By searching for results, your agree with our Terms of service
Found 11639 results for
+plugin:KafkaOpenPlugin -plugin:"ZookeeperOpenPlugin"

Looking for more results ? Register a free account

Countries

  • United States 3986
  • China 3957
  • Germany 596
  • Singapore 485
  • India 301
  • South Korea 295
  • Australia 190
  • France 188
  • Ireland 182
  • Netherlands 172

Sources

  • KafkaOpenPlugin 11639
  • ElasticSearchOpenPlugin 556
  • ElasticSearchExplorePlugin 519
  • ConfigJsonHttp 231
  • MongoSchemaPlugin 122
  • MongoOpenPlugin 102
  • RedisOpenPlugin 83
  • GitConfigPlugin 69
  • DotDsStoreOpenPlugin 60
  • MysqlWeakPlugin 58

LeakIX fingerprint

  • 43224224eeda9da960defeaa60defeaa60defeaa60defeaa60defeaa025244cd 365
  • 43224224eeda9da960defeaa332522c575bf1cf575bf1cf575bf1cf5e5092afb 99
  • 43224224eeda9da960defeaa5f6925a15f6925a15f6925a15f6925a143fb14bf 61
  • 436d217a42ab3a37d319f9432d44927e2d44927e2d44927e2d44927ef6a5dd03 59
  • 43224224eeda9da960defeaa0efe442afee0c845fee0c845fee0c8459cc155bd 44
  • 43224224eeda9da960defeaaa3e5f623a71fff5ba71fff5ba71fff5b5146b217 39
  • 43224224eeda9da960defeaa0efe442a0efe442a0efe442a0efe442ac94bd81d 38
  • d606b92f1b5fdf18218cad2d218cad2d218cad2d218cad2d218cad2d1e418044 36
  • 4d1d5ad8a205945d11cf6fd411cf6fd411cf6fd411cf6fd411cf6fd4a98301db 33
  • 43224224eeda9da960defeaa332522c5332522c5332522c5332522c588c8e703 30

Network

  • Amazon.com, Inc. 3516
  • Hangzhou Alibaba Advertising Co.,Ltd. 1887
  • Google LLC 736
  • Microsoft Corporation 530
  • Shenzhen Tencent Computer Systems Company Limited 351
  • DigitalOcean, LLC 244
  • Hetzner Online GmbH 233
  • Huawei Cloud Service data center 217
  • No.31,Jin-rong Street 202
  • OVH SAS 155

IP Ranges

  • 47.96.0.0/12 522
  • 39.96.0.0/13 230
  • 35.224.0.0/12 191
  • 34.224.0.0/12 150
  • 3.208.0.0/12 143
  • 39.104.0.0/14 126
  • 34.192.0.0/12 124
  • 47.92.0.0/14 120
  • 8.128.0.0/10 120
  • 34.80.0.0/12 108

ASN: 197540
100 events in 635 days
Leak size: 2.0 MB
Open ports: 9092,5601,9200
Indices: 10, document count: 806, size: 2.0 MB
Found index logs-2022.06.26 with 36 documents (269.6 kB)
Found index logs-2022.06.27 with 27 docum...
Ransom notes :

{"@timestamp": "2099-11-15T13:12:00", "message": "All indexs has been dropped. But we backup all indexs. The only method of recoveribing database is to pay 0.021 BTC. Transfer to this BTC address 15BdJyWiWRcNQY4xBuhJrmjqz7ZQD6zAcT . You can buy bitcoin here, does not take much time to buy https://localbitcoins.com or https://buy.moonpay.io/ . After paying write to me in the mail with your DB IP: recmydata@onionmail.org and you will receive a link to download your database dump.\n"}
            
