TROYANOSYVIRUS
Active ThreatMEDIUM

103.54.101.248

Country of Origin🇮🇳 India
First Detection4/10/2026
Last Activity4/11/2026
ISPDigitax India Communications Pvt Ltd.
🎯
1,466
Total Attacks
🔌
1
Ports
📡
1
Attack Types
🦠
1
Malware

Geolocation

Country
🇮🇳 India
City
Ambāla
ASN
AS135848
ISP
Digitax India Communications Pvt Ltd.

Attack Types

ssh_telnet_honeypot

Attacked Ports

22

Associated Malware

28ba533b0f3c4df63d6b...

Attempted Credentials

🔐root/postgres0
1x
🔐root/qwez
1x
🔐root/test12345678
1x
🔐root/qwerty123456789
1x
🔐root/Password1234
1x
🔐root/qwerty1
1x
🔐root/r
1x
🔐root/4
1x
🔐root/Password12345
1x
🔐root/root@123
1x
🔐root/Qwer1
1x
🔐root/abcd12
1x
🔐root/a1s2d3
1x
🔐root/Parasol1
1x
🔐root/root!@#123
1x

Executed Commands

$uname -a2x

Shodan InternetDB ExposureShodan

InternetDB data, not real-time

Ports
3128
Vulnerabilities
CVE-2026-32748CVE-2026-33526CVE-2025-59362CVE-2023-46847CVE-2024-37894CVE-2024-23638CVE-2023-46846CVE-2023-49288CVE-2023-50269CVE-2024-45802CVE-2025-62168CVE-2023-46848CVE-2024-25617CVE-2023-5824CVE-2023-49285CVE-2023-46728CVE-2023-49286CVE-2025-54574CVE-2023-46724CVE-2026-33515
CPEs
cpe:/a:squid-cache:squid:5.9

Risk Assessment

45
/100
LowMediumHighCritical