nginx
tcp/443 tcp/80 tcp/8080
MySQL is currently open without authentication.
Additionally a ransom note has been found in the dataset which indicates it has been compromised
This results in all the database data made available publicly.
Severity: critical
Fingerprint: cf350410ecceb5fd3abda5d007a77e853b2b5140ee4666752cbc5a93c1594adf
Databases: 29, row count: 2986, size: 924.5 kB Found table A____Z____RECOVER____DATA.README with 0 records Found table mysql.columns_priv with 0 records Found table mysql.db with 12 records Found table mysql.event with 0 records Found table mysql.func with 0 records Found table mysql.general_log with 2 records Found table mysql.help_category with 43 records Found table mysql.help_keyword with 620 records Found table mysql.help_relation with 1412 records Found table mysql.help_topic with 603 records Found table mysql.innodb_index_stats with 245 records Found table mysql.innodb_table_stats with 23 records Found table mysql.ndb_binlog_index with 0 records Found table mysql.plugin with 0 records Found table mysql.proc with 0 records Found table mysql.procs_priv with 0 records Found table mysql.proxies_priv with 2 records Found table mysql.servers with 0 records Found table mysql.slave_master_info with 0 records Found table mysql.slave_relay_log_info with 0 records Found table mysql.slave_worker_info with 0 records Found table mysql.slow_log with 2 records Found table mysql.tables_priv with 0 records Found table mysql.time_zone with 0 records Found table mysql.time_zone_leap_second with 0 records Found table mysql.time_zone_name with 0 records Found table mysql.time_zone_transition with 0 records Found table mysql.time_zone_transition_type with 0 records Found table mysql.user with 22 records
Severity: critical
Fingerprint: cf350410ecceb5fdcdff636a076a30d85fcb503710eadb62e7f1a79055b47dda
Databases: 51, row count: 4907, size: 4.6 MB No or default MySQL authentication found.Found table Z_README_TO_RECOVER.RECOVER_YOUR_DATA with 2 records Found table mysql.columns_priv with 0 records Found table mysql.db with 12 records Found table mysql.event with 0 records Found table mysql.func with 0 records Found table mysql.general_log with 2 records Found table mysql.help_category with 43 records Found table mysql.help_keyword with 620 records Found table mysql.help_relation with 1412 records Found table mysql.help_topic with 603 records Found table mysql.innodb_index_stats with 245 records Found table mysql.innodb_table_stats with 23 records Found table mysql.ndb_binlog_index with 0 records Found table mysql.plugin with 0 records Found table mysql.proc with 0 records Found table mysql.procs_priv with 0 records Found table mysql.proxies_priv with 2 records Found table mysql.servers with 0 records Found table mysql.slave_master_info with 0 records Found table mysql.slave_relay_log_info with 0 records Found table mysql.slave_worker_info with 0 records Found table mysql.slow_log with 2 records Found table mysql.tables_priv with 0 records Found table mysql.time_zone with 0 records Found table mysql.time_zone_leap_second with 0 records Found table mysql.time_zone_name with 0 records Found table mysql.time_zone_transition with 0 records Found table mysql.time_zone_transition_type with 0 records Found table mysql.user with 20 records Found table ouwzh_fkmotor_cn.wp_commentmeta with 12 records Found table ouwzh_fkmotor_cn.wp_comments with 3 records Found table ouwzh_fkmotor_cn.wp_e_events with 11 records Found table ouwzh_fkmotor_cn.wp_links with 0 records Found table ouwzh_fkmotor_cn.wp_options with 316 records Found table ouwzh_fkmotor_cn.wp_postmeta with 1245 records Found table ouwzh_fkmotor_cn.wp_posts with 182 records Found table ouwzh_fkmotor_cn.wp_smush_dir_images with 0 records Found table ouwzh_fkmotor_cn.wp_statistics_exclusions with 0 records Found table ouwzh_fkmotor_cn.wp_statistics_historical with 0 records Found table ouwzh_fkmotor_cn.wp_statistics_pages with 41 records Found table ouwzh_fkmotor_cn.wp_statistics_search with 1 records Found table ouwzh_fkmotor_cn.wp_statistics_useronline with 0 records Found table ouwzh_fkmotor_cn.wp_statistics_visit with 19 records Found table ouwzh_fkmotor_cn.wp_statistics_visitor with 46 records Found table ouwzh_fkmotor_cn.wp_statistics_visitor_relationships with 0 records Found table ouwzh_fkmotor_cn.wp_term_relationships with 12 records Found table ouwzh_fkmotor_cn.wp_term_taxonomy with 3 records Found table ouwzh_fkmotor_cn.wp_termmeta with 0 records Found table ouwzh_fkmotor_cn.wp_terms with 3 records Found table ouwzh_fkmotor_cn.wp_usermeta with 26 records Found table ouwzh_fkmotor_cn.wp_users with 1 records
Severity: high
Fingerprint: cf350410ecceb5fdebd6b760d92c9051d92c9051d92c9051d92c9051d92c9051
Databases: 1, row count: 2, size: 16.4 kB Found table Z_README_TO_RECOVER.RECOVER_YOUR_DATA with 2 records
Open service 47.240.167.129:8080
2024-03-11 03:28
HTTP/1.1 302 FOUND Content-Type: text/html; charset=utf-8 Content-Length: 219 Location: http://47.240.167.129/login Server: nginx Connection: keep-alive Date: Mon, 11 Mar 2024 03:28:48 GMT Page title: Redirecting... <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN"> <title>Redirecting...</title> <h1>Redirecting...</h1> <p>You should be redirected automatically to target URL: <a href="/login">/login</a>. If not click the link.
