LeakIX - Host 49.232.211.139

Host 49.232.211.139

China

Shenzhen Tencent Computer Systems Company Limited

CentOS Linux 7 (Core) 3.10.0-1160.11.1.el7.x86_64

ElasticSearch is publicly available

Elasticsearch and/or Kibana is currently open without authentication.

Additionaly a ransom note has been found in the dataset which indicates it has been compromised

This results in all the database data made available publicly.

IP: 49.232.211.139
Port: 9200
URL: http://49.232.211.139:9200

First seen 2022-08-07 19:44
Last seen 2023-10-10 22:44
Open for 429 days
- Severity: high
  Fingerprint: 831cb76b8e05df4637d06541a27ad47fa27ad47fa27ad47fa27ad47fa27ad47f
```
Indices: 1, document count: 1, size: 4.0 kB
Found index read-me with 1 documents (4.0 kB)
```
  Found on 2023-10-10 22:44
  
  4.0 kBytes 1 rows
- Severity: high
  Fingerprint: 831cb76b8e05df461d0fc7054c25ee686c8b55756c8b55756c8b55756c8b5575
```
Indices: 2, document count: 3, size: 43.4 kB
Found index read_me with 1 documents (4.5 kB)
Found index service with 2 documents (38.9 kB)
```
  Found on 2023-06-10 10:19
  
  43.4 kBytes 3 rows
- Severity: high
  Fingerprint: 831cb76b8e05df46872fd496e6e5d2c102524603025246030252460302524603
```
Indices: 2, document count: 2, size: 24.1 kB
Found index read_me with 1 documents (4.5 kB)
Found index service with 1 documents (19.6 kB)
```
  Found on 2023-02-02 09:56
  
  24.1 kBytes 2 rows
- Severity: high
  Fingerprint: 831cb76b8e05df4640f0fac6c20d1751c20d1751c20d1751c20d1751c20d1751
```
Indices: 1, document count: 1, size: 4.5 kB
Found index read_me with 1 documents (4.5 kB)
```
  Found on 2022-08-07 19:44
  
  4.5 kBytes 1 rows
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 49.232.211.139
Port: 80
URL: http://49.232.211.139

First seen 2023-01-28 05:20
Last seen 2023-09-07 00:23
Open for 221 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522e520a03d
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://gitee.com/haodong108/fireworks-2023.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2023-01-28 05:20
  
  313 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 49.232.211.139
Port: 80
URL: http://49.232.211.139

First seen 2023-01-28 05:20
Last seen 2023-09-07 00:23
Open for 221 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c39aac35b39aac35bf0bc6b0c52533d2c4e0a28af17b9e208
```
Found 14 files trough .DS_Store spidering:

/audio
/css
/fonts
/images
/images/favicon.png
/images/Image_Preview.png
/images/template
/images/template/1.png
/images/template/2.png
/images/template/3.png
/index.html
/js
/LICENSE
/README.md
```
  Found on 2023-02-01 20:15
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f87727ba018ad07469175e4e2a01e98c95d47
```
Found 11 files trough .DS_Store spidering:

/audio
/css
/fonts
/images
/images/favicon.png
/images/Image_Preview.png
/images/template
/index.html
/js
/LICENSE
/README.md
```
  Found on 2023-01-28 05:20
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 49.232.211.139
Port: 9111
URL: http://49.232.211.139:9111

First seen 2023-01-22 10:16
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522e520a03d
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://gitee.com/haodong108/fireworks-2023.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2023-01-22 10:16
  
  313 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 49.232.211.139
Port: 9111
URL: http://49.232.211.139:9111

First seen 2023-01-22 10:16
- Severity: low
  Fingerprint: 5f32cf5d6962f09c39aac35b39aac35bf0bc6b0c52533d2c4e0a28af17b9e208
```
Found 14 files trough .DS_Store spidering:

/audio
/css
/fonts
/images
/images/favicon.png
/images/Image_Preview.png
/images/template
/images/template/1.png
/images/template/2.png
/images/template/3.png
/index.html
/js
/LICENSE
/README.md
```
  Found on 2023-01-22 10:16
Create report

Data leak

Size

43.4 kB

Collections

Rows

Domain summary

No record

Host 49.232.211.139

China

ElasticSearch is publicly available

Git configuration and history exposed

MacOS file listing through .DS_Store file

Git configuration and history exposed

MacOS file listing through .DS_Store file

Data leak

Domain summary