Active Threat • HIGH

185.93.89.191

Country of Origin🇮🇷 Iran

First Detection3/18/2026

Last Activity4/9/2026

ISPLimited Network LTD

🎯

1,227

Total Attacks

🔌

100

Ports

📡

Attack Types

🦠

Malware

Geolocation

Country: 🇮🇷 Iran
City: Unknown
ASN: AS213790
ISP: Limited Network LTD

Attack Types

adb_honeypot

malware_capture

ics_scada_honeypot

tcp_trap

credential_capture

Attacked Ports

811080108110821083108810891090118013801480158016801688178018882000201620192049+80

Associated Malware

No associated malware

Attempted Credentials

🔐admin/123456

🔐123456/123456

🔐admin/admin

🔐abc/abc

🔐proxy/proxy

🔐111/111

🔐12345/12345

🔐1/1

🔐123/123

🔐888/888

🔐123456789/123456789

🔐root/root

🔐admin/1

🔐user/pass

🔐test/test

ThreatFox Intelabuse.ch

⚠️KNOWN C2 SERVER

Malware Families

elf.systembc

Threat Types

botnet_cc

Confidence: 100%

Shodan InternetDB ExposureShodan

InternetDB data, not real-time

Ports

9000

CPEs

cpe:/a:yandex:clickhouse

Risk Assessment

/100

LowMediumHighCritical