JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 125.253.56.119

125.253.56.119 was found in our database!

This IP was reported 41 times. Confidence of Abuse is 26%: ?

26%

This address is a Tor exit node. Neither the owner nor the provider are directly behind the offending action.

ISP	SUPERLOOP (AUSTRALIA) PTY LTD
Usage Type	Fixed Line ISP
ASN	AS38195
Hostname(s)	125-253-56-119.ip4.superloop.au
Domain Name	superloop.com
Country	🇦🇺 Australia
City	Sydney, New South Wales

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 125.253.56.119

Whois 125.253.56.119

IP Abuse Reports for 125.253.56.119:

This IP address has been reported a total of 41 times from 25 distinct sources. 125.253.56.119 was first reported on April 15th 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 ✨	2026-06-02 00:26:14 (3 days ago)	Rule : PLESK BOT 2026-06-02 02:25:45 Unauthorized login attempt to Plesk Panel from IP 125.253.56.11 ... show more Rule : PLESK BOT 2026-06-02 02:25:45 Unauthorized login attempt to Plesk Panel from IP 125.253.56.119 with username admin show less	Hacking Brute-Force Web App Attack
🇷🇴 padrian2ss	2026-05-28 07:45:01 (1 week ago)	Suricata IDS: 4 alerts in 15min. [2] ET TOR Known Tor Exit Node Traffic group 12; [2] ET TOR Known T ... show more Suricata IDS: 4 alerts in 15min. [2] ET TOR Known Tor Exit Node Traffic group 12; [2] ET TOR Known Tor Relay/Router (Not Exit) Node Traffic group 12; show less	Port Scan
🇳🇱 Kotiacat_one	2026-05-23 23:07:14 (1 week ago)	2026-05-24T02:07:13.456925+03:00 kotiacat.nexus sshd-session[8400]: Invalid user admin from 125.253. ... show more 2026-05-24T02:07:13.456925+03:00 kotiacat.nexus sshd-session[8400]: Invalid user admin from 125.253.56.119 port 57688 ... show less	Brute-Force SSH
Anonymous	2026-05-06 04:00:20 (4 weeks ago)	2026-05-05 19:00:08,963 fail2ban.actions [3625835]: NOTICE [tor] Ban 125.253.56.119 2026-05- ... show more 2026-05-05 19:00:08,963 fail2ban.actions [3625835]: NOTICE [tor] Ban 125.253.56.119 2026-05-05 22:00:06,254 fail2ban.actions [3625835]: NOTICE [tor] Ban 125.253.56.119 2026-05-06 01:00:05,259 fail2ban.actions [3625835]: NOTICE [tor] Ban 125.253.56.119 2026-05-06 04:00:11,583 fail2ban.actions [3625835]: NOTICE [tor] Ban 125.253.56.119 2026-05-06 07:00:19,222 fail2ban.actions [3625835]: NOTICE [tor] Ban 125.253.56.119 show less	Brute-Force
Anonymous	2026-04-24 21:00:36 (1 month ago)	2026-04-24 12:00:06,998 fail2ban.actions [7718]: NOTICE [tor] Ban 125.253.56.119 2026-04-24 ... show more 2026-04-24 12:00:06,998 fail2ban.actions [7718]: NOTICE [tor] Ban 125.253.56.119 2026-04-24 15:00:06,926 fail2ban.actions [7718]: NOTICE [tor] Ban 125.253.56.119 2026-04-24 18:00:06,830 fail2ban.actions [7718]: NOTICE [tor] Ban 125.253.56.119 2026-04-24 21:00:17,765 fail2ban.actions [7718]: NOTICE [tor] Ban 125.253.56.119 2026-04-25 00:00:31,898 fail2ban.actions [7718]: NOTICE [tor] Ban 125.253.56.119 show less	Brute-Force
🇮🇳 liveaspankaj	2026-04-11 05:42:46 (1 month ago)	DDoS attack: 91 requests in 5m (GET / or repair.php).	DDoS Attack
🇪🇸 gnom4ik	2026-04-09 21:15:10 (1 month ago)	ban-reviewer auto report; ip=125.253.56.119; scenario=http:scan; verdict=valid_ban; confidence=0.92; ... show more ban-reviewer auto report; ip=125.253.56.119; scenario=http:scan; verdict=valid_ban; confidence=0.92; categories=14,15,18,22; active_decisions=2; lookback_decisions=2; nginx_requests=0; appsec_matches=0; auth_events=0; kernel_events=0; signals=ip_decision_count_high show less	Port Scan Hacking Brute-Force SSH
