Ameaca Ativa • ALTO
189.203.163.10
Pais de Origem🇲🇽 Mexico
Primeira Deteccao01/03/2026
Ultima Atividade07/04/2026
ISPTOTAL PLAY TELECOMUNICACIONES SA DE CV
🎯
762
Ataques Totais
🔌
1
Portas
📡
1
Tipos de Ataque
🦠
23
Malware
Geolocalizacao
- Pais
- 🇲🇽 Mexico
- Cidade
- Venustiano Carranza
- ASN
- AS22884
- ISP
- TOTAL PLAY TELECOMUNICACIONES SA DE CV
Tipos de Ataque
ssh_telnet_honeypot
Portas Atacadas
22
Malware Associado
Credenciais Tentadas
🔐root/odoo2025
1x🔐mike/mike
1x🔐ubuntu/Test123!
1x🔐vpn/vpn13!
1x🔐root/Qwerty#2025
1x🔐user04/user04
1x🔐root/root0!
1x🔐hduser/12345
1x🔐root/P@ssword1!
1x🔐claude/3245gs5662d34
1x🔐sysadmin/password
1x🔐root/Skemasuprem@890
1x🔐claude/Claude2025!@#
1x🔐root/qazwsx12!!
1x🔐claude/claude27!
1xComandos Executados
$
Enter new UNIX password:2x$
ls -lh $(which ls)1x$
cat /proc/cpuinfo | grep name | head -n 1 | awk '{print $4,$5,$6,$7,$8,$9;}'1x$
uname -a1x$
w1x$
cat /proc/cpuinfo | grep name | wc -l1x$
crontab -l1x$
cat /proc/cpuinfo | grep model | grep name | wc -l1x$
which ls1x$
uname1xExposicao Shodan InternetDBShodan
Dados InternetDB, nao em tempo real
Portas
8044322268888
Vulnerabilidades
CVE-2025-53020CVE-2021-33193CVE-2023-27522CVE-2023-38408CVE-2020-13950CVE-2021-32792CVE-2024-43204CVE-2022-29404CVE-2021-32791CVE-2023-31122CVE-2023-45802CVE-2024-38477CVE-2012-3526CVE-2021-26691CVE-2023-51767CVE-2021-32786CVE-2022-36760CVE-2024-38474CVE-2007-2768CVE-2021-44790
Hostnames
fixed-189-203-163-10.totalplay.net
CPEs
cpe:/a:apache:http_server:2.4.41cpe:/o:canonical:ubuntu_linuxcpe:/a:getbootstrap:bootstrap:3.3.7cpe:/a:f5:nginxcpe:/a:openresty:openrestycpe:/a:openbsd:openssh:8.0
Avaliacao de Risco
65
/100
BaixoMedioAltoCritico