1418051969 | 2024-06-02T09:09:07.914963
22 /
tcp
SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDCWXTehcvUSu+ypiBP0mF63KSEuzI0o+oD7FJWKCrvaEH9
IMz7C3UODHhxw+FLvKCPNosjctiQAJPm4cNLYyi3hTy+UMjOSX8YmeGafj8UILltaRB8a2dk6SEY
n2NlFoyZRrlG3EaqOTsYzIcvwxoFcmooLKvmXX4ETWC7NpyOYnGYXJfwebEEl/opvDeNm7EWzIsl
/UK4b1bpfA/l6SAVY8elvMQHr7cV5xCO4bdOFi45PFLux0PNaob5nQlp3mBa3mXLBNh8x3x3gR4K
ogAgQDQiz+9ZLknt1yy201mFeyUR3psmR/UngALSEzzCIZmYNllK3cNdZg2hFsuN3upUXJw7dBh+
f8jpf9eSlf+MgESdtyIl8WkZQ7HURhz6vvxL5efboP91KGMiDwYloOrRhj3JMgmqqZWyxOnZbaQe
edGkoEWN9/JCSuUmIc7w90PCphpfLjvhTBd7LP4+b6KKRvJMkg4xqzS8A9eHBgNBXcUYpFZmIin8
Bb0aWdpzC08=
Fingerprint: 8d:58:d0:26:ad:97:d0:b3:17:04:29:d1:c8:bc:0c:fb
Kex Algorithms:
curve25519-sha256
curve25519-sha256@libssh.org
ecdh-sha2-nistp256
ecdh-sha2-nistp384
ecdh-sha2-nistp521
diffie-hellman-group-exchange-sha256
diffie-hellman-group16-sha512
diffie-hellman-group18-sha512
diffie-hellman-group14-sha256
kex-strict-s-v00@openssh.com
Server Host Key Algorithms:
rsa-sha2-512
rsa-sha2-256
ssh-rsa
ecdsa-sha2-nistp256
ssh-ed25519
Encryption Algorithms:
chacha20-poly1305@openssh.com
aes128-ctr
aes192-ctr
aes256-ctr
aes128-gcm@openssh.com
aes256-gcm@openssh.com
MAC Algorithms:
umac-64-etm@openssh.com
umac-128-etm@openssh.com
hmac-sha2-256-etm@openssh.com
hmac-sha2-512-etm@openssh.com
hmac-sha1-etm@openssh.com
umac-64@openssh.com
umac-128@openssh.com
hmac-sha2-256
hmac-sha2-512
hmac-sha1
Compression Algorithms:
none
zlib@openssh.com
1434180020 | 2024-05-29T02:56:02.348649
80 /
tcp
HTTP/1.1 301 Moved Permanently
Date: Wed, 29 May 2024 02:56:02 GMT
Server: Apache
Location: https://161.10.255.255:443/
Content-Length: 235
Content-Type: text/html; charset=iso-8859-1
1912127382 | 2024-06-01T17:55:28.310500
137 /
udp
NetBIOS Response:
Server Name: BORDE FPS
MAC Address: 00:00:00:00:00:00
Names:
BORDE FPS <0x0>
BORDE FPS <0x3>
BORDE FPS <0x20>
MSHOME <0x0>
-1765110032 | 2024-05-30T05:54:29.981154
443 /
tcp
HTTP/1.1 200 OK
Date: Thu, 30 May 2024 05:54:29 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
X-Request-Id: pnhX8a7g7MIUZyFtE1cN
Content-Security-Policy: default-src 'none';base-uri 'none';manifest-src 'self';script-src 'nonce-QXAvZGMwT2tLRlBkeHNuUSt6UnFQbjVZSitUZHVOK2NmZFNob0ZERHc0Zz06U3ZLNkdYR1FRV3V6OUtPRmlnSUJjZ3dvUk4yZXlyRFNHcExHNGorWGk4cz0=';style-src 'self' 'unsafe-inline';img-src 'self' data: blob:;font-src 'self' data:;connect-src 'self';media-src 'self';frame-src 'self';frame-ancestors 'self';form-action 'self'
Feature-Policy: autoplay 'self';camera 'none';fullscreen 'self';geolocation 'none';microphone 'none';payment 'none'
X-Robots-Tag: noindex, nofollow
Set-Cookie: oc_sessionPassphrase=w90874XXmx5ErxuIZabBRgJw3tJvFlXJbJh%2FvVaQykgtiVF0n%2Brq%2BCnrUPXAtqb7co46W4LnU5hnn3uKKaHT0jxbJw06aHKtMY3nb%2BKGP%2ByUvcAlg6Z48MGPNNi3F1p%2B; path=/; secure; HttpOnly; SameSite=Lax
Set-Cookie: __Host-nc_sameSiteCookielax=true; path=/; httponly;secure; expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=lax
Set-Cookie: __Host-nc_sameSiteCookiestrict=true; path=/; httponly;secure; expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=strict
