LeakIX - Host 118.89.108.212

Host 118.89.108.212

China

Shenzhen Tencent Computer Systems Company Limited

Linux x86_64

Software information

nginx nginx

tcp/443 tcp/80

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 118.89.108.212
Port: 443
URL: https://118.89.108.212

First seen 2021-07-23 05:23
Last seen 2023-01-07 13:25
Open for 533 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc0363d38cc483a842642fe843529ec0e4
```
Found 4 files trough .DS_Store spidering:

/assets
/kefu_start_for_win
/template
/uploads
```
  Found on 2021-07-23 05:23
Create report

MySQL is publicly available

MySQL is currently open without authentication.

Additionally a ransom note has been found in the dataset which indicates it has been compromised

This results in all the database data made available publicly.

IP: 118.89.108.212
Port: 3306

First seen 2021-07-23 11:22
Last seen 2022-11-11 07:20
Open for 475 days

Severity: critical
Fingerprint: cf350410ecceb5fd61bfeb8fa8bdbbb909add75d16543034e46525f67b5c31a3

Databases: 53, row count: 4636, size: 2.0 MB
Found table laobanbufan.fa_admin with 2 records
Found table laobanbufan.fa_admin_log with 218 records
Found table laobanbufan.fa_adszone_ads with 3 records
Found table laobanbufan.fa_adszone_zone with 2 records
Found table laobanbufan.fa_area with 0 records
Found table laobanbufan.fa_article with 10 records
Found table laobanbufan.fa_article_category with 3 records
Found table laobanbufan.fa_article_content with 0 records
Found table laobanbufan.fa_attachment with 582 records
Found table laobanbufan.fa_auth_group with 5 records
Found table laobanbufan.fa_auth_group_access with 2 records
Found table laobanbufan.fa_auth_rule with 234 records
Found table laobanbufan.fa_category with 0 records
Found table laobanbufan.fa_config with 21 records
Found table laobanbufan.fa_ems with 0 records
Found table laobanbufan.fa_kefu_blacklist with 0 records
Found table laobanbufan.fa_kefu_config with 28 records
Found table laobanbufan.fa_kefu_csr_config with 3 records
Found table laobanbufan.fa_kefu_fast_reply with 7 records
Found table laobanbufan.fa_kefu_kbs with 0 records
Found table laobanbufan.fa_kefu_leave_message with 2 records
Found table laobanbufan.fa_kefu_reception_log with 1003 records
Found table laobanbufan.fa_kefu_record with 870 records
Found table laobanbufan.fa_kefu_session with 229 records
Found table laobanbufan.fa_kefu_toolbar with 8 records
Found table laobanbufan.fa_kefu_trajectory with 35 records
Found table laobanbufan.fa_kefu_user with 206 records
Found table laobanbufan.fa_law_office with 0 records
Found table laobanbufan.fa_law_office_case with 0 records
Found table laobanbufan.fa_lawyer with 9 records
Found table laobanbufan.fa_sms with 5 records
Found table laobanbufan.fa_test with 0 records
Found table laobanbufan.fa_user with 22 records
Found table laobanbufan.fa_user_commission with 4 records
Found table laobanbufan.fa_user_commission_settle with 0 records
Found table laobanbufan.fa_user_commission_settle_batch with 0 records
Found table laobanbufan.fa_user_group with 3 records
Found table laobanbufan.fa_user_money_log with 0 records
Found table laobanbufan.fa_user_rule with 12 records
Found table laobanbufan.fa_user_score_log with 2 records
Found table laobanbufan.fa_user_token with 375 records
Found table laobanbufan.fa_version with 0 records
Found table laobanbufan.fa_vip with 6 records
Found table laobanbufan.fa_vip_order with 343 records
Found table laobanbufan.fa_vip_record with 340 records
Found table laobanbufan.fa_weixin_cache with 2 records
Found table laobanbufan.fa_weixin_config with 15 records
Found table laobanbufan.fa_weixin_news with 0 records
Found table laobanbufan.fa_weixin_reply with 2 records
Found table laobanbufan.fa_weixin_routinetemplate with 0 records
Found table laobanbufan.fa_weixin_template with 0 records
Found table laobanbufan.fa_weixin_user with 22 records
Found table legal-advice.WARNING with 1 records

Found on 2022-11-11 07:20

2.0 MBytes 4636 rows

Severity: high
Fingerprint: cf350410ecceb5fd4cc9b2dc82f9f87986cdf9592c67f642a867bc59a6623f53

