:6e:12:65:14:0a:30:cb:de:bc:f6:0c:3f:95:19:
                    be:24:af:bf:41:c2:a1:dd:50:31:c5:90:8a:c9:48:
                    76:a3:b3:0b:e3:cc:ee:5a:ad:52:e2:68:a0:04:a5:
                    3c:da:8d:04:7e:fb:36:c5:2a:c0:1c:f6:cc:b4:27:
                    e8:10:20:9d:88:e7:5d:1a:5d:c2:35:f0:3b:60:15:
                    07:b4:2c:f8:d4:56:cc:68:3c:6d:f6:85:14:86:87:
                    39:0e:40:b3:7b:d7:4e:19:30:bb:a5:8c:de:25:2e:
                    df:64:93:2d:d5:66:b5:68:dd:7d:13:3a:6e:97:f7:
                    a6:e7:79:2e:b1:f5:d8:44:66:6e:c5:61:51:2a:2c:
                    c3:df:91:57:50:64:db:5f:e1:94:80:a3:36:64:d7:
                    05:8e:b3:ed:f0:b3:fe:2e:76:d1:e0:41:d0:db:8a:
                    b1:4b:e7:27:75:68:75:d1:f1:90:6d:1b:95:62:38:
                    4e:37:7e:ec:87:86:20:cf:ff:eb:fc:fc:7b:08:2e:
                    b1:23:61:62:d4:be:26:a8:19:90:25:66:8b:68:c6:
                    92:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                D3:4F:9F:27:84:86:3B:96:7C:4C:8A:BC:7F:97:55:2B:11:0E:0B:A5
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:grafik.krakow.agmertaxi.pl, DNS:www.grafik.krakow.agmertaxi.pl
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 15 09:29:26.883 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:AD:FA:BC:EA:62:AD:30:BB:56:9D:8B:
                                C6:AD:E2:2C:8B:7C:5D:4C:DB:B2:76:D1:EB:EA:B1:C3:
                                2B:E9:7A:4A:05:02:21:00:A4:26:9F:0B:6F:03:F3:19:
                                AB:2D:56:FD:61:1F:21:E3:4B:7F:24:A4:03:74:A7:C9:
                                CE:92:06:B0:7D:68:FB:A6
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr 15 09:29:26.887 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:FC:57:79:A0:62:04:9B:41:99:9E:29:
                                C3:5D:53:46:C2:DC:A5:8E:FC:52:60:D8:A5:02:85:08:
                                C7:6F:D8:7A:D5:02:20:12:0F:D5:DB:B5:E2:71:3E:73:
                                17:32:CC:1C:E3:BB:38:B6:81:12:EC:71:70:2D:FB:82:
                                CE:D2:EE:89:C5:99:19
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        56:f9:da:8c:fd:ea:5b:57:65:96:7b:29:08:b5:00:1e:55:4d:
        0d:46:af:97:c2:a4:f8:7a:47:37:0a:74:12:56:c7:96:a0:61:
        c0:42:34:4b:9e:bc:09:29:04:ba:eb:3a:25:f6:65:a4:40:0d:
        2e:c5:89:1b:15:17:e0:ac:0f:d3:56:a3:67:42:2f:1d:67:e0:
        15:c3:77:5e:4b:27:ae:5d:07:3f:cb:b6:74:95:ed:b0:d3:84:
        fc:5c:ad:63:4b:7a:a4:64:95:83:c0:3c:53:0c:5b:e1:06:6c:
        8b:95:0f:88:6f:ab:9f:ff:b6:88:b3:08:a8:ff:b8:e7:9b:73:
        d2:98:6f:ad:ab:c5:e5:c5:ec:17:d1:f6:74:a0:c3:76:9a:f6:
        6f:cf:6b:cf:39:3e:a2:14:0a:26:cc:f0:d7:97:3c:87:fc:4c:
        03:e6:3d:f5:7c:5b:5b:2a:96:94:63:3d:ab:42:b2:5d:8a:cf:
        17:1c:ef:4a:d1:91:8f:b7:43:e0:9f:aa:3c:df:54:40:5d:1e:
        52:6c:50:f1:f0:eb:01:f8:63:0e:8a:14:cd:c9:1b:29:66:7b:
        c9:b1:ca:83:19:21:61:bd:f6:68:b9:3a:3c:ef:83:a5:7d:be:
        1d:95:27:e2:4e:64:c1:6a:66:7b:8f:57:c1:92:ba:db:4a:35:
        b1:bb:f7:c8

1127892316 | 2024-04-23T21:07:42.671358

1337 / tcp

HTTP/1.1 200 OK
Content-Security-Policy: connect-src 'self' https:;img-src 'self' data: blob: https://dl.airtable.com;media-src 'self' data: blob:;default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'
X-DNS-Prefetch-Control: off
Expect-CT: max-age=0
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
Vary: Origin
Content-Type: text/html; charset=utf-8
X-Powered-By: Strapi <strapi.io>
Date: Tue, 23 Apr 2024 21:07:42 GMT
Connection: keep-alive
Keep-Alive: timeout=5
Transfer-Encoding: chunked