Set-Cookie: ocww8hl82tcx=2o17p1n51hhvtq7biti2cdq5ge; path=/; secure; HttpOnly; SameSite=Lax
Strict-Transport-Security: max-age=63072000; includeSubdomains
Referrer-Policy: no-referrer
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-XSS-Protection: 1; mode=block
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:b5:f3:45:85:c0:64:a4:22:fa:88:b2:6f:b6:7e:ab:9d:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Apr 6 20:08:42 2024 GMT
Not After : Jul 5 20:08:41 2024 GMT
Subject: CN=drive.fergonsas.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (4096 bit)
Modulus:
00:ba:88:b5:f0:32:7c:cc:0d:bb:26:c7:c5:e7:c8:
c1:3a:5e:d8:dc:8a:37:3e:36:41:60:ad:52:7a:7c:
aa:59:25:10:6c:37:9f:d8:21:d5:07:ea:28:cb:b8:
6f:ed:19:63:2d:d9:75:1e:fd:4c:ee:d2:75:98:22:
f0:a1:1c:23:ec:67:83:6a:a1:c6:8b:4f:04:44:51:
58:8e:13:6a:30:39:e9:db:4f:28:61:9c:4e:82:55:
7e:24:37:55:29:3a:08:ab:5f:e0:b8:b1:b4:04:b9:
6c:8d:d3:00:46:e2:ac:42:f1:2a:8c:7c:de:05:ce:
70:87:23:cb:91:6a:6f:ab:6c:24:54:a3:73:1d:f0:
35:52:22:3c:0b:41:3a:e8:e5:75:cf:9c:4d:f8:78:
2f:88:ee:91:63:d9:23:a1:bd:67:37:11:7d:1d:dd:
ff:18:d5:91:bc:71:b0:e0:ea:94:f3:ee:47:57:1c:
1d:d3:ca:bf:fd:b6:db:4e:c3:0f:bb:06:da:d7:cf:
4a:69:71:53:cc:62:76:cc:14:aa:82:f4:16:01:73:
51:d8:ff:7a:3f:7a:13:2d:fa:d0:fd:4d:d1:37:9d:
a3:55:bf:22:c9:2f:bb:85:7d:2d:25:8d:a2:92:cd:
f7:cb:3a:8e:46:d1:81:b5:69:5b:46:c4:d9:ab:b4:
f8:17:33:01:b4:ea:3c:dc:b0:66:50:ea:28:32:e1:
2a:2b:a9:e1:de:0a:93:fc:a1:1e:d4:e2:4a:b1:da:
0f:f8:b6:3b:1c:7b:6b:ed:47:85:ec:f4:1d:c6:4f:
3b:03:1f:33:7d:c5:2f:d8:27:42:09:4b:c2:bb:3e:
48:9a:fa:e5:5a:3a:e5:88:70:0c:6d:99:ad:df:44:
61:d7:42:1b:28:45:1f:ee:12:7c:2e:cb:af:77:73:
93:c5:97:66:cf:46:8c:bd:0c:fe:ed:95:79:01:b1:
ac:06:74:a4:11:f0:c8:6c:81:02:8b:17:1e:2d:c3:
8e:d1:54:7f:ea:9f:cb:0a:20:a9:8c:50:3b:9c:8c:
60:cb:82:4e:a3:ca:41:dc:74:d9:69:3a:06:e4:61:
d7:01:77:3d:84:5a:1a:a3:75:61:40:07:41:d9:49:
d3:6b:f9:b5:86:3a:df:60:fc:f3:9c:3e:8a:3b:6b:
75:cd:79:47:ca:da:b6:9a:bf:3b:37:49:31:6d:54:
b5:ec:83:98:cf:91:54:74:5a:86:20:bb:fb:b4:d4:
af:00:b0:6e:f6:65:21:44:c7:d8:a6:e0:65:03:e2:
1a:68:73:21:4f:06:4c:5d:fd:d3:2a:17:05:2a:d5:
ee:79:fa:29:89:f8:44:62:bc:fd:5c:a3:01:6b:9e:
92:63:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
03:92:15:38:66:68:F5:B6:29:6F:77:E6:0B:26:7E:6C:22:7F:F4:EF
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:drive.fergonsas.com
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
Timestamp : Apr 6 21:08:43.196 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:33:D8:75:B7:48:DE:28:E2:48:67:53:97:
34:64:40:3E:4E:7A:4C:2D:9C:81:51:8F:13:21:CD:08:
72:1C:CB:9A:02:20:7B:4E:C9:9B:9D:D6:E6:5B:A0:F9:
E9:34:23:AB:1F:2B:4B:32:A1:AB:55:DF:E8:B7:0C:05:
B4:01:E3:5B:12:C6
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Apr 6 21:08:43.192 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:85:98:E4:BC:B5:0F:9F:8B:4B:86:B3:
02:BF:AC:84:64:34:18:D7:7A:3E:A3:A8:7E:64:68:AC:
CC:D2:74:97:60:02:20:29:61:44:C5:A0:58:B3:4A:DC:
7C:76:52:B1:57:20:BA:C8:84:01:6C:83:01:D6:87:01:
5E:27:88:8E:63:B6:6D
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
