Check an IP Address, Domain Name, Subnet, or ASN

122.116.178.193 was found in our database!

$ whois 122.116.178.193

country·🇹🇼 Taiwan

city·Taoyuan District

isp·Data Communication Business Group

asn·AS3462

network·Standard

$ sikker risk 122.116.178.193scoring →

confidence

100%Very High

first_seen·Feb 22, 2026

last_seen·3d ago

first_reported·Mar 7, 2026

last_reported·Mar 11, 2026

sessions·220

events·220

reports·66

$ sikker protocols 122.116.178.193

TELNET

220 / 220 / 66r

$ sikker summary 122.116.178.193

122.116.178.193 has a threat confidence score of 100%. This IP address from Taiwan (AS3462, Data Communication Business Group) has been observed in 220 honeypot sessions and reported 66 times targeting TELNET protocols. Detected attack patterns include telnet busybox shell activation with capability check. First observed on February 22, 2026, most recently active April 14, 2026.

$ sikker behaviors 122.116.178.193catalog →

highTelnet Busybox Shell Activation With Capability Check119x

Identifies a Telnet session where BusyBox is leveraged to activate or access a shell environment (sh, shell, system, linuxshell, enable) followed by command capability validation (ping). This pattern reflects deliberate shell breakout and execution-context validation commonly observed in IoT botnets and embedded Linux compromise workflows. The presence of multiple shell invocation variants combined with BusyBox applet usage indicates adaptive execution logic rather than incidental command usage.

$ sikker primitives 122.116.178.193

telnet_command_sh238 telnet_command_ping119 telnet_command_shell119 telnet_command_enable119 telnet_command_system119 telnet_command_linuxshell119 telnet_busybox_unknown_applet_invocation119

$ sikker reports 122.116.178.193submit →

Showing 5 of 25 reports (66 total) from 1 contributor

Reporter	Date	Category	Protocol	Comment
User	Mar 11, 2026, 11:24	Brute Force	TELNET	SikkerGuard: 2 blocked packets
User	Mar 11, 2026, 04:54	Brute Force	TELNET	SikkerGuard: 4 blocked packets
User	Mar 11, 2026, 24:54	Brute Force	TELNET	SikkerGuard: 2 blocked packets
User	Mar 10, 2026, 21:54	Brute Force	TELNET	SikkerGuard: 2 blocked packets
User	Mar 10, 2026, 21:24	Brute Force	TELNET	SikkerGuard: 2 blocked packets

1 / 5

$ sikker related 122.116.178.193

🇹🇼·More threats fromTaiwan→AS·More threats fromData Communication Business Group→TELN·More threats targetingTELNET→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
61.216.77.224	95%	1,265
60.249.26.93	35%	3
114.33.148.52	79%	116
211.23.109.116	66%	505
114.33.12.13	99%	9,294

IP Address	Confidence	Events
213.209.159.159	95%	73,778
213.209.159.66	85%	10,766
61.216.77.224	95%	1,267
213.177.179.91	94%	6,209
213.177.179.62	85%	8,011