By searching for results, you agree with our Terms of service
Found 7148 results for
+plugin:ElasticSearchOpenPlugin -ip:"49.232.0.0/14" -ip:"43.136.0.0/13" +events.leak.severity:"high" +net:"AMAZON-AES"

Looking for more results ? Register a free account

Countries

  • United States 7147
  • Sweden 1

Sources

  • ElasticSearchOpenPlugin 7148

Network

  • AMAZON-AES 7147
  • AMAZON-02 1

IP Ranges

  • 44.192.0.0/11 632
  • 3.80.0.0/12 522
  • 34.224.0.0/12 484
  • 34.192.0.0/12 471
  • 3.224.0.0/12 448
  • 3.208.0.0/12 434
  • 52.200.0.0/13 278
  • 54.160.0.0/13 264
  • 54.80.0.0/13 263
  • 35.168.0.0/13 255

ASN: 14618
63 events in 667 days
Leak size: 340.0 MB
Open ports: 80
Indices: 11, document count: 780048, size: 340.0 MB
Through Kibana endpoint
Found index .monitoring-es-7-2024.01.18 with 82 documents (12.0 MB)
F...
Analysis helper :
                
estk --url=http://18.211.125.226 list
            

ASN: 14618
58 events in 1035 days
Leak size: 1.6 kB
Open ports: 9200
Indices: 2, document count: 0, size: 1.6 kB
Found index .kibana_1 with 0 documents (795 B)
Found index read-me with 0 documents (795 B)
Analysis helper :
                
estk --url=http://100.25.69.151:9200 list
            

ASN: 14618
7 events in 154 days
Leak size: 56.1 MB
Open ports: 9200
Indices: 6, document count: 18337, size: 56.1 MB
Found index .geoip_databases with 43 documents (42.4 MB)
Found index magento2_product_4_v2 with ...
Ransom notes :

{"message": "Your DB has been back up. The only way of recovery is you must send 0.01 BTC to bc1qaua9cwrp0g2nqg2txn86e7k376v0xm4m0yfcfq. Once paid please email dar0kmdb@tutanota.com with code: `h7pEfd` and we will recover your database. please read https://paste.sh/u6JYxXwk#PwdBc7jVzqo9-h12zU5hyPYP for more information"}
            
Analysis helper :
                
estk --url=http://3.88.96.163:9200 list
            

ASN: 14618
7 events in 138 days
Leak size: 25.1 GB
Open ports: 5601
Indices: 6, document count: 173516179, size: 25.1 GB
Through Kibana endpoint
Found index .kibana-event-log-7.8.0-000001 with 2 documents (10.7 kB...
Analysis helper :
                
estk --url=http://52.5.107.208:5601 list
            

ASN: 14618
67 events in 696 days
Leak size: 5.1 kB
Open ports: 9200
Indices: 1, document count: 1, size: 5.1 kB
Found index read-me with 1 documents (5.1 kB)
Ransom notes :

{"message": "Your DB has been back up. The only way of recovery is you must send 0.01 BTC to bc1qaua9cwrp0g2nqg2txn86e7k376v0xm4m0yfcfq. Once paid please email dar0kmdb@tutanota.com with code: `WCR6wZ` and we will recover your database. please read https://paste.sh/u6JYxXwk#PwdBc7jVzqo9-h12zU5hyPYP for more information"}
            
Analysis helper :
                
estk --url=http://3.213.225.48:9200 list
            

ASN: 14618
28 events in 427 days
Leak size: 5.6 GB
Open ports: 9200
Indices: 240, document count: 14725061, size: 5.6 GB
Found index .kibana_7.17.5_001 with 350 documents (2.6 MB)
Found index sw_meter-avg-20240307...
Ransom notes :

{"message":"All your data is backed up. You must pay 0.006 BTC to 16w2xEN9pcjFgECWH1LDVps4xV9m3nUMBN In 48 hours, your data will be publicly disclosed and deleted. (more information: go to http://iplis.ru/data5)After paying send mail to us: rambler+4h1eg@onionmail.org and we will provide a link for you to download your data. Your DBCODE is: 5H1EG"}
            
