Menace Active • ELEVE
138.128.240.172
Pays d'Origine🇺🇸 Estados Unidos
Premiere Detection26/03/2026
Derniere Activite31/03/2026
FAIKamatera, Inc.
🎯
212
Attaques Totales
🔌
1
Ports
📡
1
Types d'Attaque
🦠
22
Malware
Geolocalisation
- Pays
- 🇺🇸 Estados Unidos
- Ville
- Newark
- ASN
- AS36007
- FAI
- Kamatera, Inc.
Types d'Attaque
ssh_telnet_honeypot
Ports Attaques
22
Malware Associe
Identifiants Tentes
🔐345gs5662d34/345gs5662d34
2x🔐root/2026.com.CN
1x🔐root/123456zxf1984@gmail.cn
1x🔐patel/123
1x🔐root/qi123456
1x🔐root/AAbb123456
1x🔐root/Aa11223344
1x🔐root/a1234567
1x🔐root/3245gs5662d34
1x🔐root/Ruibo2026!@#
1x🔐root/chinaidc2003
1x🔐little/3245gs5662d34
1x🔐ward/111111
1x🔐xuefeng/xuefeng1234
1x🔐root/NB123456
1xCommandes Executees
$
cd ~; chattr -ia .ssh; lockr -ia .ssh2x$
ls -lh $(which ls)2x$
cat /proc/cpuinfo | grep name | head -n 1 | awk '{print $4,$5,$6,$7,$8,$9;}'2x$
uname -a2x$
w2x$
cat /proc/cpuinfo | grep name | wc -l2x$
crontab -l2x$
cat /proc/cpuinfo | grep model | grep name | wc -l2x$
which ls2x$
Enter new UNIX password:2xExposition Shodan InternetDBShodan
Donnees InternetDB, pas en temps reel
Ports
22804433000
Vulnerabilites
CVE-2025-53020CVE-2011-2688CVE-2024-42516CVE-2025-49812CVE-2024-47252CVE-2025-23048CVE-2024-38474CVE-2025-59775CVE-2024-43204CVE-2009-2299CVE-2024-43394CVE-2012-4001CVE-2025-55753CVE-2025-65082CVE-2024-38476CVE-2024-38475CVE-2023-38709CVE-2013-0942CVE-2013-0941CVE-2012-4360
Hostnames
miapikamatera.duckdns.orgb3.rushsales.online
CPEs
cpe:/a:openbsd:openssh:9.6p1cpe:/a:expressjs:expresscpe:/o:canonical:ubuntu_linuxcpe:/a:nodejs:node.jscpe:/a:apache:http_server:2.4.58
Evaluation des Risques
62
/100
FaibleMoyenEleveCritique