Active Threat • HIGH

103.175.225.238

Country of Origin🇮🇩 Indonesia

First Detection3/4/2026

Last Activity3/31/2026

ISPPT. Eka Mas Republik

🎯

347

Total Attacks

🔌

Ports

📡

Attack Types

🦠

Malware

Geolocation

Country: 🇮🇩 Indonesia
City: Bogor
ASN: AS63859
ISP: PT. Eka Mas Republik

Attack Types

ssh_telnet_honeypot

Attacked Ports

Associated Malware

01ba4719c80b6fe911b0...→09a3e612f8cad1560057...→28720365c5e7476a011e...→28ba533b0f3c4df63d6b...→3f1f9a5db692d999bb3d...→

Attempted Credentials

🔐root/abc-123456

🔐root/Amax1979!

🔐root/Admin123

🔐root/admin@2026

🔐root/Aa111111!

🔐root/!@WSX

🔐root/zjidc.cn

🔐root/$#@!ergean*(

🔐root/1QAZ2wsx

🔐root/dm147258

🔐root/Zxc12345

Shodan InternetDB ExposureShodan

InternetDB data, not real-time

Ports

8044320533000522252695900800080808081808284435500058000

Vulnerabilities

CVE-2012-3526CVE-2019-9511CVE-2024-43204CVE-2007-4723CVE-2024-38474CVE-2019-9518CVE-2026-21722CVE-2013-0942CVE-2013-2765CVE-2024-39573CVE-2025-53020CVE-2011-2688CVE-2019-9516CVE-2025-41115CVE-2025-59775CVE-2024-6387CVE-2025-66200CVE-2024-38477CVE-2012-4360CVE-2024-47252

Hostnames

hackerbootcamp.asia

CPEs

cpe:/a:f5:nginx:1.24.0cpe:/a:netdata:netdata:1.43.2cpe:/a:getbootstrap:bootstrapcpe:/o:linux:linux_kernelcpe:/o:canonical:ubuntu_linuxcpe:/a:grafana:grafana:12.0.2cpe:/o:canonical:ubuntu_linux:24.04cpe:/a:apache:http_server:2.4.58

Risk Assessment

/100

LowMediumHighCritical