AbuseIPDB » 125.75.148.28

125.75.148.28 was found in our database!

This IP was reported 613 times. Confidence of Abuse is 100%: ?

100%

ISP	CHINANET Gansu province network
Usage Type	Fixed Line ISP
ASN	AS141998
Domain Name	chinatelecom.cn
Country	China
City	Lanzhou, Gansu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 125.75.148.28

Whois 125.75.148.28

IP Abuse Reports for 125.75.148.28:

This IP address has been reported a total of 613 times from 267 distinct sources. 125.75.148.28 was first reported on October 28th 2022, and the most recent report was 38 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
Anonymous	2025-07-14 07:51:27 (38 minutes ago)		Brute-Force SSH
NetWatch	2025-07-14 06:34:36 (1 hour ago)	The IP 125.75.148.28 tried multiple SSH logins	Brute-Force SSH
Grizzlytools	2025-07-14 05:14:45 (3 hours ago)	Kingcopy(AI-IDS)RouterOS: Portscanner detected.	Port Scan
Woodie	2025-07-14 04:12:16 (4 hours ago)	2025-07-14T00:11:45.066888-04:00 debian sshd[1880693]: Failed password for root from 125.75.148.28 p ... show more2025-07-14T00:11:45.066888-04:00 debian sshd[1880693]: Failed password for root from 125.75.148.28 port 53664 ssh2 2025-07-14T00:12:06.686528-04:00 debian sshd[1880812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.75.148.28 user=root 2025-07-14T00:12:08.449075-04:00 debian sshd[1880812]: Failed password for root from 125.75.148.28 port 53676 ssh2 2025-07-14T00:12:13.857346-04:00 debian sshd[1881209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.75.148.28 user=root 2025-07-14T00:12:15.915365-04:00 debian sshd[1881209]: Failed password for root from 125.75.148.28 port 53808 ssh2 ... show less	Brute-Force SSH
Scan	2025-07-14 02:02:47 (6 hours ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
geddo.in	2025-07-14 01:55:41 (6 hours ago)	Jul 13 19:55:26 mortgagebase sshd[11299]: Failed password for root from 125.75.148.28 port 36484 ssh ... show moreJul 13 19:55:26 mortgagebase sshd[11299]: Failed password for root from 125.75.148.28 port 36484 ssh2 Jul 13 19:55:31 mortgagebase sshd[11303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.75.148.28 user=root Jul 13 19:55:32 mortgagebase sshd[11303]: Failed password for root from 125.75.148.28 port 36488 ssh2 Jul 13 19:55:38 mortgagebase sshd[11316]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.75.148.28 user=root Jul 13 19:55:40 mortgagebase sshd[11316]: Failed password for root from 125.75.148.28 port 17728 ssh2 ... show less	Brute-Force SSH
AMK	2025-07-14 01:31:13 (6 hours ago)	Jul 14 03:30:59 amk sshd\[22121\]: Failed password for root from 125.75.148.28 port 4868 ssh2Jul 14 ... show moreJul 14 03:30:59 amk sshd\[22121\]: Failed password for root from 125.75.148.28 port 4868 ssh2Jul 14 03:31:13 amk sshd\[22125\]: Failed password for root from 125.75.148.28 port 18730 ssh2 ... show less	Port Scan Brute-Force SSH
rtbh.com.tr	2025-07-14 00:07:40 (8 hours ago)	list.rtbh.com.tr report: tcp/22	Brute-Force
Anonymous	2025-07-14 00:04:54 (8 hours ago)	Aggressive web scan	SQL Injection Bad Web Bot Web App Attack
urnilxfgbez	2025-07-13 22:45:00 (9 hours ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
bigscoots.com	2025-07-13 22:31:10 (9 hours ago)	(sshd) Failed SSH login from 125.75.148.28 (CN/China/-): 5 in the last 3600 secs; Ports: ; Directio ... show more(sshd) Failed SSH login from 125.75.148.28 (CN/China/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Jul 13 17:30:52 15322 sshd[18429]: Did not receive identification string from 125.75.148.28 port 38496 Jul 13 17:30:54 15322 sshd[18430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.75.148.28 user=root Jul 13 17:30:56 15322 sshd[18430]: Failed password for root from 125.75.148.28 port 38512 ssh2 Jul 13 17:30:58 15322 sshd[18432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.75.148.28 user=root Jul 13 17:31:00 15322 sshd[18432]: Failed password for root from 125.75.148.28 port 38520 ssh2 show less	Brute-Force SSH
RAP	2025-07-13 22:09:12 (10 hours ago)	2025-07-13 22:09:12 UTC Unauthorized activity to TCP port 22. SSH	SSH
Study Bitcoin 🤗	2025-07-13 21:50:58 (10 hours ago)	Port probe to tcp/22 (ssh) [srv136]	Port Scan Brute-Force SSH
bigscoots.com	2025-07-13 21:08:59 (11 hours ago)	(sshd) Failed SSH login from 125.75.148.28 (CN/China/-): 5 in the last 3600 secs; Ports: ; Directio ... show more(sshd) Failed SSH login from 125.75.148.28 (CN/China/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Jul 13 16:08:39 16283 sshd[25263]: Did not receive identification string from 125.75.148.28 port 64804 Jul 13 16:08:41 16283 sshd[25264]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.75.148.28 user=root Jul 13 16:08:44 16283 sshd[25264]: Failed password for root from 125.75.148.28 port 64806 ssh2 Jul 13 16:08:51 16283 sshd[25267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.75.148.28 user=root Jul 13 16:08:53 16283 sshd[25267]: Failed password for root from 125.75.148.28 port 55990 ssh2 show less	Brute-Force SSH
bigscoots.com	2025-07-13 20:26:54 (12 hours ago)	(sshd) Failed SSH login from 125.75.148.28 (CN/China/-): 5 in the last 3600 secs; Ports: ; Directio ... show more(sshd) Failed SSH login from 125.75.148.28 (CN/China/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Jul 13 15:25:04 17453 sshd[22503]: Did not receive identification string from 125.75.148.28 port 3274 Jul 13 15:26:31 17453 sshd[22505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.75.148.28 user=root Jul 13 15:26:33 17453 sshd[22505]: Failed password for root from 125.75.148.28 port 3280 ssh2 Jul 13 15:26:35 17453 sshd[22670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.75.148.28 user=root Jul 13 15:26:37 17453 sshd[22670]: Failed password for root from 125.75.148.28 port 63784 ssh2 show less	Brute-Force SSH

Showing 1 to 15 of 613 reports

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩

Recently Reported IPs:

152.32.206.160

20.169.81.155

91.149.55.207

146.70.198.197

81.0.52.141

212.199.105.122

121.18.240.26

146.185.25.168

201.103.127.37

128.241.235.16

185.247.137.8

185.129.62.63

42.236.101.225

192.169.148.77

1.71.9.130

46.246.3.235

198.235.24.49

45.79.181.104

182.151.2.34

175.183.21.147