58:9d:2c:60:b9:59:b6:83:e5:c0:5a:d1:fe:b1:6f:ee:dc:d7:
94:df:cc:17:e7:a3:a8:11:2b:dd:82:16:76:cc:35:d9:d6:c6:
77:2c:4c:0e:f3:6c:2e:0f:2e:2d:41:20:a9:ea:8c:8e:36:89:
c0:64:b0:20:23:cc:83:7a:d7:a9:85:85:30:01:63:7d:14:34:
8d:4a:5a:5e:f8:b5:16:15:83:95:35:8c:b3:9c:7d:2e:61:e6:
d3:32:e2:e0:60:8e:94:94:b1:dd:00:39:c7:7a:a3:18:70:2b:
54:3b:17:93:a5:21:c8:b3:e9:a2:a3:ed:81:59:78:f9:05:03:
ee:cc:5f:bd:ee:24:ea:42:bc:4a:fb:e4:3f:12:d9:e5:7b:c5:
a1:53:19:ec:57:5d:5f:4c:a6:61:98:8f:20:25:47:27:5b:63:
4c:95:2e:8a:e8:5e:b8:6e:6a:9c:22:75:d8:e3:a4:5d:ca:00:
79:81:b6:cd:1e:38:6b:07:f7:6d:1a:ba:d9:5c:aa:20:36:ff:
03:dc:63:df:6f:55:88:18:33:ed:66:50:52:e0:a8:c7:c9:80:
4c:98:23:61:08:4f:24:9b:2b:e7:11:33:2a:b0:c1:06:df:41:
fb:7c:fc:9b:96:0e:40:c8:d3:27:26:35:d3:bd:d1:b0:da:af:
85:06:d6:35
-2084059752 | 2024-05-24T23:51:19.522632
445 /
tcp
SMB Status:
Authentication: disabled
SMB Version: 1
Capabilities: large-files, nt-find, nt-smb, nt-status
1043201211 | 2024-05-30T04:28:56.286796
554 /
tcp
RTSP/1.0 401 Unauthorized
CSeq: 1
WWW-Authenticate: Digest realm="f49a29a43b30301895337454", nonce="1627826dc", algorithm="MD5"
315369637 | 2024-05-11T17:11:27.325039
1433 /
tcp
MS-SQL NTLM Info:
OS: Windows 10 (version 2004)/Windows Server (version 2004)
OS Build: 10.0.19041
Target Name: FERGON
NetBIOS Domain Name: FERGON
NetBIOS Computer Name: SVRCONTABILIDAD
DNS Domain Name: fergon.sas
DNS Tree Name: fergon.sas
FQDN: SVRCONTABILIDAD.fergon.sas
685507670 | 2024-05-26T01:42:48.161235
1434 /
udp
SQL Server Browser Service:
Instance #1:
Server Name: SVRCONTABILIDAD
Instance Name: WORLDOFFICE
Is Clustered: False
Version: 9.00.4035.00
TCP Port: 1433
Named Pipe: \\SVRCONTABILIDAD\pipe\MSSQL$WORLDOFFICE\sql\query
Version Name: MS-SQL Server 2005 SP3RTW
-1538260461 | 2024-05-31T18:48:36.511548
2000 /
tcp
-1074019164 | 2024-05-31T12:59:56.607951
6080 /
tcp
HTTP/1.1 200 OK
Server: WebSockify Python/2.7.17
Date: Fri, 31 May 2024 12:55:15 GMT
Content-type: text/html
Content-Length: 2585
Last-Modified: Tue, 27 Aug 2019 04:19:47 GMT
1857966803 | 2024-05-20T20:24:27.552220
8181 /
tcp
HTTP/1.1 200 OK
Date: Mon, 20 May 2024 20:19:50 GMT
Server:
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' ; object-src 'self' ; worker-src 'self' blob:
Content-type: text/html; charset=UTF-8
Last-modified: Mon, 19 Feb 2024 08:46:18 GMT
Accept-Ranges: bytes
Content-length: 580
Vary: Accept-Encoding
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=0
X-Content-Type-Options: nosniff
<html style="background:#007cef">
<head>
<meta http-equiv="expires" content="0">
<script type='text/javascript'>
pr=(document.location.protocol == 'https:') ? 'https' : 'http';
pt=(location.port == '') ? '' : ':' + location.port;
redirect_suffix = "/redirect.html?count="+Math.random();
if(location.hostname.indexOf(':') == -1)
{
location.href=pr+"://"+location.hostname+pt+redirect_suffix;
}
else //could be ipv6 addr
{
var url = "";
url=pr+"://["+ location.hostname.replace(/[\[\]]/g, '') +"]"+pt+redirect_suffix;
location.href = url;
}
</script>
</head>
<body>
</body>
</html>