Search results for +plugin:ElasticSearchOpenPlugin -ip:"124.220.0.0/14" +events.leak.severity:"medium" +asn:"9123" +l9fp:"831cb76b8e05df462da3373e9cf711d12fccc12676c9d97176c9d97176c9d971"

Found 1 result for
+plugin:ElasticSearchOpenPlugin -ip:"124.220.0.0/14" +events.leak.severity:"medium" +asn:"9123" +l9fp:"831cb76b8e05df462da3373e9cf711d12fccc12676c9d97176c9d97176c9d971"

Looking for more results ? Register a free account

Countries

Russia 1

Sources

ElasticSearchOpenPlugin 1

Network

TimeWeb Ltd. 1

IP Ranges

188.225.72.0/21 1

188.225.78.152 high

Russia TimeWeb Ltd. 2023-05-05 00:29 2024-06-01 23:49
831cb76b8e05df462da3373e9cf711d12fccc12676c9d97176c9d97176c9d971
http://188.225.78.152:9200

ASN: 9123
59 events in 393 days
Leak size: 39.1 MB
Open ports: 9200

Indices: 3, document count: 96, size: 39.1 MB
Found index .geoip_databases with 39 documents (38.9 MB)
Found index page_prod_2024-03-08-040004 wi...

Ransom notes :


{"message":"All your data is backed up. You must pay 0.005 BTC to 16w2xEN9pcjFgECWH1LDVps4xV9m3nUMBN In 48 hours, your data will be publicly disclosed and deleted. (more information: go to http://iplis.ru/data5)After paying send mail to us: rambler+4t2p7@onionmail.org and we will provide a link for you to download your data. Your DBCODE is: 5T2P7"}

Analysis helper :

                
estk --url=http://188.225.78.152:9200 list

Found by ElasticSearchOpenPlugin

Countries

Sources

Network

IP Ranges

188.225.78.152

high

Create report