By searching for results, your agree with our Terms of service
Found 572 results for 
+plugin:KafkaOpenPlugin +plugin:"ConfigJsonHttp"
Looking for more results ? Register a free account

Countries

  • China 274
  • United States 104
  • India 27
  • Germany 24
  • Singapore 23
  • South Korea 19
  • France 16
  • United Kingdom 16
  • Vietnam 12
  • Netherlands 10

Sources

  • ConfigJsonHttp 572
  • KafkaOpenPlugin 572
  • ElasticSearchOpenPlugin 431
  • ElasticSearchExplorePlugin 418
  • ZookeeperOpenPlugin 341
  • MongoSchemaPlugin 23
  • CouchDbOpenPlugin 22
  • RedisOpenPlugin 22
  • MongoOpenPlugin 21
  • GitConfigPlugin 10

LeakIX fingerprint

  • 0cff49da269b884b5e7e96a5ec49b08bec49b08bec49b08bec49b08b8a03af2b 20
  • 0cff49da269b884b11fc4766dbf5e695dbf5e695dbf5e695dbf5e695a3ddeb61 15
  • b18befd9dd6536aa30550de5ecf278f56f0a27973d6f8a4abbe5b8d3629fe4fb 15
  • 0cff49da269b884bdd8807c1c6b506bbc6b506bbc6b506bbc6b506bb2e97b653 13
  • 436d217a42ab3a37d319f9432d44927e2d44927e2d44927e2d44927ef6a5dd03 13
  • 43224224eeda9da960defeaa60defeaa60defeaa60defeaa60defeaa025244cd 12
  • b18befd9dd6536aa30550de5abee2d86225bb4cdb4a9c5df5fc8ef8647389c1f 11
  • d606b92f1b5fdf18218cad2d218cad2d218cad2d218cad2d218cad2d1e418044 9
  • 0cff49da269b884bdd8807c1d25f3a68d25f3a68d25f3a68d25f3a68701b4245 8
  • 0cff49da269b884b36f498ee20a90299a8559554a8559554a8559554e4689e21 7

Network

  • Hangzhou Alibaba Advertising Co.,Ltd. 166
  • Amazon.com, Inc. 83
  • Shenzhen Tencent Computer Systems Company Limited 21
  • OVH SAS 19
  • DigitalOcean, LLC 15
  • Google LLC 13
  • No.31,Jin-rong Street 11
  • Microsoft Corporation 10
  • CHINA UNICOM China169 Backbone 9
  • Hetzner Online GmbH 9

IP Ranges

  • 47.96.0.0/12 42
  • 39.96.0.0/13 30
  • 8.128.0.0/10 16
  • 13.232.0.0/13 10
  • 121.196.0.0/14 7
  • 128.14.128.0/18 7
  • 106.52.0.0/14 6
  • 47.92.0.0/14 6
  • 106.14.0.0/15 5
  • 108.170.0.0/18 5
2.56.98.96
high
Germany netcup GmbH 2020-10-03 09:42 2022-06-30 08:26
0cff49da269b884bdea038d319292c2b8aae6b9dce4d33cee3f2f269f98c6a9e
http://2.56.98.96:9200
ASN: 197540
100 events in 635 days
Leak size: 2.0 MB
Open ports: 9092,5601,9200 
Indices: 10, document count: 806, size: 2.0 MB
Found index logs-2022.06.26 with 36 documents (269.6 kB)
Found index logs-2022.06.27 with 27 docum...
Ransom notes : 

{"@timestamp": "2099-11-15T13:12:00", "message": "All indexs has been dropped. But we backup all indexs. The only method of recoveribing database is to pay 0.021 BTC. Transfer to this BTC address 15BdJyWiWRcNQY4xBuhJrmjqz7ZQD6zAcT . You can buy bitcoin here, does not take much time to buy https://localbitcoins.com or https://buy.moonpay.io/ . After paying write to me in the mail with your DB IP: recmydata@onionmail.org and you will receive a link to download your database dump.\n"}
Analysis helper : 
                
estk --url=http://2.56.98.96:9200 list

Found by KafkaOpenPlugin ElasticSearchExplorePlugin ElasticSearchOpenPlugin ConfigJsonHttp

