Publicité (Header Leaderboard)

Rapport IP : 160.22.122.35

Généré le 16/12/2025 13:12
← Retour
NEXUS AI THREAT REPORT
CRITICAL THREAT
ANALYSIS INITIATED FOR TARGET: 160.22.122.35.
[STATUS]: TARGET FLAGGED. CONFIDENCE SCORE: 100%.
[INTEL]: Correlated incident reports (16) suggest malicious activity.
[VECTOR]: Potential involvement in automated scanning or brute-force operations.
[VERDICT]: IMMEDIATE MITIGATION/BLOCKING PROTOCOLS RECOMMENDED.
Route: Client → ISP → ASN → Target
Dark Web Leak Radar
Standby

Search for leaks associated with this IP in BreachCompilation, DeepMix, etc.

Stealth Proxy Hunter
Analyze VPN, TOR, and Anonymous Proxy signatures.
Botnet C2 Hunter
AWAITING TARGET ACQUISITION...

Map neighboring IP addresses and identify potential subnet associations.

Vulnerability Lab

Analyze detected services to identify known CVEs.

Identity & Summary
Organization / ISP
Asia Pacific Network Information Centre
IP Range (CIDR)
160.30.0.0/16, 160.22.0.0/15, 160.28.0.0/15, 160.21.0.0/16, 160.24.0.0/14
Key Dates
Created: 2017-09-05
Updated: 2017-09-05
Whois Data / Technical Raw Output

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#


NetRange: 160.21.0.0 - 160.30.255.255
CIDR: 160.30.0.0/16, 160.22.0.0/15, 160.28.0.0/15, 160.21.0.0/16, 160.24.0.0/14
NetName: APNIC
NetHandle: NET-160-21-0-0-1
Parent: NET160 (NET-160-0-0-0-0)
NetType: Early Registrations, Transferred to APNIC
OriginAS:
Organization: Asia Pacific Network Information Centre (APNIC)
RegDate: 2017-09-05
Updated: 2017-09-05
Ref: https://rdap.arin.net/registry/ip/160.21.0.0



OrgName: Asia Pacific Network Information Centre
OrgId: APNIC
Address: PO Box 3646
City: South Brisbane
StateProv: QLD
PostalCode: 4101
Country: AU
RegDate:
Updated: 2012-01-24
Ref: https://rdap.arin.net/registry/entity/APNIC

ReferralServer: whois://whois.apnic.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query

OrgAbuseHandle: AWC12-ARIN
OrgAbuseName: APNIC Whois Contact
OrgAbusePhone: +61 7 3858 3188
OrgAbuseEmail: search-apnic-not-arin@apnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN

OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3188
OrgTechEmail: search-apnic-not-arin@apnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#



Found a referral to whois.apnic.net.

% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html

% Information related to '160.22.122.0 - 160.22.123.255'

% Abuse contact for '160.22.122.0 - 160.22.123.255' is 'hm-changed@vnnic.vn'

inetnum: 160.22.122.0 - 160.22.123.255
netname: IONSITE-VN
descr: IONSITE SOFTWARE ONE MEMBER COMPANY LIMITED
descr: 199 Dung Si Thanh Khe, Thanh Khe Tay Ward, Thanh Khe District, Da Nang City
admin-c: HPN2-AP
tech-c: HGD3-AP
country: VN
mnt-by: MAINT-VN-VNNIC
mnt-irt: IRT-VNNIC-AP
mnt-routes: MAINT-VN-VNNIC
status: ASSIGNED PORTABLE
last-modified: 2024-06-10T15:18:42Z
source: APNIC

irt: IRT-VNNIC-AP
address: Ha Noi, VietNam
phone: +84-24-35564944
fax-no: +84-24-37821462
e-mail: hm-changed@vnnic.vn
abuse-mailbox: hm-changed@vnnic.vn
admin-c: NTTT1-AP
tech-c: NTTT1-AP
auth: # Filtered
mnt-by: MAINT-VN-VNNIC
last-modified: 2025-11-17T23:08:34Z
source: APNIC

person: Huynh Gia Dat
address:
country: VN
phone: +84775522580
e-mail: dathuynh@bitlearn.vn
nic-hdl: HGD3-AP
mnt-by: MAINT-VN-VNNIC
last-modified: 2024-06-10T15:13:02Z
source: APNIC

person: Huynh Phuc Ngoc
address:
country: VN
phone: +84912947499
e-mail: info@bitlearn.vn
nic-hdl: HPN2-AP
mnt-by: MAINT-VN-VNNIC
last-modified: 2024-06-10T15:05:20Z
source: APNIC

% Information related to '160.22.122.0/23AS135918'

route: 160.22.122.0/23
descr: IONSITE-VN
origin: AS135918
mnt-by: MAINT-VN-VNNIC
last-modified: 2024-09-16T09:09:16Z
source: APNIC

% This query was served by the APNIC Whois Service version 1.88.34 (WHOIS-UK2)


Dictionary
ASN

Autonomous System Number (ASN) defines a group of IP networks run by one operator.

