Host 43.138.203.75
China
Software information
nginx
tcp/80
-
MySQL is publicly available
MySQL is currently open without authentication.
Additionally a ransom note has been found in the dataset which indicates it has been compromised
This results in all the database data made available publicly.
First seen 2024-01-09 04:44
Last seen 2024-04-30 19:54
Open for 112 days-
Severity: critical
Fingerprint: cf350410ecceb5fdc679e918eb0ebc089e6c13a7210d05a1acfec2f7e811245fDatabases: 59, row count: 3592, size: 1.4 MB Found table README_TO_RECOVER_A.RECOVER_YOUR_DATA with 2 records Found table mysql.columns_priv with 0 records Found table mysql.db with 8 records Found table mysql.event with 0 records Found table mysql.func with 0 records Found table mysql.general_log with 2 records Found table mysql.help_category with 45 records Found table mysql.help_keyword with 825 records Found table mysql.help_relation with 1660 records Found table mysql.help_topic with 603 records Found table mysql.innodb_index_stats with 151 records Found table mysql.innodb_table_stats with 33 records Found table mysql.ndb_binlog_index with 0 records Found table mysql.plugin with 0 records Found table mysql.proc with 0 records Found table mysql.procs_priv with 0 records Found table mysql.proxies_priv with 2 records Found table mysql.servers with 0 records Found table mysql.slave_master_info with 0 records Found table mysql.slave_relay_log_info with 0 records Found table mysql.slave_worker_info with 0 records Found table mysql.slow_log with 2 records Found table mysql.tables_priv with 0 records Found table mysql.time_zone with 0 records Found table mysql.time_zone_leap_second with 0 records Found table mysql.time_zone_name with 0 records Found table mysql.time_zone_transition with 0 records Found table mysql.time_zone_transition_type with 0 records Found table mysql.user with 14 records Found table ry-vue.QRTZ_BLOB_TRIGGERS with 0 records Found table ry-vue.QRTZ_CALENDARS with 0 records Found table ry-vue.QRTZ_CRON_TRIGGERS with 0 records Found table ry-vue.QRTZ_FIRED_TRIGGERS with 0 records Found table ry-vue.QRTZ_JOB_DETAILS with 0 records Found table ry-vue.QRTZ_LOCKS with 0 records Found table ry-vue.QRTZ_PAUSED_TRIGGER_GRPS with 0 records Found table ry-vue.QRTZ_SCHEDULER_STATE with 0 records Found table ry-vue.QRTZ_SIMPLE_TRIGGERS with 0 records Found table ry-vue.QRTZ_SIMPROP_TRIGGERS with 0 records Found table ry-vue.QRTZ_TRIGGERS with 0 records Found table ry-vue.gen_table with 0 records Found table ry-vue.gen_table_column with 0 records Found table ry-vue.sys_config with 6 records Found table ry-vue.sys_dept with 10 records Found table ry-vue.sys_dict_data with 29 records Found table ry-vue.sys_dict_type with 10 records Found table ry-vue.sys_job with 3 records Found table ry-vue.sys_job_log with 0 records Found table ry-vue.sys_logininfor with 0 records Found table ry-vue.sys_menu with 85 records Found table ry-vue.sys_notice with 2 records Found table ry-vue.sys_oper_log with 0 records Found table ry-vue.sys_post with 4 records Found table ry-vue.sys_role with 2 records Found table ry-vue.sys_role_dept with 3 records Found table ry-vue.sys_role_menu with 85 records Found table ry-vue.sys_user with 2 records Found table ry-vue.sys_user_post with 2 records Found table ry-vue.sys_user_role with 2 records
Found on 2024-04-30 19:541.4 MBytes 3592 rows -
Severity: high
Fingerprint: cf350410ecceb5fdebd6b7609132601091326010913260109132601091326010Databases: 1, row count: 2, size: 16.4 kB Found table README_TO_RECOVER_A.RECOVER_YOUR_DATA with 2 records
Found on 2024-01-12 00:3316.4 kBytes 2 rows
-
-
Open service 43.138.203.75:3306
2024-05-12 18:25
MySQL detected
Found 3 days ago by tcpidCreate report
-
Open service 43.138.203.75:3306
2024-05-08 13:30
MySQL detected
Found 2024-05-08 by tcpidCreate report
-
Open service 43.138.203.75:3306
2024-04-30 19:54
MySQL detected
Found 2024-04-30 by tcpidCreate report
-
Open service 43.138.203.75:3306
2024-04-28 18:18
MySQL detected
Found 2024-04-28 by tcpidCreate report
-
Open service 43.138.203.75:80
2024-04-25 01:38
