Active Threat • LOW
99.243.62.228
Country of Origin🇨🇦 Canada
First Detection4/1/2026
Last Activity4/1/2026
ISPRogers Communications Canada Inc.
🎯
34
Total Attacks
🔌
1
Ports
📡
1
Attack Types
🦠
9
Malware
Geolocation
- Country
- 🇨🇦 Canada
- City
- London
- ASN
- AS812
- ISP
- Rogers Communications Canada Inc.
Attack Types
ssh_telnet_honeypot
Attacked Ports
22
Associated Malware
Attempted Credentials
🔐root/root
1x🔐root/admin
1xExecuted Commands
$
/ip cloud print2x$
uname -a1x$
ls -la ~/.local/share/TelegramDesktop/tdata /home/*/.local/share/TelegramDesktop/tdata /dev/ttyGSM* /dev/ttyUSB-mod* /var/spool/sms/* /var/log/smsd.log /etc/smsd.conf* /usr/bin/qmuxd /var/qmux_connect_socket /etc/config/simman /dev/modem* /var/config/sms/*1x$
ifconfig1x$
ps | grep '[Mm]iner'1x$
ps -ef | grep '[Mm]iner'1x$
echo Hi | cat -n1x$
locate D877F783D5D3EF8Cs1x$
cat /proc/cpuinfo1xShodan InternetDB ExposureShodan
InternetDB data, not real-time
Ports
52017443808080818444
Vulnerabilities
CVE-2024-3566CVE-2007-3205CVE-2013-2220
Hostnames
pool-99-243-62-228.cpe.net.cable.rogers.com
CPEs
cpe:/a:laravel:laravelcpe:/a:php:php:8.4.16cpe:/a:f5:nginxcpe:/a:apache:http_server
Risk Assessment
35
/100
LowMediumHighCritical