nginx 1.20.2
tcp/80
MySQL is currently open without authentication.
Additionally a ransom note has been found in the dataset which indicates it has been compromised
This results in all the database data made available publicly.
Severity: critical
Fingerprint: cf350410ecceb5fd3916705186776c2d54dc16d8f7947549177d91c14d48c8c3
Databases: 34, row count: 3884, size: 2.3 MB Found table README_TO_RECOVER_A.RECOVER_YOUR_DATA with 2 records Found table mysql.columns_priv with 0 records Found table mysql.component with 0 records Found table mysql.db with 2 records Found table mysql.default_roles with 0 records Found table mysql.engine_cost with 2 records Found table mysql.func with 0 records Found table mysql.general_log with 2 records Found table mysql.global_grants with 32 records Found table mysql.gtid_executed with 0 records Found table mysql.help_category with 44 records Found table mysql.help_keyword with 759 records Found table mysql.help_relation with 2131 records Found table mysql.help_topic with 878 records Found table mysql.innodb_index_stats with 13 records Found table mysql.innodb_table_stats with 4 records Found table mysql.password_history with 0 records Found table mysql.plugin with 0 records Found table mysql.procs_priv with 0 records Found table mysql.proxies_priv with 1 records Found table mysql.role_edges with 0 records Found table mysql.server_cost with 6 records Found table mysql.servers with 0 records Found table mysql.slave_master_info with 0 records Found table mysql.slave_relay_log_info with 0 records Found table mysql.slave_worker_info with 0 records Found table mysql.slow_log with 2 records Found table mysql.tables_priv with 2 records Found table mysql.time_zone with 0 records Found table mysql.time_zone_leap_second with 0 records Found table mysql.time_zone_name with 0 records Found table mysql.time_zone_transition with 0 records Found table mysql.time_zone_transition_type with 0 records Found table mysql.user with 4 records
Severity: high
Fingerprint: cf350410ecceb5fdebd6b7609132601091326010913260109132601091326010
Databases: 1, row count: 2, size: 16.4 kB Found table README_TO_RECOVER_A.RECOVER_YOUR_DATA with 2 records
Open service 47.113.225.197:3306
2024-06-19 22:24
MySQL detected
Open service 47.113.225.197:3306
2024-06-17 21:58
MySQL detected
Open service 47.113.225.197:3306
2024-06-15 23:26
MySQL detected
Open service 47.113.225.197:3306
2024-06-15 14:56
MySQL detected
Open service 47.113.225.197:22
2024-06-14 14:15
Open service 47.113.225.197:8086
2024-06-13 18:03
HTTP/1.1 200 Set-Cookie: JSESSIONID=A524A9BC46D462CD1600703946C9D076; Path=/; HttpOnly Content-Type: text/html;charset=UTF-8 Content-Language: en-US Transfer-Encoding: chunked Date: Thu, 13 Jun 2024 18:03:29 GMT Connection: close Page title: 软件工程设计 <!DOCTYPE html> <html lang="en"> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"> <meta name="description" content=""> <meta name="author" content=""> <title>软件工程设计</title> <link href="../css/bootstrap.min.css" rel="stylesheet"> <!-- <link href="../css/bootstrap.min.css" rel="stylesheet">--> <!-- <link href="../css/signin.css" rel="stylesheet">--> <link href="../css/signin.css" rel="stylesheet"> </head> <body class="text-center"> <form class="form-signin" action="/login;jsessionid=A524A9BC46D462CD1600703946C9D076" method="post"> <img class="mb-4" src="../img/logo.svg" alt="" width="100%" height="100%"> <!-- <img class="mb-4" src="../img/logo.svg" alt="" width="100%" height="100%">--> <!-- <img class="mb-4" src="img/bootstrap-solid.svg" alt="" width="72" height="72">--> <h1 class="h3 mb-3 font-weight-normal text-success">Please sign in</h1> <label class="sr-only">用户名</label> <input type="text" name="name" class="form-control" placeholder="Username" required="" autofocus=""> <label class="sr-only">密码</label> <input type="password" name="password" class="form-control" placeholder="Password" required=""> <span style="color: red">登录后可访问!</span> <button class="btn btn-lg btn-primary btn-block" type="submit">登录</button> <br> <!-- <p class="mt-5 mb-3 text-muted" >© 2022-2023 丽江文化旅游学院</p>--> <!