JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 85.5.148.125

85.5.148.125 was found in our database!

This IP was reported 1,405 times. Confidence of Abuse is 100%: ?

100%

ISP	Bluewin is an LIR and ISP in Switzerland.
Usage Type	Fixed Line ISP
ASN	AS3303
Hostname(s)	125.148.5.85.dynamic.cust.swisscom.net
Domain Name	bluewin.ch
Country	🇨🇭 Switzerland
City	Biel/Bienne, Bern

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 85.5.148.125

Whois 85.5.148.125

IP Abuse Reports for 85.5.148.125:

This IP address has been reported a total of 1,405 times from 634 distinct sources. 85.5.148.125 was first reported on May 24th 2026, and the most recent report was 11 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 DiLenaTech	2026-05-25 15:46:36 (1 week ago)	2026-05-25T16:46:33.975445voip.dilenatech.com sshd[16447]: Invalid user cloud from 85.5.148.125 port ... show more 2026-05-25T16:46:33.975445voip.dilenatech.com sshd[16447]: Invalid user cloud from 85.5.148.125 port 47590 2026-05-25T16:46:33.979379voip.dilenatech.com sshd[16447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.5.148.125 2026-05-25T16:46:35.682837voip.dilenatech.com sshd[16447]: Failed password for invalid user cloud from 85.5.148.125 port 47590 ssh2 ... show less	Brute-Force SSH
🇩🇪 gcl046	2026-05-25 15:45:42 (1 week ago)	2026-05-25T17:28:07.726607+02:00 cu94u8qp sshd-session[239357]: Disconnected from invalid user cloud ... show more 2026-05-25T17:28:07.726607+02:00 cu94u8qp sshd-session[239357]: Disconnected from invalid user cloud 85.5.148.125 port 36606 [preauth] 2026-05-25T17:39:14.323434+02:00 cu94u8qp sshd-session[239466]: Invalid user pzuser from 85.5.148.125 port 44908 2026-05-25T17:39:14.338731+02:00 cu94u8qp sshd-session[239466]: Disconnected from invalid user pzuser 85.5.148.125 port 44908 [preauth] 2026-05-25T17:45:39.479919+02:00 cu94u8qp sshd-session[239607]: Invalid user hung from 85.5.148.125 port 57682 2026-05-25T17:45:39.496149+02:00 cu94u8qp sshd-session[239607]: Disconnected from invalid user hung 85.5.148.125 port 57682 [preauth] ... show less	Brute-Force SSH
🇩🇪 formality	2026-05-25 15:45:09 (1 week ago)	Invalid user tom from 85.5.148.125 port 38696	Brute-Force SSH
Anonymous	2026-05-25 15:40:12 (1 week ago)	May 25 15:40:12 f2b auth.info sshd[943709]: Invalid user tom from 85.5.148.125 port 43938 May 25 15: ... show more May 25 15:40:12 f2b auth.info sshd[943709]: Invalid user tom from 85.5.148.125 port 43938 May 25 15:40:12 f2b auth.info sshd[943709]: Failed password for invalid user tom from 85.5.148.125 port 43938 ssh2 May 25 15:40:12 f2b auth.info sshd[943709]: Disconnected from invalid user tom 85.5.148.125 port 43938 [preauth] ... show less	Brute-Force SSH
Anonymous	2026-05-25 15:39:10 (1 week ago)	2026-05-25T15:27:58.871495+00:00 de-fra2-nat641 sshd[2696732]: Invalid user cloud from 85.5.148.125 ... show more 2026-05-25T15:27:58.871495+00:00 de-fra2-nat641 sshd[2696732]: Invalid user cloud from 85.5.148.125 port 52770 2026-05-25T15:33:37.666280+00:00 de-fra2-nat641 sshd[2696757]: Invalid user hostinger from 85.5.148.125 port 44800 2026-05-25T15:39:10.078017+00:00 de-fra2-nat641 sshd[2696780]: Invalid user pzuser from 85.5.148.125 port 49412 ... show less	Brute-Force SSH
🇩🇪 _ArminS_	2026-05-25 15:33:42 (1 week ago)	Bad SSHAUTH 2026.05.25 17:33:42 blocked until 2026.05.28 17:33:42 by HoneyPot DE_State of Berlin01	SSH Brute-Force Hacking
Anonymous	2026-05-25 15:29:14 (1 week ago)	2026-05-25T15:29:12.291188+00:00 HongKong2 sshd-session[2877502]: Failed password for root from 85.5 ... show more 2026-05-25T15:29:12.291188+00:00 HongKong2 sshd-session[2877502]: Failed password for root from 85.5.148.125 port 57560 ssh2 2026-05-25T15:29:13.685513+00:00 HongKong2 sshd-session[2877502]: Disconnected from authenticating user root 85.5.148.125 port 57560 [preauth] ... show less	Brute-Force SSH
🇨🇦 zXero	2026-05-25 15:27:21 (1 week ago)	Fail2Ban automatic report - jail: geoip-ssh	Brute-Force SSH DDoS Attack
