GeneralInformation

Hostnames	drive.fergonsas.com
Domains	fergonsas.com
Country	Colombia
City	Cali
Organization	COLOMBIA TELECOMUNICACIONES S.A. ESP
ISP	COLOMBIA TELECOMUNICACIONES S.A. ESP
ASN	AS3816

SecurityContact

Contact	https://hackerone.com/nextcloud
Expires	2024-08-31T23:00:00.000Z
Acknowledgments	https://github.com/nextcloud/security-advisories/security/advisories
Policy	https://hackerone.com/nextcloud
Preferred-Languages	en

OpenPorts

21 22 80 137 443 445 554 1433 1434 2000 6080 8000 8181

1418051969 | 2024-06-02T09:09:07.914963

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDCWXTehcvUSu+ypiBP0mF63KSEuzI0o+oD7FJWKCrvaEH9
IMz7C3UODHhxw+FLvKCPNosjctiQAJPm4cNLYyi3hTy+UMjOSX8YmeGafj8UILltaRB8a2dk6SEY
n2NlFoyZRrlG3EaqOTsYzIcvwxoFcmooLKvmXX4ETWC7NpyOYnGYXJfwebEEl/opvDeNm7EWzIsl
/UK4b1bpfA/l6SAVY8elvMQHr7cV5xCO4bdOFi45PFLux0PNaob5nQlp3mBa3mXLBNh8x3x3gR4K
ogAgQDQiz+9ZLknt1yy201mFeyUR3psmR/UngALSEzzCIZmYNllK3cNdZg2hFsuN3upUXJw7dBh+
f8jpf9eSlf+MgESdtyIl8WkZQ7HURhz6vvxL5efboP91KGMiDwYloOrRhj3JMgmqqZWyxOnZbaQe
edGkoEWN9/JCSuUmIc7w90PCphpfLjvhTBd7LP4+b6KKRvJMkg4xqzS8A9eHBgNBXcUYpFZmIin8
Bb0aWdpzC08=
Fingerprint: 8d:58:d0:26:ad:97:d0:b3:17:04:29:d1:c8:bc:0c:fb

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1434180020 | 2024-05-29T02:56:02.348649

80 / tcp

HTTP/1.1 301 Moved Permanently
Date: Wed, 29 May 2024 02:56:02 GMT
Server: Apache
Location: https://161.10.255.255:443/
Content-Length: 235
Content-Type: text/html; charset=iso-8859-1

1912127382 | 2024-06-01T17:55:28.310500

137 / udp

NetBIOS Response:
  Server Name: BORDE FPS
  MAC Address: 00:00:00:00:00:00
  Names:
    BORDE FPS <0x0>
    BORDE FPS <0x3>
    BORDE FPS <0x20>
    MSHOME <0x0>

