JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 113.125.165.132

113.125.165.132 was found in our database!

This IP was reported 4,118 times. Confidence of Abuse is 100%: ?

100%

ISP	CHINANET SHANDONG PROVINCE NETWORK
Usage Type	Data Center/Web Hosting/Transit
ASN	AS58519
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Guiyang, Guizhou

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 113.125.165.132

Whois 113.125.165.132

IP Abuse Reports for 113.125.165.132:

This IP address has been reported a total of 4,118 times from 1,068 distinct sources. 113.125.165.132 was first reported on February 19th 2026, and the most recent report was 21 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-01 11:41:25 (2 days ago)	2026-06-01T13:34:29.171537+02:00 webtest sshd[417778]: Failed password for invalid user rishabh from ... show more 2026-06-01T13:34:29.171537+02:00 webtest sshd[417778]: Failed password for invalid user rishabh from 113.125.165.132 port 34752 ssh2 2026-06-01T13:37:37.686085+02:00 webtest sshd[417851]: Invalid user ubuntu from 113.125.165.132 port 41816 2026-06-01T13:37:37.687607+02:00 webtest sshd[417851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.165.132 2026-06-01T13:37:39.780608+02:00 webtest sshd[417851]: Failed password for invalid user ubuntu from 113.125.165.132 port 41816 ssh2 2026-06-01T13:41:25.430958+02:00 webtest sshd[417987]: Invalid user reza from 113.125.165.132 port 57068 ... show less	Brute-Force SSH
🇺🇸 Tect.host	2026-06-01 09:16:46 (2 days ago)	Brute-force SSH server detected by Fail2ban	Brute-Force SSH
🇳🇱 Alboweb B.V.	2026-06-01 09:12:05 (2 days ago)	SSH abuse or brute-force attack detected by Fail2Ban in ssh jail	Brute-Force SSH
🇩🇪 ITSNF	2026-06-01 09:05:02 (2 days ago)	FL	Brute-Force SSH
🇩🇪 CDiehl	2026-06-01 08:23:04 (2 days ago)	Jun 1 10:23:03 centrum sshd-session[30710]: Invalid user erp from 113.125.165.132 port 45990 Jun 1 ... show more Jun 1 10:23:03 centrum sshd-session[30710]: Invalid user erp from 113.125.165.132 port 45990 Jun 1 10:23:03 centrum sshd-session[30710]: Disconnected from invalid user erp 113.125.165.132 port 45990 [preauth] ... show less	Brute-Force SSH
🇮🇹 alph44	2026-06-01 07:58:16 (2 days ago)	SSH brute force attack detected: 5 failed attempts	Brute-Force
🇩🇪 inlink.ltd	2026-06-01 07:48:34 (2 days ago)	SSH failed login	Brute-Force SSH
🇩🇪 nicosqc	2026-06-01 07:40:22 (2 days ago)	Invalid user admin from 113.125.165.132 port 45004	Brute-Force SSH
🇩🇪 nicosqc	2026-06-01 07:40:22 (2 days ago)	Invalid user admin from 113.125.165.132 port 45004	Brute-Force SSH
🇩🇪 nicosqc	2026-06-01 07:40:22 (2 days ago)	Invalid user admin from 113.125.165.132 port 45004	Brute-Force SSH
Anonymous	2026-06-01 07:34:59 (2 days ago)	Fail2ban (sshd jail): 2 failed SSH attempts from 113.125.165.132.	Brute-Force SSH
🇯🇵 SentinalX by uzumaru	2026-06-01 07:25:22 (2 days ago)	SSH brute-force detected: 9 failed login attempts in the last 1 hour.	Brute-Force SSH
Anonymous	2026-06-01 07:18:15 (2 days ago)	2026-06-01T09:15:23+02:00 exit-2 sshd[42159]: Failed password for invalid user testadmin from 113.12 ... show more 2026-06-01T09:15:23+02:00 exit-2 sshd[42159]: Failed password for invalid user testadmin from 113.125.165.132 port 35106 ssh2 2026-06-01T09:18:11+02:00 exit-2 sshd[42170]: Invalid user harry from 113.125.165.132 port 40728 2026-06-01T09:18:12+02:00 exit-2 sshd[42170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.165.132 2026-06-01T09:18:14+02:00 exit-2 sshd[42170]: Failed password for invalid user harry from 113.125.165.132 port 40728 ssh2 ... show less	Brute-Force SSH
🇩🇪 ipcop.net	2026-06-01 06:43:27 (2 days ago)	2026-06-01T08:35:26.913183+02:00 gw-de19-01.guestgw.net sshd[729736]: Disconnected from authenticati ... show more 2026-06-01T08:35:26.913183+02:00 gw-de19-01.guestgw.net sshd[729736]: Disconnected from authenticating user admin 113.125.165.132 port 59782 [preauth] 2026-06-01T08:39:19.504142+02:00 gw-de19-01.guestgw.net sshd[730833]: Invalid user tunnel from 113.125.165.132 port 46200 2026-06-01T08:39:19.888944+02:00 gw-de19-01.guestgw.net sshd[730833]: Disconnected from invalid user tunnel 113.125.165.132 port 46200 [preauth] 2026-06-01T08:41:26.957527+02:00 gw-de19-01.guestgw.net sshd[731493]: Disconnected from authenticating user root 113.125.165.132 port 45380 [preauth] 2026-06-01T08:43:26.774364+02:00 gw-de19-01.guestgw.net sshd[732115]: Invalid user ubuntu from 113.125.165.132 port 44598 show less	Brute-Force
🇫🇷 phoenix1jl96	2026-06-01 04:18:15 (2 days ago)	Jun 1 06:14:44 box sshd[2138417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid= ... show more Jun 1 06:14:44 box sshd[2138417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.165.132 Jun 1 06:14:46 box sshd[2138417]: Failed password for invalid user ehsan from 113.125.165.132 port 40810 ssh2 Jun 1 06:16:29 box sshd[2139871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.165.132 user=root Jun 1 06:16:30 box sshd[2139871]: Failed password for root from 113.125.165.132 port 37306 ssh2 Jun 1 06:18:12 box sshd[2140178]: Invalid user bot from 113.125.165.132 port 33796 Jun 1 06:18:12 box sshd[2140178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.165.132 Jun 1 06:18:14 box sshd[2140178]: Failed password for invalid user bot from 113.125.165.132 port 33796 ssh2 ... show less	DNS Compromise DNS Poisoning DDoS Attack Ping of Death Web Spam Email Spam Blog Spam Port Scan Hacking Brute-Force Bad Web Bot SSH Web App Attack

Showing 136 to 150 of 4118 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 178.104.90.233

🇷🇺 80.234.37.46

🇸🇬 47.236.188.152

🇩🇪 43.228.157.132

🇳🇱 20.123.146.92

🇰🇷 203.142.160.143

🇨🇴 181.56.63.186

🇩🇪 178.104.240.0

🇩🇪 167.94.146.55

🇬🇧 157.245.36.148

🇺🇸 143.42.164.127

🇰🇷 125.130.223.207

🇨🇳 125.119.18.60

🇨🇳 123.189.219.25

🇺🇸 96.78.175.41

🇫🇷 91.231.89.140

🇩🇪 87.171.245.100

🇷🇴 80.94.92.182

🇮🇳 68.183.88.189

🇳🇱 45.142.193.10