Apache 2.2.15
tcp/443 tcp/80
MySQL is currently open without authentication.
Additionally a ransom note has been found in the dataset which indicates it has been compromised
This results in all the database data made available publicly.
Severity: critical
Fingerprint: cf350410ecceb5fda0cc236e4dd1805863bdeeb757ce90060a8003ecb6eefd3e
Databases: 24, row count: 2037, size: 566.7 kB Found table RECOVER_YOUR_DATA.RECOVER_YOUR_DATA with 2 records Found table mysql.columns_priv with 0 records Found table mysql.db with 3 records Found table mysql.event with 0 records Found table mysql.func with 0 records Found table mysql.general_log with 2 records Found table mysql.help_category with 40 records Found table mysql.help_keyword with 453 records Found table mysql.help_relation with 1009 records Found table mysql.help_topic with 510 records Found table mysql.host with 0 records Found table mysql.ndb_binlog_index with 0 records Found table mysql.plugin with 0 records Found table mysql.proc with 0 records Found table mysql.procs_priv with 0 records Found table mysql.servers with 0 records Found table mysql.slow_log with 2 records Found table mysql.tables_priv with 0 records Found table mysql.time_zone with 0 records Found table mysql.time_zone_leap_second with 0 records Found table mysql.time_zone_name with 0 records Found table mysql.time_zone_transition with 0 records Found table mysql.time_zone_transition_type with 0 records Found table mysql.user with 16 records
Open service 180.235.133.19:3306
2024-06-19 20:30
MySQL detected
Open service 180.235.133.19:3306
2024-06-17 20:21
MySQL detected
Open service 180.235.133.19:443
2024-06-15 08:14
HTTP/1.1 302 Found Date: Sat, 15 Jun 2024 08:14:12 GMT Server: Apache/2.2.15 (CentOS) Location: http://help.ole777.com/help/ Content-Length: 293 Connection: close Content-Type: text/html; charset=iso-8859-1 Page title: 302 Found <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>302 Found</title> </head><body> <h1>Found</h1> <p>The document has moved <a href="http://help.ole777.com/help/">here</a>.</p> <hr> <address>Apache/2.2.15 (CentOS) Server at 180.235.133.19 Port 443</address> </body></html>
Open service 180.235.133.19:3306
2024-06-14 18:11
MySQL detected
Open service 180.235.133.19:80
2024-06-13 13:50
HTTP/1.1 302 Found Date: Thu, 13 Jun 2024 13:50:10 GMT Server: Apache/2.2.15 (CentOS) Location: http://help.ole777.com/help/ Content-Length: 292 Connection: close Content-Type: text/html; charset=iso-8859-1 Page title: 302 Found <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>302 Found</title> </head><body> <h1>Found</h1> <p>The document has moved <a href="http://help.ole777.com/help/">here</a>.</p> <hr> <address>Apache/2.2.15 (CentOS) Server at 180.235.133.19 Port 80</address> </body></html>
Open service 180.235.133.19:3306
2024-06-12 18:47
MySQL detected
Open service 180.235.133.19:3306
2024-06-09 21:34
MySQL detected
Open service 180.235.133.19:3306
2024-06-07 21:34
MySQL detected
Open service 180.235.133.19:3306
2024-06-05 21:31
MySQL detected
Open service 180.235.133.19:3306
2024-06-03 21:52
MySQL detected
Open service 180.235.133.19:80
2024-06-02 12:02
HTTP/1.1 302 Found Date: Sun, 02 Jun 2024 12:02:58 GMT Server: Apache/2.2.15 (CentOS) Location: http://help.ole777.com/help/ Content-Length: 292 Connection: close Content-Type: text/html; charset=iso-8859-1 Page title: 302 Found <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>302 Found</title> </head><body> <h1>Found</h1> <p>The document has moved <a href="http://help.ole777.com/help/">here</a>.</p> <hr> <address>Apache/2.2.15 (CentOS) Server at 180.235.133.19 Port 80</address> </body></html>
Open service 180.235.133.19:3306
2024-06-02 10:18
MySQL detected