LeakIX - Host 101.132.163.129

Host 101.132.163.129

China

Hangzhou Alibaba Advertising Co.,Ltd.

linux-glibc2.5 x86_64

Software information

MySQL Community Server (GPL) 5.6.33

tcp/3306

nginx nginx

tcp/443 tcp/81

MySQL is publicly available

MySQL is currently open without authentication.

Additionally a ransom note has been found in the dataset which indicates it has been compromised

This results in all the database data made available publicly.

IP: 101.132.163.129
Port: 3306

First seen 2022-07-20 18:20
Last seen 2022-11-14 21:04
Open for 117 days
- Severity: high
  Fingerprint: cf350410ecceb5fd0add7226f2d6d63743202dcf2ef002422ef002422ef00242
```
Databases: 3, row count: 4, size: 49.2 kB
Found table mysql.tutcwv32 with 1 records
Found table mysql.uehbls with 1 records
Found table z_readme_to_recover.recover_your_data with 2 records
```
  Found on 2022-07-20 18:20
  
  49.2 kBytes 4 rows
Create report

Open service 101.132.163.129:9000

2023-01-13 15:26

Content-Type: application/json;charset=UTF-8
Content-Length: 103
connection: close


{"timestamp":"2023-01-13T15:26:09.680+0000","path":"/","status":404,"error":"Not Found","message":null}

Found 2023-01-13 by HttpPlugin

Create report

Open service 101.132.163.129:3306

2023-01-11 18:36
Found 2023-01-11 by tcpid
Create report

Open service 101.132.163.129:9000

2022-11-17 08:17

Content-Type: application/json;charset=UTF-8
Content-Length: 103
connection: close


{"timestamp":"2022-11-17T08:17:53.857+0000","path":"/","status":404,"error":"Not Found","message":null}

Found 2022-11-17 by HttpPlugin

Create report

Open service 101.132.163.129:80

2022-11-18 08:55

Content-Type: text/html;charset=utf-8
Content-Language: en
Content-Length: 1074
Date: Fri, 18 Nov 2022 08:55:38 GMT
Connection: close

Page title: HTTP Status 404 – Not Found

<!doctype html><html lang="en"><head><title>HTTP Status 404 – Not Found</title><style type="text/css">h1 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:22px;} h2 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:16px;} h3 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:14px;} body {font-family:Tahoma,Arial,sans-serif;color:black;background-color:white;} b {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;} p {font-family:Tahoma,Arial,sans-serif;background:white;color:black;font-size:12px;} a {color:black;} a.name {color:black;} .line {height:1px;background-color:#525D76;border:none;}</style></head><body><h1>HTTP Status 404 – Not Found</h1><hr class="line" /><p><b>Type</b> Status Report</p><p><b>Message</b> &#47;</p><p><b>Description</b> The origin server did not find a current representation for the target resource or is not willing to disclose that one exists.</p><hr class="line" /><h3>Apache Tomcat/8.5.35</h3></body></html>

Found 2022-11-18 by HttpPlugin

Create report

Open service 101.132.163.129:81

2022-11-15 20:34

Server: nginx
Date: Tue, 15 Nov 2022 20:34:32 GMT
Content-Type: text/html
Content-Length: 1297
Last-Modified: Fri, 16 Oct 2020 10:00:52 GMT
Connection: close
Vary: Accept-Encoding
ETag: "5f896f54-511"
Accept-Ranges: bytes

Page title: 掌上车管

<!DOCTYPE html><html><head><meta charset=utf-8><meta name=viewport content="width=device-width,minimum-scale=1,maximum-scale=1,user-scalable=no"><title>掌上车管</title><meta name=apple-mobile-web-app-capable content=yes><meta name=format-detection content="telephone=no"><meta content="telephone=no" name=format-detection><script type=text/javascript src=./static/abcd/eroc-min.js></script><script type=text/javascript src=./static/abcd/sea-min.js></script><script type=text/javascript src=./static/abcd/b64-min.js></script><script type=text/javascript src="https://webapi.amap.com/maps?v=1.4.9&key=ee582b84f239b6a930fe95d7c9d26491&plugin=AMap.Geocoder"></script><script type=text/javascript src="https://webapi.amap.com/ui/1.0/main.js?v=1.0.11"></script><style type=text/css>body {
            height: 100%;
            width: 100%;
            margin: 0;
            padding: 0;
        }</style><link href=./static/css/app.bc5669cd37d82bc3722cad2770ddf6c4.css rel=stylesheet></head><body><div class=appCssDiv id=app></div><script type=text/javascript src=./static/js/manifest.484c28028e3260dde486.js></script><script type=text/javascript src=./static/js/vendor.3f2099a2db65a1090698.js></script><script type=text/javascript src=./static/js/app.e458e3a6e5f0ee1c3ed6.js></script></body></html>

Found 2022-11-15 by HttpPlugin

Create report

Open service 101.132.163.129:3306

2022-11-14 21:04
```
No or default MySQL authentication found.
```
Found 2022-11-14 by l9explore
Create report

Open service 101.132.163.129:443

2022-11-18 06:26

Server: nginx
Date: Fri, 18 Nov 2022 06:26:19 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Wed, 21 Apr 2021 07:22:11 GMT
Connection: close
ETag: "607fd2a3-264"
Accept-Ranges: bytes

Page title: Welcome to nginx!

