Host 165.227.162.82
Germany
Software information
Jetty(10.0.20)
tcp/8080
nginx 1.14.0
tcp/443
-
MySQL is publicly available
MySQL is currently open without authentication.
Additionally a ransom note has been found in the dataset which indicates it has been compromised
This results in all the database data made available publicly.
First seen 2024-03-03 15:56-
Severity: critical
Fingerprint: cf350410ecceb5fd0695d1426e741ecc335ea56b922d077f78405805c336030bDatabases: 32, row count: 142493, size: 7.9 MB Found table RECOVER_YOUR_DATA.RECOVER_YOUR_DATA with 2 records Found table mysql.columns_priv with 0 records Found table mysql.db with 2 records Found table mysql.engine_cost with 2 records Found table mysql.event with 0 records Found table mysql.func with 0 records Found table mysql.general_log with 2 records Found table mysql.gtid_executed with 0 records Found table mysql.help_category with 50 records Found table mysql.help_keyword with 821 records Found table mysql.help_relation with 1270 records Found table mysql.help_topic with 568 records Found table mysql.innodb_index_stats with 10 records Found table mysql.innodb_table_stats with 3 records Found table mysql.ndb_binlog_index with 0 records Found table mysql.plugin with 0 records Found table mysql.proc with 48 records Found table mysql.procs_priv with 0 records Found table mysql.proxies_priv with 1 records Found table mysql.server_cost with 6 records Found table mysql.servers with 0 records Found table mysql.slave_master_info with 0 records Found table mysql.slave_relay_log_info with 0 records Found table mysql.slave_worker_info with 0 records Found table mysql.slow_log with 2 records Found table mysql.tables_priv with 2 records Found table mysql.time_zone with 2074 records Found table mysql.time_zone_leap_second with 0 records Found table mysql.time_zone_name with 1634 records Found table mysql.time_zone_transition with 126130 records Found table mysql.time_zone_transition_type with 9862 records Found table mysql.user with 4 records
Found on 2024-03-03 15:567.9 MBytes 142493 rows
-
-
Open service 165.227.162.82:8080
2024-04-23 20:35
HTTP/1.1 403 Forbidden Date: Tue, 23 Apr 2024 20:35:15 GMT Connection: close X-Content-Type-Options: nosniff Set-Cookie: JSESSIONID.82b09171=node0h69x7bfcqs6w5zc1jitkw01017481.node0; Path=/; HttpOnly Expires: Thu, 01 Jan 1970 00:00:00 GMT Content-Type: text/html;charset=utf-8 X-Hudson: 1.395 X-Jenkins: 2.447 X-Jenkins-Session: ad3ebd9c Content-Length: 589 Server: Jetty(10.0.20) <html><head><meta http-equiv='refresh' content='1;url=/login?from=%2F'/><script id='redirect' data-redirect-url='/login?from=%2F' src='/static/ad3ebd9c/scripts/redirect.js'></script></head><body style='background-color:white; color:white;'> Authentication required <!-- --> </body></html>
Found 2024-04-23 by HttpPluginCreate report
-
Open service 165.227.162.82:22
2024-04-23 12:29
Found 2024-04-23 by SSHOpenPluginCreate report
-
Open service 165.227.162.82:443
2024-04-22 21:58
HTTP/1.1 401 Unauthorized Server: nginx/1.14.0 (Ubuntu) Date: Mon, 22 Apr 2024 21:58:41 GMT Content-Type: text/html Content-Length: 606 Connection: close WWW-Authenticate: Basic realm="Espace privé" Page title: 401 Authorization Required <html> <head><title>401 Authorization Required</title></head> <body bgcolor="white"> <center><h1>401 Authorization Required</h1></center> <hr><center>nginx/1.14.0 (Ubuntu)</center> </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page -->
Found 2024-04-22 by HttpPluginCreate report