By searching for results, you agree with our Terms of service
Found 1218 results for
+plugin:ElasticSearchOpenPlugin -ip:"49.232.0.0/14" -ip:"43.136.0.0/13" +events.leak.severity:"high" +ip:"101.42.0.0/15"

Looking for more results ? Register a free account

Countries

  • China 1218

Sources

  • ElasticSearchOpenPlugin 1218

Network

  • Shenzhen Tencent Computer Systems Company Limited 1218

IP Ranges

  • 101.42.0.0/15 1218

ASN: 45090
65 events in 403 days
Leak size: 146.2 MB
Open ports: 5601
Indices: 12, document count: 278390, size: 146.2 MB
Through Kibana endpoint
Found index .kibana_task_manager with 2 documents (13.1 kB)
Found ind...
Analysis helper :
                
estk --url=http://101.43.157.239:5601 list
            

ASN: 45090
66 events in 633 days
Leak size: 8.2 kB
Open ports: 9200
Indices: 2, document count: 2, size: 8.2 kB
Found index test with 1 documents (3.9 kB)
Found index read-me with 1 documents (4.2 kB)
Ransom notes :

{"message": "Your DB has been back up. The only way of recovery is you must send 0.01 BTC to bc1qaua9cwrp0g2nqg2txn86e7k376v0xm4m0yfcfq. Once paid please email dar0kmdb@tutanota.com with code: `riDAZo` and we will recover your database. please read https://paste.sh/u6JYxXwk#PwdBc7jVzqo9-h12zU5hyPYP for more information"}
            
Analysis helper :
                
estk --url=http://101.42.93.176:9200 list
            

ASN: 45090
27 events in 259 days
Leak size: 171.1 MB
Open ports: 5601
Indices: 10, document count: 100045, size: 171.1 MB
Through Kibana endpoint
Found index .kibana_7.12.1_001 with 34 documents (2.2 MB)
Found index...
Analysis helper :
                
estk --url=http://101.43.12.83:5601 list
            

ASN: 45090
25 events in 153 days
Leak size: 4.7 kB
Open ports: 9200
Indices: 1, document count: 1, size: 4.7 kB
Found index readme with 1 documents (4.7 kB)
Ransom notes :

{"@timestamp": "2099-11-15T13:12:00", "message": "All indexs has been dropped. But we backup all indexs. The only method of recoveribing database is to pay 0,003 BTC. Transfer to this BTC address 19pNR4MGshpXAaWxgPYGYtfn79dppP6FEH . You can buy bitcoin here, does not take much time to buy https://localbitcoins.com or https://buy.moonpay.io/ . After paying write to me in the mail with your DB IP: mrserg@cock.li and you will receive a link to download your database dump.\n"}
            
Analysis helper :
                
estk --url=http://101.43.231.178:9200 list
            

ASN: 45090
56 events in 678 days
Leak size: 19.7 kB
Open ports: 9200
Indices: 2, document count: 4, size: 19.7 kB
Found index .kibana with 3 documents (15.6 kB)
Found index read-me with 1 documents (4.0 kB)
Ransom notes :

{"message": "Your DB has been back up. The only way of recovery is you must send 0.01 BTC to bc1qaua9cwrp0g2nqg2txn86e7k376v0xm4m0yfcfq. Once paid please email dar0kmdb@tutanota.com with code: `riDAZo` and we will recover your database. please read https://paste.sh/u6JYxXwk#PwdBc7jVzqo9-h12zU5hyPYP for more information"}
            
Analysis helper :
                
estk --url=http://101.43.133.216:9200 list
            

ASN: 45090
24 events in 99 days
Leak size: 65.2 kB
Open ports: 5601
Indices: 8, document count: 11, size: 65.2 kB
Through Kibana endpoint
Found index casa with 0 documents (208 B)
Found index read_me with 1 docume...
Analysis helper :
                
estk --url=http://101.43.126.195:5601 list
            

ASN: 45090
28 events in 215 days
Leak size: 94.2 kB
Open ports: 9200
Indices: 7, document count: 14, size: 94.2 kB
Found index casa with 0 documents (208 B)
Found index test with 3 documents (10.7 kB)
Found index c...
Ransom notes :

{"message": "Your DB has been back up. The only way of recovery is you must send 0.01 BTC to bc1qaua9cwrp0g2nqg2txn86e7k376v0xm4m0yfcfq. Once paid please email dar0kmdb@tutanota.com with code: `EaBLis` and we will recover your database. please read https://paste.sh/u6JYxXwk#PwdBc7jVzqo9-h12zU5hyPYP for more information"}
            
