TROYANOSYVIRUS
Active ThreatMEDIUM

110.164.228.242

Country of Origin🇹🇭 Thailand
First Detection2/20/2026
Last Activity4/23/2026
ISPTriple T Broadband Public Company Limited
🎯
264
Total Attacks
🔌
1
Ports
📡
1
Attack Types
🦠
2
Malware

Geolocation

Country
🇹🇭 Thailand
City
Bangkok
ASN
AS45758
ISP
Triple T Broadband Public Company Limited

Attack Types

ssh_telnet_honeypot

Attacked Ports

22

Associated Malware

c32b4937ce8564ea904a...cc1eb03e9b5926d8076e...

Attempted Credentials

🔐steam/P@815304w0rd
1x
🔐intel/123
1x
🔐root/1q2w3e4r5t6y7u8i9o0p
1x
🔐ftptest/P4ssw0rd
1x
🔐root/qazwsx123.
1x
🔐brenda/brenda
1x
🔐git/gitpassword
1x
🔐bot/0
1x
🔐server/server04
1x
🔐iqbal/iqbal
1x
🔐root/abc.123456
1x
🔐root/1/P@ssw0rd
1x
🔐minecraft/654321
1x
🔐socks/socks
1x
🔐adminuser/Qwerty123
1x

Shodan InternetDB ExposureShodan

InternetDB data, not real-time

Ports
225380
Vulnerabilities
CVE-2021-30641CVE-2012-4360CVE-2011-1176CVE-2025-49630CVE-2012-3526CVE-2009-0796CVE-2021-32792CVE-2021-44790CVE-2024-38473CVE-2021-34798CVE-2024-38477CVE-2024-24795CVE-2022-22721CVE-2021-32785CVE-2020-35452CVE-2023-31122CVE-2022-37436CVE-2024-43204CVE-2009-2299CVE-2011-2688
Hostnames
mx-ll-110.164.228-242.static.3bb.co.th
CPEs
cpe:/o:canonical:ubuntu_linuxcpe:/a:apache:http_server:2.4.41cpe:/a:openbsd:openssh:8.2p1

Risk Assessment

55
/100
LowMediumHighCritical