Host 221.130.158.210
China
Software information
nginx 1.10.3
tcp/8000
-
MySQL is publicly available
MySQL is currently open without authentication.
Additionally a ransom note has been found in the dataset which indicates it has been compromised
This results in all the database data made available publicly.
First seen 2023-07-18 11:38
Last seen 2024-04-30 19:51
Open for 287 days-
Severity: critical
Fingerprint: cf350410ecceb5fdba4ad3d430524783d22ff99294711421b9ad9d77cb17c797Databases: 30, row count: 139462, size: 3.7 MB Found table mysql.columns_priv with 0 records Found table mysql.db with 3 records Found table mysql.diy_dll with 0 records Found table mysql.event with 0 records Found table mysql.func with 0 records Found table mysql.general_log with 2 records Found table mysql.help_category with 40 records Found table mysql.help_keyword with 619 records Found table mysql.help_relation with 1273 records Found table mysql.help_topic with 585 records Found table mysql.innodb_index_stats with 6 records Found table mysql.innodb_table_stats with 2 records Found table mysql.ndb_binlog_index with 0 records Found table mysql.plugin with 0 records Found table mysql.proc with 0 records Found table mysql.procs_priv with 0 records Found table mysql.proxies_priv with 2 records Found table mysql.servers with 0 records Found table mysql.slave_master_info with 0 records Found table mysql.slave_relay_log_info with 0 records Found table mysql.slave_worker_info with 0 records Found table mysql.slow_log with 2 records Found table mysql.tables_priv with 0 records Found table mysql.time_zone with 1820 records Found table mysql.time_zone_leap_second with 0 records Found table mysql.time_zone_name with 1820 records Found table mysql.time_zone_transition with 123767 records Found table mysql.time_zone_transition_type with 9516 records Found table mysql.user with 3 records Found table z_readme_to_recover.recover_your_data with 2 records
Found on 2024-04-30 19:513.7 MBytes 139462 rows -
Severity: critical
Fingerprint: cf350410ecceb5fdba4ad3d4a4d033566dcaa39960f57f96566231dc18b4eb46Databases: 30, row count: 139462, size: 3.7 MB No or default MySQL authentication found.Found table mysql.columns_priv with 0 records Found table mysql.db with 3 records Found table mysql.diy_dll with 0 records Found table mysql.event with 0 records Found table mysql.func with 0 records Found table mysql.general_log with 2 records Found table mysql.help_category with 40 records Found table mysql.help_keyword with 619 records Found table mysql.help_relation with 1273 records Found table mysql.help_topic with 585 records Found table mysql.innodb_index_stats with 6 records Found table mysql.innodb_table_stats with 2 records Found table mysql.ndb_binlog_index with 0 records Found table mysql.plugin with 0 records Found table mysql.proc with 0 records Found table mysql.procs_priv with 0 records Found table mysql.proxies_priv with 2 records Found table mysql.servers with 0 records Found table mysql.slave_master_info with 0 records Found table mysql.slave_relay_log_info with 0 records Found table mysql.slave_worker_info with 0 records Found table mysql.slow_log with 2 records Found table mysql.tables_priv with 0 records Found table mysql.time_zone with 1820 records Found table mysql.time_zone_leap_second with 0 records Found table mysql.time_zone_name with 1820 records Found table mysql.time_zone_transition with 123767 records Found table mysql.time_zone_transition_type with 9516 records Found table mysql.user with 3 records Found table z_readme_to_recover.recover_your_data with 2 records
Found on 2023-07-18 11:383.7 MBytes 139462 rows
-
-
Open service 221.130.158.210:3307
2024-04-30 19:51
MySQL detected
Found 2024-04-30 by tcpidCreate report
-
Open service 221.130.158.210:3307
2024-04-28 18:41
MySQL detected
Found 2024-04-28 by tcpidCreate report
-
Open service 221.130.158.210:22
2024-04-25 18:56
Found 2024-04-25 by SSHOpenPluginCreate report
-
Open service 221.130.158.210:3307
2024-04-25 18:09
MySQL detected
Found 2024-04-25 by tcpidCreate report
-
Open service 221.130.158.210:8000
2024-04-25 11:59
HTTP/1.1 502 Bad Gateway Server: nginx/1.10.3 (Ubuntu) Date: Thu, 25 Apr 2024 11:59:58 GMT Content-Type: text/html Content-Length: 584 Connection: close Page title: 502 Bad Gateway <html> <head><title>502 Bad Gateway</title></head> <body bgcolor="white"> <center><h1>502 Bad Gateway</h1></center> <hr><center>nginx/1.10.3 (Ubuntu)</center> </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page -->
Found 2024-04-25 by HttpPluginCreate report
-
Open service 221.130.158.210:3307
2024-04-18 18:47
MySQL detected
Found 2024-04-18 by tcpidCreate report