Active Threat • HIGH

116.169.58.224

Country of Origin🇨🇳 China

First Detection2/18/2026

Last Activity4/20/2026

ISPCHINA UNICOM China169 Backbone

🎯

116

Total Attacks

🔌

Ports

📡

Attack Types

🦠

Malware

Geolocation

Country: 🇨🇳 China
City: Chengdu
ASN: AS4837
ISP: CHINA UNICOM China169 Backbone

Attack Types

ssh_telnet_honeypot

tcp_trap

Attacked Ports

2222222223100022200022222

Associated Malware

6fa4c8ac58e7a1d947dc...→

Attempted Credentials

🔐root/root123456

🔐root/h3c.com!

🔐root/------fuck------

Executed Commands

$uname -s -m1x

Shodan InternetDB ExposureShodan

InternetDB data, not real-time

Ports

2281330652775500808580908848

Vulnerabilities

CVE-2025-50101CVE-2024-21127CVE-2024-21134CVE-2024-21129CVE-2025-50086CVE-2024-21239CVE-2024-21198CVE-2024-21125CVE-2024-21087CVE-2024-21231CVE-2024-21047CVE-2024-21193CVE-2025-50100CVE-2024-21236CVE-2024-21135CVE-2024-21160CVE-2024-21130CVE-2024-21247CVE-2024-21230CVE-2024-21102

CPEs

cpe:/a:f5:nginxcpe:/a:oracle:mysql:8.0.36cpe:/a:f5:nginx:1.27.3

Risk Assessment

/100

LowMediumHighCritical