Search results for +plugin:KafkaOpenPlugin -l9fp:"43224224eeda9da960defeaa0efe442a0efe442a0efe442a0efe442ac94bd81d"

Found 20101 results for
+plugin:KafkaOpenPlugin -l9fp:"43224224eeda9da960defeaa0efe442a0efe442a0efe442a0efe442ac94bd81d"

Looking for more results ? Register a free account

Countries

China 6559
United States 6274
Germany 1324
Singapore 908
India 687
South Korea 502
France 393
Netherlands 324
Russia 309
Ireland 299

Sources

KafkaOpenPlugin 20101
ZookeeperOpenPlugin 8500
ElasticSearchOpenPlugin 1194
ElasticSearchExplorePlugin 1106
ConfigJsonHttp 567
MongoSchemaPlugin 306
MongoOpenPlugin 231
RedisOpenPlugin 176
GitConfigPlugin 146
MongoWeakPlugin 144

LeakIX fingerprint

43224224eeda9da960defeaa60defeaa60defeaa60defeaa60defeaa025244cd 605
43224224eeda9da960defeaa332522c575bf1cf575bf1cf575bf1cf5e5092afb 167
436d217a42ab3a37d319f9432d44927e2d44927e2d44927e2d44927ef6a5dd03 144
43224224eeda9da960defeaa5f6925a15f6925a15f6925a15f6925a143fb14bf 94
4fa495ba934f92efb4d87ffcb4d87ffcb4d87ffcb4d87ffcb4d87ffce55dba0d 69
43224224eeda9da960defeaa0efe442afee0c845fee0c845fee0c8459cc155bd 66
d606b92f1b5fdf18218cad2d218cad2d218cad2d218cad2d218cad2d1e418044 61
43224224eeda9da960defeaa332522c5332522c5332522c5332522c588c8e703 59
4d1d5ad8a205945d11cf6fd411cf6fd411cf6fd411cf6fd411cf6fd4a98301db 59
f2605c50bc23ae75fce66566fce665669750ae5c28fb815b64a4ea74c0f84376 57

IP Ranges

47.96.0.0/12 924
39.96.0.0/13 371
35.224.0.0/12 264
8.128.0.0/10 228
13.232.0.0/13 204
2a01:4f8:0:0:0:0:0:0/29 192
34.224.0.0/12 191
39.104.0.0/14 190
47.92.0.0/14 186
34.80.0.0/12 181

high

Germany netcup GmbH 2020-10-03 09:42 2022-06-30 08:26
0cff49da269b884bdea038d319292c2b8aae6b9dce4d33cee3f2f269f98c6a9e
http://2.56.98.96:9200

ASN: 197540
100 events in 635 days
Leak size: 2.0 MB
Open ports: 9092,5601,9200

Indices: 10, document count: 806, size: 2.0 MB
Found index logs-2022.06.26 with 36 documents (269.6 kB)
Found index logs-2022.06.27 with 27 docum...

Ransom notes :


{"@timestamp": "2099-11-15T13:12:00", "message": "All indexs has been dropped. But we backup all indexs. The only method of recoveribing database is to pay 0.021 BTC. Transfer to this BTC address 15BdJyWiWRcNQY4xBuhJrmjqz7ZQD6zAcT . You can buy bitcoin here, does not take much time to buy https://localbitcoins.com or https://buy.moonpay.io/ . After paying write to me in the mail with your DB IP: recmydata@onionmail.org and you will receive a link to download your database dump.\n"}

Analysis helper :

                
estk --url=http://2.56.98.96:9200 list

Found by KafkaOpenPlugin ElasticSearchExplorePlugin ElasticSearchOpenPlugin ConfigJsonHttp

high

China Hangzhou Alibaba Advertising Co.,Ltd. 2021-02-27 10:50 2022-06-30 03:35
ec3b73bba3ff32e93431a1b62abf43512abf43512abf43512abf43512e984237

ASN: 37963
13 events in 487 days
Open ports: 9092,2181,27017

Collections: 1, document count: 0, size: 0 B
Found collection READ_ME_TO_RECOVER_YOUR_DATA.README

Analysis helper :

                
echo 'show dbs' | mongo --host 47.106.86.94 --port 27017

Found by KafkaOpenPlugin ZookeeperOpenPlugin MongoOpenPlugin MongoSchemaPlugin

medium

China Hangzhou Alibaba Advertising Co.,Ltd. 2020-11-01 21:19 2022-06-30 02:26
831cb76b8e05df460f0f392a97213c1d68f540bd6cb61eb100530aba497408d5
http://47.97.207.16:9200

ASN: 37963
8 events in 605 days
Leak size: 220.5 MB
Open ports: 9092,9200

Indices: 7, document count: 117, size: 220.5 MB
Found index .geoip_databases with 41 documents (43.2 MB)
Found index .apm-custom-link with 0 docu...

