113.125.117.57

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Shandong Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Attempt to hack Wordpress Login, XMLRPC or other login	2020-05-20 17:47:43
attackbots	Invalid user wxbackp from 113.125.117.57 port 30473	2020-04-21 23:47:03

Comments on same subnet:

IP	Type	Details	Datetime
113.125.117.48	attackbots	reported through recidive - multiple failed attempts(SSH)	2020-08-19 08:26:36
113.125.117.48	attackspam	Bruteforce detected by fail2ban	2020-08-03 16:05:47
113.125.117.48	attack	Jul 30 12:53:28 server sshd[30513]: Failed password for invalid user pawel from 113.125.117.48 port 42734 ssh2 Jul 30 13:16:06 server sshd[38580]: Failed password for invalid user hjy from 113.125.117.48 port 48850 ssh2 Jul 30 13:29:56 server sshd[43125]: Failed password for invalid user shuqunli from 113.125.117.48 port 59948 ssh2	2020-07-30 19:45:23
113.125.117.48	attackspam	...	2020-07-25 18:09:48
113.125.117.48	attackbots	Jul 11 19:31:42 * sshd[16177]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.117.48 Jul 11 19:31:45 * sshd[16177]: Failed password for invalid user jeremiah from 113.125.117.48 port 51266 ssh2	2020-07-12 02:00:47
113.125.117.48	attackbots	Invalid user admin from 113.125.117.48 port 35752	2020-06-18 03:27:02
113.125.117.48	attackspam	Jun 15 05:49:33 minden010 sshd[17448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.117.48 Jun 15 05:49:35 minden010 sshd[17448]: Failed password for invalid user wzj from 113.125.117.48 port 35402 ssh2 Jun 15 05:53:57 minden010 sshd[19058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.117.48 ...	2020-06-15 14:35:41
113.125.117.48	attackbots	Jun 12 08:58:14 hosting sshd[22379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.117.48 user=admin Jun 12 08:58:16 hosting sshd[22379]: Failed password for admin from 113.125.117.48 port 50094 ssh2 ...	2020-06-12 17:12:00
113.125.117.48	attack	2020-06-04T16:17:26.422968v22018076590370373 sshd[28139]: Failed password for root from 113.125.117.48 port 40134 ssh2 2020-06-04T16:23:00.969960v22018076590370373 sshd[22830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.117.48 user=root 2020-06-04T16:23:02.459925v22018076590370373 sshd[22830]: Failed password for root from 113.125.117.48 port 51506 ssh2 2020-06-04T16:39:40.265737v22018076590370373 sshd[31708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.117.48 user=root 2020-06-04T16:39:42.707920v22018076590370373 sshd[31708]: Failed password for root from 113.125.117.48 port 57394 ssh2 ...	2020-06-04 23:42:48
113.125.117.48	attack	Lines containing failures of 113.125.117.48 (max 1000) Apr 22 16:44:09 mxbb sshd[19114]: Invalid user cu from 113.125.117.48 port 49638 Apr 22 16:44:09 mxbb sshd[19114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.117.48 Apr 22 16:44:11 mxbb sshd[19114]: Failed password for invalid user cu from 113.125.117.48 port 49638 ssh2 Apr 22 16:44:11 mxbb sshd[19114]: Received disconnect from 113.125.117.48 port 49638:11: Bye Bye [preauth] Apr 22 16:44:11 mxbb sshd[19114]: Disconnected from 113.125.117.48 port 49638 [preauth] Apr 22 16:53:29 mxbb sshd[19379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.117.48 user=r.r Apr 22 16:53:31 mxbb sshd[19379]: Failed password for r.r from 113.125.117.48 port 42414 ssh2 Apr 22 16:53:31 mxbb sshd[19379]: Received disconnect from 113.125.117.48 port 42414:11: Bye Bye [preauth] Apr 22 16:53:31 mxbb sshd[19379]: Disconnected from 113.125.117........ ------------------------------	2020-04-24 22:47:40