Databases: 85, row count: 6349, size: 4.1 MB
Found table legal-advice.fa_admin with 4 records
Found table legal-advice.fa_admin_log with 475 records
Found table legal-advice.fa_adszone_ads with 4 records
Found table legal-advice.fa_adszone_zone with 2 records
Found table legal-advice.fa_area with 0 records
Found table legal-advice.fa_article with 10 records
Found table legal-advice.fa_article_category with 1 records
Found table legal-advice.fa_article_content with 0 records
Found table legal-advice.fa_attachment with 97 records
Found table legal-advice.fa_auth_group with 5 records
Found table legal-advice.fa_auth_group_access with 4 records
Found table legal-advice.fa_auth_rule with 233 records
Found table legal-advice.fa_category with 0 records
Found table legal-advice.fa_config with 18 records
Found table legal-advice.fa_ems with 0 records
Found table legal-advice.fa_kefu_blacklist with 1 records
Found table legal-advice.fa_kefu_config with 24 records
Found table legal-advice.fa_kefu_csr_config with 6 records
Found table legal-advice.fa_kefu_fast_reply with 5 records
Found table legal-advice.fa_kefu_kbs with 2 records
Found table legal-advice.fa_kefu_leave_message with 0 records
Found table legal-advice.fa_kefu_reception_log with 85 records
Found table legal-advice.fa_kefu_record with 364 records
Found table legal-advice.fa_kefu_session with 19 records
Found table legal-advice.fa_kefu_toolbar with 8 records
Found table legal-advice.fa_kefu_trajectory with 291 records
Found table legal-advice.fa_kefu_user with 33 records
Found table legal-advice.fa_law_office with 2 records
Found table legal-advice.fa_law_office_case with 2 records
Found table legal-advice.fa_lawyer with 2 records
Found table legal-advice.fa_sms with 3 records
Found table legal-advice.fa_test with 0 records
Found table legal-advice.fa_user with 7 records
Found table legal-advice.fa_user_group with 3 records
Found table legal-advice.fa_user_money_log with 0 records
Found table legal-advice.fa_user_rule with 12 records
Found table legal-advice.fa_user_score_log with 6 records
Found table legal-advice.fa_user_token with 814 records
Found table legal-advice.fa_version with 0 records
Found table legal-advice.fa_vip with 1 records
Found table legal-advice.fa_vip_order with 186 records
Found table legal-advice.fa_vip_record with 2 records
Found table legal-advice.fa_weixin_cache with 0 records
Found table legal-advice.fa_weixin_config with 15 records
Found table legal-advice.fa_weixin_news with 0 records
Found table legal-advice.fa_weixin_reply with 2 records
Found table legal-advice.fa_weixin_routinetemplate with 0 records
Found table legal-advice.fa_weixin_template with 0 records
Found table legal-advice.fa_weixin_user with 7 records
Found table mysql.columns_priv with 0 records
Found table mysql.db with 4 records
Found table mysql.engine_cost with 2 records
Found table mysql.event with 0 records
Found table mysql.func with 0 records
Found table mysql.general_log with 2 records
Found table mysql.gtid_executed with 0 records
Found table mysql.help_category with 50 records
Found table mysql.help_keyword with 821 records
Found table mysql.help_relation with 1916 records
Found table mysql.help_topic with 387 records
Found table mysql.iiczaj with 0 records
Found table mysql.innodb_index_stats with 288 records
Found table mysql.innodb_table_stats with 56 records
Found table mysql.ndb_binlog_index with 0 records
Found table mysql.plugin with 0 records
Found table mysql.proc with 48 records
Found table mysql.procs_priv with 0 records
Found table mysql.proxies_priv with 1 records
Found table mysql.qmduxh32 with 0 records
Found table mysql.server_cost with 6 records
Found table mysql.servers with 0 records
Found table mysql.slave_master_info with 0 records
Found table mysql.slave_relay_log_info with 0 records
Found table mysql.slave_worker_info with 0 records
Found table mysql.slow_log with 2 records
Found table mysql.tables_priv with 2 records
Found table mysql.time_zone with 0 records
Found table mysql.time_zone_leap_second with 0 records
Found table mysql.time_zone_name with 0 records
Found table mysql.time_zone_transition with 0 records
Found table mysql.time_zone_transition_type with 0 records
Found table mysql.user with 9 records
Found table pet-fodder-shop.fa_article with 0 records
Found table pet-fodder-shop.fa_article_category with 0 records
Found table pet-fodder-shop.fa_article_content with 0 records

