TROYANOSYVIRUS
Active Threat β€’ LOW

197.242.158.193

First Detection5/8/2026
Last Activity5/8/2026
ISPAFRIHOST-SP
🎯
455
Total Attacks
πŸ”Œ
1
Ports
πŸ“‘
1
Attack Types
🦠
0
Malware

Geolocation

Country
πŸ‡ΏπŸ‡¦ South Africa
City
Johannesburg
ASN
AS37611
ISP
AFRIHOST-SP

Attack Types

ssh_telnet_honeypot

Attacked Ports

23

Associated Malware

No associated malware

Shodan InternetDB ExposureShodan

InternetDB data, not real-time

Ports
2122538011014344346558720772082208320862087
Vulnerabilities
CVE-2025-26465CVE-2023-38408CVE-2020-15778CVE-2026-40687CVE-2023-51767CVE-2026-40686CVE-2026-40684CVE-2021-41617CVE-2007-2768CVE-2020-14145CVE-2026-35414CVE-2021-36368CVE-2023-48795CVE-2008-3844CVE-2023-51385CVE-2016-20012CVE-2019-16905CVE-2026-40685CVE-2025-32728
Hostnames
xpresserv.dedicated.co.zaadmin.xpresserv.dedicated.co.za.197-242-158-193.cprapid.comwww.admin.xpresserv.dedicated.co.za.197-242-158-193.cprapid.com
CPEs
cpe:/a:cpanel:cpanelcpe:/a:pureftpd:pure-ftpdcpe:/a:exim:exim:4.99.1cpe:/a:apache:http_servercpe:/a:openbsd:openssh:8.0

Risk Assessment

35
/100
LowMediumHighCritical