-- <p class="mt-5 mb-3 text-primary" >© 2022-2023 丽江文化旅游学院</p>--> <!-- <p style="color: black;">Copyright © 2023 丽江文化旅游学院 All Rights Reserved & ICP Licensed onlinefun.fun 滇ICP备:2023002014号</p>--> <p style="color: deepskyblue;">Copyright © 2023 丽江文化旅游学院 </p> <p style="color: deepskyblue;">All Rights Reserved & ICP Licensed</p> <p style="color: deepskyblue;">onlinefun.fun 滇ICP备:2023002014号 </p> <!-- <p class="mt-5 mb-3 text-info" >© 2022-2023 丽江文化旅游学院</p>--> <!-- <p class="mt-md-3 mb-5 text-warning" >© 2022222-2023 丽江文化旅游学院</p>--> <!-- <p class="mt-5 mb-5 text-danger" >© 2022-2023 丽江文化旅游学院</p>--> </form> </body> </html>
Open service 47.113.225.197:80
2024-06-13 11:09
HTTP/1.1 200 OK Server: nginx/1.20.2 Date: Thu, 13 Jun 2024 11:09:51 GMT Content-Type: text/html Content-Length: 612 Last-Modified: Sat, 27 Apr 2024 15:16:47 GMT Connection: close ETag: "662d16df-264" Accept-Ranges: bytes Page title: Welcome to nginx! <!DOCTYPE html> <html> <head> <title>Welcome to nginx!</title> <style> body { width: 35em; margin: 0 auto; font-family: Tahoma, Verdana, Arial, sans-serif; } </style> </head> <body> <h1>Welcome to nginx!</h1> <p>If you see this page, the nginx web server is successfully installed and working. Further configuration is required.</p> <p>For online documentation and support please refer to <a href="http://nginx.org/">nginx.org</a>.<br/> Commercial support is available at <a href="http://nginx.com/">nginx.com</a>.</p> <p><em>Thank you for using nginx.</em></p> </body> </html>
Open service 47.113.225.197:3306
2024-06-11 20:08
MySQL detected
Open service 47.113.225.197:3306
2024-06-09 19:58
MySQL detected
Open service 47.113.225.197:3306
2024-06-07 21:43
MySQL detected
Open service 47.113.225.197:3306
2024-06-05 19:59
MySQL detected
Open service 47.113.225.197:3306
2024-06-03 22:15
MySQL detected
Open service 47.113.225.197:8086
2024-06-03 00:56
HTTP/1.1 200 Set-Cookie: JSESSIONID=E930E5CBBDBEECCDA5191BB22DB5834A; Path=/; HttpOnly Content-Type: text/html;charset=UTF-8 Content-Language: en-US Transfer-Encoding: chunked Date: Mon, 03 Jun 2024 00:56:12 GMT Connection: close Page title: 软件工程设计 <!DOCTYPE html> <html lang="en"> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"> <meta name="description" content=""> <meta name="author" content=""> <title>软件工程设计</title> <link href="../css/bootstrap.min.css" rel="stylesheet"> <!-- <link href="../css/bootstrap.min.css" rel="stylesheet">--> <!-- <link href="../css/signin.css" rel="stylesheet">--> <link href="../css/signin.css" rel="stylesheet"> </head> <body class="text-center"> <form class="form-signin" action="/login;jsessionid=E930E5CBBDBEECCDA5191BB22DB5834A" method="post"> <img class="mb-4" src="../img/logo.svg" alt="" width="100%" height="100%"> <!-- <img class="mb-4" src="../img/logo.svg" alt="" width="100%" height="100%">--> <!-- <img class="mb-4" src="img/bootstrap-solid.svg" alt="" width="72" height="72">--> <h1 class="h3 mb-3 font-weight-normal text-success">Please sign in</h1> <label class="sr-only">用户名</label> <input type="text" name="name" class="form-control" placeholder="Username" required="" autofocus=""> <label class="sr-only">密码</label> <input type="password" name="password" class="form-control" placeholder="Password" required=""> <span style="color: red">登录后可访问!</span> <button class="btn btn-lg btn-primary btn-block" type="submit">登录</button> <br> <!-- <p class="mt-5 mb-3 text-muted" >© 2022-2023 丽江文化旅游学院</p>--> <!-- <p class="mt-5 mb-3 text-primary" >© 2022-2023 丽江文化旅游学院</p>--> <!-- <p style="color: black;">Copyright © 2023 丽江文化旅游学院 All Rights Reserved & ICP Licensed onlinefun.fun 滇ICP备:2023002014号</p>--> <p style="color: deepskyblue;">Copyright © 2023 丽江文化旅游学院 </p> <p style="color: deepskyblue;">All Rights Reserved & ICP Licensed</p> <p style="color: deepskyblue;">onlinefun.fun 滇ICP备:2023002014号 </p> <!-- <p class="mt-5 mb-3 text-info" >© 2022-2023 丽江文化旅游学院</p>--> <!-- <p class="mt-md-3 mb-5 text-warning" >© 2022222-2023 丽江文化旅游学院</p>--> <!-- <p class="mt-5 mb-5 text-danger" >© 2022-2023 丽江文化旅游学院</p>--> </form> </body> </html>