plugin%3ADotEnvConfigPlugin +net:"Hetzner Online GmbH" -plugin:"PhpInfoHttpPlugin" +events.leak.severity:"medium"
[core]
repositoryformatversion = 0
filemode = true
bare = false
logallrefupdates = true
[remote "origin"]
url = git@gitlab.com:2hh/dialer/we...
Found by GitConfigHttpPlugin
Apache Status
Apache Server Status for 144.76.242.29
Server Version: Apache/2.2.15 (Unix) DAV/2 mod_fcgid/2.3.9 mod_python/3.3.1 Python/2.6.6 ...
Found by ApacheStatusPlugin
Apache Status
Apache Server Status for api.diebibel.mdc.de (via 127.0.0.1)
Server Version: Apache/2.4.29 (Ubuntu)
Server MPM: prefork
Server B...
Found by ApacheStatusPlugin
[core]
repositoryformatversion = 0
fileMode = false
bare = false
logallrefupdates = true
[remote "origin"]
fetch = +refs/heads/*:refs/remote...
Found by GitConfigHttpPlugin
Apache Status
Apache Server Status for 78.46.198.153 (via 78.46.198.153)
Server Version: Apache/2.4.38 (Debian) OpenSSL/1.1.1d
Server MPM: eve...
Found by ApacheStatusPlugin
Indices: 2, document count: 6217, size: 4.2 MB
Found index data with 6216 documents (4.2 MB)
Found index read-me with 1 documents (4.3 kB)
Ransom notes :
{"message": "We delete all databases, but download a copy to our server. The only way of recovery is you must send 0.01 BTC to bc1qmaacz9fdvnkujqlf8m547mzzh0l5t0ajn699th. You have until 48 hours to pay or data will be inaccessible. Once paid please email incomings99112@onionmail.com with code: `eNO2CN` and we will recover your database. please read https://paste.sh/UY6_vtGL#THGqRdL9oQqUc-28RPDOWSbB for more information"}
Analysis helper :
estk --url=http://148.251.236.190:9200 list
Found by ElasticSearchOpenPlugin
[core]
repositoryformatversion = 0
filemode = true
bare = false
logallrefupdates = true
[remote "origin"]
url = https://github.com/msucevan/...
Found by GitConfigHttpPlugin
[core]
repositoryformatversion = 0
filemode = true
bare = false
logallrefupdates = true
[remote "origin"]
url = https://github.com/ilka1999/...
Found by GitConfigHttpPlugin
Indices: 3, document count: 3, size: 14.8 kB
Through Kibana endpoint
Found index .kibana with 1 documents (4.2 kB)
Found index read-me with 1 doc...
Analysis helper :
estk --url=http://168.119.236.68:5601 list
Found by ElasticSearchOpenPlugin
HTTP/1.1 200 OK
Date: Sat, 06 May 2023 23:12:19 GMT
Server: Apache/2.4.10 (Debian)
Content-Length: 26
Connection: close
Content-Type: text/ht...
Found by GitConfigHttpPlugin
[core]
repositoryformatversion = 0
filemode = true
bare = false
logallrefupdates = true
[remote "origin"]
url = https://github.com/AlexLeonN...
Found by GitConfigHttpPlugin
Collections: 3, document count: 2, size: 805 B
HTTP/1.0 200 OK
Connection: close
Content-Type: text/plain
Content-Length: 85
It looks like y...
Analysis helper :
echo 'show dbs' | mongo --host 188.34.159.29 --port 27017
Found by MongoOpenPlugin
[core]
repositoryformatversion = 0
filemode = true
bare = false
logallrefupdates = true
ignorecase = true
precomposeunicode = true
[remote ...
Found by GitConfigHttpPlugin
[core]
repositoryformatversion = 0
filemode = true
bare = false
logallrefupdates = true
[remote "origin"]
url = https://github.com/medicmilo...
Found by GitConfigHttpPlugin
Apache Status
Apache Server Status for 116.202.229.94 (via 192.168.60.2)
Server Version: Apache/2.4.52 (Ubuntu) OpenSSL/3.0.2
Server MPM: pref...
Found by ApacheStatusPlugin
[core]
repositoryformatversion = 0
filemode = true
bare = false
logallrefupdates = true
[remote "origin"]
url = https://github.com/chiatk/ca...
Found by GitConfigHttpPlugin
Apache Status
Apache Server Status for 94.130.220.89 (via 127.0.0.1)
Server Version: Apache/2.4.18 (Ubuntu)
Server MPM: prefork
Server Built: ...
Found by ApacheStatusPlugin
Indices: 2, document count: 37, size: 35.8 MB
Found index .geoip_databases with 36 documents (35.8 MB)
Found index read_me with 1 documents (4.5 ...
Ransom notes :
{"message":"All your data is backed up. You must pay 0.0063 BTC to 1tpwVPxbRNtQuzKonhzdEsJL8n562uwAr In 48 hours, your data will be publicly disclosed and deleted. (more information: go to http://iplis.ru/data05)After paying send mail to us: rambler+4kpb@onionmail.org and we will provide a link for you to download your data. Your DBCODE is: 5KPB"}
Analysis helper :
estk --url=http://5.161.153.114:9200 list
Found by ElasticSearchOpenPlugin
Indices: 2, document count: 35, size: 32.9 MB
Found index .geoip_databases with 34 documents (32.9 MB)
Found index read_me with 1 documents (4.5 ...
Ransom notes :
{"message":"All your data is backed up. You must pay 0.0057 BTC to 1tpwVPxbRNtQuzKonhzdEsJL8n562uwAr In 48 hours, your data will be publicly disclosed and deleted. (more information: go to http://iplis.ru/data05)After paying send mail to us: rambler+4nld6@onionmail.org and we will provide a link for you to download your data. Your DBCODE is: 5NLD6"}
Analysis helper :
estk --url=http://178.63.43.46:9200 list
Found by ElasticSearchOpenPlugin
HTTP/1.1 301 Moved Permanently
Date: Sun, 07 May 2023 07:21:16 GMT
Server: Apache/2.4.41 (Ubuntu)
X-Redirect-By: WordPress
Location: https://j...
Found by GitConfigHttpPlugin