-1765110032 | 2024-05-30T05:54:29.981154

443 / tcp

HTTP/1.1 200 OK
Date: Thu, 30 May 2024 05:54:29 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
X-Request-Id: pnhX8a7g7MIUZyFtE1cN
Content-Security-Policy: default-src 'none';base-uri 'none';manifest-src 'self';script-src 'nonce-QXAvZGMwT2tLRlBkeHNuUSt6UnFQbjVZSitUZHVOK2NmZFNob0ZERHc0Zz06U3ZLNkdYR1FRV3V6OUtPRmlnSUJjZ3dvUk4yZXlyRFNHcExHNGorWGk4cz0=';style-src 'self' 'unsafe-inline';img-src 'self' data: blob:;font-src 'self' data:;connect-src 'self';media-src 'self';frame-src 'self';frame-ancestors 'self';form-action 'self'
Feature-Policy: autoplay 'self';camera 'none';fullscreen 'self';geolocation 'none';microphone 'none';payment 'none'
X-Robots-Tag: noindex, nofollow
Set-Cookie: oc_sessionPassphrase=w90874XXmx5ErxuIZabBRgJw3tJvFlXJbJh%2FvVaQykgtiVF0n%2Brq%2BCnrUPXAtqb7co46W4LnU5hnn3uKKaHT0jxbJw06aHKtMY3nb%2BKGP%2ByUvcAlg6Z48MGPNNi3F1p%2B; path=/; secure; HttpOnly; SameSite=Lax
Set-Cookie: __Host-nc_sameSiteCookielax=true; path=/; httponly;secure; expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=lax
Set-Cookie: __Host-nc_sameSiteCookiestrict=true; path=/; httponly;secure; expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=strict
Set-Cookie: ocww8hl82tcx=2o17p1n51hhvtq7biti2cdq5ge; path=/; secure; HttpOnly; SameSite=Lax
Strict-Transport-Security: max-age=63072000; includeSubdomains
Referrer-Policy: no-referrer
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-XSS-Protection: 1; mode=block
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:b5:f3:45:85:c0:64:a4:22:fa:88:b2:6f:b6:7e:ab:9d:fb
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr  6 20:08:42 2024 GMT
            Not After : Jul  5 20:08:41 2024 GMT
        Subject: CN=drive.fergonsas.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (4096 bit)
                Modulus:
                    00:ba:88:b5:f0:32:7c:cc:0d:bb:26:c7:c5:e7:c8:
                    c1:3a:5e:d8:dc:8a:37:3e:36:41:60:ad:52:7a:7c:
                    aa:59:25:10:6c:37:9f:d8:21:d5:07:ea:28:cb:b8:
                    6f:ed:19:63:2d:d9:75:1e:fd:4c:ee:d2:75:98:22:
                    f0:a1:1c:23:ec:67:83:6a:a1:c6:8b:4f:04:44:51:
                    58:8e:13:6a:30:39:e9:db:4f:28:61:9c:4e:82:55:
                    7e:24:37:55:29:3a:08:ab:5f:e0:b8:b1:b4:04:b9:
                    6c:8d:d3:00:46:e2:ac:42:f1:2a:8c:7c:de:05:ce:
                    70:87:23:cb:91:6a:6f:ab:6c:24:54:a3:73:1d:f0:
                    35:52:22:3c:0b:41:3a:e8:e5:75:cf:9c:4d:f8:78:
                    2f:88:ee:91:63:d9:23:a1:bd:67:37:11:7d:1d:dd:
                    ff:18:d5:91:bc:71:b0:e0:ea:94:f3:ee:47:57:1c:
                    1d:d3:ca:bf:fd:b6:db:4e:c3:0f:bb:06:da:d7:cf:
                    4a:69:71:53:cc:62:76:cc:14:aa:82:f4:16:01:73:
                    51:d8:ff:7a:3f:7a:13:2d:fa:d0:fd:4d:d1:37:9d:
                    a3:55:bf:22:c9:2f:bb:85:7d:2d:25:8d:a2:92:cd:
                    f7:cb:3a:8e:46:d1:81:b5:69:5b:46:c4:d9:ab:b4:
                    f8:17:33:01:b4:ea:3c:dc:b0:66:50:ea:28:32:e1:
                    2a:2b:a9:e1:de:0a:93:fc:a1:1e:d4:e2:4a:b1:da:
                    0f:f8:b6:3b:1c:7b:6b:ed:47:85:ec:f4:1d:c6:4f:
                    3b:03:1f:33:7d:c5:2f:d8:27:42:09:4b:c2:bb:3e:
                    48:9a:fa:e5:5a:3a:e5:88:70:0c:6d:99:ad:df:44:
                    61:d7:42:1b:28:45:1f:ee:12:7c:2e:cb:af:77:73:
                    93:c5:97:66:cf:46:8c:bd:0c:fe:ed:95:79:01:b1:
                    ac:06:74:a4:11:f0:c8:6c:81:02:8b:17:1e:2d:c3:
                    8e:d1:54:7f:ea:9f:cb:0a:20:a9:8c:50:3b:9c:8c:
                    60:cb:82:4e:a3:ca:41:dc:74:d9:69:3a:06:e4:61:
                    d7:01:77:3d:84:5a:1a:a3:75:61:40:07:41:d9:49:
                    d3:6b:f9:b5:86:3a:df:60:fc:f3:9c:3e:8a:3b:6b:
                    75:cd:79:47:ca:da:b6:9a:bf:3b:37:49:31:6d:54:
                    b5:ec:83:98:cf:91:54:74:5a:86:20:bb:fb:b4:d4:
                    af:00:b0:6e:f6:65:21:44:c7:d8:a6:e0:65:03:e2:
                    1a:68:73:21:4f:06:4c:5d:fd:d3:2a:17:05:2a:d5:
                    ee:79:fa:29:89:f8:44:62:bc:fd:5c:a3:01:6b:9e:
                    92:63:39
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                03:92:15:38:66:68:F5:B6:29:6F:77:E6:0B:26:7E:6C:22:7F:F4:EF
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:drive.fergonsas.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr  6 21:08:43.196 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:33:D8:75:B7:48:DE:28:E2:48:67:53:97:
                                34:64:40:3E:4E:7A:4C:2D:9C:81:51:8F:13:21:CD:08:
                                72:1C:CB:9A:02:20:7B:4E:C9:9B:9D:D6:E6:5B:A0:F9:
                                E9:34:23:AB:1F:2B:4B:32:A1:AB:55:DF:E8:B7:0C:05:
                                B4:01:E3:5B:12:C6
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr  6 21:08:43.192 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:85:98:E4:BC:B5:0F:9F:8B:4B:86:B3:
                                02:BF:AC:84:64:34:18:D7:7A:3E:A3:A8:7E:64:68:AC:
                                CC:D2:74:97:60:02:20:29:61:44:C5:A0:58:B3:4A:DC:
                                7C:76:52:B1:57:20:BA:C8:84:01:6C:83:01:D6:87:01:
                                5E:27:88:8E:63:B6:6D
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        58:9d:2c:60:b9:59:b6:83:e5:c0:5a:d1:fe:b1:6f:ee:dc:d7:
        94:df:cc:17:e7:a3:a8:11:2b:dd:82:16:76:cc:35:d9:d6:c6:
        77:2c:4c:0e:f3:6c:2e:0f:2e:2d:41:20:a9:ea:8c:8e:36:89:
        c0:64:b0:20:23:cc:83:7a:d7:a9:85:85:30:01:63:7d:14:34:
        8d:4a:5a:5e:f8:b5:16:15:83:95:35:8c:b3:9c:7d:2e:61:e6:
        d3:32:e2:e0:60:8e:94:94:b1:dd:00:39:c7:7a:a3:18:70:2b:
        54:3b:17:93:a5:21:c8:b3:e9:a2:a3:ed:81:59:78:f9:05:03:
        ee:cc:5f:bd:ee:24:ea:42:bc:4a:fb:e4:3f:12:d9:e5:7b:c5:
        a1:53:19:ec:57:5d:5f:4c:a6:61:98:8f:20:25:47:27:5b:63:
        4c:95:2e:8a:e8:5e:b8:6e:6a:9c:22:75:d8:e3:a4:5d:ca:00:
        79:81:b6:cd:1e:38:6b:07:f7:6d:1a:ba:d9:5c:aa:20:36:ff:
        03:dc:63:df:6f:55:88:18:33:ed:66:50:52:e0:a8:c7:c9:80:
        4c:98:23:61:08:4f:24:9b:2b:e7:11:33:2a:b0:c1:06:df:41:
        fb:7c:fc:9b:96:0e:40:c8:d3:27:26:35:d3:bd:d1:b0:da:af:
        85:06:d6:35

