LeakIX - Host 82.156.176.12

Host 82.156.176.12

China

Shenzhen Tencent Computer Systems Company Limited

CentOS Linux 7 (Core) 3.10.0-1160.71.1.el7.x86_64

MySQL is publicly available

MySQL is currently open without authentication.

Additionally a ransom note has been found in the dataset which indicates it has been compromised

This results in all the database data made available publicly.

IP: 82.156.176.12
Port: 3306

First seen 2023-07-20 01:10
Last seen 2024-11-10 00:56
Open for 478 days

Severity: critical
Fingerprint: cf350410ecceb5fd5dc35c27a1dc7839f6ebe0f46a5944909a8be09e9a285510

Databases: 29, row count: 3155, size: 908.7 kB
Found table A____Z____RECOVER____DATA.README with 1 records
Found table mysql.columns_priv with 0 records
Found table mysql.db with 4 records
Found table mysql.event with 0 records
Found table mysql.func with 0 records
Found table mysql.general_log with 0 records
Found table mysql.help_category with 45 records
Found table mysql.help_keyword with 825 records
Found table mysql.help_relation with 1660 records
Found table mysql.help_topic with 603 records
Found table mysql.innodb_index_stats with 3 records
Found table mysql.innodb_table_stats with 1 records
Found table mysql.ndb_binlog_index with 0 records
Found table mysql.plugin with 0 records
Found table mysql.proc with 0 records
Found table mysql.procs_priv with 0 records
Found table mysql.proxies_priv with 2 records
Found table mysql.servers with 0 records
Found table mysql.slave_master_info with 0 records
Found table mysql.slave_relay_log_info with 0 records
Found table mysql.slave_worker_info with 0 records
Found table mysql.slow_log with 0 records
Found table mysql.tables_priv with 0 records
Found table mysql.time_zone with 0 records
Found table mysql.time_zone_leap_second with 0 records
Found table mysql.time_zone_name with 0 records
Found table mysql.time_zone_transition with 0 records
Found table mysql.time_zone_transition_type with 0 records
Found table mysql.user with 11 records

Found on 2024-11-10 00:56

908.7 kBytes 3155 rows

Severity: critical
Fingerprint: cf350410ecceb5fddaaf6c035953f03d730993a86763d29c6b925da2d9fd6b90

Databases: 29, row count: 3159, size: 908.7 kB
Found table A____Z____RECOVER____DATA.README with 1 records
Found table mysql.columns_priv with 0 records
Found table mysql.db with 4 records
Found table mysql.event with 0 records
Found table mysql.func with 0 records
Found table mysql.general_log with 2 records
Found table mysql.help_category with 45 records
Found table mysql.help_keyword with 825 records
Found table mysql.help_relation with 1660 records
Found table mysql.help_topic with 603 records
Found table mysql.innodb_index_stats with 3 records
Found table mysql.innodb_table_stats with 1 records
Found table mysql.ndb_binlog_index with 0 records
Found table mysql.plugin with 0 records
Found table mysql.proc with 0 records
Found table mysql.procs_priv with 0 records
Found table mysql.proxies_priv with 2 records
Found table mysql.servers with 0 records
Found table mysql.slave_master_info with 0 records
Found table mysql.slave_relay_log_info with 0 records
Found table mysql.slave_worker_info with 0 records
Found table mysql.slow_log with 2 records
Found table mysql.tables_priv with 0 records
Found table mysql.time_zone with 0 records
Found table mysql.time_zone_leap_second with 0 records
Found table mysql.time_zone_name with 0 records
Found table mysql.time_zone_transition with 0 records
Found table mysql.time_zone_transition_type with 0 records
Found table mysql.user with 11 records

