Active Threat • HIGH
60.244.155.109
Country of Origin🇹🇼 Taiwan
First Detection3/5/2026
Last Activity3/23/2026
ISPAsia Pacific On-line Service Inc.
🎯
3,654
Total Attacks
🔌
1
Ports
📡
1
Attack Types
🦠
53
Malware
Geolocation
- Country
- 🇹🇼 Taiwan
- City
- Taichung
- ASN
- AS7482
- ISP
- Asia Pacific On-line Service Inc.
Attack Types
ssh_telnet_honeypot
Attacked Ports
22
Associated Malware
Attempted Credentials
🔐345gs5662d34/345gs5662d34
11x🔐root/3245gs5662d34
2x🔐root/qwerty
2x🔐vpnadmin/vpnadminpass
1x🔐root/Password1234
1x🔐root/qwerty1
1x🔐nx/nx123!
1x🔐robin/123
1x🔐root/qwas12
1x🔐linux/linuxpass
1x🔐root/9ijn(IJN
1x🔐big/Big123!
1x🔐root/passw0rd12
1x🔐root/r
1x🔐root/4
1xExecuted Commands
$
Enter new UNIX password:15x$
lockr -ia .ssh11x$
uname -a10x$
cd ~; chattr -ia .ssh; lockr -ia .ssh10x$
ls -lh $(which ls)9x$
cat /proc/cpuinfo | grep name | wc -l9x$
cat /proc/cpuinfo | grep name | head -n 1 | awk '{print $4,$5,$6,$7,$8,$9;}'9x$
uname9x$
whoami9x$
top9xShodan InternetDB ExposureShodan
InternetDB data, not real-time
Ports
808000900038080
Vulnerabilities
CVE-2022-24961CVE-2018-17189CVE-2021-26690CVE-2020-7067CVE-2022-31628CVE-2019-11048CVE-2013-0942CVE-2024-39573CVE-2021-44790CVE-2017-9118CVE-2011-2688CVE-2020-7064CVE-2021-21708CVE-2023-25690CVE-2023-31122CVE-2012-4360CVE-2021-21707CVE-2022-36760CVE-2018-1333CVE-2024-38472
CPEs
cpe:/a:php:php:7.4.1cpe:/o:debian:debian_linuxcpe:/a:portainer:portainer:2.0.0cpe:/a:angularjs:angular.jscpe:/a:apache:http_server:2.4.25
Risk Assessment
65
/100
LowMediumHighCritical