-2084059752 | 2024-05-24T23:51:19.522632

445 / tcp

SMB Status:
  Authentication: disabled
  SMB Version: 1
  Capabilities: large-files, nt-find, nt-smb, nt-status

1043201211 | 2024-05-30T04:28:56.286796

554 / tcp

RTSP/1.0 401 Unauthorized
CSeq: 1
WWW-Authenticate: Digest realm="f49a29a43b30301895337454", nonce="1627826dc", algorithm="MD5"

315369637 | 2024-05-11T17:11:27.325039

1433 / tcp

MS-SQL NTLM Info:
  OS: Windows 10 (version 2004)/Windows Server (version 2004)
  OS Build: 10.0.19041
  Target Name: FERGON
  NetBIOS Domain Name: FERGON
  NetBIOS Computer Name: SVRCONTABILIDAD
  DNS Domain Name: fergon.sas
  DNS Tree Name: fergon.sas
  FQDN: SVRCONTABILIDAD.fergon.sas

685507670 | 2024-05-26T01:42:48.161235

1434 / udp

SQL Server Browser Service:
  Instance #1:
    Server Name: SVRCONTABILIDAD
    Instance Name: WORLDOFFICE
    Is Clustered: False
    Version: 9.00.4035.00
    TCP Port: 1433
    Named Pipe: \\SVRCONTABILIDAD\pipe\MSSQL$WORLDOFFICE\sql\query
    Version Name: MS-SQL Server 2005 SP3RTW

-1538260461 | 2024-05-31T18:48:36.511548

2000 / tcp

\x01\x00\x00\x00

-1074019164 | 2024-05-31T12:59:56.607951

6080 / tcp

HTTP/1.1 200 OK
Server: WebSockify Python/2.7.17
Date: Fri, 31 May 2024 12:55:15 GMT
Content-type: text/html
Content-Length: 2585
Last-Modified: Tue, 27 Aug 2019 04:19:47 GMT