🇧🇷 helix	2026-05-25 15:09:00 (1 week ago)	Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login atte ... show more Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login attempts (5 attempts). show less	Brute-Force SSH
🇫🇷 CyberPain	2026-05-25 14:59:41 (1 week ago)	May 25 14:53:12 hermes sshd[1115221]: Invalid user smbuser from 85.5.148.125 port 54962 May 25 14:53 ... show more May 25 14:53:12 hermes sshd[1115221]: Invalid user smbuser from 85.5.148.125 port 54962 May 25 14:53:14 hermes sshd[1115221]: Failed password for invalid user smbuser from 85.5.148.125 port 54962 ssh2 May 25 14:59:40 hermes sshd[1115349]: Invalid user mc from 85.5.148.125 port 41112 ... show less	Brute-Force SSH
Anonymous	2026-05-25 14:46:40 (1 week ago)	2026-05-25T16:46:39.622722 mail2.akcurate.de sshd[78985]: Disconnected from authenticating user root ... show more 2026-05-25T16:46:39.622722 mail2.akcurate.de sshd[78985]: Disconnected from authenticating user root 85.5.148.125 port 41272 [preauth] ... show less	Brute-Force SSH
🇩🇪 gcl046	2026-05-25 14:45:11 (1 week ago)	2026-05-25T16:32:52.130283+02:00 cu94u8qp sshd-session[238580]: Invalid user mcserver from 85.5.148. ... show more 2026-05-25T16:32:52.130283+02:00 cu94u8qp sshd-session[238580]: Invalid user mcserver from 85.5.148.125 port 54320 2026-05-25T16:32:52.150901+02:00 cu94u8qp sshd-session[238580]: Disconnected from invalid user mcserver 85.5.148.125 port 54320 [preauth] 2026-05-25T16:39:23.310633+02:00 cu94u8qp sshd-session[238682]: Disconnected from authenticating user root 85.5.148.125 port 59988 [preauth] 2026-05-25T16:45:08.316167+02:00 cu94u8qp sshd-session[238783]: Invalid user test from 85.5.148.125 port 35734 2026-05-25T16:45:08.351869+02:00 cu94u8qp sshd-session[238783]: Disconnected from invalid user test 85.5.148.125 port 35734 [preauth] ... show less	Brute-Force SSH
🇩🇪 jjjjj	2026-05-25 14:44:54 (1 week ago)	ssh fail2ban: 2026-05-25 16:44:50 +02:00 Invalid user webuser, port=47862 2026-05-25 16:44:50 +02:00 ... show more ssh fail2ban: 2026-05-25 16:44:50 +02:00 Invalid user webuser, port=47862 2026-05-25 16:44:50 +02:00 auth fail: user unspecified 2026-05-25 16:44:53 +02:00 wrong password: user=webuser, port=47862 2026-05-25 16:44:53 +02:00 disconnect invalid: user=webuser, port=47862 [preauth] 2026-05-25 16:44:50 +02:00 auth fail: user unspecified 2026-05-25 16:44:53 +02:00 wrong password: user=webuser, port=47862 (automated) show less	Brute-Force SSH
🇺🇸 decisionconcepts	2026-05-25 14:41:46 (1 week ago)	2026-05-25T14:10:23.034797+00:00 racknerd-0410d2 sshd[1427405]: pam_unix(sshd:auth): authentication ... show more 2026-05-25T14:10:23.034797+00:00 racknerd-0410d2 sshd[1427405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.5.148.125 2026-05-25T14:10:25.285951+00:00 racknerd-0410d2 sshd[1427405]: Failed password for invalid user keith from 85.5.148.125 port 43554 ssh2 2026-05-25T14:41:44.076615+00:00 racknerd-0410d2 sshd[1435681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.5.148.125 user=root 2026-05-25T14:41:45.750643+00:00 racknerd-0410d2 sshd[1435681]: Failed password for root from 85.5.148.125 port 44784 ssh2 ... show less	Brute-Force SSH
🇩🇪 www.fransveldman.world	2026-05-25 14:41:30 (1 week ago)	May 25 14:28:39 fedi sshd[3141001]: Invalid user greek from 85.5.148.125 port 55452 May 25 14:41:29 ... show more May 25 14:28:39 fedi sshd[3141001]: Invalid user greek from 85.5.148.125 port 55452 May 25 14:41:29 fedi sshd[3142787]: Invalid user webuser from 85.5.148.125 port 48426 ... show less	Brute-Force SSH

Showing 1231 to 1245 of 1405 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 120.138.6.3

🇨🇳 49.232.26.51

🇵🇱 109.243.148.82

🇮🇩 103.157.26.23

🇭🇰 65.181.88.245

🇯🇵 43.167.198.92

🇸🇬 43.160.250.64

🇳🇱 31.14.32.7

🇨🇳 14.210.130.55

🇦🇪 2.49.144.102

🇸🇬 194.5.82.56

🇦🇷 190.12.114.103

🇧🇬 185.31.121.107

🇺🇸 162.216.149.53

🇵🇭 143.44.165.193

🇨🇳 122.96.28.145

🇪🇸 87.235.201.62

🇩🇪 69.5.169.243

🇩🇪 69.5.169.238

🇩🇪 69.5.169.227