Create report
47.113.191.163
critical
China Hangzhou Alibaba Advertising Co.,Ltd. 2020-12-23 13:27 2022-06-29 21:01
0cff49da269b884b3c0f866e7b9c333e19fbeb5d1b9872900b737a42293ae599
http://47.113.191.163:9200
ASN: 37963
66 events in 553 days
Leak size: 115.8 MB
Open ports: 9200,9092 
Indices: 5, document count: 399454, size: 115.8 MB
Found index idx_alert with 194203 documents (31.3 MB)
Found index read_me with 0 documents (81...
Analysis helper : 
                
estk --url=http://47.113.191.163:9200 list

Found by ElasticSearchExplorePlugin ElasticSearchOpenPlugin KafkaOpenPlugin ConfigJsonHttp

Create report
121.196.213.168
critical
China Hangzhou Alibaba Advertising Co.,Ltd. 2020-12-28 11:26 2022-06-29 20:38
0cff49da269b884be4f424d23fd1e922a2b31cc5ba8d415db339e53dd5b0e682
http://121.196.213.168:5601
ASN: 37963
78 events in 548 days
Leak size: 2.0 GB
Open ports: 5601,9200,9092,2181 
Indices: 13, document count: 298331, size: 2.0 GB
Through Kibana endpoint
Found index mgj_camera_server with 2560 documents (56.3 MB)
Found index...
Analysis helper : 
                
estk --url=http://121.196.213.168:5601 list

Found by ElasticSearchExplorePlugin ElasticSearchOpenPlugin KafkaOpenPlugin ConfigJsonHttp ZookeeperOpenPlugin

Create report
94.102.74.98
Turkey Doruk Iletisim ve Otomasyon Sanayi ve Ticaret A.S. 2020-08-22 23:24 2022-06-29 19:14
29d29d00029d29d21c29d29d29d29d4a093e8eb7a81a44b4dcd8b63722f8de
831cb76b9505ea42c7ee1fc508f8f0f78cd0f9498cd0f9498cd0f9492b74b056
https://94.102.74.98:9200
ASN: 8685
24 events in 675 days
Open ports: 9092,9200,9000
Certificate domains:
development.vsrm.net
 
NoAuth
Cluster info:
{"_nodes":{"total":1,"successful":1,"failed":0},"cluster_name":"docker-cluster","nodes":{"rzJukxToSemAdBrBLZ1WzA":{"name":"r...
Analysis helper : 
                
estk --url=https://94.102.74.98:9200 list

Found by KafkaOpenPlugin ElasticSearchOpenPlugin SonarQube ConfigJsonHttp SonarQubePlugin

Create report
39.97.47.26
critical
China Hangzhou Alibaba Advertising Co.,Ltd. 2020-08-14 13:25 2022-06-29 14:46
0cff49da269b884ba12fb54c2abd2ceddcdf2b4357ed4b6072e467e889423ec8
http://39.97.47.26:9200
ASN: 37963
75 events in 684 days
Leak size: 382.2 MB
Open ports: 9200,9092,2181 
Indices: 12, document count: 952576, size: 382.2 MB
Found index read_me with 1 documents (5.6 kB)
Found index solr with 1 documents (4.1 kB)
Foun...
Analysis helper : 
                
estk --url=http://39.97.47.26:9200 list

Found by ElasticSearchOpenPlugin ElasticSearchExplorePlugin KafkaOpenPlugin ConfigJsonHttp ZookeeperOpenPlugin

Create report
101.200.82.243
high
China Hangzhou Alibaba Advertising Co.,Ltd. 2021-04-13 20:57 2022-06-29 08:29
0cff49da269b884b5a584382dde47b521d746341afc98bd5ad8fb06cb0402383
http://101.200.82.243:5601
ASN: 37963
42 events in 441 days
Leak size: 350.0 MB
Open ports: 9200,2181,9092,5601 
Indices: 14, document count: 448865, size: 350.0 MB
Through Kibana endpoint
Found index test with 1 documents (3.3 kB)
Found index .apm-agent-con...
Analysis helper : 
                
estk --url=http://101.200.82.243:5601 list

Found by ElasticSearchOpenPlugin ElasticSearchExplorePlugin ConfigJsonHttp ZookeeperOpenPlugin KafkaOpenPlugin

Create report
8.210.154.112
critical
Singapore 2021-01-31 14:44 2022-06-29 03:07
0cff49da269b884bbc74f9e6407d1573a087e883a087e883a087e8833f0e3d7d
http://8.210.154.112:9200
55 events in 513 days
Leak size: 3.2 MB
Open ports: 2181,9200,9092 
Indices: 2, document count: 6663, size: 3.2 MB
Found index mop_data_private_runtime_private with 6662 documents (3.2 MB)
Found index read_me with...
Ransom notes : 

