Hostnames |
nikanhospital.com uk.log.spike |
Domains | nikanhospital.com spike. |
Cloud Provider | DigitalOcean |
Cloud Region | de-he |
Country | Germany |
City | Frankfurt am Main |
Organization | DigitalOcean, LLC |
ISP | DigitalOcean, LLC |
ASN | AS14061 |
-1939829447 | 2024-09-14T22:48:41.07314022 / tcp
SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11 Key type: ssh-rsa Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDSVs1115UDffjvdtX0AqxtDpHLDt9U0x7Rh3Oud4I8RJwz WTmi7l2rsw0NOZVTaxe2FEkpPwI3X/JZP5wcISY22F+g4qPcg2kxRKlU8uKv2SHDnGmdtHM2x1KB PH/zCReuTethScsA5fzfXp9mRijAQCfsKYkdsvK6M1hdAxQHENE0FZ1ZPbcOEQfjZdKT9e9z7A+Q axzsPCes1atgu7fqMZ4cCEH3034ccrzSA6PKWZBU/MKT7gFKLJYYqJvnGOvDrHhUC3IWtgHu7Fbj KrqWQ8zecwjFEMiWdgl/BY3IrBs7734h5v5z5Q254JG0yUp806Chm0xx7ch062EgdzasSm36+bUo zSI8K+aotDWYbmrrtu64D56/36gdryYQk6J03MKX9ix3sPIYMyX7X6O2t8zvprQjxgy8rXiijaz+ VzeK0s6gI15XhbK7zKizOqXGsvmR1o6J1fYpGuHvZXz/15Pqe103g8FpQugframezvMVfHELvqo7 XILM3q4kKNE= Fingerprint: 80:7f:53:09:aa:52:7b:bf:c8:09:a9:f0:ed:9d:31:87 Kex Algorithms: curve25519-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 diffie-hellman-group-exchange-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group14-sha256 kex-strict-s-v00@openssh.com Server Host Key Algorithms: rsa-sha2-512 rsa-sha2-256 ssh-rsa ecdsa-sha2-nistp256 ssh-ed25519 Encryption Algorithms: chacha20-poly1305@openssh.com aes128-ctr aes192-ctr aes256-ctr aes128-gcm@openssh.com aes256-gcm@openssh.com MAC Algorithms: umac-64-etm@openssh.com umac-128-etm@openssh.com hmac-sha2-256-etm@openssh.com hmac-sha2-512-etm@openssh.com hmac-sha1-etm@openssh.com umac-64@openssh.com umac-128@openssh.com hmac-sha2-256 hmac-sha2-512 hmac-sha1 Compression Algorithms: none zlib@openssh.com
1394169126 | 2024-09-13T05:11:07.59338353 / tcp
9.18.28-0ubuntu0.20.04.1-Ubuntu Resolver name: uk
1394169126 | 2024-09-05T10:45:10.94065553 / udp
9.18.28-0ubuntu0.20.04.1-Ubuntu Resolver name: uk
-1193705340 | 2024-09-06T21:06:59.727371443 / tcp
HTTP/1.1 403 Forbidden Connection: Keep-Alive Content-Length: 272 Content-Type: text/html; charset=iso-8859-1 Date: Fri, 06 Sep 2024 21:06:59 GMT Keep-Alive: timeout=15; max=19
Certificate: Data: Version: 3 (0x2) Serial Number: 1b:a6:ad:0e:df:af:3e:46:ce:03:fb:1a:82:3a:1d:90 Signature Algorithm: sha256WithRSAEncryption Issuer: C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Domain Validation CA SHA2 Validity Not Before: Jul 11 08:13:07 2023 GMT Not After : Jul 10 08:13:06 2024 GMT Subject: CN=*.nikanhospital.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:be:07:c5:47:7d:bd:20:82:c5:a1:d9:b2:6a:fc: f4:37:f5:be:01:06:b0:09:76:c9:63:f4:1b:48:df: bc:d9:b8:0b:57:75:fc:98:59:be:82:cf:fc:cc:ff: af:6e:3f:23:f7:5d:08:d3:84:76:81:af:f2:28:5c: 3c:83:e0:2c:9e:bf:7c:a2:29:c0:6c:42:f5:0e:9f: b7:66:17:e2:64:97:96:ff:db:8a:f4:a9:bd:ce:6c: ba:82:fb:12:91:a3:e1:b9:bf:4b:ba:c9:52:01:c4: 0e:bb:6b:21:57:19:b5:2e:6e:f8:b2:06:de:e5:37: 83:58:ba:6f:cb:85:c1:ce:61:57:a4:a3:5d:13:c7: a8:15:25:9e:e6:b7:9d:23:e2:39:a2:ef:d5:b1:d1: ca:74:eb:35:88:1f:60:7b:58:3d:5d:de:f0:2b:da: 06:76:a3:da:5c:14:71:25:68:be:ee:dc:7e:90:a3: 21:8e:67:5a:75:71:f0:27:e5:0c:d1:6c:a7:27:11: ad:c7:05:24:b2:e5:a8:5f:7e:34:6a:13:09:9d:15: c0:17:91:a2:57:c1:75:06:29:d8:e4:a0:86:1e:f8: f5:9d:72:25:a2:dc:63:95:bd:28:19:dd:6d:8b:79: 7b:65:4f:ce:d1:87:5c:03:89:60:80:e8:db:79:d8: 0c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:FALSE