Ameaca Ativa • ALTO

103.117.57.134

Pais de Origem🇮🇩 Indonesia

Primeira Deteccao27/02/2026

Ultima Atividade04/04/2026

ISPPT Cloud Hosting Indonesia

🎯

365

Ataques Totais

🔌

Portas

📡

Tipos de Ataque

🦠

Malware

Geolocalizacao

Pais: 🇮🇩 Indonesia
Cidade: Desconhecida
ASN: AS136052
ISP: PT Cloud Hosting Indonesia

Tipos de Ataque

ssh_telnet_honeypot

Portas Atacadas

Malware Associado

09a3e612f8cad1560057...→28720365c5e7476a011e...→28ba533b0f3c4df63d6b...→3f1f9a5db692d999bb3d...→50e721e49c013f00c62c...→

Credenciais Tentadas

🔐345gs5662d34/345gs5662d34

🔐root/3245gs5662d34

🔐ahmad/ahmad

🔐minecraft/mcserver

🔐teamspeak/password

🔐developer/developer1234

🔐root/qazwsx0000@123

🔐vpn/vpn09!

🔐root/2wsx#$

🔐root/123qwe,.

🔐root/123ubuntu

🔐odoo/odoo29

🔐postgres/postgres#123

🔐ftpuser001/ftpuser001

🔐root/alaska

Comandos Executados

$cd ~; chattr -ia .ssh; lockr -ia .ssh2x

$free -m | grep Mem | awk '{print $2 ,$3, $4, $5, $6, $7}'2x

$lscpu | grep Model2x

$ls -lh $(which ls)2x

$cat /proc/cpuinfo | grep name | head -n 1 | awk '{print $4,$5,$6,$7,$8,$9;}'2x

$uname -a2x

$w2x

$cat /proc/cpuinfo | grep name | wc -l2x

$crontab -l2x

$cat /proc/cpuinfo | grep model | grep name | wc -l2x

Exposicao Shodan InternetDBShodan

Dados InternetDB, nao em tempo real

Portas

22538044380008090

Vulnerabilidades

CVE-2024-6232CVE-2009-2940CVE-2023-40217CVE-2021-28861CVE-2025-12084CVE-2016-3189CVE-2007-4559CVE-2021-3737CVE-2022-37454CVE-2024-9287CVE-2018-25032CVE-2025-6075CVE-2015-20107CVE-2022-42919CVE-2022-0391CVE-2013-0340CVE-2025-12781CVE-2025-13836CVE-2023-24329CVE-2020-29396

Hostnames

cipungpromo.shopip103-117-57-134.cloudhost.web.idwww.cipungpromo.shop

CPEs

cpe:/o:canonical:ubuntu_linuxcpe:/a:palletsprojects:flask:3.0.6cpe:/a:python:python:3.8.10cpe:/a:litespeedtech:litespeed_web_servercpe:/a:openbsd:openssh:8.2p1

Avaliacao de Risco

/100

BaixoMedioAltoCritico