{"@timestamp": "2099-11-15T13:12:00", "message": "All indexs has been dropped. But we backup all indexs. The only method of recoveribing database is to pay 0.021 BTC. Transfer to this BTC address 15BdJyWiWRcNQY4xBuhJrmjqz7ZQD6zAcT . You can buy bitcoin here, does not take much time to buy https://localbitcoins.com or https://buy.moonpay.io/ . After paying write to me in the mail with your DB IP: recmydata@onionmail.org and you will receive a link to download your database dump.\n"}
Analysis helper : 
                
estk --url=http://8.210.154.112:9200 list

Found by ZookeeperOpenPlugin ElasticSearchOpenPlugin ElasticSearchExplorePlugin KafkaOpenPlugin ConfigJsonHttp

Create report
34.96.165.215
medium
United States Google LLC 2020-09-14 19:11 2022-06-29 02:01
d606b92f1b5fdf18218cad2d218cad2d218cad2d218cad2d218cad2d1e418044
ASN: 15169
90 events in 652 days
Open ports: 5601,9200,9092,80,2181,9201,3306,7000 
Redis is open

Found by ElasticSearchOpenPlugin ElasticSearchExplorePlugin KafkaOpenPlugin GitConfigPlugin ZookeeperOpenPlugin MysqlSchemaPlugin MysqlWeakPlugin ConfigJsonHttp RedisOpenPlugin

Create report
94.237.86.110
Germany UpCloud Ltd 2021-04-23 18:05 2022-06-29 01:59
21d19d00021d21d21c21d19d21d21d48e1df0d65eb2d2123f402855bb42ace
b17be75321b5afb4d3b051c3d3b051c3d3b051c3d3b051c3d3b051c38891eac2
https://94.237.86.110/.json
ASN: 202053
11 events in 431 days
Leak size: 633 B
Open ports: 9092,443,2181
Certificate domains:
blpt.uz
 
{"users":"http://94.237.86.110/users.json","profiles":"http://94.237.86.110/posts_likes.json","promo_codes":"http://94.237.86.110/posts_likes.jso...

Found by KafkaOpenPlugin ConfigJsonHttp ZookeeperOpenPlugin FirebaseHttpPlugin

Create report
202.158.99.99
critical
Indonesia PT Cyberindo Aditama 2020-10-16 19:55 2022-06-28 04:22
0cff49da269b884be054f3db3ae3db150f402dd7737dd742d5e9aba2157751e4
http://202.158.99.99:9200
ASN: 4787
44 events in 619 days
Leak size: 2.8 GB
Open ports: 9092,9200 
Indices: 759, document count: 10637854, size: 2.8 GB
Found index stat-session_22-02-25_denstv with 0 documents (159 B)
Found index stat-session_1...
Analysis helper : 
                
estk --url=http://202.158.99.99:9200 list

Found by KafkaOpenPlugin ElasticSearchOpenPlugin ElasticSearchExplorePlugin ConfigJsonHttp

Create report
62.234.69.182
high
China Shenzhen Tencent Computer Systems Company Limited 2021-04-19 23:18 2022-06-27 03:58
0cff49da269b884b27f49dbb2275109618a56f509e068f6ad2a58824c023523d
http://62.234.69.182:9200
ASN: 45090
83 events in 433 days
Leak size: 109.7 MB
Open ports: 9200,5601,9092,2181 
Indices: 21, document count: 1080, size: 109.7 MB
Found index apitesting with 0 documents (208 B)
Found index gatewayapilist with 1 documents (6....
Analysis helper : 
                
estk --url=http://62.234.69.182:9200 list

Found by ElasticSearchOpenPlugin ElasticSearchExplorePlugin KafkaOpenPlugin ConfigJsonHttp ZookeeperOpenPlugin

Create report
47.114.140.3
high
China 2020-12-28 15:20 2022-06-27 00:23
0cff49da269b884b0fc99772b374c8ecb374c8ecb374c8ecb374c8eca779f54f
http://47.114.140.3:9200
82 events in 545 days
Leak size: 5.5 kB
Open ports: 5601,9092,9200,2181 
Indices: 1, document count: 1, size: 5.5 kB
Found index read_me with 1 documents (5.5 kB)
Ransom notes : 