<!DOCTYPE html>
<html>
<head>
<title>Welcome to nginx!</title>
<style>
    body {
        width: 35em;
        margin: 0 auto;
        font-family: Tahoma, Verdana, Arial, sans-serif;
    }
</style>
</head>
<body>
<h1>Welcome to nginx!</h1>
<p>If you see this page, the nginx web server is successfully installed and
working. Further configuration is required.</p>

<p>For online documentation and support please refer to
<a href="http://nginx.org/">nginx.org</a>.<br/>
Commercial support is available at
<a href="http://nginx.com/">nginx.com</a>.</p>

<p><em>Thank you for using nginx.</em></p>
</body>
</html>

Found 2022-11-18 by HttpPlugin

Create report

Open service 101.132.163.129:3306

2023-01-21 01:42
Found 2023-01-21 by tcpid
Create report

Open service 101.132.163.129:443

2022-11-28 14:32

Server: nginx
Date: Mon, 28 Nov 2022 14:33:00 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Wed, 21 Apr 2021 07:22:11 GMT
Connection: close
ETag: "607fd2a3-264"
Accept-Ranges: bytes

Page title: Welcome to nginx!

<!DOCTYPE html>
<html>
<head>
<title>Welcome to nginx!</title>
<style>
    body {
        width: 35em;
        margin: 0 auto;
        font-family: Tahoma, Verdana, Arial, sans-serif;
    }
</style>
</head>
<body>
<h1>Welcome to nginx!</h1>
<p>If you see this page, the nginx web server is successfully installed and
working. Further configuration is required.</p>

<p>For online documentation and support please refer to
<a href="http://nginx.org/">nginx.org</a>.<br/>
Commercial support is available at
<a href="http://nginx.com/">nginx.com</a>.</p>

<p><em>Thank you for using nginx.</em></p>
</body>
</html>

Found 2022-11-28 by HttpPlugin

Create report

Open service 101.132.163.129:443

2022-11-25 03:18

Server: nginx
Date: Fri, 25 Nov 2022 03:18:43 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Wed, 21 Apr 2021 07:22:11 GMT
Connection: close
ETag: "607fd2a3-264"
Accept-Ranges: bytes

Page title: Welcome to nginx!

<!DOCTYPE html>
<html>
<head>
<title>Welcome to nginx!</title>
<style>
    body {
        width: 35em;
        margin: 0 auto;
        font-family: Tahoma, Verdana, Arial, sans-serif;
    }
</style>
</head>
<body>
<h1>Welcome to nginx!</h1>
<p>If you see this page, the nginx web server is successfully installed and
working. Further configuration is required.</p>

<p>For online documentation and support please refer to
<a href="http://nginx.org/">nginx.org</a>.<br/>
Commercial support is available at
<a href="http://nginx.com/">nginx.com</a>.</p>

<p><em>Thank you for using nginx.</em></p>
</body>
</html>

Found 2022-11-25 by HttpPlugin

Create report

Open service 101.132.163.129:9000

2022-12-15 00:01

Content-Type: application/json;charset=UTF-8
Content-Length: 103
connection: close


{"timestamp":"2022-12-15T00:01:37.379+0000","path":"/","status":404,"error":"Not Found","message":null}

Found 2022-12-15 by HttpPlugin

Create report

Open service 101.132.163.129:80

2022-12-12 19:14

Content-Type: text/html;charset=utf-8
Content-Language: en
Content-Length: 1074
Date: Mon, 12 Dec 2022 19:14:00 GMT
Connection: close

Page title: HTTP Status 404 – Not Found

<!doctype html><html lang="en"><head><title>HTTP Status 404 – Not Found</title><style type="text/css">h1 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:22px;} h2 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:16px;} h3 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:14px;} body {font-family:Tahoma,Arial,sans-serif;color:black;background-color:white;} b {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;} p {font-family:Tahoma,Arial,sans-serif;background:white;color:black;font-size:12px;} a {color:black;} a.name {color:black;} .line {height:1px;background-color:#525D76;border:none;}</style></head><body><h1>HTTP Status 404 – Not Found</h1><hr class="line" /><p><b>Type</b> Status Report</p><p><b>Message</b> &#47;</p><p><b>Description</b> The origin server did not find a current representation for the target resource or is not willing to disclose that one exists.</p><hr class="line" /><h3>Apache Tomcat/8.5.35</h3></body></html>

Found 2022-12-12 by HttpPlugin

Create report

Open service 101.132.163.129:443

2022-12-15 13:16

Server: nginx
Date: Thu, 15 Dec 2022 13:16:54 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Wed, 21 Apr 2021 07:22:11 GMT
Connection: close
ETag: "607fd2a3-264"
Accept-Ranges: bytes

Page title: Welcome to nginx!

