125.214.57.48 - IPInfo

Basic Info

City: Ho Chi Minh City

Region: Ho Chi Minh

Country: Vietnam

Internet Service Provider: Viettel Corporation

Hostname: unknown

Organization: Viettel Corporation

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Aug 8 13:59:05 server postfix/smtpd[9488]: NOQUEUE: reject: RCPT from unknown[125.214.57.48]: 554 5.7.1 Service unavailable; Client host [125.214.57.48] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/125.214.57.48 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<[125.214.57.48]>	2019-08-09 02:26:53

Type

Details

Datetime

attackbotsspam

Aug  8 13:59:05 server postfix/smtpd[9488]: NOQUEUE: reject: RCPT from unknown[125.214.57.48]: 554 5.7.1 Service unavailable; Client host [125.214.57.48] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/125.214.57.48 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<[125.214.57.48]>

2019-08-09 02:26:53

Comments on same subnet:

IP	Type	Details	Datetime
125.214.57.81	attackspam	1596720006 - 08/06/2020 15:20:06 Host: 125.214.57.81/125.214.57.81 Port: 445 TCP Blocked	2020-08-07 03:31:19
125.214.57.62	attackbots	Unauthorized connection attempt detected from IP address 125.214.57.62 to port 23	2020-07-09 06:43:20
125.214.57.2	attack	Icarus honeypot on github	2020-06-30 17:55:41
125.214.57.240	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-07 16:17:52
125.214.57.199	attackspambots	Unauthorized connection attempt from IP address 125.214.57.199 on Port 445(SMB)	2020-02-04 21:29:11
125.214.57.87	attack	20/1/7@23:54:25: FAIL: Alarm-Intrusion address from=125.214.57.87 ...	2020-01-08 14:56:05
125.214.57.65	attackspambots	Postfix RBL failed	2019-10-16 02:54:42
125.214.57.19	attackbots	445/tcp [2019-09-29]1pkt	2019-09-30 01:51:54
125.214.57.172	attackspambots	IP: 125.214.57.172 ASN: AS24086 Viettel Corporation Port: Simple Mail Transfer 25 Found in one or more Blacklists Date: 28/07/2019 1:13:35 AM UTC	2019-07-28 11:38:30
125.214.57.26	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-10 07:27:05,988 INFO [amun_request_handler] PortScan Detected on Port: 445 (125.214.57.26)	2019-07-10 22:11:45

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 125.214.57.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48707
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;125.214.57.48.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080801 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 09 02:26:47 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 48.57.214.125.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 48.57.214.125.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.0.159.86	attackspambots	SSH authentication failure x 6 reported by Fail2Ban ...	2019-08-03 02:22:37
198.50.175.246	attack	Jul 30 09:40:50 xb3 sshd[26084]: Failed password for invalid user kuo from 198.50.175.246 port 48821 ssh2 Jul 30 09:40:50 xb3 sshd[26084]: Received disconnect from 198.50.175.246: 11: Bye Bye [preauth] Jul 30 09:49:02 xb3 sshd[403]: Failed password for invalid user rwyzykiewicz from 198.50.175.246 port 41567 ssh2 Jul 30 09:49:02 xb3 sshd[403]: Received disconnect from 198.50.175.246: 11: Bye Bye [preauth] Jul 30 09:53:18 xb3 sshd[30310]: Failed password for invalid user commando from 198.50.175.246 port 39732 ssh2 Jul 30 09:53:18 xb3 sshd[30310]: Received disconnect from 198.50.175.246: 11: Bye Bye [preauth] Jul 30 09:57:30 xb3 sshd[27136]: Failed password for invalid user xxxx from 198.50.175.246 port 37899 ssh2 Jul 30 09:57:30 xb3 sshd[27136]: Received disconnect from 198.50.175.246: 11: Bye Bye [preauth] Jul 30 10:01:41 xb3 sshd[24654]: Failed password for invalid user tez from 198.50.175.246 port 35928 ssh2 Jul 30 10:01:41 xb3 sshd[24654]: Received disconnect from 1........ -------------------------------	2019-08-03 01:50:59
123.18.72.76	attack	Unauthorized connection attempt from IP address 123.18.72.76 on Port 445(SMB)	2019-08-03 02:52:19
83.144.92.94	attackbots	2019-08-02T09:41:06.487231abusebot-5.cloudsearch.cf sshd\[19176\]: Invalid user 123456 from 83.144.92.94 port 39166	2019-08-03 01:52:10
176.194.129.196	attackbots	Honeypot attack, port: 445, PTR: ip-176-194-129-196.bb.netbynet.ru.	2019-08-03 01:54:57
49.151.3.4	attackbotsspam	Unauthorized connection attempt from IP address 49.151.3.4 on Port 445(SMB)	2019-08-03 02:53:52
122.54.194.211	attack	Unauthorized connection attempt from IP address 122.54.194.211 on Port 445(SMB)	2019-08-03 02:54:40
220.181.108.169	attackspam	Automatic report - Banned IP Access	2019-08-03 01:58:15
103.21.228.3	attackbots	Invalid user msmith from 103.21.228.3 port 37932	2019-08-03 02:07:52
106.12.111.201	attack	Aug 2 11:43:43 nextcloud sshd\[3280\]: Invalid user oravis from 106.12.111.201 Aug 2 11:43:43 nextcloud sshd\[3280\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 Aug 2 11:43:45 nextcloud sshd\[3280\]: Failed password for invalid user oravis from 106.12.111.201 port 58098 ssh2 ...	2019-08-03 02:03:59
92.51.125.26	attackspam	Unauthorized connection attempt from IP address 92.51.125.26 on Port 445(SMB)	2019-08-03 02:46:17
159.89.38.26	attackspam	Invalid user victorien from 159.89.38.26 port 55555	2019-08-03 02:46:50
46.101.101.66	attack	" "	2019-08-03 02:17:53
124.127.132.22	attackspam	$f2bV_matches_ltvn	2019-08-03 02:05:20
42.118.118.9	attack	Unauthorized connection attempt from IP address 42.118.118.9 on Port 445(SMB)	2019-08-03 02:51:59

Recently Reported IPs

70.64.1.0	104.71.17.161	106.113.248.212	95.9.161.248
91.62.8.67	211.30.169.30	54.215.220.47	207.46.13.72
105.51.53.214	67.3.79.16	80.190.17.78	61.128.204.24
105.135.39.122	36.37.22.72	209.160.151.220	37.113.137.179
52.52.217.251	170.233.254.10	58.131.244.132	162.238.87.167