TROYANOSYVIRUS
Active ThreatLOW

188.166.52.121

Country of Origin🇳🇱 Netherlands
First Detection5/2/2026
Last Activity5/2/2026
ISPDigitalOcean, LLC
🎯
915
Total Attacks
🔌
1
Ports
📡
1
Attack Types
🦠
0
Malware

Geolocation

Country
🇳🇱 Netherlands
City
Amsterdam
ASN
AS14061
ISP
DigitalOcean, LLC

Attack Types

ssh_telnet_honeypot

Attacked Ports

23

Associated Malware

No associated malware

Shodan InternetDB ExposureShodan

InternetDB data, not real-time

Ports
2122538011044358799399520772082208620873306
Vulnerabilities
CVE-2023-38408CVE-2020-15778CVE-2018-15919CVE-2008-3844CVE-2025-32728CVE-2025-67896CVE-2019-6110CVE-2023-51766CVE-2019-6109CVE-2018-20685CVE-2022-3620CVE-2021-36368CVE-2016-20012CVE-2023-51767CVE-2019-6111CVE-2007-2768CVE-2023-48795CVE-2023-51385CVE-2025-30232CVE-2025-26465
Hostnames
mail.portal.irs.kw.gov.ngpayserver.kw-irs.comportal.irs.kw.gov.ngcpanel.portal.irs.kw.gov.ngwww.portal.irs.kw.gov.ngwebmail.portal.irs.kw.gov.ngwebdisk.portal.irs.kw.gov.ngportal.forms.irs.kw.gov.ngwww.portal.forms.irs.kw.gov.ng
CPEs
cpe:/a:openbsd:openssh:7.4cpe:/a:cpanel:whmcpe:/a:oracle:mysqlcpe:/a:pureftpd:pure-ftpdcpe:/a:exim:exim:4.96.2cpe:/a:apache:http_server

Risk Assessment

35
/100
LowMediumHighCritical