JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 85.5.148.125

85.5.148.125 was found in our database!

This IP was reported 1,431 times. Confidence of Abuse is 100%: ?

100%

ISP	Bluewin is an LIR and ISP in Switzerland.
Usage Type	Fixed Line ISP
ASN	AS3303
Hostname(s)	125.148.5.85.dynamic.cust.swisscom.net
Domain Name	bluewin.ch
Country	🇨🇭 Switzerland
City	Biel/Bienne, Bern

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 85.5.148.125

Whois 85.5.148.125

IP Abuse Reports for 85.5.148.125:

This IP address has been reported a total of 1,431 times from 643 distinct sources. 85.5.148.125 was first reported on May 24th 2026, and the most recent report was 22 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇺 weke	2026-05-25 21:21:25 (1 week ago)	ip=85.5.148.125 \| user=mostafa \| pass=123 \| event=cowrie.login.failed \| source=ssh honeypot MSK \| ti ... show more ip=85.5.148.125 \| user=mostafa \| pass=123 \| event=cowrie.login.failed \| source=ssh honeypot MSK \| time=2026-05-25T21:21:25.254165Z show less	Brute-Force SSH
🇺🇸 brycemaxheimer	2026-05-25 21:20:01 (1 week ago)	Cowrie SSH honeypot: 1 events in 10m window 2026-05-25T21:10:00+00:00. Users tried: ansible. Command ... show more Cowrie SSH honeypot: 1 events in 10m window 2026-05-25T21:10:00+00:00. Users tried: ansible. Commands: show less	Brute-Force SSH
🇩🇪 Gwyneth Llewelyn	2026-05-25 21:05:50 (1 week ago)	May 25 21:56:35 autonomy sshd[1689960]: Invalid user curl from 85.5.148.125 port 51302 May 25 22:01: ... show more May 25 21:56:35 autonomy sshd[1689960]: Invalid user curl from 85.5.148.125 port 51302 May 25 22:01:31 autonomy sshd[1695603]: Invalid user ubuntu from 85.5.148.125 port 58346 May 25 22:02:24 autonomy sshd[1696862]: Invalid user azureuser from 85.5.148.125 port 54740 May 25 22:03:16 autonomy sshd[1697887]: Invalid user cloud from 85.5.148.125 port 58320 May 25 22:04:09 autonomy sshd[1699692]: Invalid user node from 85.5.148.125 port 48168 May 25 22:05:48 autonomy sshd[1702051]: Invalid user user from 85.5.148.125 port 36834 show less	Brute-Force SSH
Anonymous	2026-05-25 21:00:05 (1 week ago)	May 25 22:57:37 con01 sshd[4087328]: Failed password for root from 85.5.148.125 port 38420 ssh2 May ... show more May 25 22:57:37 con01 sshd[4087328]: Failed password for root from 85.5.148.125 port 38420 ssh2 May 25 22:58:47 con01 sshd[4089246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.5.148.125 user=root May 25 22:58:49 con01 sshd[4089246]: Failed password for root from 85.5.148.125 port 55056 ssh2 May 25 23:00:03 con01 sshd[4091221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.5.148.125 user=root May 25 23:00:05 con01 sshd[4091221]: Failed password for root from 85.5.148.125 port 49060 ssh2 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-25 20:57:40 (1 week ago)	(sshd) Failed SSH login from 85.5.148.125 (CH/Switzerland/125.148.5.85.dynamic.cust.swisscom.net): 5 ... show more (sshd) Failed SSH login from 85.5.148.125 (CH/Switzerland/125.148.5.85.dynamic.cust.swisscom.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: May 25 15:36:46 14994 sshd[25282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.5.148.125 user=root May 25 15:36:47 14994 sshd[25282]: Failed password for root from 85.5.148.125 port 53302 ssh2 May 25 15:56:07 14994 sshd[27457]: Invalid user curl from 85.5.148.125 port 57234 May 25 15:56:09 14994 sshd[27457]: Failed password for invalid user curl from 85.5.148.125 port 57234 ssh2 May 25 15:57:26 14994 sshd[27570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.5.148.125 user=root show less	Brute-Force SSH