Analysis helper :
                
estk --url=http://3.95.253.250:9200 list
            

ASN: 14618
78 events in 897 days
Leak size: 32.6 GB
Open ports: 443
Certificate domains:
dev.astech.com
qa.astech.com
stg.astech.com
Indices: 243, document count: 56283431, size: 32.6 GB
Found index cwl-airflow-airflow-dev-dagprocessing-2024.06.11 with 542659 documents (285.4 M...
Analysis helper :
                
estk --url=https://34.204.59.200 list
            

ASN: 14618
34 events in 495 days
Leak size: 11.4 kB
Open ports: 9210
Indices: 2, document count: 2, size: 11.4 kB
Found index read-me with 1 documents (4.3 kB)
Found index .kibana_1 with 1 documents (7.1 kB)
Ransom notes :

{"message": "Your DB has been back up. The only way of recovery is you must send 0.01 BTC to bc1qaua9cwrp0g2nqg2txn86e7k376v0xm4m0yfcfq. Once paid please email dar0kmdb@tutanota.com with code: `Y8N85w` and we will recover your database. please read https://paste.sh/u6JYxXwk#PwdBc7jVzqo9-h12zU5hyPYP for more information"}
            
Analysis helper :
                
estk --url=http://52.2.191.56:9210 list
            

ASN: 14618
8 events in 153 days
Leak size: 14.2 kB
Open ports: 9200
Indices: 2, document count: 3, size: 14.2 kB
Found index .kibana with 2 documents (9.9 kB)
Found index read-me with 1 documents (4.3 kB)
Ransom notes :

{"message": "Your DB has been back up. The only way of recovery is you must send 0.01 BTC to bc1qaua9cwrp0g2nqg2txn86e7k376v0xm4m0yfcfq. Once paid please email dar0kmdb@tutanota.com with code: `Y3EVBa` and we will recover your database. please read https://paste.sh/u6JYxXwk#PwdBc7jVzqo9-h12zU5hyPYP for more information"}
            
Analysis helper :
                
estk --url=http://52.44.125.165:9200 list
            

ASN: 14618
62 events in 1051 days
Leak size: 1.8 GB
Open ports: 80
Indices: 76, document count: 5880101, size: 1.8 GB
Through Kibana endpoint
Found index loggingapi-2023.12.31 with 41 documents (120.2 kB)
Found i...
Analysis helper :
                
estk --url=http://52.6.100.135 list
            

ASN: 14618
16 events in 200 days
Leak size: 38.9 MB
Open ports: 9200
Indices: 3, document count: 40, size: 38.9 MB
Found index .geoip_databases with 39 documents (38.8 MB)
Found index read_me with 1 documents (4.5 ...
Ransom notes :

{"message":"All your data is backed up. You must pay 0.005 BTC to 16w2xEN9pcjFgECWH1LDVps4xV9m3nUMBN In 48 hours, your data will be publicly disclosed and deleted. (more information: go to http://iplis.ru/data5)After paying send mail to us: rambler+43afj@onionmail.org and we will provide a link for you to download your data. Your DBCODE is: 53AFJ"}
            
Analysis helper :
                
estk --url=http://52.73.168.74:9200 list
            

ASN: 14618
84 events in 1095 days
Leak size: 2.9 GB
Open ports: 5601
Indices: 19, document count: 1007087, size: 2.9 GB
Through Kibana endpoint
Found index .kibana-event-log-7.9.3-000039 with 0 documents (208 B)
Fo...
Analysis helper :
                
estk --url=http://3.233.21.76:5601 list
            

ASN: 14618
33 events in 383 days
Leak size: 62.7 MB
Open ports: 9200
Indices: 4, document count: 3510, size: 62.7 MB
Found index .geoip_databases with 33 documents (32.0 MB)
Found index h69kd1o2ov543cf with 3477 do...
Analysis helper :
                
estk --url=http://3.83.8.178:9200 list
            

ASN: 14618
30 events in 307 days
Leak size: 1.6 kB
Open ports: 9200
Indices: 2, document count: 0, size: 1.6 kB
Found index .kibana_1 with 0 documents (795 B)
Found index read-me with 0 documents (795 B)
Analysis helper :
                
estk --url=http://23.20.12.47:9200 list
            

ASN: 14618
11 events in 155 days
Leak size: 8.2 kB
Open ports: 9200
Indices: 2, document count: 2, size: 8.2 kB
Found index .kibana with 1 documents (4.2 kB)
Found index read-me with 1 documents (4.0 kB)
Ransom notes :

