JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 157.66.48.9

157.66.48.9 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 100%: ?

100%

ISP	VPS PA Company Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS150895
Domain Name	vnnic.vn
Country	🇻🇳 Viet Nam
City	Ho Chi Minh City, Ho Chi Minh City (HCMC)

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 157.66.48.9

Whois 157.66.48.9

IP Abuse Reports for 157.66.48.9:

This IP address has been reported a total of 30 times from 26 distinct sources. 157.66.48.9 was first reported on June 3rd 2026, and the most recent report was 27 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-04 14:51:37 (27 minutes ago)	Jun 4 16:51:15 mx1 postfix/smtpd[19725]: warning: unknown[157.66.48.9]: SASL LOGIN authentication f ... show more Jun 4 16:51:15 mx1 postfix/smtpd[19725]: warning: unknown[157.66.48.9]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 4 16:51:23 mx1 postfix/smtpd[22896]: warning: unknown[157.66.48.9]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 4 16:51:36 mx1 postfix/smtpd[22126]: warning: unknown[157.66.48.9]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... show less	Brute-Force
Anonymous	2026-06-04 13:34:10 (1 hour ago)	This IP was detected by CrowdSec triggering crowdsecurity/postscreen-rbl	Email Spam
🇩🇪 DEV-DNS	2026-06-04 13:23:18 (1 hour ago)	(smtpauth) Failed SMTP AUTH login from 157.66.48.9 (VN/Vietnam/-/-/-/[redacted])	Brute-Force
🇹🇭 thaizone.com	2026-06-04 08:50:35 (6 hours ago)	Mail credential brute-force attack (SM5) #1	Email Spam Brute-Force
🇺🇸 bigscoots.com	2026-06-04 08:46:50 (6 hours ago)	(smtpauth) Failed SMTP AUTH login from 157.66.48.9 (VN/Vietnam/-): 5 in the last 3600 secs; Ports: 2 ... show more (smtpauth) Failed SMTP AUTH login from 157.66.48.9 (VN/Vietnam/-): 5 in the last 3600 secs; Ports: 25,465,587; Direction: 0; Trigger: LF_SMTPAUTH; Logs: 2026-06-04 04:45:43 dovecot_login authenticator failed for H=(u17adLdl) [157.66.48.9]:61620: 535 Incorrect authentication data (set_id=info) 2026-06-04 04:45:51 dovecot_login authenticator failed for H=(4dFiEu) [157.66.48.9]:61985: 535 Incorrect authentication data (set_id=info) 2026-06-04 04:46:04 dovecot_login authenticator failed for H=(ormSqFz) [157.66.48.9]:62590: 535 Incorrect authentication data ([email protected]) 2026-06-04 04:46:23 dovecot_login authenticator failed for H=(NAQ2u36iDk) [157.66.48.9]:63558: 535 Incorrect authentication data ([email protected]) 2026-06-04 04:46:45 dovecot_login authenticator failed for H=(RF6cpFu3L) [157.66.48.9]:65265: 535 Incorrect authentication data (set_id=info) show less	Brute-Force SSH
🇪🇸 ofm-abuse	2026-06-04 08:42:01 (6 hours ago)	MAIL SASL Dropped MX34 ...	Port Scan Brute-Force
🇨🇭 Mario Bretscher	2026-06-04 07:59:39 (7 hours ago)	2026-06-04T09:52:51.610078+02:00 hades postfix/smtpd[2807758]: NOQUEUE: reject: RCPT from unknown[15 ... show more 2026-06-04T09:52:51.610078+02:00 hades postfix/smtpd[2807758]: NOQUEUE: reject: RCPT from unknown[157.66.48.9]: 450 4.7.1 <ekCAkxr>: Helo command rejected: Host not found; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<ekCAkxr> 2026-06-04T09:58:53.903405+02:00 hades postfix/smtpd[2808898]: NOQUEUE: reject: RCPT from unknown[157.66.48.9]: 450 4.7.1 <tGRJRU8>: Helo command rejected: Host not found; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<tGRJRU8> 2026-06-04T09:59:37.947939+02:00 hades postfix/smtpd[2808931]: NOQUEUE: reject: RCPT from unknown[157.66.48.9]: 450 4.7.1 <oF5uTAJDgD>: Helo command rejected: Host not found; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<oF5uTAJDgD> ... show less	Email Spam
🇺🇸 bigscoots.com	2026-06-04 07:32:54 (7 hours ago)	(smtpauth) Failed SMTP AUTH login from 157.66.48.9 (VN/Vietnam/-): 5 in the last 3600 secs; Ports: 2 ... show more (smtpauth) Failed SMTP AUTH login from 157.66.48.9 (VN/Vietnam/-): 5 in the last 3600 secs; Ports: 25,465,587; Direction: 0; Trigger: LF_SMTPAUTH; Logs: 2026-06-04 03:31:50 dovecot_login authenticator failed for H=(mMbIbRB) [157.66.48.9]:51457: 535 Incorrect authentication data (set_id=julie) 2026-06-04 03:31:58 dovecot_login authenticator failed for H=(E54tAlNkf) [157.66.48.9]:51729: 535 Incorrect authentication data (set_id=julie) 2026-06-04 03:32:10 dovecot_login authenticator failed for H=(zhRs7KyO) [157.66.48.9]:52253: 535 Incorrect authentication data ([email protected]) 2026-06-04 03:32:29 dovecot_login authenticator failed for H=(1JRnzI5t7) [157.66.48.9]:53161: 535 Incorrect authentication data ([email protected]) 2026-06-04 03:32:51 dovecot_login authenticator failed for H=(sHLv6ZqvF) [157.66.48.9]:54613: 535 Incorrect authentication data (set_id=julie) show less	Brute-Force SSH