Open service 47.240.167.129:443 · ouwzh.fkmotor.cn
2024-03-08 07:02
HTTP/1.1 200 OK Server: nginx Date: Fri, 08 Mar 2024 07:02:41 GMT Content-Type: text/html Content-Length: 3460 Last-Modified: Sat, 27 Jan 2018 09:44:04 GMT Connection: close Vary: Accept-Encoding ETag: "5a6c49e4-d84" Strict-Transport-Security: max-age=31536000 Accept-Ranges: bytes Page title: 抱歉,站点已暂停 <!doctype html> <html> <head> <meta charset="utf-8"> <title>抱歉,站点已暂停</title> <style> html,body,div,h1,*{margin:0;padding:0;} body{ background-color:#fefefe; color:#333 } .box{ width:580px; margin:0 auto; } h1{ font-size:20px; text-align:center; background:url(data:image/png;base64,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) no-repeat top center; padding-top:160px; margin-top:30%; font-weight:normal; } </style> </head> <body> <div class="box"> <h1>抱歉!该站点已经被管理员停止运行,请联系管理员了解详情!</h1> </div> </body> </html>
Open service 47.240.167.129:80
2024-03-04 02:34
HTTP/1.1 502 Bad Gateway Server: nginx Date: Mon, 04 Mar 2024 02:34:39 GMT Content-Type: text/html Content-Length: 552 Connection: close Page title: 502 Bad Gateway <html> <head><title>502 Bad Gateway</title></head> <body> <center><h1>502 Bad Gateway</h1></center> <hr><center>nginx</center> </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page -->
Open service 47.240.167.129:8006
2024-03-04 00:58
HTTP/1.1 404 Not Found Date: Mon, 04 Mar 2024 00:58:44 GMT Content-Length: 0 Connection: close
Open service 47.240.167.129:8002
2024-03-03 20:47
HTTP/1.1 404 Not Found Date: Sun, 03 Mar 2024 20:47:39 GMT Content-Length: 0 Connection: close
Open service 47.240.167.129:8007
2024-03-03 14:08
HTTP/1.1 404 Not Found Date: Sun, 03 Mar 2024 14:08:05 GMT Content-Length: 0 Connection: close
Open service 47.240.167.129:8003
2024-03-02 23:20
HTTP/1.1 404 Not Found Date: Sat, 02 Mar 2024 23:20:30 GMT Content-Length: 0 Connection: close
Open service 47.240.167.129:2087
2024-03-02 23:09
HTTP/1.1 404 Not Found Date: Sat, 02 Mar 2024 23:09:35 GMT Content-Length: 0 Connection: close
Open service 47.240.167.129:8010
2024-03-02 20:10
HTTP/1.1 404 Not Found Date: Sat, 02 Mar 2024 20:10:45 GMT Content-Length: 0 Connection: close
Open service 47.240.167.129:8001
2024-03-02 15:19
HTTP/1.1 404 Not Found Date: Sat, 02 Mar 2024 15:19:09 GMT Content-Length: 0 Connection: close
Open service 47.240.167.129:8003
2024-03-02 02:01
HTTP/1.1 404 Not Found Date: Sat, 02 Mar 2024 02:01:12 GMT Content-Length: 0 Connection: close
Open service 47.240.167.129:8004
2024-03-02 01:04
HTTP/1.1 404 Not Found Date: Sat, 02 Mar 2024 01:04:52 GMT Content-Length: 0 Connection: close
Open service 47.240.167.129:2087
2024-03-01 06:13
HTTP/1.1 404 Not Found Date: Fri, 01 Mar 2024 06:13:01 GMT Content-Length: 0 Connection: close
Open service 47.240.167.129:21
2024-03-01 04:01
220---------- Welcome to Pure-FTPd [privsep] [TLS] ---------- 220-You are user number 1 of 50 allowed. 220-Local time is now 12:01. Server port: 21. 220-This is a private system - No anonymous login 220-IPv6 connections are also welcome on this server. 220 You will be disconnected after 15 minutes of inactivity. 500 HTTP command: [get]
Open service 47.240.167.129:443
2024-02-29 23:24
