TROYANOSYVIRUS
Active ThreatHIGH

111.35.7.46

Country of Origin🇨🇳 China
First Detection1/1/2026
Last Activity4/19/2026
ISPShandong Mobile Communication Company Limited
🎯
96
Total Attacks
🔌
5
Ports
📡
2
Attack Types
🦠
1
Malware

Geolocation

Country
🇨🇳 China
City
Unknown
ASN
AS24444
ISP
Shandong Mobile Communication Company Limited

Attack Types

ssh_telnet_honeypot
tcp_trap

Attacked Ports

22222222232200022222

Associated Malware

6fa4c8ac58e7a1d947dc...

Attempted Credentials

🔐root/root123456
1x
🔐root/5nWt3P-fF4WosQm5O
1x
🔐root/h3c.com!
1x
🔐root/---fuck_you----
1x

Executed Commands

$uname -s -m1x

Shodan InternetDB ExposureShodan

InternetDB data, not real-time

Ports
2250608000809081899000910012366
Vulnerabilities
CVE-2021-36368CVE-2020-14145CVE-2008-3844CVE-2021-41617CVE-2007-2768CVE-2023-38408CVE-2023-48795CVE-2020-12062CVE-2023-51385CVE-2023-51767CVE-2021-28041CVE-2025-32728CVE-2016-20012CVE-2020-15778CVE-2025-26465
CPEs
cpe:/a:openbsd:openssh:8.2

Risk Assessment

60
/100
LowMediumHighCritical