Found on 2021-08-07 03:23

4.1 MBytes 6349 rows

Severity: high
Fingerprint: cf350410ecceb5fd8292e4e8e2522a00e776cb1907f19ceb5fef864e729219ed

Databases: 85, row count: 6106, size: 3.9 MB
Found table legal-advice.fa_admin with 5 records
Found table legal-advice.fa_admin_log with 478 records
Found table legal-advice.fa_adszone_ads with 1 records
Found table legal-advice.fa_adszone_zone with 2 records
Found table legal-advice.fa_area with 0 records
Found table legal-advice.fa_article with 9 records
Found table legal-advice.fa_article_category with 1 records
Found table legal-advice.fa_article_content with 0 records
Found table legal-advice.fa_attachment with 29 records
Found table legal-advice.fa_auth_group with 5 records
Found table legal-advice.fa_auth_group_access with 4 records
Found table legal-advice.fa_auth_rule with 233 records
Found table legal-advice.fa_category with 0 records
Found table legal-advice.fa_config with 17 records
Found table legal-advice.fa_ems with 0 records
Found table legal-advice.fa_kefu_blacklist with 1 records
Found table legal-advice.fa_kefu_config with 24 records
Found table legal-advice.fa_kefu_csr_config with 6 records
Found table legal-advice.fa_kefu_fast_reply with 5 records
Found table legal-advice.fa_kefu_kbs with 2 records
Found table legal-advice.fa_kefu_leave_message with 0 records
Found table legal-advice.fa_kefu_reception_log with 85 records
Found table legal-advice.fa_kefu_record with 278 records
Found table legal-advice.fa_kefu_session with 19 records
Found table legal-advice.fa_kefu_toolbar with 8 records
Found table legal-advice.fa_kefu_trajectory with 40 records
Found table legal-advice.fa_kefu_user with 33 records
Found table legal-advice.fa_law_office with 0 records
Found table legal-advice.fa_law_office_case with 1 records
Found table legal-advice.fa_lawyer with 2 records
Found table legal-advice.fa_sms with 0 records
Found table legal-advice.fa_test with 0 records
Found table legal-advice.fa_user with 11 records
Found table legal-advice.fa_user_group with 0 records
Found table legal-advice.fa_user_money_log with 0 records
Found table legal-advice.fa_user_rule with 12 records
Found table legal-advice.fa_user_score_log with 0 records
Found table legal-advice.fa_user_token with 853 records
Found table legal-advice.fa_version with 0 records
Found table legal-advice.fa_vip with 0 records
Found table legal-advice.fa_vip_order with 37 records
Found table legal-advice.fa_vip_record with 35 records
Found table legal-advice.fa_weixin_cache with 0 records
Found table legal-advice.fa_weixin_config with 15 records
Found table legal-advice.fa_weixin_news with 0 records
Found table legal-advice.fa_weixin_reply with 2 records
Found table legal-advice.fa_weixin_routinetemplate with 0 records
Found table legal-advice.fa_weixin_template with 0 records
Found table legal-advice.fa_weixin_user with 9 records
Found table mysql.columns_priv with 0 records
Found table mysql.db with 4 records
Found table mysql.engine_cost with 2 records
Found table mysql.event with 0 records
Found table mysql.func with 0 records
Found table mysql.general_log with 2 records
Found table mysql.gtid_executed with 0 records
Found table mysql.help_category with 50 records
Found table mysql.help_keyword with 970 records
Found table mysql.help_relation with 1501 records
Found table mysql.help_topic with 931 records
Found table mysql.iiczaj with 0 records
Found table mysql.innodb_index_stats with 273 records
Found table mysql.innodb_table_stats with 43 records
Found table mysql.ndb_binlog_index with 0 records
Found table mysql.plugin with 0 records
Found table mysql.proc with 48 records
Found table mysql.procs_priv with 0 records
Found table mysql.proxies_priv with 1 records
Found table mysql.qmduxh32 with 0 records
Found table mysql.server_cost with 6 records
Found table mysql.servers with 0 records
Found table mysql.slave_master_info with 0 records
Found table mysql.slave_relay_log_info with 0 records
Found table mysql.slave_worker_info with 0 records
Found table mysql.slow_log with 2 records
Found table mysql.tables_priv with 2 records
Found table mysql.time_zone with 0 records
Found table mysql.time_zone_leap_second with 0 records
Found table mysql.time_zone_name with 0 records
Found table mysql.time_zone_transition with 0 records
Found table mysql.time_zone_transition_type with 0 records
Found table mysql.user with 9 records
Found table pet-fodder-shop.fa_article with 0 records
Found table pet-fodder-shop.fa_article_category with 0 records
Found table pet-fodder-shop.fa_article_content with 0 records