{"message": "Your DB has been back up. The only way of recovery is you must send 0.01 BTC to bc1qaua9cwrp0g2nqg2txn86e7k376v0xm4m0yfcfq. Once paid please email dar0kmdb@tutanota.com with code: `h7pEfd` and we will recover your database. please read https://paste.sh/u6JYxXwk#PwdBc7jVzqo9-h12zU5hyPYP for more information"}
            
Analysis helper :
                
estk --url=http://54.145.37.197:9200 list
            

ASN: 14618
45 events in 495 days
Leak size: 34.8 GB
Open ports: 9200
Indices: 9, document count: 80305984, size: 34.8 GB
Found index apm-7.9.3-profile-000001 with 0 documents (208 B)
Found index .kibana with 11 doc...
Ransom notes :

{"message": "Your DB has been back up. The only way of recovery is you must send 0.01 BTC to bc1qaua9cwrp0g2nqg2txn86e7k376v0xm4m0yfcfq. Once paid please email dar0kmdb@tutanota.com with code: `WCR6wZ` and we will recover your database. please read https://paste.sh/u6JYxXwk#PwdBc7jVzqo9-h12zU5hyPYP for more information"}
            
Analysis helper :
                
estk --url=http://34.235.19.168:9200 list
            

ASN: 14618
37 events in 286 days
Leak size: 732.2 kB
Open ports: 9200
Indices: 7, document count: 1364, size: 732.2 kB
Found index read_me with 1 documents (5.3 kB)
Found index pixkeyelastic with 479 documents (248....
Ransom notes :

{"message":"All your data is backed up. You must pay 0.006 BTC to 16w2xEN9pcjFgECWH1LDVps4xV9m3nUMBN In 48 hours, your data will be publicly disclosed and deleted. (more information: go to http://iplis.ru/data5)After paying send mail to us: rambler+4csuq@onionmail.org and we will provide a link for you to download your data. Your DBCODE is: 5CSUQ"}
            
Analysis helper :
                
estk --url=http://18.213.1.200:9200 list
            

ASN: 14618
37 events in 424 days
Leak size: 1.4 GB
Open ports: 9200
Indices: 76, document count: 11096538, size: 1.4 GB
Found index testes with 1 documents (12.6 kB)
Found index qa_auto_850 with 1 documents (9.0 k...
Analysis helper :
                
estk --url=https://54.174.152.125:9200 list
            

ASN: 14618
66 events in 1051 days
Leak size: 12.6 kB
Open ports: 9200
Indices: 2, document count: 2, size: 12.6 kB
Found index read-me with 1 documents (5.1 kB)
Found index .kibana_1 with 1 documents (7.6 kB)
Ransom notes :

{"message": "Your DB has been back up. The only way of recovery is you must send 0.01 BTC to bc1qaua9cwrp0g2nqg2txn86e7k376v0xm4m0yfcfq. Once paid please email dar0kmdb@tutanota.com with code: `Y8N85w` and we will recover your database. please read https://paste.sh/u6JYxXwk#PwdBc7jVzqo9-h12zU5hyPYP for more information"}
            
Analysis helper :
                
estk --url=http://35.174.55.229:9200 list
            

ASN: 14618
15 events in 178 days
Leak size: 55.1 MB
Open ports: 80
Indices: 6, document count: 17417, size: 55.1 MB
Found index .geoip_databases with 37 documents (35.9 MB)
Found index uat_logs with 61 documents ...
Ransom notes :

{"message": "Your DB has been back up. The only way of recovery is you must send 0.01 BTC to bc1qaua9cwrp0g2nqg2txn86e7k376v0xm4m0yfcfq. Once paid please email dar0kmdb@tutanota.com with code: `h7pEfd` and we will recover your database. please read https://paste.sh/u6JYxXwk#PwdBc7jVzqo9-h12zU5hyPYP for more information"}
            
Analysis helper :
                
estk --url=http://54.204.149.181 list