Anonymous	2026-05-25 20:55:13 (1 week ago)	Fail2Ban SSH	Brute-Force SSH
🇩🇪 -SK-	2026-05-25 20:46:54 (1 week ago)	NBG (f2b jail:sshd, abuse	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-25 20:38:02 (1 week ago)	85.5.148.125 (CH/Switzerland/125.148.5.85.dynamic.cust.swisscom.net), 5 distributed sshd attacks on ... show more 85.5.148.125 (CH/Switzerland/125.148.5.85.dynamic.cust.swisscom.net), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 25 15:27:10 14157 sshd[7685]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.49.166.244 user=root May 25 15:27:11 14157 sshd[7685]: Failed password for root from 201.49.166.244 port 48954 ssh2 May 25 15:15:28 14157 sshd[6332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.238.226.45 user=root May 25 15:15:30 14157 sshd[6332]: Failed password for root from 80.238.226.45 port 48764 ssh2 May 25 15:37:50 14157 sshd[8882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.5.148.125 user=root IP Addresses Blocked: 201.49.166.244 (BR/Brazil/-) 80.238.226.45 (SA/Saudi Arabia/ecs-80-238-226-45.compute.hwclouds-dns.com) show less	Brute-Force SSH
🇺🇸 kosmonot	2026-05-25 20:19:22 (1 week ago)	2026-05-25T20:17:26.446898+00:00 schlitz sshd[455134]: Invalid user ubuntu from 85.5.148.125 port 52 ... show more 2026-05-25T20:17:26.446898+00:00 schlitz sshd[455134]: Invalid user ubuntu from 85.5.148.125 port 52276 2026-05-25T20:18:26.526101+00:00 schlitz sshd[455273]: Invalid user ubuntu from 85.5.148.125 port 48998 2026-05-25T20:19:21.613883+00:00 schlitz sshd[455414]: Invalid user snq from 85.5.148.125 port 42632 ... show less	Port Scan Brute-Force SSH
🇫🇷 Ordis Hysa	2026-05-25 20:19:01 (1 week ago)	2026-05-25T22:17:02.954280 vmi2089077.contaboserver.net sshd[2226064]: Invalid user ubuntu from 85.5 ... show more 2026-05-25T22:17:02.954280 vmi2089077.contaboserver.net sshd[2226064]: Invalid user ubuntu from 85.5.148.125 port 56472 2026-05-25T22:18:07.252759 vmi2089077.contaboserver.net sshd[2226531]: Invalid user ubuntu from 85.5.148.125 port 40980 2026-05-25T22:19:00.735257 vmi2089077.contaboserver.net sshd[2226869]: Invalid user snq from 85.5.148.125 port 55010 ... show less	Brute-Force SSH
🇳🇱 vanadrighem.eu	2026-05-25 20:16:22 (1 week ago)	2026-05-25T22:13:28.002872+02:00 pietje sshd-session[1517697]: Disconnected from authenticating user ... show more 2026-05-25T22:13:28.002872+02:00 pietje sshd-session[1517697]: Disconnected from authenticating user root 85.5.148.125 port 42552 [preauth] 2026-05-25T22:16:20.206293+02:00 pietje sshd-session[1518017]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.5.148.125 user=root 2026-05-25T22:16:22.305333+02:00 pietje sshd-session[1518017]: Failed password for root from 85.5.148.125 port 44776 ssh2 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-25 20:16:04 (1 week ago)	85.5.148.125 (CH/Switzerland/125.148.5.85.dynamic.cust.swisscom.net), 5 distributed sshd attacks on ... show more 85.5.148.125 (CH/Switzerland/125.148.5.85.dynamic.cust.swisscom.net), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 25 15:08:04 15624 sshd[24683]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.183.40.126 