Active Threat • HIGH
186.68.83.104
Country of Origin🇪🇨 EC
First Detection3/26/2026
Last Activity4/8/2026
ISPSERVICIOS DE TELECOMUNICACIONES SETEL S.A. XTRIM EC
🎯
988
Total Attacks
🔌
1
Ports
📡
1
Attack Types
🦠
32
Malware
Geolocation
- Country
- 🇪🇨 EC
- City
- Junín
- ASN
- AS14522
- ISP
- SERVICIOS DE TELECOMUNICACIONES SETEL S.A. XTRIM EC
Attack Types
ssh_telnet_honeypot
Attacked Ports
22
Associated Malware
Attempted Credentials
🔐345gs5662d34/345gs5662d34
9x🔐root/3245gs5662d34
5x🔐root/zx123456
2x🔐root/qw3rty
1x🔐admin/1qaz@WSX
1x🔐root/admin1@3
1x🔐root/gongxifacai
1x🔐n8n/n8n24
1x🔐root/123@qwe@asd
1x🔐root/admin@2026
1x🔐zc/123456
1x🔐den/Den123
1x🔐root/milion
1x🔐steam1/steam1123456
1x🔐server/Server21!
1xExecuted Commands
$
cd ~; chattr -ia .ssh; lockr -ia .ssh9x$
lscpu | grep Model9x$
ls -lh $(which ls)9x$
cat /proc/cpuinfo | grep name | head -n 1 | awk '{print $4,$5,$6,$7,$8,$9;}'9x$
uname -a9x$
w9x$
cat /proc/cpuinfo | grep name | wc -l9x$
crontab -l9x$
cat /proc/cpuinfo | grep model | grep name | wc -l9x$
which ls9xShodan InternetDB ExposureShodan
InternetDB data, not real-time
Ports
8002
Hostnames
104.cpe-186-68-83.gye.satnet.net
CPEs
cpe:/a:python:pythoncpe:/a:encode:uvicorn
Risk Assessment
65
/100
LowMediumHighCritical