Menace Active • ELEVE

36.92.6.45

Pays d'Origine🇮🇩 Indonesia

Premiere Detection26/03/2026

Derniere Activite22/04/2026

FAIPT Telekomunikasi Indonesia

🎯

532

Attaques Totales

🔌

Ports

📡

Types d'Attaque

🦠

Malware

Geolocalisation

Pays: 🇮🇩 Indonesia
Ville: Jakarta
ASN: AS7713
FAI: PT Telekomunikasi Indonesia

Types d'Attaque

ssh_telnet_honeypot

Ports Attaques

Malware Associe

01ba4719c80b6fe911b0...→09a3e612f8cad1560057...→28720365c5e7476a011e...→28ba533b0f3c4df63d6b...→3731236b7724987fedde...→

Identifiants Tentes

🔐345gs5662d34/345gs5662d34

🔐root/3245gs5662d34

🔐root/sensation

🔐root/S3cur1ty

🔐srvadmin/srvadmin123

🔐root/Computer123

🔐user/abc1234

🔐ubuntu/guest2025

🔐root/aDm8H%MdA

🔐root/elefante

🔐root/kf@123456

🔐vpnuser/1

🔐root/Server12345

🔐root/Qq@123456789

🔐root/Qazwsx12345$

Commandes Executees

$cd ~; chattr -ia .ssh; lockr -ia .ssh4x

$lscpu | grep Model4x

$ls -lh $(which ls)4x

$cat /proc/cpuinfo | grep name | head -n 1 | awk '{print $4,$5,$6,$7,$8,$9;}'4x

$uname -a4x

$w4x

$top4x

$uname -m4x

rm -rf /tmp/secure.sh; rm -rf /tmp/auth.sh; pkill -9 secure.sh; pkill -9 auth.sh; echo > /etc/hosts.deny; pkill -9 sleep;

$free -m | grep Mem | awk '{print $2 ,$3, $4, $5, $6, $7}'4x

Exposition Shodan InternetDBShodan

Donnees InternetDB, pas en temps reel

Ports

53221443200022223389550080808291

Vulnerabilites

CVE-2019-13224CVE-2019-9020CVE-2007-3205CVE-2006-20001CVE-2024-43204CVE-2025-53020CVE-2021-33193CVE-2021-32786CVE-2019-9675CVE-2018-7584CVE-2019-11040CVE-2013-2765CVE-2013-0941CVE-2017-12932CVE-2018-19518CVE-2021-34798CVE-2019-9638CVE-2022-31628CVE-2018-11763CVE-2021-26691

Hostnames

e-pendapatan.jayapurakab.go.id

CPEs

cpe:/a:php:php:7.1.7cpe:/a:openbsd:openssh:7.9p1cpe:/o:debian:debian_linuxcpe:/a:apache:http_servercpe:/a:jquery:jquerycpe:/a:microsoft:asp.netcpe:/o:linux:linux_kernelcpe:/a:apache:http_server:2.4.26cpe:/a:openssl:openssl:1.0.2lcpe:/a:getbootstrap:bootstrap

Evaluation des Risques

/100

FaibleMoyenEleveCritique