TROYANOSYVIRUS
Active Threat β€’ MEDIUM

71.41.130.50

First Detection3/21/2026
Last Activity3/27/2026
ISPCharter Communications Inc
🎯
303
Total Attacks
πŸ”Œ
1
Ports
πŸ“‘
1
Attack Types
🦠
1
Malware

Geolocation

Country
πŸ‡ΊπŸ‡Έ United States
City
San Antonio
ASN
AS11427
ISP
Charter Communications Inc

Attack Types

ssh_telnet_honeypot

Attacked Ports

22

Associated Malware

2ca777fe970135f49c68...β†’

Attempted Credentials

πŸ”root/aA123456
2x
πŸ”root/!Q2w3e4r
2x
πŸ”user/user
2x
πŸ”root/P@ssw0rd
2x
πŸ”esroot/esroot
2x
πŸ”gpadmin/gpadmin123
2x
πŸ”hive/hive
2x
πŸ”gitlab/gitlab
2x
πŸ”flask/12345678
2x
πŸ”pi/raspberry
2x
πŸ”oracle/oracle
2x
πŸ”lighthouse/123456
2x
πŸ”user/111111
2x
πŸ”nginx/nginx
2x
πŸ”mongo/123456
2x

Executed Commands

$uname -s -v -n -r-m2x

Shodan InternetDB ExposureShodan

InternetDB data, not real-time

Ports
2280
Vulnerabilities
CVE-2024-38476CVE-2024-40898CVE-2006-20001CVE-2022-26377CVE-2024-43204CVE-2025-53020CVE-2025-65082CVE-2023-27522CVE-2022-30556CVE-2024-43394CVE-2025-23048CVE-2007-4723CVE-2011-2688CVE-2009-0796CVE-2013-2765CVE-2009-2299CVE-2023-38709CVE-2022-23943CVE-2024-24795CVE-2013-0941
Hostnames
syn-071-041-130-050.biz.spectrum.com
CPEs
cpe:/a:openbsd:openssh:8.9p1cpe:/o:canonical:ubuntu_linuxcpe:/a:apache:http_server:2.4.52

Risk Assessment

52
/100
LowMediumHighCritical