Microsoft-IIS 10.0
tcp/8010
MySQL is currently open without authentication.
Additionally a ransom note has been found in the dataset which indicates it has been compromised
This results in all the database data made available publicly.
Severity: critical
Fingerprint: cf350410ecceb5fdba4fc1e922816364edd8636d1a99aee561a5e1b0341fb07b
Databases: 38, row count: 4318, size: 2.4 MB Found table mysql.columns_priv with 0 records Found table mysql.component with 0 records Found table mysql.db with 2 records Found table mysql.default_roles with 0 records Found table mysql.engine_cost with 2 records Found table mysql.func with 0 records Found table mysql.general_log with 2 records Found table mysql.global_grants with 47 records Found table mysql.gtid_executed with 0 records Found table mysql.help_category with 53 records Found table mysql.help_keyword with 862 records Found table mysql.help_relation with 2392 records Found table mysql.help_topic with 926 records Found table mysql.innodb_index_stats with 9 records Found table mysql.innodb_table_stats with 3 records Found table mysql.password_history with 0 records Found table mysql.plugin with 0 records Found table mysql.procs_priv with 0 records Found table mysql.proxies_priv with 1 records Found table mysql.replication_asynchronous_connection_failover with 0 records Found table mysql.replication_asynchronous_connection_failover_managed with 0 records Found table mysql.replication_group_configuration_version with 1 records Found table mysql.replication_group_member_actions with 2 records Found table mysql.role_edges with 0 records Found table mysql.server_cost with 6 records Found table mysql.servers with 0 records Found table mysql.slave_master_info with 0 records Found table mysql.slave_relay_log_info with 0 records Found table mysql.slave_worker_info with 0 records Found table mysql.slow_log with 2 records Found table mysql.tables_priv with 2 records Found table mysql.time_zone with 0 records Found table mysql.time_zone_leap_second with 0 records Found table mysql.time_zone_name with 0 records Found table mysql.time_zone_transition with 0 records Found table mysql.time_zone_transition_type with 0 records Found table mysql.user with 4 records Found table readme_to_recover_a.recover_your_data with 2 records
Severity: critical
Fingerprint: cf350410ecceb5fdd9db803558acb670970e2e91a1e11339409baec4d05991d9
Databases: 38, row count: 4291, size: 2.4 MB Found table mysql.columns_priv with 0 records Found table mysql.component with 0 records Found table mysql.db with 2 records Found table mysql.default_roles with 0 records Found table mysql.engine_cost with 2 records Found table mysql.func with 0 records Found table mysql.general_log with 2 records Found table mysql.global_grants with 47 records Found table mysql.gtid_executed with 0 records Found table mysql.help_category with 53 records Found table mysql.help_keyword with 1014 records Found table mysql.help_relation with 2416 records Found table mysql.help_topic with 723 records Found table mysql.innodb_index_stats with 9 records Found table mysql.innodb_table_stats with 3 records Found table mysql.password_history with 0 records Found table mysql.plugin with 0 records Found table mysql.procs_priv with 0 records Found table mysql.proxies_priv with 1 records Found table mysql.replication_asynchronous_connection_failover with 0 records Found table mysql.replication_asynchronous_connection_failover_managed with 0 records Found table mysql.replication_group_configuration_version with 1 records Found table mysql.replication_group_member_actions with 2 records Found table mysql.role_edges with 0 records Found table mysql.server_cost with 6 records Found table mysql.servers with 0 records Found table mysql.slave_master_info with 0 records Found table mysql.slave_relay_log_info with 0 records Found table mysql.slave_worker_info with 0 records Found table mysql.slow_log with 2 records Found table mysql.tables_priv with 2 records Found table mysql.time_zone with 0 records Found table mysql.time_zone_leap_second with 0 records Found table mysql.time_zone_name with 0 records Found table mysql.time_zone_transition with 0 records Found table mysql.time_zone_transition_type with 0 records Found table mysql.user with 4 records Found table readme_to_recover_a.recover_your_data with 2 records