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.125.117.57
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48050
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.125.117.57.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042100 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 21 23:46:58 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 57.117.125.113.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 57.117.125.113.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.176.27.54	attackspambots	06/10/2020-11:36:45.824167 185.176.27.54 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-06-10 23:42:03
185.153.208.21	attackbots	5x Failed Password	2020-06-10 23:11:00
111.229.139.95	attackspam	Jun 10 15:42:09 sshd\[18371\]: User root from 111.229.139.95 not allowed because not listed in AllowUsersJun 10 15:42:11 sshd\[18371\]: Failed password for invalid user root from 111.229.139.95 port 34960 ssh2 ...	2020-06-10 23:26:51
103.76.201.114	attack	Jun 10 16:56:37 inter-technics sshd[27084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.76.201.114 user=psaftp Jun 10 16:56:40 inter-technics sshd[27084]: Failed password for psaftp from 103.76.201.114 port 57142 ssh2 Jun 10 16:59:32 inter-technics sshd[27215]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.76.201.114 user=root Jun 10 16:59:34 inter-technics sshd[27215]: Failed password for root from 103.76.201.114 port 41114 ssh2 Jun 10 17:02:15 inter-technics sshd[27429]: Invalid user burrows from 103.76.201.114 port 53306 ...	2020-06-10 23:19:09
80.213.238.67	attackbots	Jun 10 15:20:30 serwer sshd\[18722\]: Invalid user postgres from 80.213.238.67 port 55672 Jun 10 15:20:30 serwer sshd\[18722\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.213.238.67 Jun 10 15:20:32 serwer sshd\[18722\]: Failed password for invalid user postgres from 80.213.238.67 port 55672 ssh2 ...	2020-06-10 23:30:09
114.67.250.216	attack	$f2bV_matches	2020-06-10 23:29:47
180.76.240.225	attackbots	Jun 10 10:08:49 XXX sshd[29942]: Invalid user furao from 180.76.240.225 port 32936	2020-06-10 23:32:08
178.128.63.88	attackbotsspam	1591787700 - 06/10/2020 13:15:00 Host: 178.128.63.88/178.128.63.88 Port: 8080 TCP Blocked	2020-06-10 23:35:23
92.45.234.183	attackspambots	firewall-block, port(s): 445/tcp	2020-06-10 23:15:22
49.206.125.92	attackspam	Unauthorized connection attempt from IP address 49.206.125.92 on Port 445(SMB)	2020-06-10 23:00:30
73.41.104.30	attackspam	2020-06-10T12:21:45.334721ns386461 sshd\[22980\]: Invalid user bulk from 73.41.104.30 port 39346 2020-06-10T12:21:45.339274ns386461 sshd\[22980\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-73-41-104-30.hsd1.ca.comcast.net 2020-06-10T12:21:46.958508ns386461 sshd\[22980\]: Failed password for invalid user bulk from 73.41.104.30 port 39346 ssh2 2020-06-10T17:29:56.551731ns386461 sshd\[12056\]: Invalid user cai from 73.41.104.30 port 34220 2020-06-10T17:29:56.554417ns386461 sshd\[12056\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-73-41-104-30.hsd1.ca.comcast.net ...	2020-06-10 23:30:37
51.68.89.100	attackbotsspam	2020-06-10T17:31:40.373528vps773228.ovh.net sshd[17466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.89.100 2020-06-10T17:31:40.363306vps773228.ovh.net sshd[17466]: Invalid user admin from 51.68.89.100 port 48576 2020-06-10T17:31:43.093351vps773228.ovh.net sshd[17466]: Failed password for invalid user admin from 51.68.89.100 port 48576 ssh2 2020-06-10T17:34:59.199061vps773228.ovh.net sshd[17494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.89.100 user=root 2020-06-10T17:35:00.569716vps773228.ovh.net sshd[17494]: Failed password for root from 51.68.89.100 port 50062 ssh2 ...	2020-06-10 23:40:00
152.136.189.81	attackbots	Jun 10 10:24:53 XXX sshd[30182]: Invalid user agueda from 152.136.189.81 port 58456	2020-06-10 23:25:52
218.92.0.199	attack	Jun 10 14:46:12 marvibiene sshd[48043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.199 user=root Jun 10 14:46:15 marvibiene sshd[48043]: Failed password for root from 218.92.0.199 port 25256 ssh2 Jun 10 14:46:17 marvibiene sshd[48043]: Failed password for root from 218.92.0.199 port 25256 ssh2 Jun 10 14:46:12 marvibiene sshd[48043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.199 user=root Jun 10 14:46:15 marvibiene sshd[48043]: Failed password for root from 218.92.0.199 port 25256 ssh2 Jun 10 14:46:17 marvibiene sshd[48043]: Failed password for root from 218.92.0.199 port 25256 ssh2 ...	2020-06-10 23:37:22
176.37.60.16	attack	Jun 10 14:45:26 XXX sshd[32694]: Invalid user eng from 176.37.60.16 port 56345	2020-06-10 23:33:01

Recently Reported IPs

135.157.25.77	63.152.79.11	90.83.179.7	126.160.228.53
25.156.86.70	150.208.86.113	101.121.159.132	252.90.200.181
69.68.59.147	249.189.35.239	45.88.110.105	43.225.157.114
41.210.24.33	14.187.43.169	3.93.227.5	248.113.7.226
1.193.76.18	212.57.112.91	38.46.64.169	35.31.233.220