TROYANOSYVIRUS
Active Threat β€’ MEDIUM

14.103.121.78

First Detection2/3/2026
Last Activity4/25/2026
ISPOVH SAS
🎯
127
Total Attacks
πŸ”Œ
1
Ports
πŸ“‘
1
Attack Types
🦠
2
Malware

Geolocation

Country
πŸ‡ΈπŸ‡¬ Singapore
City
Unknown
ASN
AS16276
ISP
OVH SAS

Attack Types

ssh_telnet_honeypot

Attacked Ports

22

Associated Malware

c32b4937ce8564ea904a...β†’cc1eb03e9b5926d8076e...β†’

Attempted Credentials

πŸ”root/321321
1x
πŸ”ubuntu/root2024
1x
πŸ”odoo/Odoo123!
1x
πŸ”root/Aa112211.
1x
πŸ”root/DDdd123123
1x

Executed Commands

$lockr -ia .ssh1x
$cd ~; chattr -ia .ssh; lockr -ia .ssh1x

Shodan InternetDB ExposureShodan

InternetDB data, not real-time

Ports
22
CPEs
cpe:/o:debian:debian_linuxcpe:/a:openbsd:openssh:7.9p1cpe:/o:linux:linux_kernel

Risk Assessment

55
/100
LowMediumHighCritical