TROYANOSYVIRUS
Ameaca AtivaMEDIO

186.96.145.241

Pais de Origem🇲🇽 Mexico
Primeira Deteccao25/02/2026
Ultima Atividade25/03/2026
ISPTOTAL PLAY TELECOMUNICACIONES SA DE CV
🎯
30,099
Ataques Totais
🔌
1
Portas
📡
1
Tipos de Ataque
🦠
1
Malware

Geolocalizacao

Pais
🇲🇽 Mexico
Cidade
Mexico City
ASN
AS22884
ISP
TOTAL PLAY TELECOMUNICACIONES SA DE CV

Tipos de Ataque

ssh_telnet_honeypot

Portas Atacadas

22

Malware Associado

7ab552f01de999cb1209...

Credenciais Tentadas

🔐root/12345678
22x
🔐centos/123
15x
🔐centos/123456
15x
🔐oracle/111111
14x
🔐user/passw0rd
14x
🔐user/1234567
14x
🔐ubuntu/pass123
14x
🔐oracle/pass
14x
🔐oracle/11
14x
🔐root/123
14x
🔐test/12345678
14x
🔐user/pass
14x
🔐user/1234567890
14x
🔐centos/123456789
14x
🔐root/12
14x

Comandos Executados

$uname -s -v -n -r -m17x

Exposicao Shodan InternetDBShodan

Dados InternetDB, nao em tempo real

Portas
21225432818110443
Vulnerabilidades
CVE-2025-53020CVE-2021-33193CVE-2023-27522CVE-2023-38408CVE-2021-32792CVE-2024-43204CVE-2022-29404CVE-2019-10097CVE-2021-32791CVE-2023-31122CVE-2023-45802CVE-2024-38477CVE-2012-3526CVE-2021-26691CVE-2018-17199CVE-2023-51767CVE-2021-32786CVE-2022-36760CVE-2024-38474CVE-2007-2768
Hostnames
fixed-186-96-145-241.totalplay.net
CPEs
cpe:/a:apache:http_server:2.4.37cpe:/o:fortinet:fortioscpe:/a:postgresql:postgresql::::escpe:/a:openbsd:openssh:8.0

Avaliacao de Risco

55
/100
BaixoMedioAltoCritico