Analysis helper :

                
estk --url=http://47.97.207.16:9200 list

Found by KafkaOpenPlugin ElasticSearchOpenPlugin ElasticSearchExplorePlugin

China Beijing Guanghuan Xinwang Digital 2020-12-24 12:19 2022-06-30 01:32
21d19d00021d21d21c21d19d21d21dddc75ea8bb053134e7478e004d03ff65
5f32cf5d6962f09c2eda814e2eda814ebe1cdd5686609792adb483b1cf560fd0
https://52.80.81.232

ASN: 55960
43 events in 552 days
Open ports: 9200,5601,9092,443

Certificate domains:

nvxclouds.net

Found 6 files trough .DS_Store spidering:

/css
/favicon.ico
/fonts
/img
/index.html
/js

Found by ElasticSearchExplorePlugin ElasticSearchOpenPlugin KafkaOpenPlugin DotDsStoreOpenPlugin

Create report

8.129.168.224 medium

China Hangzhou Alibaba Advertising Co.,Ltd. 2021-03-02 03:11 2022-06-29 23:11
d606b92f1b5fdf18218cad2d218cad2d218cad2d218cad2d218cad2d1e418044

ASN: 37963
27 events in 484 days
Open ports: 9092,2181,7000

Redis is open

Found by KafkaOpenPlugin ZookeeperOpenPlugin RedisOpenPlugin

Create report

47.113.191.163 critical

China Hangzhou Alibaba Advertising Co.,Ltd. 2020-12-23 13:27 2022-06-29 21:01
0cff49da269b884b3c0f866e7b9c333e19fbeb5d1b9872900b737a42293ae599
http://47.113.191.163:9200

ASN: 37963
66 events in 553 days
Leak size: 115.8 MB
Open ports: 9200,9092

Indices: 5, document count: 399454, size: 115.8 MB
Found index idx_alert with 194203 documents (31.3 MB)
Found index read_me with 0 documents (81...

Analysis helper :

                
estk --url=http://47.113.191.163:9200 list

Found by ElasticSearchExplorePlugin ElasticSearchOpenPlugin KafkaOpenPlugin ConfigJsonHttp

Create report

121.196.213.168 critical

China Hangzhou Alibaba Advertising Co.,Ltd. 2020-12-28 11:26 2022-06-29 20:38
0cff49da269b884be4f424d23fd1e922a2b31cc5ba8d415db339e53dd5b0e682
http://121.196.213.168:5601

ASN: 37963
78 events in 548 days
Leak size: 2.0 GB
Open ports: 5601,9200,9092,2181

Indices: 13, document count: 298331, size: 2.0 GB
Through Kibana endpoint
Found index mgj_camera_server with 2560 documents (56.3 MB)
Found index...

Analysis helper :

                
estk --url=http://121.196.213.168:5601 list

Found by ElasticSearchExplorePlugin ElasticSearchOpenPlugin KafkaOpenPlugin ConfigJsonHttp ZookeeperOpenPlugin

Create report

94.102.74.98

Turkey Doruk Iletisim ve Otomasyon Sanayi ve Ticaret A.S. 2020-08-22 23:24 2022-06-29 19:14
29d29d00029d29d21c29d29d29d29d4a093e8eb7a81a44b4dcd8b63722f8de
831cb76b9505ea42c7ee1fc508f8f0f78cd0f9498cd0f9498cd0f9492b74b056
https://94.102.74.98:9200

ASN: 8685
24 events in 675 days
Open ports: 9092,9200,9000

Certificate domains:

development.vsrm.net

NoAuth
Cluster info:
{"_nodes":{"total":1,"successful":1,"failed":0},"cluster_name":"docker-cluster","nodes":{"rzJukxToSemAdBrBLZ1WzA":{"name":"r...

