TROYANOSYVIRUS
Active ThreatCRITICAL

64.225.106.223

Country of Origin🇩🇪 Germany
First Detection3/28/2026
Last Activity4/3/2026
ISPDigitalOcean, LLC
🎯
121
Total Attacks
🔌
16
Ports
📡
5
Attack Types
🦠
1
Malware

Geolocation

Country
🇩🇪 Germany
City
Frankfurt am Main
ASN
AS14061
ISP
DigitalOcean, LLC

Attack Types

tcp_trap
ssh_telnet_honeypot
printer_honeypot
web_honeypot
tcp_trap

Attacked Ports

22238044363112341911252564438086850090429092102501143418789

Associated Malware

9d1e0e2d9459d06523ad...

Attempted Credentials

🔐User-Agent: Go-http-client/1.1/Connection: close
12x
🔐GET /solr/admin/info/system HTTP/1.1/Host: 51.178.49.206:23
3x
🔐GET /cgi-bin/authLogin.cgi HTTP/1.1/Host: 15.235.184.72:23
3x
🔐GET /v2/_catalog HTTP/1.1/Host: 51.178.49.206:23
3x
🔐GET /solr/admin/cores?action=STATUS&wt=json HTTP/1.1/Host: 51.178.49.206:23
3x

Shodan InternetDB ExposureShodan

InternetDB data, not real-time

Ports
2280
CPEs
cpe:/o:debian:debian_linuxcpe:/o:linux:linux_kernelcpe:/a:openbsd:openssh:10.0p2

Risk Assessment

82
/100
LowMediumHighCritical