🇩🇪 icera-network.de	2026-06-04 07:29:26 (7 hours ago)	Jun 4 09:29:23 mail postfix/smtpd[4009528]: lost connection after AUTH from unknown[157.66.48.9] Ju ... show more Jun 4 09:29:23 mail postfix/smtpd[4009528]: lost connection after AUTH from unknown[157.66.48.9] Jun 4 09:29:23 mail postfix/smtpd[4009528]: disconnect from unknown[157.66.48.9] ehlo=2 starttls=1 auth=0/1 commands=3/4 Jun 4 09:29:24 mail postfix/smtpd[4009528]: lost connection after AUTH from unknown[157.66.48.9] Jun 4 09:29:24 mail postfix/smtpd[4009528]: disconnect from unknown[157.66.48.9] ehlo=2 starttls=1 auth=0/1 commands=3/4 Jun 4 09:29:25 mail postfix/smtpd[4009528]: NOQUEUE: reject: RCPT from unknown[157.66.48.9]: 450 4.7.25 Client host rejected: cannot find your hostname, [157.66.48.9]; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<wwgY8wRC> ... show less	Brute-Force
🇹🇷 baku.hosting	2026-06-04 06:16:17 (9 hours ago)	CSF Auto Report: (smtpauth) Failed SMTP AUTH login from 157.66.48.9 (VN/Vietnam/-): 4 in the last 36 ... show more CSF Auto Report: (smtpauth) Failed SMTP AUTH login from 157.66.48.9 (VN/Vietnam/-): 4 in the last 3600 secs show less	Brute-Force Web App Attack
🇩🇪 vcis.de	2026-06-04 05:24:12 (9 hours ago)	SMTP brute force attack detected from [157.66.48.9]	Brute-Force
🇫🇷 kisiek	2026-06-04 04:12:28 (11 hours ago)	(smtpauth) Failed SMTP AUTH login from 157.66.48.9 (VN/Vietnam/-): 5 in the last 3600 secs; Ports: * ... show more (smtpauth) Failed SMTP AUTH login from 157.66.48.9 (VN/Vietnam/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2026-06-04 06:12:17 login authenticator failed for H=(BRNayRrXBi) [157.66.48.9]: 535 Incorrect authentication data (set_id=m.gadawska) 2026-06-04 06:12:19 login authenticator failed for H=(zvDnss1s3) [157.66.48.9]: 535 Incorrect authentication data (set_id=m.gadawska) 2026-06-04 06:12:21 login authenticator failed for H=(UxcQ7Rl) [157.66.48.9]: 535 Incorrect authentication data ([email protected]) 2026-06-04 06:12:23 login authenticator failed for H=(xvAEAbzh) [157.66.48.9]: 535 Incorrect authentication data ([email protected]) 2026-06-04 06:12:26 login authenticator failed for H=(CeTLeCF) [157.66.48.9]: 535 Incorrect authentication data (set_id=m.gadawska) show less	Port Scan
🇩🇪 bescared	2026-06-04 03:52:24 (11 hours ago)	F2B - Malicious activity detected. Excessive port scans. -8ff06ede-	Port Scan
🇩🇪 Marc	2026-06-04 03:38:08 (11 hours ago)	2026-06-04T05:37:46.497766+02:00 mx1 postfix/smtp/smtpd[4081964]: NOQUEUE: reject: RCPT from unknown ... show more 2026-06-04T05:37:46.497766+02:00 mx1 postfix/smtp/smtpd[4081964]: NOQUEUE: reject: RCPT from unknown[157.66.48.9]: 504 5.5.2 <Jnt6zlVX>: Helo command rejected: need fully-qualified hostname; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<Jnt6zlVX> 2026-06-04T05:37:46.842937+02:00 mx1 postfix/smtp/smtpd[4081965]: NOQUEUE: reject: RCPT from unknown[157.66.48.9]: 504 5.5.2 <3S49AWbcaR>: Helo command rejected: need fully-qualified hostname; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<3S49AWbcaR> 2026-06-04T05:38:07.982300+02:00 mx1 postfix/smtp/smtpd[4081964]: NOQUEUE: reject: RCPT from unknown[157.66.48.9]: 504 5.5.2 <hv2ylr81V>: Helo command rejected: need fully-qualified hostname; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<hv2ylr81V> show less	Brute-Force Email Spam
🇸🇰 Schomburg	2026-06-04 02:55:10 (12 hours ago)	RdpGuard detected brute-force attempt on SMTP	Brute-Force

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 104.28.246.112

🇺🇸 43.166.237.57

🇺🇸 20.169.105.0

🇨🇭 209.99.188.148

🇨🇳 182.34.215.90

🇵🇰 175.107.1.92

🇲🇽 138.84.45.100

🇮🇳 106.51.92.114

🇷🇺 95.71.127.158

🇷🇴 80.94.92.187

🇨🇿 77.75.76.169

🇺🇸 54.87.62.248

🇦🇺 51.161.128.68

🇳🇱 45.148.10.141

🇳🇱 176.65.148.132

🇭🇰 152.32.175.179

🇺🇸 103.143.231.2

🇧🇷 69.6.221.248

🇺🇸 65.49.1.102

🇮🇳 59.180.166.208