Active Threat • MEDIUM

91.235.136.148

Country of Origin🇷🇺 Russia

First Detection3/26/2026

Last Activity4/7/2026

ISPServerio technologijos MB

🎯

Total Attacks

🔌

Ports

📡

Attack Types

🦠

Malware

Geolocation

Country: 🇷🇺 Russia
City: Unknown
ASN: AS51247
ISP: Serverio technologijos MB

Attack Types

ssh_telnet_honeypot

smtp_honeypot

tcp_trap

Attacked Ports

23253128

Associated Malware

No associated malware

Attempted Credentials

🔐GET / HTTP/1.1/Host: 146.59.94.170:23

Shodan InternetDB ExposureShodan

InternetDB data, not real-time

Ports

803389

Vulnerabilities

CVE-2025-1736CVE-2025-14177CVE-2024-42516CVE-2025-1219CVE-2012-4001CVE-2009-2299CVE-2023-6129CVE-2024-47252CVE-2024-40898CVE-2025-1220CVE-2024-8932CVE-2024-2408CVE-2025-23048CVE-2024-38476CVE-2013-0941CVE-2025-14178CVE-2024-39573CVE-2025-1734CVE-2024-11234CVE-2024-0727

Hostnames

voronovanton281.example.com

CPEs

cpe:/a:php:php:8.2.12cpe:/a:apache:http_server:2.4.58cpe:/a:openssl:openssl:3.1.3

Risk Assessment

/100

LowMediumHighCritical