e0f
<!doctype html>
<html>
  <head>
    <meta charset="utf-8" />
    <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" />
    <title>Welcome to your Strapi app</title>
    <meta name="viewport" content="width=device-width, initial-scale=1" />
    <meta name="robots" content="noindex, nofollow">
    <link href="https://cdnjs.cloudflare.com/ajax/libs/meyer-reset/2.0/reset.min.css" rel="stylesheet" />
    <link href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/5.11.2/css/all.min.css" rel="stylesheet" />
    <link href="https://fonts.googleapis.com/css?family=Lato:400,700&display=swap" rel="stylesheet" />
    <style>
      *{-webkit-box-sizing:border-box;text-decoration:none}body,html{margin:0;padding:0;font-size:62.5%;-webkit-font-smoothing:antialiased}body{font-size:1.3rem;font-family:Lato,Helvetica,Arial,Verdana,sans-serif;background:#fafafb;margin:0;padding:80px 0;color:#333740;line-height:1.8rem}strong{font-weight:700}.wrapper{width:684px;margin:auto}h1{text-align:center}h2{font-size:1.8rem;font-weight:700;margin-bottom:1px}.logo{height:40px;margin-bottom:74px}.informations{position:relative;overflow:hidden;display:flex;justify-content:space-between;width:100%;height:126px;margin-top:18px;padding:20px 30px;background:#fff;border-radius:2px;box-shadow:0 2px 4px 0 #e3e9f3}.informations:before{position:absolute;top:0;left:0;content:'';display:block;width:100%;height:2px;background:#007eff}.environment{display:inline-block;padding:0 10px;height:20px;margin-bottom:36px;background:#e6f0fb;border:1px solid #aed4fb;border-radius:2px;text-transform:uppercase;color:#007eff;font-size:1.2rem;font-weight:700;line-height:20px;letter-spacing:.05rem}.cta{display:inline-block;height:30px;padding:0 15px;margin-top:32px;border-radius:2px;color:#fff;font-weight:700;line-height:28px}.cta i{position:relative;display:inline-block;height:100%;vertical-align:middle;font-size:1rem;margin-right:20px}.cta i:before{position:absolute;top:8px}.cta-primary{background:#007eff}.cta-secondary{background:#6dbb1a}.text-align-right{text-align:right}.lets-started{position:relative;overflow:hidden;width:100%;height:144px;margin-top:18px;padding:20px 30px;background:#fff;border-radius:2px;box-shadow:0 2px 4px 0 #e3e9f3}.people-saying-hello{position:absolute;right:30px;bottom:-8px;width:113px;height:70px}.visible{opacity:1!important}.people-saying-hello img{position:absolute;max-width:100%;opacity:0;transition:opacity .2s ease-out}@media only screen and (max-width:768px){.wrapper{width:auto!important;margin:0 20px}.informations{flex-direction:column;height:auto}.environment{width:100%;text-align:center;margin-bottom:18px}.text-align-right{margin-top:18px;text-align:center}.cta{width:100%;text-align:center}.lets-started{height:auto}.people-saying-hello{display:none}}
    </style>
  </head>
  <body lang="en">
    <section class="wrapper">
      <h1><img class="logo" src="https://a1.rentycloudy.pl/assets/images/logo_login.png" /></h1>
      
        <div class="informations">
          <div>
            <span class="environment">development</span>
            <p>
              The server is running successfully (<strong>v0.1.0)</strong>
            </p>
          </div>
          <div class="text-align-right">
            <p>Tue, 23 Apr 2024 21:07:42 GMT</p>
            
            <a class="cta cta-primary" href="https://a1.rentycloudy.pl/admin" target="_blank" title="Click to open the administration" ><i class="fas fa-external-link-alt"></i>Open the administration</a>
            
          </div>
        </div>
      
    </section>

    
  </body>
</html>

0

231439175 | 2024-04-25T00:42:06.156269

5000 / tcp

HTTP/1.1 200 OK
X-Powered-By: Express
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Mon, 22 Apr 2024 12:51:00 GMT
ETag: W/"266-18f05dc161f"
Content-Type: text/html; charset=UTF-8
Content-Length: 614
Date: Thu, 25 Apr 2024 00:41:53 GMT
Connection: keep-alive
Keep-Alive: timeout=5

217.182.75.102

Last Seen: 2024-04-25

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-527822277 | 2024-04-17T18:16:37.300873
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-04-13T17:35:25.491054
80 / tcp

nginx1.18.0

-2034890988 | 2024-04-20T12:54:39.634859
443 / tcp

nginx1.18.0

1127892316 | 2024-04-23T21:07:42.671358
1337 / tcp

231439175 | 2024-04-25T00:42:06.156269
5000 / tcp

Products

Pricing

Contact Us

217.182.75.102

Last Seen: 2024-04-25

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-527822277 | 2024-04-17T18:16:37.300873 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-04-13T17:35:25.491054 80 / tcp

nginx1.18.0

-2034890988 | 2024-04-20T12:54:39.634859 443 / tcp

nginx1.18.0

1127892316 | 2024-04-23T21:07:42.671358 1337 / tcp

231439175 | 2024-04-25T00:42:06.156269 5000 / tcp

Products

Pricing

Contact Us

-527822277 | 2024-04-17T18:16:37.300873
22 / tcp

677579724 | 2024-04-13T17:35:25.491054
80 / tcp

-2034890988 | 2024-04-20T12:54:39.634859
443 / tcp

1127892316 | 2024-04-23T21:07:42.671358
1337 / tcp

231439175 | 2024-04-25T00:42:06.156269
5000 / tcp