Found on 2021-07-26 00:26

3.9 MBytes 6106 rows

Severity: high
Fingerprint: cf350410ecceb5fdf1f543b6e1f1090a401e60b3409a32cdc52aa7e854a13bfa

Databases: 85, row count: 6117, size: 3.9 MB
Found table legal-advice.fa_admin with 5 records
Found table legal-advice.fa_admin_log with 481 records
Found table legal-advice.fa_adszone_ads with 1 records
Found table legal-advice.fa_adszone_zone with 2 records
Found table legal-advice.fa_area with 0 records
Found table legal-advice.fa_article with 9 records
Found table legal-advice.fa_article_category with 1 records
Found table legal-advice.fa_article_content with 0 records
Found table legal-advice.fa_attachment with 29 records
Found table legal-advice.fa_auth_group with 5 records
Found table legal-advice.fa_auth_group_access with 4 records
Found table legal-advice.fa_auth_rule with 233 records
Found table legal-advice.fa_category with 0 records
Found table legal-advice.fa_config with 17 records
Found table legal-advice.fa_ems with 0 records
Found table legal-advice.fa_kefu_blacklist with 1 records
Found table legal-advice.fa_kefu_config with 24 records
Found table legal-advice.fa_kefu_csr_config with 6 records
Found table legal-advice.fa_kefu_fast_reply with 5 records
Found table legal-advice.fa_kefu_kbs with 2 records
Found table legal-advice.fa_kefu_leave_message with 0 records
Found table legal-advice.fa_kefu_reception_log with 85 records
Found table legal-advice.fa_kefu_record with 278 records
Found table legal-advice.fa_kefu_session with 19 records
Found table legal-advice.fa_kefu_toolbar with 8 records
Found table legal-advice.fa_kefu_trajectory with 51 records
Found table legal-advice.fa_kefu_user with 33 records
Found table legal-advice.fa_law_office with 0 records
Found table legal-advice.fa_law_office_case with 0 records
Found table legal-advice.fa_lawyer with 2 records
Found table legal-advice.fa_sms with 0 records
Found table legal-advice.fa_test with 0 records
Found table legal-advice.fa_user with 10 records
Found table legal-advice.fa_user_group with 0 records
Found table legal-advice.fa_user_money_log with 0 records
Found table legal-advice.fa_user_rule with 12 records
Found table legal-advice.fa_user_score_log with 0 records
Found table legal-advice.fa_user_token with 853 records
Found table legal-advice.fa_version with 0 records
Found table legal-advice.fa_vip with 0 records
Found table legal-advice.fa_vip_order with 37 records
Found table legal-advice.fa_vip_record with 35 records
Found table legal-advice.fa_weixin_cache with 0 records
Found table legal-advice.fa_weixin_config with 15 records
Found table legal-advice.fa_weixin_news with 0 records
Found table legal-advice.fa_weixin_reply with 2 records
Found table legal-advice.fa_weixin_routinetemplate with 0 records
Found table legal-advice.fa_weixin_template with 0 records
Found table legal-advice.fa_weixin_user with 8 records
Found table mysql.columns_priv with 0 records
Found table mysql.db with 4 records
Found table mysql.engine_cost with 2 records
Found table mysql.event with 0 records
Found table mysql.func with 0 records
Found table mysql.general_log with 2 records
Found table mysql.gtid_executed with 0 records
Found table mysql.help_category with 50 records
Found table mysql.help_keyword with 970 records
Found table mysql.help_relation with 1501 records
Found table mysql.help_topic with 931 records
Found table mysql.iiczaj with 0 records
Found table mysql.innodb_index_stats with 273 records
Found table mysql.innodb_table_stats with 43 records
Found table mysql.ndb_binlog_index with 0 records
Found table mysql.plugin with 0 records
Found table mysql.proc with 48 records
Found table mysql.procs_priv with 0 records
Found table mysql.proxies_priv with 1 records
Found table mysql.qmduxh32 with 0 records
Found table mysql.server_cost with 6 records
Found table mysql.servers with 0 records
Found table mysql.slave_master_info with 0 records
Found table mysql.slave_relay_log_info with 0 records
Found table mysql.slave_worker_info with 0 records
Found table mysql.slow_log with 2 records
Found table mysql.tables_priv with 2 records
Found table mysql.time_zone with 0 records
Found table mysql.time_zone_leap_second with 0 records
Found table mysql.time_zone_name with 0 records
Found table mysql.time_zone_transition with 0 records
Found table mysql.time_zone_transition_type with 0 records
Found table mysql.user with 9 records
Found table pet-fodder-shop.fa_article with 0 records
Found table pet-fodder-shop.fa_article_category with 0 records
Found table pet-fodder-shop.fa_article_content with 0 records