Severity: critical
Fingerprint: cf350410ecceb5fd411d40c28c3c3e518e774d70d7dbbab2c0a29bf7c13667db
Databases: 38, row count: 4414, size: 2.4 MB Found table mysql.columns_priv with 0 records Found table mysql.component with 0 records Found table mysql.db with 2 records Found table mysql.default_roles with 0 records Found table mysql.engine_cost with 2 records Found table mysql.func with 0 records Found table mysql.general_log with 2 records Found table mysql.global_grants with 47 records Found table mysql.gtid_executed with 0 records Found table mysql.help_category with 53 records Found table mysql.help_keyword with 1014 records Found table mysql.help_relation with 2631 records Found table mysql.help_topic with 631 records Found table mysql.innodb_index_stats with 9 records Found table mysql.innodb_table_stats with 3 records Found table mysql.password_history with 0 records Found table mysql.plugin with 0 records Found table mysql.procs_priv with 0 records Found table mysql.proxies_priv with 1 records Found table mysql.replication_asynchronous_connection_failover with 0 records Found table mysql.replication_asynchronous_connection_failover_managed with 0 records Found table mysql.replication_group_configuration_version with 1 records Found table mysql.replication_group_member_actions with 2 records Found table mysql.role_edges with 0 records Found table mysql.server_cost with 6 records Found table mysql.servers with 0 records Found table mysql.slave_master_info with 0 records Found table mysql.slave_relay_log_info with 0 records Found table mysql.slave_worker_info with 0 records Found table mysql.slow_log with 2 records Found table mysql.tables_priv with 2 records Found table mysql.time_zone with 0 records Found table mysql.time_zone_leap_second with 0 records Found table mysql.time_zone_name with 0 records Found table mysql.time_zone_transition with 0 records Found table mysql.time_zone_transition_type with 0 records Found table mysql.user with 4 records Found table recover_your_data.recover_your_data with 2 records
Open service 125.89.147.38:22
2024-06-20 14:00
Open service 125.89.147.38:8010
2024-06-20 05:01
HTTP/1.1 200 OK Cache-Control: private Content-Type: text/html; charset=utf-8 Server: Microsoft-IIS/10.0 X-AspNetMvc-Version: 4.0 X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET Date: Thu, 20 Jun 2024 05:01:27 GMT Connection: close Content-Length: 6241 Page title: 宜家天润管理系统 <!DOCTYPE html> <html lang="zh"> <head> <meta http-equiv="X-UA-Compatible" content="IE=edge" /> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta charset="utf-8" /> <title>宜家天润管理系统</title> <meta name="viewport" content="width=device-width" /> <script>var ServerRoot = "/";</script> <script src="/Scripts/jquery-1.6.4.min.js"></script> <script src='/Scripts/LodopFuncs.js'></script> <script src='/Scripts/json2.js'></script> <script src='/Scripts/EFormPrintPageModel.js'></script> <script src="/Scripts/Enjoy.js"></script> <script src="/Scripts/jquery.signalR-2.2.2.min.js"></script> <script src="/signalr/hubs"></script> <script src="/Scripts/Silverlight.js"></script> <script src="/Scripts/EnjoyMsg.js"></script> <script type="text/javascript"> var userMac = ""; $(function () { userMac = getSystemInfo("NetworkAdapter.1.PhysicalAddress"); }); // 获取当前用户mac地址 function getUserMac() { return