Analysis helper :

                
estk --url=https://94.102.74.98:9200 list

Found by KafkaOpenPlugin ElasticSearchOpenPlugin SonarQube ConfigJsonHttp SonarQubePlugin

Create report

68.183.206.81

Divine Health Club – Just another WordPress site

Canada DigitalOcean, LLC 2021-04-13 22:18 2022-06-29 17:51
15d3fd16d21d21d00042d43d000000fe02290512647416dcf0a400ccbc0b6b
4f2162be993c73bbfa0c1189fa0c118955666503d76f57fb59a8c0176ef1e136
https://68.183.206.81/?rest_route=/wp/v2/users/

ASN: 14061
32 events in 441 days
Open ports: 9092,443

Certificate domains:

divinehealth.club

www.divinehealth.club

Found Wordpress users (CVE-2017-5487):

User #1 alphabeta01
Name: alphabeta01
Url: https://test1.divinehealth.club

User #2 editor
Name: The Edit...

Found by KafkaOpenPlugin WpUserEnumHttp

Create report

39.97.47.26 critical

China Hangzhou Alibaba Advertising Co.,Ltd. 2020-08-14 13:25 2022-06-29 14:46
0cff49da269b884ba12fb54c2abd2ceddcdf2b4357ed4b6072e467e889423ec8
http://39.97.47.26:9200

ASN: 37963
75 events in 684 days
Leak size: 382.2 MB
Open ports: 9200,9092,2181

Indices: 12, document count: 952576, size: 382.2 MB
Found index read_me with 1 documents (5.6 kB)
Found index solr with 1 documents (4.1 kB)
Foun...

Analysis helper :

                
estk --url=http://39.97.47.26:9200 list

Found by ElasticSearchOpenPlugin ElasticSearchExplorePlugin KafkaOpenPlugin ConfigJsonHttp ZookeeperOpenPlugin

Create report

52.53.216.188 medium

United States Amazon.com, Inc. 2020-09-28 16:45 2022-06-29 14:45
ec3b73bba3ff32e977409fdc5a05d0f6e87b267949d258ce49d258ce0950351b

ASN: 16509
63 events in 638 days
Leak size: 1.2 kB
Open ports: 2181,27017,6379,9092

Collections: 3, document count: 6, size: 1.2 kB
Found collection READ__ME_TO_RECOVER_YOUR_DATA.README  with 1 documents (745 B)
Found collection ...

Analysis helper :

                
echo 'show dbs' | mongo --host 52.53.216.188 --port 27017

Found by ZookeeperOpenPlugin MongoSchemaPlugin MongoOpenPlugin RedisOpenPlugin KafkaOpenPlugin

Create report

119.45.187.98 medium

China Shenzhen Tencent Computer Systems Company Limited 2020-11-06 19:53 2022-06-29 13:24
831cb76b8e05df46b37b209760863730911038115106667cf30cd4b8893644a6
http://119.45.187.98:9200

ASN: 45090
7 events in 599 days
Leak size: 43.6 kB
Open ports: 9092,9200

Indices: 6, document count: 7, size: 43.6 kB
Found index v2 with 1 documents (8.0 kB)
Found index api with 2 documents (11.9 kB)
Found index v1 w...

Analysis helper :

                
estk --url=http://119.45.187.98:9200 list

Found by KafkaOpenPlugin ElasticSearchOpenPlugin

Create report

178.32.143.26 low

Italy OVH SAS 2020-12-21 18:22 2022-06-29 12:34
5f32cf5d6962f09c0215adfc0215adfcd706b51a276a550fb99ada266967bba6
http://178.32.143.26

ASN: 16276
20 events in 554 days
Open ports: 9092,80

Found 4 files trough .DS_Store spidering:

/edomportal
/edomportal/attachments
/vendorportal
/vendorportal/components

Found by KafkaOpenPlugin DotDsStoreOpenPlugin

Create report

54.74.231.66 high

Ireland Amazon.com, Inc. 2020-08-14 19:38 2022-06-29 11:31
0cff49da269b884b558af82e65cc57ae41b56ec2346b2c34346b2c34af028d4f
http://54.74.231.66:5601

ASN: 16509
70 events in 683 days
Leak size: 9.3 kB
Open ports: 2181,9092,9200,5601

Indices: 2, document count: 2, size: 9.3 kB
Through Kibana endpoint
Found index .kibana with 1 documents (4.5 kB)
Found index read_me with 1 docu...