Found on 2021-07-23 11:22

3.9 MBytes 6117 rows

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 118.89.108.212
Domain: legal.aaronlee.top
Port: 443
URL: https://legal.aaronlee.top

First seen 2021-10-04 05:46
Last seen 2021-12-06 04:26
Open for 62 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc0363d38cc483a842642fe843529ec0e4
```
Found 4 files trough .DS_Store spidering:

/assets
/kefu_start_for_win
/template
/uploads
```
  Found on 2021-10-04 05:46
Create report

Open service 118.89.108.212:443

2023-01-07 13:25

Server: nginx
Date: Sat, 07 Jan 2023 13:25:29 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/7.3.0
Cache-control: no-cache,must-revalidate
Location: /front/#/index
Strict-Transport-Security: max-age=31536000


0

Found 2023-01-07 by HttpPlugin

Create report

Open service 118.89.108.212:8066

2022-12-17 14:00
Found 2022-12-17 by tcpid
Create report

Open service 118.89.108.212:443

2022-11-19 14:32

Server: nginx
Date: Sat, 19 Nov 2022 14:32:49 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/7.3.0
Cache-control: no-cache,must-revalidate
Location: /front/#/index
Strict-Transport-Security: max-age=31536000


0

Found 2022-11-19 by HttpPlugin

Create report

Open service 118.89.108.212:80

2022-11-26 21:49

Server: nginx
Date: Sat, 26 Nov 2022 21:49:04 GMT
Content-Type: text/html
Content-Length: 1326
Last-Modified: Wed, 26 Apr 2017 08:03:47 GMT
Connection: close
Vary: Accept-Encoding
ETag: "59005463-52e"
Accept-Ranges: bytes

Page title: 没有找到站点

<!doctype html>
<html>
<head>
<meta charset="utf-8">
<title>没有找到站点</title>
<style>
*{margin:0;padding:0;color:#444}
body{font-size:14px;font-family:"宋体"}
.main{width:600px;margin:10% auto;}
.title{background: #20a53a;color: #fff;font-size: 16px;height: 40px;line-height: 40px;padding-left: 20px;}
.content{background-color:#f3f7f9; height:300px;border:1px dashed #c6d9b6;padding:20px}
.t1{border-bottom: 1px dashed #c6d9b6;color: #ff4000;font-weight: bold; margin: 0 0 20px; padding-bottom: 18px;}
.t2{margin-bottom:8px; font-weight:bold}
ol{margin:0 0 20px 22px;padding:0;}
ol li{line-height:30px}
</style>
</head>

<body>
	<div class="main">
		<div class="title">没有找到站点</div>
		<div class="content">
			<p class="t1">您的请求在Web服务器中没有找到对应的站点！</p>
			<p class="t2">可能原因：</p>
			<ol>
				<li>您没有将此域名或IP绑定到对应站点!</li>
				<li>配置文件未生效!</li>
			</ol>
			<p class="t2">如何解决：</p>
			<ol>
				<li>检查是否已经绑定到对应站点，若确认已绑定，请尝试重载Web服务；</li>
				<li>检查端口是否正确；</li>
				<li>若您使用了CDN产品，请尝试清除CDN缓存；</li>
				<li>普通网站访客，请联系网站管理员；</li>
			</ol>
		</div>
	</div>
</body>
</html>

Found 2022-11-26 by HttpPlugin

Create report

Open service 118.89.108.212:8066

2022-12-08 15:57
Found 2022-12-08 by tcpid
Create report

legal.aaronlee.top

Fingerprint:

8f271c9a6e0858776b5063ddafe96d3188d6b4ac8091f2bedc6dc53082ed949e

CN:

legal.aaronlee.top

Key:

RSA-2048

Issuer:

Not before:

2021-10-27 08:47

Not after:

2022-01-25 08:47

Data leak

Size

4.1 MB

Collections

Rows

6349

Domain summary

legal.aaronlee.top 1

1 recorded

Host 118.89.108.212

China

Software information

MacOS file listing through .DS_Store file

MySQL is publicly available

MacOS file listing through .DS_Store file

Create report

Create report

Create report

Create report

Create report

legal.aaronlee.top

Data leak

Domain summary