Anonymous	2026-03-23 04:32:48 (2 months ago)	Failed login attempt detected by Fail2Ban in plesk-panel jail	Brute-Force
Anonymous	2026-03-17 19:00:49 (2 months ago)	2026-03-17 10:00:07,971 fail2ban.actions [3511917]: NOTICE [tor] Ban 125.253.56.119 2026-03- ... show more 2026-03-17 10:00:07,971 fail2ban.actions [3511917]: NOTICE [tor] Ban 125.253.56.119 2026-03-17 13:00:07,588 fail2ban.actions [3511917]: NOTICE [tor] Ban 125.253.56.119 2026-03-17 15:00:23,863 fail2ban.actions [3511917]: NOTICE [tor] Ban 125.253.56.119 2026-03-17 18:00:08,170 fail2ban.actions [3511917]: NOTICE [tor] Ban 125.253.56.119 2026-03-17 21:00:35,173 fail2ban.actions [3511917]: NOTICE [tor] Ban 125.253.56.119 show less	Brute-Force
🇩🇪 kranem	2026-02-24 21:21:35 (3 months ago)	Triggered Cloudflare WAF from AU. Action taken: BLOCK ASN: 38195 (SUPERLOOP-AS-AP Superloop) Protoco ... show more Triggered Cloudflare WAF from AU. Action taken: BLOCK ASN: 38195 (SUPERLOOP-AS-AP Superloop) Protocol: HTTP/1.1 (GET method) Endpoint: / Timestamp: 2026-02-24T19:17:44Z User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1 show less	Bad Web Bot
🇪🇸 gnom4ik	2026-02-21 09:34:15 (3 months ago)	ban-reviewer auto report; ip=125.253.56.119; scenario=http:exploit; verdict=valid_ban; confidence=0. ... show more ban-reviewer auto report; ip=125.253.56.119; scenario=http:exploit; verdict=valid_ban; confidence=0.90; categories=14,15,18; active_decisions=2; lookback_decisions=2; nginx_requests=0; appsec_matches=0; auth_events=0; kernel_events=0; signals=IP flagged for HTTP exploit scenario; Active decisions count of 2 in lookback window; Decision duration of 7620 minutes (127 hours) indicates sustained threat show less	Port Scan Hacking Brute-Force
Anonymous	2026-02-18 21:59:53 (3 months ago)	Feb 18 21:59:49 f2b auth.info sshd[6875]: Invalid user openhab from 125.253.56.119 port 37054 Feb 18 ... show more Feb 18 21:59:49 f2b auth.info sshd[6875]: Invalid user openhab from 125.253.56.119 port 37054 Feb 18 21:59:50 f2b auth.info sshd[6875]: Failed password for invalid user openhab from 125.253.56.119 port 37054 ssh2 Feb 18 21:59:51 f2b auth.info sshd[6875]: Disconnected from invalid user openhab 125.253.56.119 port 37054 [preauth] ... show less	Brute-Force SSH
🇺🇸 xmission.com	2026-02-01 05:17:48 (4 months ago)	Blocked by UFW (TCP on 9050) Source port: 39726 TTL: 51 Packet length: 60 TOS: 0x08 This report (fo ... show more Blocked by UFW (TCP on 9050) Source port: 39726 TTL: 51 Packet length: 60 TOS: 0x08 This report (for 125.253.56.119) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇦🇺 MAGIC	2026-01-07 03:17:05 (4 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 xmission.com	2025-12-24 12:21:48 (5 months ago)	Blocked by UFW (TCP on 16322) Source port: 52904 TTL: 51 Packet length: 60 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 16322) Source port: 52904 TTL: 51 Packet length: 60 TOS: 0x08 This report (for 125.253.56.119) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 41 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.92

🇹🇼 198.235.24.75

🇺🇸 179.61.232.244

🇭🇰 152.32.132.28

🇺🇸 147.185.132.86

🇭🇰 103.210.21.178

🇩🇪 69.5.169.229

🇺🇸 68.183.105.175

🇺🇸 2604:a880:400:d1:0:4:6c75:1

🇺🇸 2001:470:1:fb5::240

🇪🇸 212.30.33.245

🇪🇸 212.30.33.244

🇬🇧 193.163.125.76

🇸🇪 171.25.158.82

🇺🇸 142.248.80.222

🇩🇪 139.19.117.197

🇸🇪 138.124.71.25

🇺🇸 137.184.33.81

🇧🇩 115.127.65.37

🇺🇸 98.122.215.23