JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 1.83.125.16

1.83.125.16 was found in our database!

This IP was reported 258 times. Confidence of Abuse is 30%: ?

30%

ISP	CHINANET SHAANXI PROVINCE NETWORK
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	xa.sn.cn
Country	🇨🇳 China
City	Xi'an, Shaanxi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 1.83.125.16

Whois 1.83.125.16

IP Abuse Reports for 1.83.125.16:

This IP address has been reported a total of 258 times from 67 distinct sources. 1.83.125.16 was first reported on April 7th 2021, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 avgsmoe	2026-06-05 03:28:12 (4 days ago)	PERMA offender. Observed 2275 times.	Port Scan Brute-Force
🇬🇧 PeravixGroup	2026-06-04 05:31:33 (5 days ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 donarev419	2026-06-04 02:38:37 (5 days ago)	Connection to port 10990 with data transfer. Data preview: GET / HTTP/1.1 Host: 67.215.244.172:1099 ... show more Connection to port 10990 with data transfer. Data preview: GET / HTTP/1.1 Host: 67.215.244.172:10990 Accept: / show less	Port Scan Hacking
🇺🇸 avgsmoe	2026-05-17 00:56:32 (3 weeks ago)	PERMA offender. Observed 936 times.	Port Scan Brute-Force
🇩🇪 dispaisyenterprises	2026-05-06 19:03:39 (1 month ago)	Honeypot [fra-de-honeypot]: Unauthorized traffic (243 bytes of payload); 10094 [1] TCP Reported by D ... show more Honeypot [fra-de-honeypot]: Unauthorized traffic (243 bytes of payload); 10094 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-14 15:28:13 (1 month ago)	Honeypot hit: Unauthorized traffic (243 bytes of payload); 9012 [1] TCP	Port Scan
🇩🇪 _ArminS_	2026-04-12 07:33:24 (1 month ago)	SP-Scan 19528:4300 detected 2026.04.12 09:33:24 blocked until 2026.06.01 02:36:11	Port Scan
🇺🇸 MPL	2026-04-03 00:03:46 (2 months ago)	tcp/9443 (2 or more attempts)	Port Scan
🇺🇸 donarev419	2026-03-29 01:16:29 (2 months ago)	Connection to port 11210 with data transfer. Data preview: GET / HTTP/1.1 Host: 67.215.244.172:1121 ... show more Connection to port 11210 with data transfer. Data preview: GET / HTTP/1.1 Host: 67.215.244.172:11210 Accept: / show less	Port Scan Hacking
🇧🇾 StatsMe	2026-03-28 22:32:46 (2 months ago)	2026-03-28T21:56:26.698990+0300 ET SCAN NMAP -sS window 1024	Port Scan
🇺🇸 LSPCCU	2026-03-28 11:57:42 (2 months ago)	TSEC Honeypot Network report. Threat score: 75/100. Categories: Port Scan, Hacking, Brute-Force, Web ... show more TSEC Honeypot Network report. Threat score: 75/100. Categories: Port Scan, Hacking, Brute-Force, Web App Attack, SSH. Honeypot: cowrie, ssh-telnet. Context: 1. show less	Port Scan Hacking Brute-Force Web App Attack SSH
🇺🇸 drewf.ink	2026-03-27 02:16:14 (2 months ago)	[02:16] Port scanning. Port(s) scanned: TCP/20	Port Scan
🇦🇹 urnilxfgbez	2026-03-26 23:45:00 (2 months ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇩🇪 centurion	2026-03-26 22:24:13 (2 months ago)	Blocked by UFW on ns02 [8112/tcp] Source port: 58478 TTL: 238 Packet length: 44 TOS: 0x00 This repo ... show more Blocked by UFW on ns02 [8112/tcp] Source port: 58478 TTL: 238 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-03-25 02:01:34 (2 months ago)	Brute force. Port:7077	Brute-Force

Showing 1 to 15 of 258 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇰 153.117.33.139

🇱🇹 81.30.98.49

🇨🇳 14.103.115.5

🇹🇼 220.134.189.56

🇨🇳 218.59.201.12

🇦🇺 209.38.27.219

🇪🇹 196.190.41.137

🇨🇳 183.247.171.186

🇹🇭 171.100.156.38

🇷🇺 104.128.141.243

🇩🇪 89.44.198.56

🇩🇪 64.89.163.139

🇮🇳 59.145.160.158

🇺🇸 47.251.143.69

🇺🇸 40.126.7.32

🇮🇩 34.50.104.10

🇺🇸 20.168.121.101

🇮🇳 125.19.194.166

🇻🇳 123.30.240.7

🇮🇩 103.186.0.19