TROYANOSYVIRUS
Active ThreatLOW

5.189.139.236

Country of Origin🇫🇷 France
First Detection5/1/2026
Last Activity5/1/2026
ISPContabo GmbH
🎯
357
Total Attacks
🔌
1
Ports
📡
1
Attack Types
🦠
0
Malware

Geolocation

Country
🇫🇷 France
City
Lauterbourg
ASN
AS51167
ISP
Contabo GmbH

Attack Types

ssh_telnet_honeypot

Attacked Ports

23

Associated Malware

No associated malware

Shodan InternetDB ExposureShodan

InternetDB data, not real-time

Ports
21225380111143443465995208220832086208720903306436956728080
Vulnerabilities
CVE-2023-51767CVE-2018-15919CVE-2023-51385CVE-2023-42117CVE-2023-38408CVE-2021-36368CVE-2021-41617CVE-2017-15906CVE-2007-2768CVE-2022-3559CVE-2025-32728CVE-2023-42115CVE-2023-48795CVE-2023-42114CVE-2025-67896CVE-2023-51766CVE-2024-39929CVE-2022-37452CVE-2026-35414CVE-2023-42119
Hostnames
vmi246794.contaboserver.netwww.cp.zimobi.co.kecp.zimobi.co.ke
CPEs
cpe:/a:pureftpd:pure-ftpdcpe:/a:apache:tomcatcpe:/a:exim:exim:4.94.2cpe:/a:vmware:rabbitmq:3.8.35cpe:/a:mariadb:mariadb:10.2.44-MariaDBcpe:/a:apache:http_servercpe:/a:openbsd:openssh:7.4

Risk Assessment

35
/100
LowMediumHighCritical