nginx 1.14.0
tcp/443 tcp/80
MySQL is currently open without authentication.
Additionally a ransom note has been found in the dataset which indicates it has been compromised
This results in all the database data made available publicly.
Severity: critical
Fingerprint: cf350410ecceb5fd8d42a69096e3d85feba81d6a95d2323f7fbfe3de35cee751
Databases: 40, row count: 139337, size: 7.9 MB No or default MySQL authentication found.Found table README_TO_RECOVER_A.RECOVER_YOUR_DATA with 2 records Found table mysql.columns_priv with 0 records Found table mysql.component with 0 records Found table mysql.db with 3 records Found table mysql.default_roles with 0 records Found table mysql.engine_cost with 2 records Found table mysql.func with 0 records Found table mysql.general_log with 2 records Found table mysql.global_grants with 97 records Found table mysql.gtid_executed with 0 records Found table mysql.help_category with 53 records Found table mysql.help_keyword with 811 records Found table mysql.help_relation with 2153 records Found table mysql.help_topic with 518 records Found table mysql.innodb_index_stats with 9 records Found table mysql.innodb_table_stats with 3 records Found table mysql.ndb_binlog_index with 0 records Found table mysql.password_history with 0 records Found table mysql.plugin with 0 records Found table mysql.procs_priv with 0 records Found table mysql.proxies_priv with 1 records Found table mysql.replication_asynchronous_connection_failover with 0 records Found table mysql.replication_asynchronous_connection_failover_managed with 0 records Found table mysql.replication_group_configuration_version with 1 records Found table mysql.replication_group_member_actions with 2 records Found table mysql.role_edges with 0 records Found table mysql.server_cost with 6 records Found table mysql.servers with 0 records Found table mysql.slave_master_info with 0 records Found table mysql.slave_relay_log_info with 0 records Found table mysql.slave_worker_info with 0 records Found table mysql.slow_log with 2 records Found table mysql.tables_priv with 2 records Found table mysql.time_zone with 2074 records Found table mysql.time_zone_leap_second with 0 records Found table mysql.time_zone_name with 1999 records Found table mysql.time_zone_transition with 121720 records Found table mysql.time_zone_transition_type with 9871 records Found table mysql.user with 5 records Found table users.README with 1 records
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
Severity: low
Fingerprint: 5f32cf5d6962f09c8329733f8329733fbe7e56f7ca7463ffcd933037b61d4208
Found 10 files trough .DS_Store spidering: /css /favicon.ico /img /index.php /js /mix-manifest.json /plugins /sw.js /template /web.config
Open service 139.59.126.70:22
2024-04-26 02:03
Open service 139.59.126.70:443
2024-04-25 01:34
HTTP/1.1 404 Not Found Server: nginx/1.14.0 (Ubuntu) Date: Thu, 25 Apr 2024 01:34:17 GMT Content-Type: text/plain; charset=utf-8 Content-Length: 19 Connection: close X-Content-Type-Options: nosniff 404 page not found
Open service 139.59.126.70:80
2024-04-23 04:23
HTTP/1.1 404 Not Found Server: nginx/1.14.0 (Ubuntu) Date: Tue, 23 Apr 2024 04:23:49 GMT Content-Type: text/html Content-Length: 580 Connection: close Page title: 404 Not Found <html> <head><title>404 Not Found</title></head> <body bgcolor="white"> <center><h1>404 Not Found</h1></center> <hr><center>nginx/1.14.0 (Ubuntu)</center> </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page -->
Open service 139.59.126.70:443
2024-04-23 00:35
HTTP/1.1 404 Not Found Server: nginx/1.14.0 (Ubuntu) Date: Tue, 23 Apr 2024 00:36:03 GMT Content-Type: text/plain; charset=utf-8 Content-Length: 19 Connection: close X-Content-Type-Options: nosniff 404 page not found
Open service 139.59.126.70:22
2024-04-22 21:39