HTTP/1.1 200 OK Server: nginx Date: Thu, 29 Feb 2024 23:24:17 GMT Content-Type: text/html Content-Length: 43242 Last-Modified: Thu, 27 Oct 2022 16:35:08 GMT Connection: close Vary: Accept-Encoding ETag: "635ab33c-a8ea" Strict-Transport-Security: max-age=31536000 Accept-Ranges: bytes Page title: Home <!DOCTYPE HTML> <html> <head> <title>Home </title> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta name="keywords" content="News Times Responsive web template, Bootstrap Web Templates, Flat Web Templates, Android Compatible web template, Smartphone Compatible web template, free webdesigns for Nokia, Samsung, LG, SonyEricsson, Motorola web design" /> <script type="application/x-javascript"> addEventListener("load", function() { setTimeout(hideURLbar, 0); }, false); function hideURLbar(){ window.scrollTo(0,1); } </script> <!-- Custom Theme files --> <link href="css/bootstrap.css" rel="stylesheet" type="text/css" media="all" /> <link href="css/style.css" rel="stylesheet" type="text/css" media="all" /> <!-- js --> <script src="js/jquery-1.11.1.min.js"></script> <!-- //js --> <link href='https://fonts.googleapis.com/css?family=Oswald:400,300,700' rel='stylesheet' type='text/css'> </head> <body> <!-- banner --> <div class="banner"> <div class="banner-info"> <div class="container"> <nav class="navbar navbar-default"> <!-- Brand and toggle get grouped for better mobile display --> <div class="navbar-header"> <button type="button" class="navbar-toggle collapsed" data-toggle="collapse" data-target="#bs-example-navbar-collapse-1"> <span class="sr-only">Toggle navigation</span> <span class="icon-bar"></span> <span class="icon-bar"></span> <span class="icon-bar"></span> </button> <div class="logo"> <a class="navbar-brand" href="index.html"><span>N</span> News Times</a> </div> </div> <!-- Collect the nav links, forms, and other content for toggling --> <div class="collapse navbar-collapse nav-wil" id="bs-example-navbar-collapse-1"> <ul class="nav navbar-nav cl-effect-18" id="cl-effect-18"> <li class="act"><a href="index.html" class="effect1 active">Home</a></li> <li><a href="events.html">Current events</a></li> <li><a href="breaking.html">Breaking stories</a></li> <li><a href="entertainment.html">Entertainment</a></li> <li role="presentation" class="dropdown"> <a class="dropdown-toggle" data-toggle="dropdown" href="#" role="button" aria-haspopup="true" aria-expanded="false"> Business <span class="caret"></span> </a> <ul class="dropdown-menu"> <li><a href="short-codes.html">Market</a></li> <li><a href="short-codes.html">Reviews</a></li> <li><a href="short-codes.html">Stock</a></li> </ul> </li> <li><a href="contact.html">Contact Us</a></li> </ul> </div><!-- /.navbar-collapse --> </nav> <!--banner-Slider--> <script src="js/responsiveslides.min.js"></script> <script> // You can also use "$(window).load(function() {" $(function () { // Slideshow 4 $("#slider3").responsiveSlides({ auto: true, pager: true, nav:true, speed: 500, namespace: "callbacks", before: function () { $('.events').append("<li>before event fired.</li>"); }, after: function () { $('.events').append("<li>after event fired.</li>"); } }); }); </script> <div id="top" class="callbacks_container"> <ul class="rslides" id="slider3"> <li> <div class="banner-info-slider"> <ul> <li><a href="single.html">politics</a></li> <li>25 Dec 2015</li> </ul> <h1>The Hunters breaking an Ebola ban on Bushmeat</h1> <p>Ebola is a viral illness of which the initial symptoms can include a sudden fever, intense weakness, muscle pain and a sore throat.<span>By <i>ullamcoman</i> and <i>Micheal smithjos.</i></span></p> <div class="more"> <a href="single.html" class="type-1"> <span> Read More </sp