Analysis helper :
                
estk --url=http://2.56.98.96:9200 list
            

ASN: 37963
8 events in 605 days
Leak size: 220.5 MB
Open ports: 9092,9200
Indices: 7, document count: 117, size: 220.5 MB
Found index .geoip_databases with 41 documents (43.2 MB)
Found index .apm-custom-link with 0 docu...
Analysis helper :
                
estk --url=http://47.97.207.16:9200 list
            

ASN: 55960
43 events in 552 days
Open ports: 9200,5601,9092,443
Certificate domains:
nvxclouds.net
Found 6 files trough .DS_Store spidering:

/css
/favicon.ico
/fonts
/img
/index.html
/js

ASN: 37963
66 events in 553 days
Leak size: 115.8 MB
Open ports: 9200,9092
Indices: 5, document count: 399454, size: 115.8 MB
Found index idx_alert with 194203 documents (31.3 MB)
Found index read_me with 0 documents (81...
Analysis helper :
                
estk --url=http://47.113.191.163:9200 list
            

ASN: 8685
24 events in 675 days
Open ports: 9092,9200,9000
Certificate domains:
development.vsrm.net
NoAuth
Cluster info:
{"_nodes":{"total":1,"successful":1,"failed":0},"cluster_name":"docker-cluster","nodes":{"rzJukxToSemAdBrBLZ1WzA":{"name":"r...
Analysis helper :
                
estk --url=https://94.102.74.98:9200 list
            

ASN: 14061
32 events in 441 days
Open ports: 9092,443
Certificate domains:
divinehealth.club
www.divinehealth.club
Found Wordpress users (CVE-2017-5487):

User #1 alphabeta01
Name: alphabeta01
Url: https://test1.divinehealth.club

User #2 editor
Name: The Edit...

ASN: 45090
7 events in 599 days
Leak size: 43.6 kB
Open ports: 9092,9200
Indices: 6, document count: 7, size: 43.6 kB
Found index v2 with 1 documents (8.0 kB)
Found index api with 2 documents (11.9 kB)
Found index v1 w...
Analysis helper :
                
estk --url=http://119.45.187.98:9200 list
            

ASN: 16276
20 events in 554 days
Open ports: 9092,80
Found 4 files trough .DS_Store spidering:

/edomportal
/edomportal/attachments
/vendorportal
/vendorportal/components

ASN: 138421
33 events in 567 days
Leak size: 5.5 kB
Open ports: 9092,9200
Indices: 1, document count: 1, size: 5.5 kB
Found index read_me with 1 documents (5.5 kB)
Ransom notes :

{"@timestamp": "2099-11-15T13:12:00", "message": "All indexs has been dropped. But we backup all indexs. The only method of recoveribing database is to pay 0.021 BTC. Transfer to this BTC address 14b57thKoPjmVVkh6HHLPz8g7fyBJ5SEcr . You can buy bitcoin here, does not take much time to buy https://localbitcoins.com or https://buy.moonpay.io/ . After paying write to me in the mail with your DB IP: recmydata@onionmail.org and you will receive a link to download your database dump.\n"}
            
Analysis helper :
                
estk --url=http://223.167.110.99:9200 list
            

ASN: 138950
19 events in 432 days
Leak size: 1.4 TB
Open ports: 9092,80
Indices: 329, document count: 3407555563, size: 1.4 TB
Found index el-dispatch_2022.06.20 with 30799 documents (5.6 MB)
Found index el-dispatch_2...
Analysis helper :
                
estk --url=http://221.228.80.164 list
            

ASN: 37963
12 events in 516 days
Open ports: 9092,443,80
Certificate domains:
cs.cyber-park.cn
Found 2 files trough .DS_Store spidering:

/index.html
/static

ASN: 45090
16 events in 431 days
Leak size: 6.8 MB
Open ports: 9092,9200,5601
Indices: 11, document count: 13142, size: 6.8 MB
Through Kibana endpoint
Found index actuator with 1 documents (4.7 kB)
Found index auth with 1 d...
Analysis helper :
                
estk --url=http://118.89.39.13:5601 list
            

ASN: 16509
8 events in 440 days
Open ports: 9092,3306
No or default MySQL authentication found.
Analysis helper :
                
mysql -h18.136.200.119 -uroot -ptoor -e"SELECT TABLE_SCHEMA, TABLE_NAME, TABLE_ROWS, DATA_LENGTH from  information_schema.TABLES where table_schema != 'information_schema' AND table_schema != 'sys' AND table_schema != 'performance_schema';"
            

