JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 125.215.52.45

125.215.52.45 was found in our database!

This IP was reported 470 times. Confidence of Abuse is 100%: ?

100%

ISP	Asia Pacific Network Information Centre
Usage Type	University/College/School
ASN	AS17775
Domain Name	apnic.net
Country	🇨🇳 China
City	Hangzhou, Zhejiang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 125.215.52.45

Whois 125.215.52.45

IP Abuse Reports for 125.215.52.45:

This IP address has been reported a total of 470 times from 229 distinct sources. 125.215.52.45 was first reported on April 21st 2026, and the most recent report was 5 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 arc21	2026-05-27 23:01:20 (1 week ago)	2026-05-28T01:00:07.205331+02:00 root9065 kernel: [1193555.307890] [UFW BLOCK] IN=br0 OUT= PHYSIN=en ... show more 2026-05-28T01:00:07.205331+02:00 root9065 kernel: [1193555.307890] [UFW BLOCK] IN=br0 OUT= PHYSIN=eno1 MAC=32:ad:71:f4:34:b0:88:30:37:33:03:65:08:00 SRC=125.215.52.45 DST=109.230.233.97 LEN=1092 TOS=0x00 PREC=0x00 TTL=46 ID=45013 DF PROTO=TCP SPT=36254 DPT=22 WINDOW=502 RES=0x00 ACK PSH URGP=0 2026-05-28T01:00:45.097342+02:00 root9065 kernel: [1193593.197896] [UFW BLOCK] IN=br0 OUT= PHYSIN=eno1 MAC=32:ad:71:f4:34:b0:88:30:37:33:03:65:08:00 SRC=125.215.52.45 DST=109.230.233.97 LEN=1092 TOS=0x00 PREC=0x00 TTL=46 ID=10282 DF PROTO=TCP SPT=40304 DPT=22 WINDOW=502 RES=0x00 ACK PSH URGP=0 2026-05-28T01:01:20.093324+02:00 root9065 kernel: [1193628.195149] [UFW BLOCK] IN=br0 OUT= PHYSIN=eno1 MAC=32:ad:71:f4:34:b0:88:30:37:33:03:65:08:00 SRC=125.215.52.45 DST=109.230.233.97 LEN=1092 TOS=0x00 PREC=0x00 TTL=46 ID=42200 DF PROTO=TCP SPT=54422 DPT=22 WINDOW=502 RES=0x00 ACK PSH URGP=0 ... show less	Port Scan
🇨🇳 Indexyz	2026-05-27 22:23:16 (1 week ago)	2026-05-28T06:21:40.357214+08:00 hostname sshd-session[82136]: Invalid user admin from 125.215.52. ... show more 2026-05-28T06:21:40.357214+08:00 hostname sshd-session[82136]: Invalid user admin from 125.215.52.45 port 55854 2026-05-28T06:22:22.517543+08:00 hostname sshd-session[82144]: Connection from 125.215.52.45 port 49500 on 10.0.4.13 port 22 rdomain "" 2026-05-28T06:22:22.966098+08:00 hostname sshd-session[82144]: Invalid user debian from 125.215.52.45 port 49500 2026-05-28T06:23:05.610163+08:00 hostname sshd-session[82153]: Connection from 125.215.52.45 port 39012 on 10.0.4.13 port 22 rdomain "" 2026-05-28T06:23:06.081048+08:00 hostname sshd-session[82153]: Invalid user roots from 125.215.52.45 port 39012 show less	Brute-Force SSH
Anonymous	2026-05-27 19:34:19 (1 week ago)	2026-05-27T21:31:22.106634+02:00 de-fsn1-host1 sshd-session[1102214]: Invalid user devops from 125.2 ... show more 2026-05-27T21:31:22.106634+02:00 de-fsn1-host1 sshd-session[1102214]: Invalid user devops from 125.215.52.45 port 55190 2026-05-27T21:32:41.239270+02:00 de-fsn1-host1 sshd-session[1105988]: Invalid user zjw from 125.215.52.45 port 37456 2026-05-27T21:34:18.357503+02:00 de-fsn1-host1 sshd-session[1119112]: Invalid user admin from 125.215.52.45 port 60324 ... show less	Brute-Force SSH
🇩🇪 ipcop.net	2026-05-27 16:19:57 (1 week ago)	2026-05-27T18:12:43.723961+02:00 gw-de02-01.guestgw.net sshd[427811]: Connection closed by 125.215.5 ... show more 2026-05-27T18:12:43.723961+02:00 gw-de02-01.guestgw.net sshd[427811]: Connection closed by 125.215.52.45 port 49230 [preauth] 2026-05-27T18:15:05.615984+02:00 gw-de02-01.guestgw.net sshd[428572]: Connection closed by 125.215.52.45 port 33188 [preauth] 2026-05-27T18:17:51.140869+02:00 gw-de02-01.guestgw.net sshd[429700]: Connection closed by 125.215.52.45 port 53214 [preauth] 2026-05-27T18:18:23.959835+02:00 gw-de02-01.guestgw.net sshd[429954]: Connection closed by 125.215.52.45 port 37800 [preauth] 2026-05-27T18:19:57.143932+02:00 gw-de02-01.guestgw.net sshd[430074]: Connection closed by 125.215.52.45 port 39794 [preauth] show less	Brute-Force
🇩🇪 bogdanv	2026-05-27 14:16:03 (1 week ago)	$f2bV_matches	Brute-Force SSH
🇺🇸 m2jest1c	2026-05-27 13:23:34 (1 week ago)	May 27 13:23:34 instance1 sshd[1408306]: Disconnected from invalid user contab 125.215.52.45 port 51 ... show more May 27 13:23:34 instance1 sshd[1408306]: Disconnected from invalid user contab 125.215.52.45 port 51652 [preauth] ... show less	Brute-Force SSH