Found on 2024-10-25 23:37

908.7 kBytes 3159 rows

Severity: high
Fingerprint: cf350410ecceb5fd293ef71d37aeaf3b37aeaf3b37aeaf3b37aeaf3b37aeaf3b
```
Databases: 1, row count: 1, size: 16.4 kB
Found table A____Z____RECOVER____DATA.README with 1 records
```
Found on 2024-08-27 22:32

16.4 kBytes 1 rows

Severity: critical
Fingerprint: cf350410ecceb5fdc1b1dd334b199da347d2d5aec5fa4f1a0b9f33587929adca

Databases: 29, row count: 3160, size: 908.7 kB
Found table README_TO_RECOVER_A.RECOVER_YOUR_DATA with 2 records
Found table mysql.columns_priv with 0 records
Found table mysql.db with 4 records
Found table mysql.event with 0 records
Found table mysql.func with 0 records
Found table mysql.general_log with 2 records
Found table mysql.help_category with 45 records
Found table mysql.help_keyword with 825 records
Found table mysql.help_relation with 1660 records
Found table mysql.help_topic with 603 records
Found table mysql.innodb_index_stats with 3 records
Found table mysql.innodb_table_stats with 1 records
Found table mysql.ndb_binlog_index with 0 records
Found table mysql.plugin with 0 records
Found table mysql.proc with 0 records
Found table mysql.procs_priv with 0 records
Found table mysql.proxies_priv with 2 records
Found table mysql.servers with 0 records
Found table mysql.slave_master_info with 0 records
Found table mysql.slave_relay_log_info with 0 records
Found table mysql.slave_worker_info with 0 records
Found table mysql.slow_log with 2 records
Found table mysql.tables_priv with 0 records
Found table mysql.time_zone with 0 records
Found table mysql.time_zone_leap_second with 0 records
Found table mysql.time_zone_name with 0 records
Found table mysql.time_zone_transition with 0 records
Found table mysql.time_zone_transition_type with 0 records
Found table mysql.user with 11 records

Found on 2023-11-16 17:16

908.7 kBytes 3160 rows

Severity: high
Fingerprint: cf350410ecceb5fdebd6b7609132601091326010913260109132601091326010
```
Databases: 1, row count: 2, size: 16.4 kB
Found table README_TO_RECOVER_A.RECOVER_YOUR_DATA with 2 records
```
Found on 2023-10-08 05:51

16.4 kBytes 2 rows

Severity: critical
Fingerprint: cf350410ecceb5fdc1b1dd33e2fdd072f5871e81b2173ef7365f33b5bd58b4d7

Databases: 29, row count: 3160, size: 908.7 kB
No or default MySQL authentication found.Found table README_TO_RECOVER_A.RECOVER_YOUR_DATA with 2 records
Found table mysql.columns_priv with 0 records
Found table mysql.db with 4 records
Found table mysql.event with 0 records
Found table mysql.func with 0 records
Found table mysql.general_log with 2 records
Found table mysql.help_category with 45 records
Found table mysql.help_keyword with 825 records
Found table mysql.help_relation with 1660 records
Found table mysql.help_topic with 603 records
Found table mysql.innodb_index_stats with 3 records
Found table mysql.innodb_table_stats with 1 records
Found table mysql.ndb_binlog_index with 0 records
Found table mysql.plugin with 0 records
Found table mysql.proc with 0 records
Found table mysql.procs_priv with 0 records
Found table mysql.proxies_priv with 2 records
Found table mysql.servers with 0 records
Found table mysql.slave_master_info with 0 records
Found table mysql.slave_relay_log_info with 0 records
Found table mysql.slave_worker_info with 0 records
Found table mysql.slow_log with 2 records
Found table mysql.tables_priv with 0 records
Found table mysql.time_zone with 0 records
Found table mysql.time_zone_leap_second with 0 records
Found table mysql.time_zone_name with 0 records
Found table mysql.time_zone_transition with 0 records
Found table mysql.time_zone_transition_type with 0 records
Found table mysql.user with 11 records

Found on 2023-07-20 01:10

908.7 kBytes 3160 rows

Create report

ElasticSearch is publicly available

Elasticsearch and/or Kibana is currently open without authentication.

