125.212.201.50 Threat Intelligence and Host Information

Mar 17, 2024 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 125.212.201.50 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 11/100

Host and Network Information

  • JARM: 2ad2ad0002ad2ad0002ad2ad2ad2ade1a3c0d7ca6ad8388057924be83dfc6a

  • View other sources: Spamhaus VirusTotal

  • Country: Vietnam
  • Network: AS38731 vietel - cht company
  • Noticed: 1 times
  • Protocols Attacked: SSH
  • Passive DNS Results: genz3.net genz3.org arb1rpc.trustkeys.com kube.trustkeys.exchange blockx.dem.chat ptit.dem.chat vba.dem.chat gg.dem.chat sui.vn www.sui.vn chat.sui.vn static.sui.vn crypto.dem.chat lp.dem.chat ptitinfosec.dem.chat staggingadm.trustkeys.exchange binom.theonly.biz dev-admin-social.dreambit.city api.dem.chat www.dem.chat dem.chat app.dem.chat static.dem.chat admineth.fanverse.market admin.fanverse.market eth.fanverse.market adminbsc.fanverse.market vip.fanverse.market www.fanverse.market bsc.fanverse.market static.fanverse.market fanverse.market www.altankorea.com altankorea.com comic.one blog.comic.one www.comic.one admin.theonly.biz api.woozoomusiclive.com ipfs.woozoomusiclive.com static.woozoomusiclive.com admin.woozoomusiclive.com www.woozoomusiclive.com woozoomusiclive.com api.artshare.one poly.artshare.one static.artshare.one www.artshare.one artshare.one www.theonly.biz static.theonly.biz theonly.biz api.theonly.biz nft.dreambit.city static.dreambit.city www.dreambit.city dreambit.city api.dreambit.city bsc01.trustkeys.exchange bsc02.trustkeys.exchange bsc.trustkeys.exchange ido.trustkeys.exchange wss.trustkeys.exchange tkblockchain.net tkblockchain.org stagging.trustkeys.exchange admin.trustkeys.exchange api.admin.trustkeys.exchange api.trustkeys.exchange trustkeys.net trustkeys.exchange

Open Ports Detected

22 30311 443 5000 80 8022 8041 8086 9096

CVEs Detected

CVE-2021-23017 CVE-2021-3618 CVE-2023-44487

Map

Whois Information

  • inetnum: 125.212.128.0 - 125.212.255.255
  • netname: VIETTEL-VN
  • descr: Viettel Group
  • descr: No 1, Tran Huu Duc street, My Dinh 2 ward, Nam Tu Liem district, Ha Noi City
  • country: VN
  • admin-c: TVT8-AP
  • tech-c: NDT9-AP
  • mnt-by: MAINT-VN-VNNIC
  • status: ALLOCATED PORTABLE
  • mnt-irt: IRT-VNNIC-AP
  • last-modified: 2017-11-11T09:41:33Z
  • irt: IRT-VNNIC-AP
  • address: Ha Noi, VietNam
  • phone: +84-24-35564944
  • fax-no: +84-24-37821462
  • e-mail: hm-changed@vnnic.vn
  • abuse-mailbox: hm-changed@vnnic.vn
  • admin-c: NTTT1-AP
  • tech-c: NTTT1-AP
  • mnt-by: MAINT-VN-VNNIC
  • last-modified: 2017-11-08T09:40:06Z
  • person: Nguyen Dang Tiep
  • address: Viettel Network Corporation
  • address: No 1, Tran Huu Duc street, My Dinh 2 ward, Nam Tu Liem district, Ha Noi City
  • country: VN
  • phone: +84-24-62989898
  • e-mail: soc@viettel.com.vn
  • nic-hdl: NDT9-AP
  • mnt-by: MAINT-VN-VIETEL
  • last-modified: 2017-11-11T09:40:35Z
  • person: Tran Van Thanh
  • address: Viettel Network Corporation
  • address: No 1, Tran Huu Duc street, My Dinh 2 ward, Nam Tu Liem district, Ha Noi City
  • country: VN
  • phone: +84-24-62989898
  • e-mail: soc@viettel.com.vn
  • nic-hdl: TVT8-AP
  • mnt-by: MAINT-VN-VIETEL
  • last-modified: 2018-08-21T09:57:13Z
  • route: 125.212.128.0/17
  • descr: Viettel Corporation
  • descr: Internet service/exchange provider
  • descr: VIETEL-AS-AP
  • country: VN
  • origin: AS7552
  • member-of: rs-viettel
  • mnt-by: MAINT-VN-VIETEL
  • last-modified: 2013-12-11T07:28:18Z

Links to attack logs

****** ****** ******

Share on: