LeakIX - Host 47.113.225.197

Host 47.113.225.197

China

Hangzhou Alibaba Advertising Co.,Ltd.

Linux x86_64

Software information

nginx nginx 1.20.2

tcp/80

MySQL is publicly available

MySQL is currently open without authentication.

Additionally a ransom note has been found in the dataset which indicates it has been compromised

This results in all the database data made available publicly.

IP: 47.113.225.197
Port: 3306

First seen 2024-04-24 05:17
Last seen 2024-06-17 21:58
Open for 54 days

Severity: critical
Fingerprint: cf350410ecceb5fd3916705186776c2d54dc16d8f7947549177d91c14d48c8c3

Databases: 34, row count: 3884, size: 2.3 MB
Found table README_TO_RECOVER_A.RECOVER_YOUR_DATA with 2 records
Found table mysql.columns_priv with 0 records
Found table mysql.component with 0 records
Found table mysql.db with 2 records
Found table mysql.default_roles with 0 records
Found table mysql.engine_cost with 2 records
Found table mysql.func with 0 records
Found table mysql.general_log with 2 records
Found table mysql.global_grants with 32 records
Found table mysql.gtid_executed with 0 records
Found table mysql.help_category with 44 records
Found table mysql.help_keyword with 759 records
Found table mysql.help_relation with 2131 records
Found table mysql.help_topic with 878 records
Found table mysql.innodb_index_stats with 13 records
Found table mysql.innodb_table_stats with 4 records
Found table mysql.password_history with 0 records
Found table mysql.plugin with 0 records
Found table mysql.procs_priv with 0 records
Found table mysql.proxies_priv with 1 records
Found table mysql.role_edges with 0 records
Found table mysql.server_cost with 6 records
Found table mysql.servers with 0 records
Found table mysql.slave_master_info with 0 records
Found table mysql.slave_relay_log_info with 0 records
Found table mysql.slave_worker_info with 0 records
Found table mysql.slow_log with 2 records
Found table mysql.tables_priv with 2 records
Found table mysql.time_zone with 0 records
Found table mysql.time_zone_leap_second with 0 records
Found table mysql.time_zone_name with 0 records
Found table mysql.time_zone_transition with 0 records
Found table mysql.time_zone_transition_type with 0 records
Found table mysql.user with 4 records

Found on 2024-06-17 21:58

2.3 MBytes 3884 rows

Severity: high
Fingerprint: cf350410ecceb5fdebd6b7609132601091326010913260109132601091326010
```
Databases: 1, row count: 2, size: 16.4 kB
Found table README_TO_RECOVER_A.RECOVER_YOUR_DATA with 2 records
```
Found on 2024-04-24 05:17

16.4 kBytes 2 rows

Create report

Open service 47.113.225.197:3306

2024-06-19 22:24
```
MySQL detected
```
Found 14 hours ago by tcpid
Create report
Open service 47.113.225.197:3306

2024-06-17 21:58
```
MySQL detected
```
Found 3 days ago by tcpid
Create report
Open service 47.113.225.197:3306

2024-06-15 23:26
```
MySQL detected
```
Found 2024-06-15 by tcpid
Create report
Open service 47.113.225.197:3306

2024-06-15 14:56
```
MySQL detected
```
Found 2024-06-15 by tcpid
Create report
Open service 47.113.225.197:22

2024-06-14 14:15
Found 2024-06-14 by SSHOpenPlugin
Create report

Open service 47.113.225.197:8086

2024-06-13 18:03

HTTP/1.1 200 
Set-Cookie: JSESSIONID=A524A9BC46D462CD1600703946C9D076; Path=/; HttpOnly
Content-Type: text/html;charset=UTF-8
Content-Language: en-US
Transfer-Encoding: chunked
Date: Thu, 13 Jun 2024 18:03:29 GMT
Connection: close

Page title: 软件工程设计

<!DOCTYPE html>
<html lang="en">
<head>
    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
    <meta name="description" content="">
    <meta name="author" content="">
    <title>软件工程设计</title>
    <link href="../css/bootstrap.min.css" rel="stylesheet">
    <!--    <link href="../css/bootstrap.min.css" rel="stylesheet">-->
    <!--    <link href="../css/signin.css" rel="stylesheet">-->
    <link href="../css/signin.css" rel="stylesheet">
</head>
<body class="text-center">
<form class="form-signin" action="/login;jsessionid=A524A9BC46D462CD1600703946C9D076" method="post">
    <img class="mb-4" src="../img/logo.svg" alt="" width="100%" height="100%">
    <!--    <img class="mb-4" src="../img/logo.svg" alt="" width="100%" height="100%">-->
    <!--    <img class="mb-4" src="img/bootstrap-solid.svg" alt="" width="72" height="72">-->
    <h1 class="h3 mb-3 font-weight-normal text-success">Please sign in</h1>
    <label class="sr-only">用户名</label>
    <input type="text" name="name" class="form-control" placeholder="Username" required="" autofocus="">
    <label class="sr-only">密码</label>
    <input type="password" name="password" class="form-control" placeholder="Password" required="">
    <span style="color: red">登录后可访问!</span>
    <button class="btn btn-lg btn-primary btn-block" type="submit">登录</button>
    <br>
<!--        <p class="mt-5 mb-3 text-muted" >© 2022-2023 丽江文化旅游学院</p>-->
<!--        <p class="mt-5 mb-3 text-primary" >© 2022-2023 丽江文化旅游学院</p>-->
<!--    <p style="color: black;">Copyright © 2023 丽江文化旅游学院 All Rights Reserved & ICP Licensed onlinefun.fun 滇ICP备:2023002014号</p>-->
    <p style="color: deepskyblue;">Copyright © 2023 丽江文化旅游学院   </p>
    <p style="color: deepskyblue;">All Rights Reserved & ICP Licensed</p>
    <p style="color: deepskyblue;">onlinefun.fun 滇ICP备:2023002014号 </p>
<!--        <p class="mt-5 mb-3 text-info" >© 2022-2023 丽江文化旅游学院</p>-->
<!--        <p class="mt-md-3 mb-5 text-warning" >© 2022222-2023 丽江文化旅游学院</p>-->
<!--        <p class="mt-5 mb-5 text-danger" >© 2022-2023 丽江文化旅游学院</p>-->
</form>

</body>

</html>

Found 2024-06-13 by HttpPlugin

Create report

Open service 47.113.225.197:80

2024-06-13 11:09

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Thu, 13 Jun 2024 11:09:51 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Sat, 27 Apr 2024 15:16:47 GMT
Connection: close
ETag: "662d16df-264"
Accept-Ranges: bytes

Page title: Welcome to nginx!

<!DOCTYPE html>
<html>
<head>
<title>Welcome to nginx!</title>
<style>
    body {
        width: 35em;
        margin: 0 auto;
        font-family: Tahoma, Verdana, Arial, sans-serif;
    }
</style>
</head>
<body>
<h1>Welcome to nginx!</h1>
<p>If you see this page, the nginx web server is successfully installed and
working. Further configuration is required.</p>

<p>For online documentation and support please refer to
<a href="http://nginx.org/">nginx.org</a>.<br/>
Commercial support is available at
<a href="http://nginx.com/">nginx.com</a>.</p>

<p><em>Thank you for using nginx.</em></p>
</body>
</html>

Found 2024-06-13 by HttpPlugin

Create report

Open service 47.113.225.197:3306

2024-06-11 20:08
```
MySQL detected
```
Found 2024-06-11 by tcpid
Create report
Open service 47.113.225.197:3306

2024-06-09 19:58
```
MySQL detected
```
Found 2024-06-09 by tcpid
Create report
Open service 47.113.225.197:3306

2024-06-07 21:43
```
MySQL detected
```
Found 2024-06-07 by tcpid
Create report
Open service 47.113.225.197:3306

2024-06-05 19:59
```
MySQL detected
```
Found 2024-06-05 by tcpid
Create report
Open service 47.113.225.197:3306

2024-06-03 22:15
```
MySQL detected
```
Found 2024-06-03 by tcpid
Create report

Open service 47.113.225.197:8086

2024-06-03 00:56

HTTP/1.1 200 
Set-Cookie: JSESSIONID=E930E5CBBDBEECCDA5191BB22DB5834A; Path=/; HttpOnly
Content-Type: text/html;charset=UTF-8
Content-Language: en-US
Transfer-Encoding: chunked
Date: Mon, 03 Jun 2024 00:56:12 GMT
Connection: close

Page title: 软件工程设计

<!DOCTYPE html>
<html lang="en">
<head>
    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
    <meta name="description" content="">
    <meta name="author" content="">
    <title>软件工程设计</title>
    <link href="../css/bootstrap.min.css" rel="stylesheet">
    <!--    <link href="../css/bootstrap.min.css" rel="stylesheet">-->
    <!--    <link href="../css/signin.css" rel="stylesheet">-->
    <link href="../css/signin.css" rel="stylesheet">
</head>
<body class="text-center">
<form class="form-signin" action="/login;jsessionid=E930E5CBBDBEECCDA5191BB22DB5834A" method="post">
    <img class="mb-4" src="../img/logo.svg" alt="" width="100%" height="100%">
    <!--    <img class="mb-4" src="../img/logo.svg" alt="" width="100%" height="100%">-->
    <!--    <img class="mb-4" src="img/bootstrap-solid.svg" alt="" width="72" height="72">-->
    <h1 class="h3 mb-3 font-weight-normal text-success">Please sign in</h1>
    <label class="sr-only">用户名</label>
    <input type="text" name="name" class="form-control" placeholder="Username" required="" autofocus="">
    <label class="sr-only">密码</label>
    <input type="password" name="password" class="form-control" placeholder="Password" required="">
    <span style="color: red">登录后可访问!</span>
    <button class="btn btn-lg btn-primary btn-block" type="submit">登录</button>
    <br>
<!--        <p class="mt-5 mb-3 text-muted" >© 2022-2023 丽江文化旅游学院</p>-->
<!--        <p class="mt-5 mb-3 text-primary" >© 2022-2023 丽江文化旅游学院</p>-->
<!--    <p style="color: black;">Copyright © 2023 丽江文化旅游学院 All Rights Reserved & ICP Licensed onlinefun.fun 滇ICP备:2023002014号</p>-->
    <p style="color: deepskyblue;">Copyright © 2023 丽江文化旅游学院   </p>
    <p style="color: deepskyblue;">All Rights Reserved & ICP Licensed</p>
    <p style="color: deepskyblue;">onlinefun.fun 滇ICP备:2023002014号 </p>
<!--        <p class="mt-5 mb-3 text-info" >© 2022-2023 丽江文化旅游学院</p>-->
<!--        <p class="mt-md-3 mb-5 text-warning" >© 2022222-2023 丽江文化旅游学院</p>-->
<!--        <p class="mt-5 mb-5 text-danger" >© 2022-2023 丽江文化旅游学院</p>-->
</form>

</body>

</html>

Found 2024-06-03 by HttpPlugin

Create report

Data leak

Size

2.3 MB

Collections

Rows

3884

Domain summary

No record