Analysis helper :
                
estk --url=http://101.42.172.237:9200 list
            

ASN: 45090
63 events in 767 days
Leak size: 29.5 kB
Open ports: 5601
Indices: 6, document count: 7, size: 29.5 kB
Through Kibana endpoint
Found index casa with 0 documents (283 B)
Found index .kibana with 2 documen...
Analysis helper :
                
estk --url=http://101.43.144.211:5601 list
            

ASN: 45090
35 events in 268 days
Leak size: 227.3 MB
Open ports: 9200
Indices: 8, document count: 58274, size: 227.3 MB
Found index cpc_person with 21504 documents (109.6 MB)
Found index website with 1 documents (4....
Ransom notes :

{"text":"Your DB has been back up. The only way of recovery is you must send 0.0057 BTC to 127ZBzXyLJFc7ShMmzkYFDhSiXXSnR8Jfr. Once paid please email databaserestore32@onionmail.org with code: `omoRmq` and we will recover your database. please read https://cutmyurl.com/3caF8EkT for more information"}
            
Analysis helper :
                
estk --url=http://101.42.47.140:9200 list
            

ASN: 45090
38 events in 452 days
Leak size: 7.6 kB
Open ports: 9200
Indices: 2, document count: 2, size: 7.6 kB
Found index test with 1 documents (3.6 kB)
Found index read-me with 1 documents (4.0 kB)
Ransom notes :

{"message": "Your DB has been back up. The only way of recovery is you must send 0.01 BTC to bc1qaua9cwrp0g2nqg2txn86e7k376v0xm4m0yfcfq. Once paid please email dar0kmdb@tutanota.com with code: `5Xcpm5` and we will recover your database. please read https://paste.sh/u6JYxXwk#PwdBc7jVzqo9-h12zU5hyPYP for more information"}
            
Analysis helper :
                
estk --url=http://101.42.231.3:9200 list
            

ASN: 45090
27 events in 135 days
Leak size: 32.0 MB
Open ports: 5601
Indices: 2, document count: 34, size: 32.0 MB
Through Kibana endpoint
Found index .geoip_databases with 33 documents (32.0 MB)
Found index read_m...
Analysis helper :
                
estk --url=http://101.43.11.6:5601 list
            

ASN: 45090
56 events in 425 days
Leak size: 8.3 kB
Open ports: 9200
Indices: 2, document count: 2, size: 8.3 kB
Found index test with 1 documents (4.0 kB)
Found index read-me with 1 documents (4.3 kB)
Ransom notes :

{"message": "Your DB has been back up. The only way of recovery is you must send 0.01 BTC to bc1qaua9cwrp0g2nqg2txn86e7k376v0xm4m0yfcfq. Once paid please email dar0kmdb@tutanota.com with code: `5Xcpm5` and we will recover your database. please read https://paste.sh/u6JYxXwk#PwdBc7jVzqo9-h12zU5hyPYP for more information"}
            
Analysis helper :
                
estk --url=http://101.42.106.152:9200 list
            

ASN: 45090
68 events in 578 days
Leak size: 78.5 kB
Open ports: 9200
Indices: 13, document count: 11, size: 78.5 kB
Found index internal with 1 documents (6.7 kB)
Found index casa with 0 documents (208 B)
Found ind...
Ransom notes :

{"message": "Your DB has been back up. The only way of recovery is you must send 0.01 BTC to bc1qaua9cwrp0g2nqg2txn86e7k376v0xm4m0yfcfq. Once paid please email dar0kmdb@tutanota.com with code: `WCR6wZ` and we will recover your database. please read https://paste.sh/u6JYxXwk#PwdBc7jVzqo9-h12zU5hyPYP for more information"}
            
Analysis helper :
                
estk --url=http://101.43.23.81:9200 list
            

ASN: 45090
65 events in 586 days
Leak size: 14.2 kB
Open ports: 9200
Indices: 3, document count: 3, size: 14.2 kB
Found index test with 1 documents (3.6 kB)
Found index read-me with 1 documents (4.0 kB)
Found index...
Ransom notes :

{"message": "Your DB has been back up. The only way of recovery is you must send 0.01 BTC to bc1qaua9cwrp0g2nqg2txn86e7k376v0xm4m0yfcfq. Once paid please email dar0kmdb@tutanota.com with code: `Y8N85w` and we will recover your database. please read https://paste.sh/u6JYxXwk#PwdBc7jVzqo9-h12zU5hyPYP for more information"}
            
