JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 1.83.125.57

1.83.125.57 was found in our database!

This IP was reported 220 times. Confidence of Abuse is 59%: ?

59%

ISP	CHINANET SHAANXI PROVINCE NETWORK
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	xa.sn.cn
Country	🇨🇳 China
City	Xi'an, Shaanxi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 1.83.125.57

Whois 1.83.125.57

IP Abuse Reports for 1.83.125.57:

This IP address has been reported a total of 220 times from 64 distinct sources. 1.83.125.57 was first reported on May 6th 2021, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-04 04:24:17 (3 hours ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-02 22:52:53 (1 day ago)	Honeypot detection: rsync unauthorized access / data sync attempt on port 873. Severity: LOW. Aaran. ... show more Honeypot detection: rsync unauthorized access / data sync attempt on port 873. Severity: LOW. Aaran.cloud show less	Port Scan
Anonymous	2026-06-02 04:31:52 (2 days ago)	Honeypot hit: Large payload (1457 bytes); 2252 [1] TCP Reported by: https://github.com/sefinek/T-Pot ... show more Honeypot hit: Large payload (1457 bytes); 2252 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
🇬🇧 PeravixGroup	2026-06-02 02:45:28 (2 days ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 dispaisyenterprises	2026-06-01 21:57:50 (2 days ago)	Honeypot [fra-de-honeypot]: HTTP/1.1 request on 2158 GET / Accept: /; 2158 [1] TCP Reported by Di ... show more Honeypot [fra-de-honeypot]: HTTP/1.1 request on 2158 GET / Accept: /; 2158 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇬🇧 PeravixGroup	2026-06-01 07:47:03 (3 days ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-31 12:50:58 (3 days ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇸🇬 drewf.ink	2026-05-31 09:55:43 (3 days ago)	[09:55] Port scanning. Port(s) scanned: TCP/20	Port Scan
🇬🇧 PeravixGroup	2026-05-30 23:49:19 (4 days ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5985. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5985. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-29 18:28:27 (5 days ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-28 05:22:06 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-27 12:01:38 (1 week ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-05-27 07:29:54 (1 week ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-27 02:57:00 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-05-26 18:26:56 (1 week ago)	tcp/9108 (2 or more attempts)	Port Scan

Showing 1 to 15 of 220 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 172.217.33.155

🇺🇸 66.132.195.46

🇿🇦 41.56.132.74

🇧🇪 34.140.177.248

🇻🇳 14.191.107.17

🇹🇼 198.235.24.22

🇬🇧 195.206.182.201

🇧🇷 181.214.221.57

🇺🇸 134.122.122.188

🇨🇳 120.48.108.170

🇨🇳 117.156.78.8

🇲🇲 103.105.172.7

🇫🇮 95.216.75.224

🇺🇸 74.7.229.118

🇩🇪 47.245.136.243

🇨🇦 20.116.34.103

🇮🇪 20.105.65.67

🇺🇸 203.161.38.233

🇮🇩 168.110.195.99

🇺🇸 150.107.38.143