{"@timestamp": "2099-11-15T13:12:00", "message": "All indexs has been dropped. But we backup all indexs. The only method of recoveribing database is to pay 0.021 BTC. Transfer to this BTC address 14b57thKoPjmVVkh6HHLPz8g7fyBJ5SEcr . You can buy bitcoin here, does not take much time to buy https://localbitcoins.com or https://buy.moonpay.io/ . After paying write to me in the mail with your DB IP: recmydata@onionmail.org and you will receive a link to download your database dump.\n"}
Analysis helper : 
                
estk --url=http://47.114.140.3:9200 list

Found by ElasticSearchOpenPlugin ElasticSearchExplorePlugin KafkaOpenPlugin ConfigJsonHttp ZookeeperOpenPlugin

Create report
94.250.200.4
low
Germany Ociris GmbH 2020-11-27 10:21 2022-06-25 15:19
b18befd9a064d6ad81629eef81629eef81629eef81629eef81629eefba63a2e1
http://94.250.200.4/config.json
ASN: 56876
27 events in 575 days
Leak size: 4 B
Open ports: 9092,443,80
Certificate domains:
iad01-ping.g-portal.cloud
mnz01-ping.g-portal.cloud
 
8499

Found by KafkaOpenPlugin ConfigJsonHttp

Create report
54.237.175.174
low
House Cleaning & Handyman Services | Handy
United States Amazon.com, Inc. 2021-04-10 23:54 2022-06-25 08:59
29d29d00029d29d00029d29d29d29d4d0c5eed338ce212ffe821a67732ded8
b18befd9dd6536aa30550de596404c29c9e748885f172e655f172e65ee1009b6
https://54.237.175.174/config.json
ASN: 14618
6 events in 440 days
Leak size: 30 B
Open ports: 9092,443
Certificate domains:
handy.com
 
{
  "error": true,
  "messages": null
}

Found by KafkaOpenPlugin ConfigJsonHttp

Create report
124.70.217.245
critical
China 2020-12-25 05:02 2022-06-25 07:19
0cff49da269b884b9732bb4b25a5b5e38b2e9c60db372aa007da39192b209444
http://124.70.217.245:9200
65 events in 547 days
Leak size: 122.8 MB
Open ports: 5601,9200,9092,2181 
Indices: 17, document count: 268231, size: 122.8 MB
Found index iot_message_traffic_statistics with 311 documents (278.8 kB)
Found index .kibana_...
Ransom notes : 

{"@timestamp": "2099-11-15T13:12:00", "message": "All indexs has been dropped. But we backup all indexs. The only method of recoveribing database is to pay 0.021 BTC. Transfer to this BTC address 14b57thKoPjmVVkh6HHLPz8g7fyBJ5SEcr . You can buy bitcoin here, does not take much time to buy https://localbitcoins.com or https://buy.moonpay.io/ . After paying write to me in the mail with your DB IP: recmydata@onionmail.org and you will receive a link to download your database dump.\n"}
Analysis helper : 
                
estk --url=http://124.70.217.245:9200 list

Found by ElasticSearchExplorePlugin ElasticSearchOpenPlugin KafkaOpenPlugin ConfigJsonHttp ZookeeperOpenPlugin

Create report
8.210.209.30
critical
Singapore 2021-03-01 23:54 2022-06-25 04:54
0cff49da269b884b33f87a0db245ad2f1e56376f1e56376f1e56376f86857afb
http://8.210.209.30:9200
24 events in 480 days
Leak size: 1.8 MB
Open ports: 9200,9092,2181 
Indices: 2, document count: 2369, size: 1.8 MB
Found index mop_data_private_runtime_private with 2368 documents (1.8 MB)
Found index read_me with...
Ransom notes : 

{"@timestamp": "2099-11-15T13:12:00", "message": "All indexs has been dropped. But we backup all indexs. The only method of recoveribing database is to pay 0.021 BTC. Transfer to this BTC address 15BdJyWiWRcNQY4xBuhJrmjqz7ZQD6zAcT . You can buy bitcoin here, does not take much time to buy https://localbitcoins.com or https://buy.moonpay.io/ . After paying write to me in the mail with your DB IP: recmydata@onionmail.org and you will receive a link to download your database dump.\n"}
Analysis helper : 
                
estk --url=http://8.210.209.30:9200 list

Found by ElasticSearchExplorePlugin ElasticSearchOpenPlugin KafkaOpenPlugin ConfigJsonHttp ZookeeperOpenPlugin