<!DOCTYPE html>
<html>
<head>
<title>Welcome to nginx!</title>
<style>
    body {
        width: 35em;
        margin: 0 auto;
        font-family: Tahoma, Verdana, Arial, sans-serif;
    }
</style>
</head>
<body>
<h1>Welcome to nginx!</h1>
<p>If you see this page, the nginx web server is successfully installed and
working. Further configuration is required.</p>

<p>For online documentation and support please refer to
<a href="http://nginx.org/">nginx.org</a>.<br/>
Commercial support is available at
<a href="http://nginx.com/">nginx.com</a>.</p>

<p><em>Thank you for using nginx.</em></p>
</body>
</html>

Found 2022-12-15 by HttpPlugin

Create report

Open service 101.132.163.129:9000

2022-11-07 14:26

HTTP/1.1 404 Not Found
Content-Type: application/json;charset=UTF-8
Content-Length: 103
connection: close

{"timestamp":"2022-11-07T14:25:59.822+0000","path":"/","status":404,"error":"Not Found","message":null}

Found 2022-11-07 by l9explore

Create report

Open service 101.132.163.129:81

2022-12-07 08:08

Server: nginx
Date: Wed, 07 Dec 2022 08:08:30 GMT
Content-Type: text/html
Content-Length: 1297
Last-Modified: Fri, 16 Oct 2020 10:00:52 GMT
Connection: close
Vary: Accept-Encoding
ETag: "5f896f54-511"
Accept-Ranges: bytes

Page title: 掌上车管

<!DOCTYPE html><html><head><meta charset=utf-8><meta name=viewport content="width=device-width,minimum-scale=1,maximum-scale=1,user-scalable=no"><title>掌上车管</title><meta name=apple-mobile-web-app-capable content=yes><meta name=format-detection content="telephone=no"><meta content="telephone=no" name=format-detection><script type=text/javascript src=./static/abcd/eroc-min.js></script><script type=text/javascript src=./static/abcd/sea-min.js></script><script type=text/javascript src=./static/abcd/b64-min.js></script><script type=text/javascript src="https://webapi.amap.com/maps?v=1.4.9&key=ee582b84f239b6a930fe95d7c9d26491&plugin=AMap.Geocoder"></script><script type=text/javascript src="https://webapi.amap.com/ui/1.0/main.js?v=1.0.11"></script><style type=text/css>body {
            height: 100%;
            width: 100%;
            margin: 0;
            padding: 0;
        }</style><link href=./static/css/app.bc5669cd37d82bc3722cad2770ddf6c4.css rel=stylesheet></head><body><div class=appCssDiv id=app></div><script type=text/javascript src=./static/js/manifest.484c28028e3260dde486.js></script><script type=text/javascript src=./static/js/vendor.3f2099a2db65a1090698.js></script><script type=text/javascript src=./static/js/app.e458e3a6e5f0ee1c3ed6.js></script></body></html>

Found 2022-12-07 by HttpPlugin

Create report

Open service 101.132.163.129:9000

2022-12-11 07:41

Content-Type: application/json;charset=UTF-8
Content-Length: 103
connection: close


{"timestamp":"2022-12-11T07:41:31.763+0000","path":"/","status":404,"error":"Not Found","message":null}

Found 2022-12-11 by HttpPlugin

Create report

Open service 101.132.163.129:443

2022-12-09 23:55

Server: nginx
Date: Fri, 09 Dec 2022 23:55:47 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Wed, 21 Apr 2021 07:22:11 GMT
Connection: close
ETag: "607fd2a3-264"
Accept-Ranges: bytes

Page title: Welcome to nginx!

<!DOCTYPE html>
<html>
<head>
<title>Welcome to nginx!</title>
<style>
    body {
        width: 35em;
        margin: 0 auto;
        font-family: Tahoma, Verdana, Arial, sans-serif;
    }
</style>
</head>
<body>
<h1>Welcome to nginx!</h1>
<p>If you see this page, the nginx web server is successfully installed and
working. Further configuration is required.</p>

<p>For online documentation and support please refer to
<a href="http://nginx.org/">nginx.org</a>.<br/>
Commercial support is available at
<a href="http://nginx.com/">nginx.com</a>.</p>

<p><em>Thank you for using nginx.</em></p>
</body>
</html>

Found 2022-12-09 by HttpPlugin

Create report

*.jsecode.comjsecode.com

Fingerprint:

229b3068117cdf5941cdf0350c0d1aeb198d43facb095bec4a73996dd0b0ed95

CN:

*.jsecode.com

Key:

RSA-2048

Issuer:

RapidSSL TLS DV RSA Mixed SHA256 2020 CA-1

Not before:

2022-03-10 00:00

Not after:

2023-04-10 23:59

Data leak

Size

49.2 kB

Collections

Rows

Domain summary

No record

Host 101.132.163.129

China

Software information

MySQL is publicly available

*.jsecode.comjsecode.com

Data leak

Domain summary