Analysis helper :
                
estk --url=http://101.43.166.176:9200 list
            

ASN: 45090
70 events in 752 days
Leak size: 4.1 kB
Open ports: 9200
Indices: 1, document count: 1, size: 4.1 kB
Found index read-me with 1 documents (4.1 kB)
Ransom notes :

{"message": "Your DB has been back up. The only way of recovery is you must send 0.01 BTC to bc1qaua9cwrp0g2nqg2txn86e7k376v0xm4m0yfcfq. Once paid please email dar0kmdb@tutanota.com with code: `WCR6wZ` and we will recover your database. please read https://paste.sh/u6JYxXwk#PwdBc7jVzqo9-h12zU5hyPYP for more information"}
            
Analysis helper :
                
estk --url=http://101.43.101.90:9200 list
            

ASN: 45090
30 events in 200 days
Leak size: 32.0 MB
Open ports: 9200
Indices: 3, document count: 35, size: 32.0 MB
Found index .geoip_databases with 33 documents (32.0 MB)
Found index internal with 1 documents (6.7...
Ransom notes :

{"text":"Your DB has been back up. The only way of recovery is you must send 0.0057 BTC to 127ZBzXyLJFc7ShMmzkYFDhSiXXSnR8Jfr. Once paid please email databaserestore32@onionmail.org with code: `omoRmq` and we will recover your database. please read https://cutmyurl.com/3caF8EkT for more information"}
            
Analysis helper :
                
estk --url=http://101.43.63.188:9200 list
            

ASN: 45090
49 events in 885 days
Leak size: 77.6 kB
Open ports: 9200
Indices: 8, document count: 14, size: 77.6 kB
Found index casa with 0 documents (208 B)
Found index test with 2 documents (7.2 kB)
Found index .k...
Ransom notes :

{"message": "Your DB has been back up. The only way of recovery is you must send 0.01 BTC to bc1qaua9cwrp0g2nqg2txn86e7k376v0xm4m0yfcfq. Once paid please email dar0kmdb@tutanota.com with code: `Y8N85w` and we will recover your database. please read https://paste.sh/u6JYxXwk#PwdBc7jVzqo9-h12zU5hyPYP for more information"}
            
Analysis helper :
                
estk --url=http://101.43.106.181:9200 list
            

ASN: 45090
70 events in 612 days
Leak size: 4.3 kB
Open ports: 9200
Indices: 1, document count: 1, size: 4.3 kB
Found index read-me with 1 documents (4.3 kB)
Ransom notes :

{"message": "Your DB has been back up. The only way of recovery is you must send 0.01 BTC to bc1qmheh2ukafmsa8y0hxj64lalddzxwj0sfaas7uu. Once paid please email dar0kmdb@tutanota.com with code: `aLEfI8` and we will recover your database. please read https://paste.sh/u6JYxXwk#PwdBc7jVzqo9-h12zU5hyPYP for more information"}
            
Analysis helper :
                
estk --url=http://101.43.130.91:9200 list
            

ASN: 45090
36 events in 258 days
Leak size: 32.0 MB
Open ports: 9200
Indices: 3, document count: 35, size: 32.0 MB
Found index .geoip_databases with 33 documents (32.0 MB)
Found index website with 1 documents (4.0 ...
Ransom notes :

{"text":"Your DB has been back up. The only way of recovery is you must send 0.0057 BTC to 127ZBzXyLJFc7ShMmzkYFDhSiXXSnR8Jfr. Once paid please email databaserestore32@onionmail.org with code: `omoRmq` and we will recover your database. please read https://cutmyurl.com/3caF8EkT for more information"}
            
Analysis helper :
                
estk --url=http://101.42.164.235:9200 list
            

ASN: 45090
55 events in 744 days
Leak size: 4.1 kB
Open ports: 9201
Indices: 1, document count: 1, size: 4.1 kB
Found index read-me with 1 documents (4.1 kB)
Ransom notes :

{"message": "Your DB has been back up. The only way of recovery is you must send 0.01 BTC to bc1qaua9cwrp0g2nqg2txn86e7k376v0xm4m0yfcfq. Once paid please email dar0kmdb@tutanota.com with code: `WCR6wZ` and we will recover your database. please read https://paste.sh/u6JYxXwk#PwdBc7jVzqo9-h12zU5hyPYP for more information"}
            
Analysis helper :
                
estk --url=http://101.43.101.90:9201 list