Active Threat • MEDIUM
115.187.45.27
Country of Origin🇮🇳 India
First Detection4/6/2026
Last Activity4/6/2026
ISPAlliance Broadband Services Pvt. Ltd.
🎯
262
Total Attacks
🔌
1
Ports
📡
1
Attack Types
🦠
22
Malware
Geolocation
- Country
- 🇮🇳 India
- City
- Kolkata
- ASN
- AS23860
- ISP
- Alliance Broadband Services Pvt. Ltd.
Attack Types
ssh_telnet_honeypot
Attacked Ports
22
Associated Malware
Attempted Credentials
🔐345gs5662d34/345gs5662d34
2x🔐incoming/1234
1x🔐test5/123
1x🔐root/root888@
1x🔐git/git123!@#
1x🔐root/qazwsx1111$
1x🔐admin/admin1234
1x🔐ali/ali2025
1x🔐root/reza1234
1x🔐testadmin/123456
1x🔐mehedi/mehedi@123
1x🔐root/3245gs5662d34
1x🔐teamspeak/teamspeak#
1x🔐testadmin/3245gs5662d34
1x🔐ftpuser/asdf1234
1xExecuted Commands
$
cd ~; chattr -ia .ssh; lockr -ia .ssh2x$
ls -lh $(which ls)2x$
cat /proc/cpuinfo | grep name | head -n 1 | awk '{print $4,$5,$6,$7,$8,$9;}'2x$
top2x$
uname -m2x$
free -m | grep Mem | awk '{print $2 ,$3, $4, $5, $6, $7}'2x$
lscpu | grep Model2x$
uname -a2x$
w2x$
cat /proc/cpuinfo | grep name | wc -l2xShodan InternetDB ExposureShodan
InternetDB data, not real-time
Ports
8020008291
Vulnerabilities
CVE-2015-7804CVE-2015-4601CVE-2016-10158CVE-2016-6297CVE-2025-49812CVE-2017-12868CVE-2016-6296CVE-2011-4718CVE-2014-3523CVE-2015-5590CVE-2017-15710CVE-2015-3416CVE-2016-7126CVE-2016-10159CVE-2014-2020CVE-2012-1171CVE-2016-5094CVE-2020-1934CVE-2014-3710CVE-2013-7345
Hostnames
node-115-187-45-27.alliancebroadband.in
CPEs
cpe:/o:centos:centoscpe:/a:apache:http_server:2.4.6cpe:/o:mikrotik:routeros:6.49.18cpe:/a:php:php:5.4.16cpe:/a:microsoft:frontpage:4.0
Risk Assessment
55
/100
LowMediumHighCritical