ASN: 4787
44 events in 619 days
Leak size: 2.8 GB
Open ports: 9092,9200
Indices: 759, document count: 10637854, size: 2.8 GB
Found index stat-session_22-02-25_denstv with 0 documents (159 B)
Found index stat-session_1...
Analysis helper :
                
estk --url=http://202.158.99.99:9200 list
            

ASN: 4808
2 events in 525 days
Open ports: 9092,80
Found 30 files trough .DS_Store spidering:

/admin.html
/advertVedio.html
/api
/bigScreen
/bpmnjs
/components
/css
/favicon.ico
/ff.js
/ff.wasm
/...

ASN: 37963
5 events in 566 days
Open ports: 9092,80
Found 5 files trough .DS_Store spidering:

/jygl_files
/ssfy_files
/txjk_files
/wsjk_files
/xxh_files

ASN: 55990
49 events in 574 days
Leak size: 8.7 kB
Open ports: 9092,9200,5601
Indices: 2, document count: 2, size: 8.7 kB
Found index read_me with 1 documents (4.5 kB)
Found index .kibana with 1 documents (4.2 kB)
Ransom notes :

{"@timestamp": "2099-11-15T13:12:00", "message": "All indexs has been dropped. But we backup all indexs. The only method of recoveribing database is to pay 0.021 BTC. Transfer to this BTC address 14b57thKoPjmVVkh6HHLPz8g7fyBJ5SEcr . You can buy bitcoin here, does not take much time to buy https://localbitcoins.com or https://buy.moonpay.io/ . After paying write to me in the mail with your DB IP: recmydata@onionmail.org and you will receive a link to download your database dump.\n"}
            
Analysis helper :
                
estk --url=http://121.36.13.31:9200 list
            

ASN: 4134
22 events in 430 days
Leak size: 421.9 GB
Open ports: 9092,5601
Indices: 3530, document count: 1391950839, size: 421.9 GB
Through Kibana endpoint
Found index jxb-ms-report-data-sync-offic-ms-report-data-sync-2...
Analysis helper :
                
estk --url=http://1.180.211.170:5601 list
            

ASN: 37963
40 events in 475 days
Leak size: 4.1 GB
Open ports: 9092,9200
Indices: 9, document count: 11286417, size: 4.1 GB
Found index read__me with 1 documents (6.0 kB)
Found index ycspinningrt202106 with 521669 docu...
Ransom notes :

{"message":"All your data is a backed up. You must pay 0.015 BTC to 1PpLEwVd35mrb7qzZtgNhkcF8JjxrsNEX5 48 hours for recover it. After 48 hours expiration we will leaked and exposed all your data. In case of refusal to pay, we will contact the General Data Protection Regulation, GDPR and notify them that you store user data in an open form and is not safe. Under the rules of the law, you face a heavy fine or arrest and your base dump will be dropped from our server! You can buy bitcoin here, does not take much time to buy https://localbitcoins.com with this guide https://localbitcoins.com/guides/how-to-buy-bitcoins After paying write to me in the mail with your DB IP: allmydataback@mailnesia.com and you will receive a link to download your database dump."}
            
Analysis helper :
                
estk --url=http://47.99.79.81:9200 list
            

ASN: 15169
13 events in 764 days
Open ports: 9092,80
Found PHP info page:
$_SERVER['USER'] = www-data
$_SERVER['HOME'] = /var/www
$_SERVER['SCRIPT_NAME'] = /info.php
$_SERVER['REQUEST_URI'] = /info....