TROYANOSYVIRUS
Active ThreatLOW

91.220.63.98

Country of Origin🇷🇴 Romania
First Detection4/30/2026
Last Activity4/30/2026
ISPChrominance SRL
🎯
641
Total Attacks
🔌
1
Ports
📡
1
Attack Types
🦠
0
Malware

Geolocation

Country
🇷🇴 Romania
City
Bucharest
ASN
AS197357
ISP
Chrominance SRL

Attack Types

ssh_telnet_honeypot

Attacked Ports

23

Associated Malware

No associated malware

Shodan InternetDB ExposureShodan

InternetDB data, not real-time

Ports
21538011044346520873306
Vulnerabilities
CVE-2023-42116CVE-2020-28019CVE-2020-28017CVE-2021-27216CVE-2019-9638CVE-2015-9253CVE-2020-28022CVE-2024-25117CVE-2020-28024CVE-2023-42117CVE-2013-2220CVE-2025-67896CVE-2020-11579CVE-2020-28010CVE-2019-9641CVE-2020-8015CVE-2023-51766CVE-2020-28018CVE-2023-42114CVE-2017-7272
Hostnames
www.ibs-global.thinkdigital.rowww.blackwhitestylenet.thinkdigital.rothinkdigitalgroup.thinkdigital.rowww.sandbox.thinkdigital.rojoixro.thinkdigital.rorevistatango.thinkdigital.roibs-global.thinkdigital.ropreview.thinkdigital.rocomedyhub.thinkdigital.rowww.serviciig4s.thinkdigital.rowww.joixro.thinkdigital.rowww.facebook.thinkdigital.rowww.preview.thinkdigital.roserviciig4s.thinkdigital.rowww.comedyhub.thinkdigital.rowww.thinkdigitalgroup.thinkdigital.rofacebook.thinkdigital.rowww.campanii.thinkdigital.rowww.upgrade100.thinkdigital.rosandbox.thinkdigital.rocampanii.thinkdigital.ro91-220-63-98.reserved.chrominance.roupgrade100.thinkdigital.roblackwhitestylenet.thinkdigital.rowww.revistatango.thinkdigital.ro
CPEs
cpe:/a:php:php:5.6.40cpe:/a:cpanel:whmcpe:/a:oracle:mysqlcpe:/a:pureftpd:pure-ftpdcpe:/a:apache:http_servercpe:/a:exim:exim:4.93

Risk Assessment

35
/100
LowMediumHighCritical