Additionaly a ransom note has been found in the dataset which indicates it has been compromised

This results in all the database data made available publicly.

IP: 82.156.176.12
Port: 9200
URL: http://82.156.176.12:9200

First seen 2023-03-19 23:48
Last seen 2023-07-28 16:17
Open for 130 days

Severity: high
Fingerprint: 831cb76b8e05df4640f0fac657f4a95e57f4a95e57f4a95e57f4a95e57f4a95e
```
Indices: 1, document count: 1, size: 4.5 kB
Found index readme with 1 documents (4.5 kB)
```
Found on 2023-07-28 16:17

4.5 kBytes 1 rows
Severity: high
Fingerprint: 831cb76b8e05df4640f0fac6c20d1751c20d1751c20d1751c20d1751c20d1751
```
Indices: 1, document count: 1, size: 4.5 kB
Found index read_me with 1 documents (4.5 kB)
```
Found on 2023-07-18 09:39

4.5 kBytes 1 rows

Severity: medium
Fingerprint: 831cb76b8e05df465c849680e08c17aea6d12b04ec22c1c086ac9d9665447f9a

Indices: 9, document count: 988, size: 302.6 kB
Found index .kibana-event-log-7.8.0-000002 with 0 documents (208 B)
Found index .apm-custom-link with 0 documents (208 B)
Found index .kibana_task_manager_1 with 5 documents (25.0 kB)
Found index .apm-agent-configuration with 0 documents (208 B)
Found index mall_items with 939 documents (211.1 kB)
Found index .kibana-event-log-7.8.0-000005 with 0 documents (208 B)
Found index .kibana_1 with 44 documents (65.2 kB)
Found index .kibana-event-log-7.8.0-000003 with 0 documents (208 B)
Found index .kibana-event-log-7.8.0-000004 with 0 documents (208 B)

Found on 2023-07-07 22:32

302.6 kBytes 988 rows

Severity: medium
Fingerprint: 831cb76b8e05df4650ec33bd8664b912b8da63b0df7a0696ddbb94f22f55673d

Indices: 8, document count: 989, size: 307.6 kB
Found index .kibana-event-log-7.8.0-000001 with 1 documents (5.5 kB)
Found index .kibana-event-log-7.8.0-000002 with 0 documents (208 B)
Found index .apm-custom-link with 0 documents (208 B)
Found index .kibana_task_manager_1 with 5 documents (25.0 kB)
Found index .apm-agent-configuration with 0 documents (208 B)
Found index mall_items with 939 documents (211.1 kB)
Found index .kibana_1 with 44 documents (65.2 kB)
Found index .kibana-event-log-7.8.0-000003 with 0 documents (208 B)

Found on 2023-05-04 22:18

307.6 kBytes 989 rows

Severity: medium
Fingerprint: 831cb76b8e05df464111bda240c9fa89e16e081dd71327752d31b79b3550f465

Indices: 7, document count: 989, size: 307.4 kB
Found index .kibana-event-log-7.8.0-000001 with 1 documents (5.5 kB)
Found index .kibana-event-log-7.8.0-000002 with 0 documents (208 B)
Found index .apm-custom-link with 0 documents (208 B)
Found index .kibana_task_manager_1 with 5 documents (25.0 kB)
Found index .apm-agent-configuration with 0 documents (208 B)
Found index mall_items with 939 documents (211.1 kB)
Found index .kibana_1 with 44 documents (65.2 kB)

Found on 2023-04-12 17:50

307.4 kBytes 989 rows

Severity: medium
Fingerprint: 831cb76b8e05df46e69b7be03916ef4b4601e37799b541dfbe483536b32738f8