userMac; } function registerOnlineHub(userId) { var msghub = new EnjoyMsg(userId.split("|")[0], userId.split("|")[1]); } function registerCustomerHub(userId) { var customerHub = new EnjoyMsg(userId.split("|")[0], userId.split("|")[1]); } var PrintContent = ''; var Type = ''; /*打印价签*/ function PrintLabel(sPrintLabelContent) { Type = 'Label' PrintContent = sPrintLabelContent; var ret = window.open("./Print.html", 'newWindow', 'height=100,width=300,toolbar=no,location=no,status=no,z-look=yes'); CollectGarbage(); PluginFocus(); } /*设置焦点*/ function PluginFocus() { window.focus(); document.getElementById('slModule').focus(); } function readCard(device, port, pwd) { try { var card = window.external.ReadCard(device, port, pwd); return card; } catch (e) { return -1; } } function writeCard(cardno, device, port, data, pwd) { try { return window.external.WriteCard(cardno, device, port, data, pwd); } catch (e) { return -1; } } function CreateXMLHTTPActiveX() { var httpRequest; try { httpRequest = new ActiveXObject("MSXML2.XMLHTTP"); } catch (e) { try { httpRequest = new XMLHttpRequest(); } catch (e) { try { httpRequest = new ActiveXObject("Microsoft.XMLHTTP"); } catch (e) { return null; } } } return httpRequest; } //post请求: function ajaxPostData(url, data) { try { var s; var xmlhttp = CreateXMLHTTPActiveX(); //new ActiveXObject("MSXML2.XMLHTTP"); xmlhttp.Open("post", url, false); //alert('url:' + url); //alert('data:' + data); xmlhttp.Send(data); //xmlhttp.setRequestHeader("Content-Type", "text/html;charset=uft-8") //指定发送的编码 if (xmlhttp.responseText != "") { s = xmlhttp.responseText; //alert('response:' + xmlhttp.responseText); } else { s = "failed"; //alert('开票返回信息为空' ); } delete (xmlhttp); xmlhttp = null; return s; } catc
Open service 125.89.147.38:3306
2024-06-19 22:13
MySQL detected
Open service 125.89.147.38:81
2024-06-16 04:10
HTTP/1.1 200 OK Server: APN HTTPD V1.4 Content-Type: text/html; charset=iso-8859-1 Date: Sun, 16 Jun 2024 04:08:42 GMT Last-Modified: Fri, 17 Sep 2010 11:49:05 GMT Accept-Ranges: bytes Connection: close Content-Length: 1309 Page title: index <html> <head> <title>index</title> <meta http-equiv=content-type content="text/html; charset=gb2312"> <style> .divlogintextstyle { font-size:25px; position:relative; top:-105px; color:#000000; font-weight:bold; text-align:center; } .spanloginmenustyle { color:#ffffff; border:1px solid #000000; padding-left:7px; padding-right:7px; padding-top:2px; background-color:gray; font-size:15px; } .tdlogintextstyle { font-size:25px; color:#000000; font-weight:bold; text-align:center; } a:link, a:visited { color:#ffffff; text-decoration : none; font-weight:bold; } </style> </head> <body style="background-color:#dfdfdf;font-family: arial;margin:0"> <div style="text-align:center"><img src="headbg.gif" width="589" height="285" border="0" alt=""></div> <div class="divlogintextstyle" > <table align="center" cellspacing="0" cellpadding="0" > <tr> <td class="tdlogintextstyle">APN GW WEB<span> V2.0</span><br/><br/><img src="olymlogo.gif" width="107" height="35" border="0" alt=""></br><br/><span class="spanloginmenustyle"><a href=/cgi-bin/apnget.cgi?langu=1 target=_top>中 文</a></span> <span class="spanloginmenustyle"><a href=/cgi-bin/apnget.cgi?langu=0 target=_top>ENGLISH</a></span></td> </tr> </table> </div> </body> </html>
Open service 125.89.147.38:3306
2024-06-15 22:41
MySQL detected
Open service 125.89.147.38:3306
2024-06-15 00:17
MySQL detected
Open service 125.89.147.38:3307
2024-06-13 16:50
MySQL detected
Open service 125.89.147.38:3306
2024-06-11 21:13
MySQL detected
Open service 125.89.147.38:3306
2024-06-09 20:30
MySQL detected
Open service 125.89.147.38:3306
2024-06-07 19:57
MySQL detected
Open service 125.89.147.38:3306
2024-06-05 20:06
MySQL detected
Open service 125.89.147.38:3306
2024-06-02 20:49
MySQL detected