🇳🇱 BIV	2026-05-27 11:43:39 (1 week ago)	Honeypot multi-source hit. Sources: tpot:Cowrie,tpot:P0f,tpot:Suricata. Ports: 22. Automated tiered ... show more Honeypot multi-source hit. Sources: tpot:Cowrie,tpot:P0f,tpot:Suricata. Ports: 22. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-27 08:22:35 (1 week ago)	125.215.52.45 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Port ... show more 125.215.52.45 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 27 03:19:36 15624 sshd[6905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.246.100.201 user=root May 27 03:19:38 15624 sshd[6905]: Failed password for root from 140.246.100.201 port 57676 ssh2 May 27 03:22:11 15624 sshd[7368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.249.111.82 user=root May 27 03:19:20 15624 sshd[6890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.215.52.45 user=root May 27 03:19:22 15624 sshd[6890]: Failed password for root from 125.215.52.45 port 32958 ssh2 IP Addresses Blocked: 140.246.100.201 (CN/China/-) 113.249.111.82 (CN/China/-) show less	Brute-Force SSH
🇺🇸 rjdefrancisco	2026-05-27 07:06:40 (1 week ago)	Unwanted traffic detected by honeypot on May 26, 2026: port scans (1 port 22 scan).	Port Scan Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-27 06:50:28 (1 week ago)	(sshd) Failed SSH login from 125.215.52.45 (CN/China/-): 5 in the last 3600 secs; Ports: ; Directio ... show more (sshd) Failed SSH login from 125.215.52.45 (CN/China/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: May 27 01:32:27 14772 sshd[30726]: Invalid user cds from 125.215.52.45 port 42632 May 27 01:32:28 14772 sshd[30726]: Failed password for invalid user cds from 125.215.52.45 port 42632 ssh2 May 27 01:48:15 14772 sshd[1245]: Invalid user ubuntu from 125.215.52.45 port 42440 May 27 01:48:17 14772 sshd[1245]: Failed password for invalid user ubuntu from 125.215.52.45 port 42440 ssh2 May 27 01:50:21 14772 sshd[1621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.215.52.45 user=root show less	Brute-Force SSH
🇫🇷 adnscom.net	2026-05-26 22:04:08 (1 week ago)	IPS trigger: Brute force SSH scanning/attack	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-26 16:26:10 (1 week ago)	125.215.52.45 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Port ... show more 125.215.52.45 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 26 16:25:06 24398 sshd[20150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.92.16.234 user=root May 26 16:25:09 24398 sshd[20150]: Failed password for root from 154.92.16.234 port 56286 ssh2 May 26 16:19:04 24398 sshd[15548]: Failed password for root from 125.215.52.45 port 46562 ssh2 May 26 16:19:03 24398 sshd[15548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.215.52.45 user=root May 26 16:26:02 24398 sshd[20177]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.92.16.234 user=root IP Addresses Blocked: 154.92.16.234 (HK/Hong Kong/-) show less	Brute-Force SSH
🇺🇸 aks4226	2026-05-26 15:25:37 (1 week ago)	Brute force on SSH.	SSH Brute-Force
🇺🇸 bigscoots.com	2026-05-26 15:19:19 (1 week ago)	125.215.52.45 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Port ... show more 125.215.52.45 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 26 10:19:01 21255 sshd[26538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.215.52.45 user=root May 26 10:19:03 21255 sshd[26538]: Failed password for root from 125.215.52.45 port 53590 ssh2 May 26 10:17:25 21255 sshd[26277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.167.10.243 user=root May 26 10:16:37 21255 sshd[26099]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.167.10.243 user=root May 26 10:16:39 21255 sshd[26099]: Failed password for root from 43.167.10.243 port 57626 ssh2 IP Addresses Blocked: show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-26 14:57:16 (1 week ago)	(sshd) Failed SSH login from 125.215.52.45 (CN/China/-): 5 in the last 3600 secs; Ports: ; Directio ... show more (sshd) Failed SSH login from 125.215.52.45 (CN/China/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: May 26 09:00:17 14850 sshd[3275]: Invalid user daniela from 125.215.52.45 port 35948 May 26 09:00:20 14850 sshd[3275]: Failed password for invalid user daniela from 125.215.52.45 port 35948 ssh2 May 26 09:27:12 14850 sshd[7846]: Invalid user tk from 125.215.52.45 port 47818 May 26 09:27:14 14850 sshd[7846]: Failed password for invalid user tk from 125.215.52.45 port 47818 ssh2 May 26 09:57:02 14850 sshd[12490]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.215.52.45 user=root show less	Brute-Force SSH

Showing 76 to 90 of 470 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.180.246.173

🇻🇳 116.110.208.144

🇷🇴 92.118.39.236

🇰🇷 211.227.69.153

🇨🇭 209.99.186.114

🇺🇸 207.90.244.21

🇹🇼 198.235.24.72

🇹🇼 198.235.24.53

🇬🇧 193.163.125.127

🇳🇱 176.65.148.132

🇺🇸 170.124.254.71

🇺🇸 162.216.150.234

🇯🇵 153.127.19.115

🇫🇮 147.185.133.145

🇨🇳 112.26.99.93

🇳🇬 102.88.137.213

🇧🇬 79.124.62.126

🇮🇶 65.20.202.4

🇺🇸 216.25.89.79

🇵🇱 194.180.49.218