Indices: 7, document count: 989, size: 324.3 kB
Found index .kibana-event-log-7.8.0-000001 with 1 documents (5.5 kB)
Found index .kibana-event-log-7.8.0-000002 with 0 documents (208 B)
Found index .apm-custom-link with 0 documents (208 B)
Found index .kibana_task_manager_1 with 5 documents (41.9 kB)
Found index .apm-agent-configuration with 0 documents (208 B)
Found index mall_items with 939 documents (211.1 kB)
Found index .kibana_1 with 44 documents (65.2 kB)

Found on 2023-03-19 23:48

324.3 kBytes 989 rows

Create report

ElasticSearch is publicly available

Elasticsearch and/or Kibana is currently open without authentication.

This results in all the database data made available publicly.

IP: 82.156.176.12
Port: 5601
URL: http://82.156.176.12:5601

First seen 2023-03-02 08:07
Last seen 2023-03-20 13:22
Open for 18 days

Severity: medium
Fingerprint: 831cb76b8e05df465986ab6ee68a42ee9b8f297d47267d99a5132111464db939

Indices: 7, document count: 989, size: 313.7 kB
Through Kibana endpoint
Found index .kibana-event-log-7.8.0-000001 with 1 documents (5.5 kB)
Found index .kibana-event-log-7.8.0-000002 with 0 documents (208 B)
Found index .apm-custom-link with 0 documents (208 B)
Found index .kibana_task_manager_1 with 5 documents (31.3 kB)
Found index .apm-agent-configuration with 0 documents (208 B)
Found index mall_items with 939 documents (211.1 kB)
Found index .kibana_1 with 44 documents (65.2 kB)

Found on 2023-03-20 13:22

313.7 kBytes 989 rows

Severity: medium
Fingerprint: 831cb76b8e05df461ada32030b88dec5382806dae1cfc7302c876b14b3ea4aa2

Indices: 6, document count: 989, size: 307.2 kB
Through Kibana endpoint
Found index .kibana-event-log-7.8.0-000001 with 1 documents (5.5 kB)
Found index .apm-custom-link with 0 documents (208 B)
Found index .kibana_task_manager_1 with 5 documents (25.0 kB)
Found index .apm-agent-configuration with 0 documents (208 B)
Found index mall_items with 939 documents (211.1 kB)
Found index .kibana_1 with 44 documents (65.2 kB)

Found on 2023-03-17 00:07

307.2 kBytes 989 rows

Severity: medium
Fingerprint: 831cb76b8e05df46423ea0a7ff4868b99ac356b60d19fccc3e8a57b0c4828596

Indices: 6, document count: 989, size: 313.5 kB
Through Kibana endpoint
Found index .kibana-event-log-7.8.0-000001 with 1 documents (5.5 kB)
Found index .apm-custom-link with 0 documents (208 B)
Found index .kibana_task_manager_1 with 5 documents (31.3 kB)
Found index .apm-agent-configuration with 0 documents (208 B)
Found index mall_items with 939 documents (211.1 kB)
Found index .kibana_1 with 44 documents (65.2 kB)

Found on 2023-03-02 08:07

313.5 kBytes 989 rows

Create report

Open service 82.156.176.12:3306

2024-11-02 01:39
```
MySQL detected
```
Found 2024-11-02 by tcpid
Create report
Open service 82.156.176.12:3306

2024-10-31 23:45
```
MySQL detected
```
Found 2024-10-31 by tcpid
Create report
Open service 82.156.176.12:3306

2024-10-21 21:49
```
MySQL detected
```
Found 2024-10-21 by tcpid
Create report
Open service 82.156.176.12:3306

2024-10-19 21:23
```
MySQL detected
```
Found 2024-10-19 by tcpid
Create report
Open service 82.156.176.12:3306

2024-10-17 22:21
```
MySQL detected
```
Found 2024-10-17 by tcpid
Create report

Data leak

Size

908.7 kB

Collections

Rows

3160

Domain summary

No record