Handle

A unique identifier assigned by registrars (RIPE, ARIN) to organizations or contacts.

Associated Domains / Passive DNS
Geolocation & Network
🌍

Loading...

-

ISP Provider
...
Organization
...
ASN
...
Timezone
...
Interactive Map
Risk Index CRITICAL
100%

Malicious Activity Probability

Reports
16
Reporters
3
Report this IP
Analyzing web server...
Latency (Live)
Standby Avg: - ms
Port Scanner

Check common open ports on this host.

AI Analysis & Summary

The IP address 160.22.122.35 is located in AU and is assigned to the Internet Service Provider Asia Pacific Network Information Centre. It is part of the network range 160.21.0.0 - 160.30.255.255. This IP has been reported 16 times in our threat database, indicating potential malicious activity. Common activity associated with this network includes brute-force attempts and automated scanning. You can perform a full Port Scan or Whois Lookup to get more details.

IP Abuse Reports for 160.22.122.35:

This IP address has been reported a total of 16 times from 3 distinct sources. 160.22.122.35 was first reported on December 13th 2025, and the most recent report was December 16th 2025.

Reporter Date (UTC) Comment Categories
✔ Log-Hunter (System) 2025-12-14 09:09:49
() 		Invalid user attempt 'morlanwelz' SSH User Enum SSH
✔ System-Watcher 2025-12-13 20:30:08
() 		SSH Failed password for user 'root' (Auto-Import detected) Brute-Force SSH
✔ System-Watcher 2025-12-13 18:43:48
() 		SSH Failed password for user 'root' (Auto-Import detected) Brute-Force SSH
✔ System-Watcher 2025-12-13 16:50:50
() 		SSH Failed password for user 'morlanwelz' (Auto-Import detected) Brute-Force SSH
✔ System-Watcher 2025-12-13 14:58:57
() 		SSH Failed password for user 'morlanwelz' (Auto-Import detected) Brute-Force SSH
✔ System-Watcher 2025-12-13 13:06:48
() 		SSH Failed password for user 'morlanwelz' (Auto-Import detected) Brute-Force SSH
Showing page 2 of 2
« Prev
ads_placeholder
Historique
No recent search.
Recent Global Scans (SEO Index)
195.178.110.30 116.110.149.157 116.110.151.38 195.96.138.145 216.10.247.49 193.46.255.99 80.94.93.119 92.118.39.87 80.94.93.233 116.177.172.64 103.47.226.141 43.159.230.49 193.46.255.20 80.94.92.168 45.148.10.121 160.22.122.35 195.178.110.30 45.134.26.238 104.214.58.50 80.94.95.115 193.46.255.33 186.96.145.241 193.46.255.217 103.187.147.16 92.118.39.62 193.46.255.103 164.92.94.204 195.20.236.212 193.46.255.20 193.46.255.159 52.174.67.71 80.94.92.40 92.118.39.87 45.134.26.236 188.166.76.107 179.43.184.242 80.94.92.167 160.22.122.35 80.94.95.116 80.94.95.115 110.32.34.138 118.193.45.106 104.214.58.50 186.96.145.241 20.243.136.122 103.187.147.16 193.46.255.7 43.159.230.49 45.148.10.121 8.138.87.177

Cybersecurity Knowledge Base

Understanding the threats detected by our systems.

SSH Brute Force

An automated attack where a script attempts to guess the password of a Secure Shell (SSH) server by trying thousands of combinations. This is a common method used by botnets to gain unauthorized access to servers.

Port Scanning

The practice of sending packets to specific ports on a host to identify open services. While used by administrators for auditing, it is often the first step in an attack to find vulnerabilities.

Botnet Activity

A network of compromised computers (bots) controlled by a third party. They are often used to coordinate DDoS attacks, send spam, or perform distributed brute-force attacks.