1857966803 | 2024-05-20T20:24:27.552220

8181 / tcp

HTTP/1.1 200 OK
Date: Mon, 20 May 2024 20:19:50 GMT
Server:  
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' ; object-src 'self' ; worker-src 'self' blob:
Content-type: text/html; charset=UTF-8
Last-modified: Mon, 19 Feb 2024 08:46:18 GMT
Accept-Ranges: bytes
Content-length: 580
Vary: Accept-Encoding
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=0
X-Content-Type-Options: nosniff

<html style="background:#007cef">
<head>
<meta http-equiv="expires" content="0">
<script type='text/javascript'>
pr=(document.location.protocol == 'https:') ? 'https' : 'http';
pt=(location.port == '') ? '' : ':' + location.port;
redirect_suffix = "/redirect.html?count="+Math.random();
if(location.hostname.indexOf(':') == -1)
{
location.href=pr+"://"+location.hostname+pt+redirect_suffix;
}
else	//could be ipv6 addr
{
var url = "";
url=pr+"://["+ location.hostname.replace(/[\[\]]/g, '') +"]"+pt+redirect_suffix;
location.href = url;
}
</script>
</head>
<body>
</body>
</html>

161.10.255.255

Last Seen: 2024-06-02

Tags:

GeneralInformation

SecurityContact

OpenPorts

1418051969 | 2024-06-02T09:09:07.914963
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1434180020 | 2024-05-29T02:56:02.348649
80 / tcp

Apache httpd

1912127382 | 2024-06-01T17:55:28.310500
137 / udp

-1765110032 | 2024-05-30T05:54:29.981154
443 / tcp

Nextcloud

-2084059752 | 2024-05-24T23:51:19.522632
445 / tcp

1043201211 | 2024-05-30T04:28:56.286796
554 / tcp

315369637 | 2024-05-11T17:11:27.325039
1433 / tcp

MS-SQL Server 2005 SP3RTW9.0.4035.0

685507670 | 2024-05-26T01:42:48.161235
1434 / udp

SQL Server Browser Service

-1538260461 | 2024-05-31T18:48:36.511548
2000 / tcp

MikroTik bandwidth-test server

-1074019164 | 2024-05-31T12:59:56.607951
6080 / tcp

1857966803 | 2024-05-20T20:24:27.552220
8181 / tcp

Products

Pricing

Contact Us

161.10.255.255

Last Seen: 2024-06-02

Tags:

GeneralInformation

SecurityContact

OpenPorts

1418051969 | 2024-06-02T09:09:07.914963 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1434180020 | 2024-05-29T02:56:02.348649 80 / tcp

Apache httpd

1912127382 | 2024-06-01T17:55:28.310500 137 / udp

-1765110032 | 2024-05-30T05:54:29.981154 443 / tcp

Nextcloud

-2084059752 | 2024-05-24T23:51:19.522632 445 / tcp

1043201211 | 2024-05-30T04:28:56.286796 554 / tcp

315369637 | 2024-05-11T17:11:27.325039 1433 / tcp

MS-SQL Server 2005 SP3RTW9.0.4035.0

685507670 | 2024-05-26T01:42:48.161235 1434 / udp

SQL Server Browser Service

-1538260461 | 2024-05-31T18:48:36.511548 2000 / tcp

MikroTik bandwidth-test server

-1074019164 | 2024-05-31T12:59:56.607951 6080 / tcp

1857966803 | 2024-05-20T20:24:27.552220 8181 / tcp

Products

Pricing

Contact Us

1418051969 | 2024-06-02T09:09:07.914963
22 / tcp

1434180020 | 2024-05-29T02:56:02.348649
80 / tcp

1912127382 | 2024-06-01T17:55:28.310500
137 / udp

-1765110032 | 2024-05-30T05:54:29.981154
443 / tcp

-2084059752 | 2024-05-24T23:51:19.522632
445 / tcp

1043201211 | 2024-05-30T04:28:56.286796
554 / tcp

315369637 | 2024-05-11T17:11:27.325039
1433 / tcp

685507670 | 2024-05-26T01:42:48.161235
1434 / udp

-1538260461 | 2024-05-31T18:48:36.511548
2000 / tcp

-1074019164 | 2024-05-31T12:59:56.607951
6080 / tcp

1857966803 | 2024-05-20T20:24:27.552220
8181 / tcp