HTTP/1.1 200 OK Server: nginx Date: Thu, 25 Apr 2024 01:38:34 GMT Content-Type: text/html Content-Length: 917 Last-Modified: Mon, 07 Aug 2023 07:02:58 GMT Connection: close ETag: "64d09722-395" Accept-Ranges: bytes Page title: 恭喜,站点创建成功! <!doctype html> <html> <head> <meta charset="utf-8"> <title>恭喜,站点创建成功!</title> <style> .container { width: 60%; margin: 10% auto 0; background-color: #f0f0f0; padding: 2% 5%; border-radius: 10px } ul { padding-left: 20px; } ul li { line-height: 2.3 } a { color: #20a53a } </style> </head> <body> <div class="container"> <h1>恭喜, 站点创建成功!</h1> <h3>这是默认index.html,本页面由系统自动生成</h3> <ul> <li>本页面在FTP根目录下的index.html</li> <li>您可以修改、删除或覆盖本页面</li> <li>FTP相关信息,请到“面板系统后台 > FTP” 查看</li> </ul> </div> </body> </html>Found 2024-04-25 by HttpPluginCreate report
-
Open service 43.138.203.75:8080
2024-04-24 22:01
HTTP/1.1 200 Content-Type: text/html;charset=UTF-8 Transfer-Encoding: chunked Date: Wed, 24 Apr 2024 22:01:41 GMT Connection: close Page title: Apache Tomcat/8.5.78 <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8" /> <title>Apache Tomcat/8.5.78</title> <link href="favicon.ico" rel="icon" type="image/x-icon" /> <link href="tomcat.css" rel="stylesheet" type="text/css" /> </head> <body> <div id="wrapper"> <div id="navigation" class="curved container"> <span id="nav-home"><a href="https://tomcat.apache.org/">Home</a></span> <span id="nav-hosts"><a href="/docs/">Documentation</a></span> <span id="nav-config"><a href="/docs/config/">Configuration</a></span> <span id="nav-examples"><a href="/examples/">Examples</a></span> <span id="nav-wiki"><a href="https://wiki.apache.org/tomcat/FrontPage">Wiki</a></span> <span id="nav-lists"><a href="https://tomcat.apache.org/lists.html">Mailing Lists</a></span> <span id="nav-help"><a href="https://tomcat.apache.org/findhelp.html">Find Help</a></span> <br class="separator" /> </div> <div id="asf-box"> <h1>Apache Tomcat/8.5.78</h1> </div> <div id="upper" class="curved container"> <div id="congrats" class="curved container"> <h2>If you're seeing this, you've successfully installed Tomcat. Congratulations!</h2> </div> <div id="notice"> <img id="tomcat-logo" src="tomcat.svg" alt="[tomcat logo]" /> <div id="tasks"> <h3>Recommended Reading:</h3> <h4><a href="/docs/security-howto.html">Security Considerations How-To</a></h4> <h4><a href="/docs/manager-howto.html">Manager Application How-To</a></h4> <h4><a href="/docs/cluster-howto.html">Clustering/Session Replication How-To</a></h4> </div> </div> <div id="actions"> <div class="button"> <a class="container shadow" href="/manager/status"><span>Server Status</span></a> </div> <div class="button"> <a class="container shadow" href="/manager/html"><span>Manager App</span></a> </div> <div class="button"> <a class="container shadow" href="/host-manager/html"><span>Host Manager</span></a> </div> </div> <br class="separator" /> </div> <div id="middle" class="curved container"> <h3>Developer Quick Start</h3> <div class="col25"> <div class="container"> <p><a href="/docs/setup.html">Tomcat Setup</a></p> <p><a href="/docs/appdev/">First Web Application</a></p> </div> </div> <div class="col25"> <div class="container"> <p><a href="/docs/realm-howto.html">Realms & AAA</a></p> <p><a href="/docs/jndi-datasource-examples-howto.html">JDBC DataSources</a></p> </div> </div> <div class="col25"> <div class="container"> <p><a href="/examples/">Examples</a></p> </div> </div> <div class="col25"> <div class="container"> <p><a href="https://wiki.apache.org/tomcat/Specifications">Servlet Specifications</a></p> <p><a href="https://wiki.apache.org/tomcat/TomcatVersions">Tomcat Versions</a></p> </div> </div> <br class="separator" /> </div> <div id="lower"> <div id="low-manage" class=""> <div class="curved container">Found 2024-04-24 by HttpPluginCreate report
-
Open service 43.138.203.75:3306
2024-04-24 12:44
MySQL detected
Found 2024-04-24 by tcpidCreate report
-
Open service 43.138.203.75:80
2024-04-23 07:39
HTTP/1.1 200 OK Server: nginx Date: Tue, 23 Apr 2024 07:39:34 GMT Content-Type: text/html Content-Length: 917 Last-Modified: Mon, 07 Aug 2023 07:02:58 GMT Connection: close ETag: "64d09722-395" Accept-Ranges: bytes Page title: 恭喜,站点创建成功! <!doctype html> <html> <head> <meta charset="utf-8"> <title>恭喜,站点创建成功!</title> <style> .container { width: 60%; margin: 10% auto 0; background-color: #f0f0f0; padding: 2% 5%; border-radius: 10px } ul { padding-left: 20px; } ul li { line-height: 2.3 } a { color: #20a53a } </style> </head> <body> <div class="container"> <h1>恭喜, 站点创建成功!</h1> <h3>这是默认index.html,本页面由系统自动生成</h3> <ul> <li>本页面在FTP根目录下的index.html</li> <li>您可以修改、删除或覆盖本页面</li> <li>FTP相关信息,请到“面板系统后台 > FTP” 查看</li> </ul> </div> </body> </html>Found 2024-04-23 by HttpPluginCreate report