X509v3 CRL Distribution Points: Full Name: URI:http://crl.certum.pl/dvcasha2.crl Authority Information Access: OCSP - URI:http://dvcasha2.ocsp-certum.com CA Issuers - URI:http://repository.certum.pl/dvcasha2.cer X509v3 Authority Key Identifier: E5:31:AD:BF:3A:11:96:F4:83:BC:50:3C:D4:B7:90:9B:90:EE:DE:25 X509v3 Subject Key Identifier: CD:12:CE:9B:9D:99:9E:FA:A0:26:59:B4:F4:07:0D:4A:10:D3:53:19 X509v3 Issuer Alternative Name: email:dvcasha2@certum.pl X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 Policy: 1.2.616.1.113527.2.5.1.3 CPS: https://www.certum.pl/CPS X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Subject Alternative Name: DNS:*.nikanhospital.com, DNS:nikanhospital.com CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Jul 11 08:13:07.589 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:F6:FB:AF:C0:26:CE:07:B3:4C:78:D1: 81:5B:C3:27:D2:9C:A8:3A:C6:75:E1:79:82:6E:9E:DA: 12:B5:E2:2E:03:02:20:75:19:DB:8A:78:97:A9:7E:60: 9F:9E:CA:C6:65:EF:A8:FC:CE:A7:33:73:86:56:EE:21: 22:95:44:C6:A3:79:A8 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB: 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73 Timestamp : Jul 11 08:13:07.618 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:3B:BC:3F:22:A9:4C:C4:2B:50:A8:5B:AD: E9:F2:9F:8D:06:9E:A2:F7:C5:74:40:FC:CC:02:56:21: 8C:F5:1D:27:02:20:54:6A:62:F4:92:7E:29:42:2B:49: 30:DF:1F:4C:1D:4A:DE:CC:C5:F7:33:B2:31:28:5F:6B: CF:85:25:6B:39:3B Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Jul 11 08:13:07.644 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:95:C9:9B:96:7B:4C:A6:22:4E:03:26: B4:EA:99:F1:32:73:81:FC:DF:31:86:72:5D:8F:26:33: 09:99:07:B5:ED:02:20:34:70:0C:8A:82:DD:F8:ED:76: D2:7F:E7:04:D0:36:80:4D:9D:06:85:4A:A3:18:E2:66: 9A:62:CC:B0:DD:83:20 Signature Algorithm: sha256WithRSAEncryption Signature Value: 3d:cb:20:36:36:78:7d:41:7d:5d:3d:a3:b6:fa:0f:cb:96:8d: 7c:47:d0:6e:90:f5:69:d9:34:3f:2c:9b:5e:22:22:2f:20:06: c5:75:82:1c:9d:20:37:c8:4d:fb:d4:31:01:cd:93:ec:d8:10: 68:4f:98:83:8d:28:2c:94:a7:85:94:23:1f:e6:61:87:ff:cf: a3:b0:6b:1f:62:5a:8f:7b:9a:cf:d2:5c:92:7a:a9:bf:77:e1: 83:eb:7d:6b:12:56:f1:00:1e:9f:f4:bf:e8:40:65:66:aa:df: 03:fc:6d:6c:7c:a5:ac:8f:ba:9c:88:4e:26:ec:c3:34:50:87: 25:b6:e2:dc:88:71:da:0a:d9:49:d4:a0:c2:f1:76:54:5a:0b: f9:2b:b8:db:b0:37:9c:14:7c:86:94:28:57:e5:1a:3a:ff:02: ce:03:ac:c3:71:ab:5d:0a:f3:c3:b6:54:5c:4a:f2:0c:01:f4: c1:7f:d7:c9:53:aa:65:e6:f0:c1:62:88:86:6e:53:5a:38:ed: 77:bb:cf:0f:ac:ac:01:81:bc:a5:84:80:4a:4f:8d:37:8d:bf: 3c:43:32:f5:8b:ab:46:29:0c:da:63:74:5f:1a:e3:ad:ac:25: 41:ee:38:c8:a2:1e:f9:ca:f6:3a:8e:d4:df:0f:4f:2e:64:cc: b7:12:5e:37
378580232 | 2024-09-13T21:11:14.1042551194 / udp
@A\x1d"\x00Y\n\xcb\x90\x01\x00\x00\x00\x00\xd9\xce:\xbe\xf6\x98\xa5m\x00\x00\x00\x00
152771582 | 2024-09-01T18:23:13.5840621701 / udp
\xc8\x02\x00R\x00\x00\x00\x00\x00\x00\x00\x01\x80\x08\x00\x00\x00\x00\x00\x02\x80\x08\x00\x00\x00\x02\x01\x00\x00\n\x00\x00\x00\x03\x00\x00\x00\x03\x00\n\x00\x00\x00\x04\x00\x00\x00\x03\x80\x08\x00\x00\x00\x07uk\x00\n\x00\x00\x00\x08L2TP\x80\x08\x00\x00\x00\t\x00\x01\x00\x08\x00\x00\x00\n\x00\x10
-1315678293 | 2024-09-14T22:56:46.9989374500 / udp
VPN (IKE NAT-T) Initiator SPI: db6df243225d4142 Responder SPI: 0000000000000000 Next Payload: Notification (N) Version: 1.0 Exchange Type: Informational Flags: Encryption: False Commit: False Authentication: False Message ID: 3f44ce6e Length: 48