Create report
106.14.147.16
critical
China Hangzhou Alibaba Advertising Co.,Ltd. 2020-12-27 22:03 2022-06-25 04:51
831cb76b8e05df469af4f39d1d7556efce9c9e7e34d53812542cadb4326f25ae
http://106.14.147.16:5601
ASN: 37963
81 events in 544 days
Leak size: 2.7 MB
Open ports: 3306,9200,9092,5601,2181 
Indices: 51, document count: 17959, size: 2.7 MB
Through Kibana endpoint
Found index yw2svxv4vc-meow with 0 documents (283 B)
Found index jcizoav...
Analysis helper : 
                
estk --url=http://106.14.147.16:5601 list

Found by MysqlSchemaPlugin MysqlWeakPlugin ElasticSearchExplorePlugin ElasticSearchOpenPlugin KafkaOpenPlugin ConfigJsonHttp ZookeeperOpenPlugin

Create report
106.14.9.148
critical
China Hangzhou Alibaba Advertising Co.,Ltd. 2020-12-24 19:41 2022-06-24 12:39
0cff49da269b884ba446dfca4684f919900417e715ca47f7735555ac3a118e7d
http://106.14.9.148:9200
ASN: 37963
49 events in 546 days
Leak size: 2.2 GB
Open ports: 5601,9200,9092,2181 
Indices: 120, document count: 2871078, size: 2.2 GB
Found index docker-cluster_browser_app_page_first_pack_avg-20220617 with 0 documents (283 B)
...
Ransom notes : 

{"@timestamp": "2099-11-15T13:12:00", "message": "All indexs has been dropped. But we backup all indexs. The only method of recoveribing database is to pay 0.021 BTC. Transfer to this BTC address 14b57thKoPjmVVkh6HHLPz8g7fyBJ5SEcr . You can buy bitcoin here, does not take much time to buy https://localbitcoins.com or https://buy.moonpay.io/ . After paying write to me in the mail with your DB IP: recmydata@onionmail.org and you will receive a link to download your database dump.\n"}
Analysis helper : 
                
estk --url=http://106.14.9.148:9200 list

Found by ElasticSearchOpenPlugin ElasticSearchExplorePlugin KafkaOpenPlugin ConfigJsonHttp ZookeeperOpenPlugin

Create report
95.217.228.241
high
Finland Hetzner Online GmbH 2021-01-17 13:48 2022-06-23 17:59
831cb76b8e05df465781507477f0276347dbb889e3e97f48708abeb417d7724a
http://95.217.228.241:9200
ASN: 24940
51 events in 522 days
Leak size: 2.7 GB
Open ports: 9092,9200,2181 
Indices: 170, document count: 4398431, size: 2.7 GB
Found index .watcher-history-6-2022.01.22 with 7200 documents (5.5 MB)
Found index .watcher-h...
Analysis helper : 
                
estk --url=http://95.217.228.241:9200 list

Found by KafkaOpenPlugin ElasticSearchExplorePlugin ElasticSearchOpenPlugin ZookeeperOpenPlugin ConfigJsonHttp

Create report
5.39.69.32
critical
France OVH SAS 2021-03-22 08:41 2022-06-22 23:14
0cff49da269b884b3b794b425369af915e5e1e55d51dbc236ffa8d1bec0ce61d
http://5.39.69.32:9200
ASN: 16276
48 events in 457 days
Leak size: 4.3 MB
Open ports: 9200,2181,9092 
Indices: 11, document count: 11805, size: 4.3 MB
Found index betbase-user-bets-28012022 with 12 documents (70.2 kB)
Found index read__me with 1 d...
Ransom notes : 

{"message":"All your data is a backed up. You must pay 0.015 BTC to 1PpLEwVd35mrb7qzZtgNhkcF8JjxrsNEX5 48 hours for recover it. After 48 hours expiration we will leaked and exposed all your data. In case of refusal to pay, we will contact the General Data Protection Regulation, GDPR and notify them that you store user data in an open form and is not safe. Under the rules of the law, you face a heavy fine or arrest and your base dump will be dropped from our server! You can buy bitcoin here, does not take much time to buy https://localbitcoins.com with this guide https://localbitcoins.com/guides/how-to-buy-bitcoins After paying write to me in the mail with your DB IP: allmydataback@mailnesia.com and you will receive a link to download your database dump."}
Analysis helper : 
                
estk --url=http://5.39.69.32:9200 list

Found by ElasticSearchOpenPlugin ZookeeperOpenPlugin KafkaOpenPlugin ConfigJsonHttp ElasticSearchExplorePlugin

Create report

(C) 2021 LeakIX
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice