Active Threat β’ MEDIUM
91.92.243.116
Country of OriginπΊπΈ United States
First Detection3/28/2026
Last Activity3/31/2026
ISPOmegatech LTD
π―
707
Total Attacks
π
1
Ports
π‘
1
Attack Types
π¦
3
Malware
Geolocation
- Country
- πΊπΈ United States
- City
- New York
- ASN
- AS202412
- ISP
- Omegatech LTD
Attack Types
ssh_telnet_honeypot
Attacked Ports
22
Associated Malware
Attempted Credentials
πadmin/admin123
4xπadmin/123456
3xπadmin/welcome
3xπadmin/letmein
3xπadmin/qwerty
3xπadmin/P@ssw0rd
3xπadmin/passw0rd
3xπadmin/password
3xπadmin/admin
3xπadministrator/administrator
2xπroot/123456
2xπadministrator/123456
2xπadministrator/letmein
2xπroot/admin123
2xπadministrator/administrator123
2xExecuted Commands
$
cat /proc/uptime 2 > /dev/null | cut -d. -f14x$
uname -s -v -n -m 2 > /dev/null3x$
export PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:$PATH; uname=$(uname -s -v -n -m 2>/dev/null); arch=$(uname -m 2>/dev/null); uptime=$(cat /proc/uptime 2>/dev/null | cut -d. -f1); cpus=$( (nproc 2>/dev/null || /usr/bin/nproc 2>/dev/null || grep -c "^processor" /proc/cpuinfo 2>/dev/null) | head -1); cpu_model=$( (grep -m1 -E "model name|Hardware" /proc/cpuinfo | cut -d: -f2- | sed 's/^ *//;s/ *$//' ; lscpu 2>/dev/null | awk -F: '/Model name/ {gsub(/^ +| +$/,"",$2); print $3x$
uname -m 2 > /dev/null2x$
(for d in "$HOME" /var/tmp /tmp /dev/shm; do f="$d/.x$$.sh"; echo 'echo 0' > "$f" 2>/dev/null && chmod +x "$f" 2>/dev/null && [ "$("$f" 2>/dev/null)" = "0" ] && /bin/rm -rf "$f" && exit 0; /bin/rm -rf "$f"; done; exit 1) && echo 0 || echo 12xShodan InternetDB ExposureShodan
InternetDB data, not real-time
Ports
21222553804439938443
Hostnames
friendly-blackwell.91-92-243-116.plesk.page
CPEs
cpe:/a:f5:nginxcpe:/a:openbsd:openssh:8.9p1cpe:/a:postfix:postfixcpe:/o:canonical:ubuntu_linux
Risk Assessment
57
/100
LowMediumHighCritical