user=root May 25 15:08:06 15624 sshd[24683]: Failed password for root from 122.183.40.126 port 27945 ssh2 May 25 15:15:48 15624 sshd[25891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.48.160.201 user=root May 25 15:11:18 15624 sshd[25227]: Failed password for root from 85.5.148.125 port 47790 ssh2 May 25 15:11:16 15624 sshd[25227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.5.148.125 user=root IP Addresses Blocked: 122.183.40.126 (IN/India/telemedia-smb-126.40.183.122.airtelbroadband.in) 111.48.160.201 (CN/China/-) show less	Brute-Force SSH
🇫🇮 PrivateGER	2026-05-25 20:02:32 (1 week ago)	2026-05-25T21:56:42.362532+02:00 coffeelake sshd[2083850]: Invalid user cloud from 85.5.148.125 port ... show more 2026-05-25T21:56:42.362532+02:00 coffeelake sshd[2083850]: Invalid user cloud from 85.5.148.125 port 42168 2026-05-25T21:59:38.230632+02:00 coffeelake sshd[2090236]: Invalid user wireguard from 85.5.148.125 port 60806 2026-05-25T22:00:38.871328+02:00 coffeelake sshd[2100632]: Invalid user wfp from 85.5.148.125 port 43536 2026-05-25T22:01:36.718332+02:00 coffeelake sshd[2103461]: Invalid user ty from 85.5.148.125 port 33252 2026-05-25T22:02:32.474318+02:00 coffeelake sshd[2105724]: Invalid user sftptest from 85.5.148.125 port 44410 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-25 20:00:34 (1 week ago)	(sshd) Failed SSH login from 85.5.148.125 (CH/Switzerland/125.148.5.85.dynamic.cust.swisscom.net): 5 ... show more (sshd) Failed SSH login from 85.5.148.125 (CH/Switzerland/125.148.5.85.dynamic.cust.swisscom.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: May 25 14:51:25 18019 sshd[12683]: Invalid user cloud from 85.5.148.125 port 42944 May 25 14:51:27 18019 sshd[12683]: Failed password for invalid user cloud from 85.5.148.125 port 42944 ssh2 May 25 14:59:24 18019 sshd[14443]: Invalid user wireguard from 85.5.148.125 port 49330 May 25 14:59:26 18019 sshd[14443]: Failed password for invalid user wireguard from 85.5.148.125 port 49330 ssh2 May 25 15:00:25 18019 sshd[14685]: Invalid user wfp from 85.5.148.125 port 56896 show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-25 19:38:03 (1 week ago)	(sshd) Failed SSH login from 85.5.148.125 (CH/Switzerland/125.148.5.85.dynamic.cust.swisscom.net): 5 ... show more (sshd) Failed SSH login from 85.5.148.125 (CH/Switzerland/125.148.5.85.dynamic.cust.swisscom.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: May 25 14:18:29 15521 sshd[19877]: Invalid user openkm from 85.5.148.125 port 35524 May 25 14:18:31 15521 sshd[19877]: Failed password for invalid user openkm from 85.5.148.125 port 35524 ssh2 May 25 14:36:14 15521 sshd[23010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.5.148.125 user=root May 25 14:36:16 15521 sshd[23010]: Failed password for root from 85.5.148.125 port 41276 ssh2 May 25 14:37:47 15521 sshd[23207]: Invalid user jia from 85.5.148.125 port 33894 show less	Brute-Force SSH

Showing 1216 to 1230 of 1431 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 208.87.242.107

🇮🇳 139.59.30.229

🇨🇴 45.179.200.156

🇵🇰 39.32.39.132

🇳🇱 195.178.110.30

🇬🇧 193.163.125.87

🇻🇪 186.96.74.216

🇩🇪 185.220.101.177

🇨🇴 181.234.29.66

🇧🇷 168.181.49.236

🇮🇩 103.84.5.9

🇷🇴 80.94.92.186

🇩🇿 41.111.218.240

🇨🇳 14.103.113.212

🇮🇳 202.53.94.246

🇺🇸 195.184.76.245

🇮🇳 182.95.111.46

🇨🇳 180.153.236.58

🇳🇱 176.65.139.130

🇺🇸 162.216.149.241