JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 125.64.220.112

125.64.220.112 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 0%: ?

ISP	CHINANET Sichuan province network
Usage Type	Fixed Line ISP
ASN	AS4134
Hostname(s)	112.220.64.125.broad.dy.sc.dynamic.163data.com.cn
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Deyang, Sichuan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 125.64.220.112

Whois 125.64.220.112

IP Abuse Reports for 125.64.220.112:

This IP address has been reported a total of 23 times from 21 distinct sources. 125.64.220.112 was first reported on February 1st 2026, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇳 ThreatBook.io	2026-02-11 23:19:01 (3 months ago)	ThreatBook Intelligence: Scanner,Gateway more details on https://threatbook.io/ip/125.64.220.112	SSH
🇪🇸 el-brujo	2026-02-11 16:29:26 (4 months ago)	02/11/2026-17:29:26.488930 125.64.220.112 Protocol: 6 ET SCAN Potential SSH Scan	Port Scan
🇫🇷 guille-rodriguez	2026-02-11 13:59:50 (4 months ago)	SSH BruteForce detected by Fail2Ban (failures=8, source=VPSO)	Brute-Force SSH
🇨🇦 zXero	2026-02-11 13:18:29 (4 months ago)	Fail2Ban automatic report - jail: geoip-ssh	DDoS Attack Brute-Force SSH
Anonymous	2026-02-11 00:02:40 (4 months ago)	2026-02-11T00:02:28.560732+00:00 rivendell.markdonnellyonline.com sshd[1035788]: Failed password for ... show more 2026-02-11T00:02:28.560732+00:00 rivendell.markdonnellyonline.com sshd[1035788]: Failed password for root from 125.64.220.112 port 41108 ssh2 2026-02-11T00:02:31.179596+00:00 rivendell.markdonnellyonline.com sshd[1035791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.64.220.112 user=root 2026-02-11T00:02:33.424368+00:00 rivendell.markdonnellyonline.com sshd[1035791]: Failed password for root from 125.64.220.112 port 44096 ssh2 2026-02-11T00:02:37.698681+00:00 rivendell.markdonnellyonline.com sshd[1035794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.64.220.112 user=root 2026-02-11T00:02:39.767297+00:00 rivendell.markdonnellyonline.com sshd[1035794]: Failed password for root from 125.64.220.112 port 48658 ssh2 ... show less	FTP Brute-Force Port Scan Hacking Brute-Force Web App Attack SSH
🇷🇴 sh97	2026-02-10 20:01:59 (4 months ago)	2026-02-10T20:01:54.654644+00:00 ro1-hostc-storage sshd[2224011]: Failed password for root from 125. ... show more 2026-02-10T20:01:54.654644+00:00 ro1-hostc-storage sshd[2224011]: Failed password for root from 125.64.220.112 port 40430 ssh2 2026-02-10T20:01:56.852090+00:00 ro1-hostc-storage sshd[2224776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.64.220.112 user=root 2026-02-10T20:01:58.755805+00:00 ro1-hostc-storage sshd[2224776]: Failed password for root from 125.64.220.112 port 42812 ssh2 ... show less	Brute-Force SSH
🇹🇷 Threat.live	2026-02-10 19:45:07 (4 months ago)	Brute Force, tcp/22	Brute-Force
🇺🇸 m2jest1c	2026-02-10 19:28:22 (4 months ago)	2026-02-10T14:28:22.022357-05:00 debian-8gb-ash-1 sshd[3070859]: Connection closed by authenticating ... show more 2026-02-10T14:28:22.022357-05:00 debian-8gb-ash-1 sshd[3070859]: Connection closed by authenticating user root 125.64.220.112 port 40278 [preauth] ... show less	Brute-Force SSH
🇫🇷 Tony Stipanic	2026-02-10 11:54:07 (4 months ago)	Feb 10 12:53:56 m2369 sshd[400545]: Failed password for root from 125.64.220.112 port 36102 ssh2 Feb ... show more Feb 10 12:53:56 m2369 sshd[400545]: Failed password for root from 125.64.220.112 port 36102 ssh2 Feb 10 12:53:59 m2369 sshd[400578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.64.220.112 user=root Feb 10 12:54:01 m2369 sshd[400578]: Failed password for root from 125.64.220.112 port 39168 ssh2 Feb 10 12:54:05 m2369 sshd[400580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.64.220.112 user=root Feb 10 12:54:06 m2369 sshd[400580]: Failed password for root from 125.64.220.112 port 42224 ssh2 ... show less	Brute-Force SSH
🇩🇪 rd1742	2026-02-10 11:46:53 (4 months ago)	2026-02-10 11:46:52,530 quad proftpd[2772443] quad (125.64.220.112[125.64.220.112]): USER root: no s ... show more 2026-02-10 11:46:52,530 quad proftpd[2772443] quad (125.64.220.112[125.64.220.112]): USER root: no such user found from 125.64.220.112 [125.64.220.112] to 2.56.97.107:22 show less	Brute-Force Exploited Host SSH
🇵🇱 Kitki30.com	2026-02-10 06:38:43 (4 months ago)	Entered SSH Tarpit	Port Scan Brute-Force SSH
🇨🇳 ThreatBook.io	2026-02-09 23:26:25 (4 months ago)	ThreatBook Intelligence: Scanner,Gateway more details on https://threatbook.io/ip/125.64.220.112 202 ... show more ThreatBook Intelligence: Scanner,Gateway more details on https://threatbook.io/ip/125.64.220.112 2026-02-09 17:32:23 ["uname -s -m"] show less	SSH
🇩🇪 NetWatch	2026-02-09 17:49:47 (4 months ago)	The IP 125.64.220.112 tried multiple SSH_BRUTE_FORCE logins	Brute-Force
Anonymous	2026-02-09 17:27:17 (4 months ago)	2026-02-09T14:27:12.615104-03:00 web sshd[1931147]: pam_unix(sshd:auth): authentication failure; log ... show more 2026-02-09T14:27:12.615104-03:00 web sshd[1931147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.64.220.112 user=root 2026-02-09T14:27:14.774147-03:00 web sshd[1931147]: Failed password for root from 125.64.220.112 port 34826 ssh2 2026-02-09T14:27:15.940274-03:00 web sshd[1931147]: Connection closed by authenticating user root 125.64.220.112 port 34826 [preauth] ... show less	Brute-Force SSH
🇳🇱 EGP Abuse Dept	2026-02-09 17:16:35 (4 months ago)	Unauthorized connection to SSH port 22	Port Scan Hacking SSH

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.38

🇳🇱 195.178.110.42

🇺🇸 173.252.69.19

🇮🇳 139.59.57.162

🇰🇷 211.223.107.86

🇺🇸 207.204.228.154

🇨🇳 116.114.84.246

🇰🇷 112.151.178.49

🇻🇳 103.77.246.187

🇫🇷 89.116.31.97

🇿🇲 74.244.129.220

🇩🇪 64.89.163.130

🇨🇳 210.14.142.89

🇳🇱 91.92.42.195

🇷🇴 80.94.92.171

🇷🇺 79.104.0.82

🇳🇱 45.156.128.135

🇵🇱 104.165.13.151

🇬🇧 35.203.210.193

🇵🇰 2406:d00:aaaa:729a:74de:8477:53b6:63d3