Active Threat • MEDIUM
86.253.186.50
🎯
256
Total Attacks
🔌
1
Ports
📡
1
Attack Types
🦠
21
Malware
Geolocation
- Country
- 🇫🇷 France
- City
- Guimaëc
- ASN
- AS3215
- ISP
- Orange
Attack Types
ssh_telnet_honeypot
Attacked Ports
22
Associated Malware
Attempted Credentials
🔐root/3245gs5662d34
2x🔐345gs5662d34/345gs5662d34
2x🔐root/password12345
1x🔐test/P@ssw0rds
1x🔐user/qwertyuiop
1x🔐root/postgres
1x🔐claude/Claude04
1x🔐root/radware
1x🔐steam/test1234
1x🔐root/root1111111!
1x🔐root/eve
1x🔐root/1qaz!QAZ
1x🔐user/support
1x🔐root/zaq1@WSXcde3
1x🔐root/123456Qw
1xExecuted Commands
$
cd ~; chattr -ia .ssh; lockr -ia .ssh2x$
ls -lh $(which ls)2x$
cat /proc/cpuinfo | grep name | head -n 1 | awk '{print $4,$5,$6,$7,$8,$9;}'2x$
uname -a2x$
w2x$
cat /proc/cpuinfo | grep name | wc -l2x$
crontab -l2x$
cat /proc/cpuinfo | grep model | grep name | wc -l2x$
which ls2x$
uname2xShodan InternetDB ExposureShodan
InternetDB data, not real-time
Ports
802220
Vulnerabilities
CVE-2022-36760CVE-2013-2765CVE-2024-38473CVE-2023-38709CVE-2025-23048CVE-2025-49812CVE-2022-22721CVE-2023-31122CVE-2013-0941CVE-2009-0796CVE-2025-55753CVE-2024-40898CVE-2024-43204CVE-2022-28614CVE-2024-38477CVE-2025-58098CVE-2025-53020CVE-2024-43394CVE-2024-47252CVE-2024-39573
Hostnames
lfbn-ren-1-1634-50.w86-253.abo.wanadoo.fr
CPEs
cpe:/a:openbsd:openssh:8.9p1cpe:/o:canonical:ubuntu_linuxcpe:/a:apache:http_server:2.4.52
Risk Assessment
55
/100
LowMediumHighCritical