Analysis helper :

                
estk --url=http://54.74.231.66:5601 list

Found by ZookeeperOpenPlugin KafkaOpenPlugin ElasticSearchOpenPlugin ElasticSearchExplorePlugin

Create report

223.167.110.99 high

China China Unicom 2020-12-08 21:47 2022-06-29 09:39
0cff49da269b884b0fc99772b374c8ecb374c8ecb374c8ecb374c8eca779f54f
http://223.167.110.99:9200

ASN: 138421
33 events in 567 days
Leak size: 5.5 kB
Open ports: 9092,9200

Indices: 1, document count: 1, size: 5.5 kB
Found index read_me with 1 documents (5.5 kB)

Ransom notes :


{"@timestamp": "2099-11-15T13:12:00", "message": "All indexs has been dropped. But we backup all indexs. The only method of recoveribing database is to pay 0.021 BTC. Transfer to this BTC address 14b57thKoPjmVVkh6HHLPz8g7fyBJ5SEcr . You can buy bitcoin here, does not take much time to buy https://localbitcoins.com or https://buy.moonpay.io/ . After paying write to me in the mail with your DB IP: recmydata@onionmail.org and you will receive a link to download your database dump.\n"}

Analysis helper :

                
estk --url=http://223.167.110.99:9200 list

Found by KafkaOpenPlugin ElasticSearchOpenPlugin ElasticSearchExplorePlugin

Create report

101.200.82.243 high

China Hangzhou Alibaba Advertising Co.,Ltd. 2021-04-13 20:57 2022-06-29 08:29
0cff49da269b884b5a584382dde47b521d746341afc98bd5ad8fb06cb0402383
http://101.200.82.243:5601

ASN: 37963
42 events in 441 days
Leak size: 350.0 MB
Open ports: 9200,2181,9092,5601

Indices: 14, document count: 448865, size: 350.0 MB
Through Kibana endpoint
Found index test with 1 documents (3.3 kB)
Found index .apm-agent-con...

Analysis helper :

                
estk --url=http://101.200.82.243:5601 list

Found by ElasticSearchOpenPlugin ElasticSearchExplorePlugin ConfigJsonHttp ZookeeperOpenPlugin KafkaOpenPlugin

Create report

221.228.80.164 high

China Jiangsu ZhenJiang IDC network 2021-04-23 04:56 2022-06-29 07:22
0cff49da269b884bdc0d084d851050755dcba29b9a2359251fbac95fdbcffefe
http://221.228.80.164

ASN: 138950
19 events in 432 days
Leak size: 1.4 TB
Open ports: 9092,80

Indices: 329, document count: 3407555563, size: 1.4 TB
Found index el-dispatch_2022.06.20 with 30799 documents (5.6 MB)
Found index el-dispatch_2...

Analysis helper :

                
estk --url=http://221.228.80.164 list

Found by KafkaOpenPlugin ElasticSearchOpenPlugin ElasticSearchExplorePlugin

Create report

113.108.62.58 medium

China No.31,Jin-rong Street 2021-04-23 03:26 2022-06-29 06:00
0cff49da269b884b1df068c0244016d5c6dc6c49c6dc6c49c6dc6c4997720009
http://113.108.62.58:9200

ASN: 4134
14 events in 432 days
Leak size: 2.8 kB
Open ports: 9092,2181,9200

Indices: 2, document count: 0, size: 2.8 kB
Found index device_ble with 0 documents (1.4 kB)
Found index device_cwis_record with 0 documents (1.4...

Analysis helper :

                
estk --url=http://113.108.62.58:9200 list

Found by KafkaOpenPlugin ZookeeperOpenPlugin ElasticSearchOpenPlugin ElasticSearchExplorePlugin

Indices: 3, document count: 1, size: 8.1 kB
Found index read_me with 1 documents (5.5 kB)
Found index energy_metrics with 0 documents (1.3 kB)
Fo...

Ransom notes :


{"@timestamp": "2099-11-15T13:12:00", "message": "All indexs has been dropped. But we backup all indexs. The only method of recoveribing database is to pay 0.021 BTC. Transfer to this BTC address 15BdJyWiWRcNQY4xBuhJrmjqz7ZQD6zAcT . You can buy bitcoin here, does not take much time to buy https://localbitcoins.com or https://buy.moonpay.io/ . After paying write to me in the mail with your DB IP: recmydata@onionmail.org and you will receive a link to download your database dump.\n"}

Analysis helper :

                
estk --url=http://173.249.10.240:9200 list

Found by KafkaOpenPlugin ElasticSearchOpenPlugin ElasticSearchExplorePlugin ZookeeperOpenPlugin

Certificate domains:

cs.cyber-park.cn

Found 2 files trough .DS_Store spidering:

/index.html
/static

Found by KafkaOpenPlugin DotDsStoreOpenPlugin

Countries

Sources

LeakIX fingerprint

Network

IP Ranges

nvxclouds.net

development.vsrm.net

divinehealth.club

www.divinehealth.club

cs.cyber-park.cn