JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 85.5.148.125

85.5.148.125 was found in our database!

This IP was reported 1,403 times. Confidence of Abuse is 100%: ?

100%

ISP	Bluewin is an LIR and ISP in Switzerland.
Usage Type	Fixed Line ISP
ASN	AS3303
Hostname(s)	125.148.5.85.dynamic.cust.swisscom.net
Domain Name	bluewin.ch
Country	🇨🇭 Switzerland
City	Biel/Bienne, Bern

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 85.5.148.125

Whois 85.5.148.125

IP Abuse Reports for 85.5.148.125:

This IP address has been reported a total of 1,403 times from 634 distinct sources. 85.5.148.125 was first reported on May 24th 2026, and the most recent report was 1 minute ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 mediarama.com	2026-05-24 23:02:03 (1 week ago)	Banned by Fail2Ban	Brute-Force SSH
🇧🇾 lns.bz	2026-05-24 22:59:19 (1 week ago)	SSH bruteforce [BY]	SSH
🇺🇸 bigscoots.com	2026-05-24 22:54:43 (1 week ago)	85.5.148.125 (CH/Switzerland/125.148.5.85.dynamic.cust.swisscom.net), 5 distributed sshd attacks on ... show more 85.5.148.125 (CH/Switzerland/125.148.5.85.dynamic.cust.swisscom.net), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 24 17:54:35 14431 sshd[8064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.5.148.125 user=root May 24 17:08:16 14431 sshd[32564]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=108.167.177.224 user=root May 24 16:57:49 14431 sshd[30159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=108.167.177.224 user=root May 24 16:57:51 14431 sshd[30159]: Failed password for root from 108.167.177.224 port 36470 ssh2 May 24 17:36:47 14431 sshd[5033]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.124.71.25 user=root IP Addresses Blocked: show less	Brute-Force SSH
🇺🇸 knock	2026-05-24 22:49:16 (1 week ago)	Knock-Knock honeypot brute-force: SSH (28 total hits)	Brute-Force SSH
🇨🇿 lp	2026-05-24 22:49:04 (1 week ago)	SSH Brute force: 3 attempts were recorded from 85.5.148.125 2026-05-24T23:50:00+02:00 Invalid user d ... show more SSH Brute force: 3 attempts were recorded from 85.5.148.125 2026-05-24T23:50:00+02:00 Invalid user deploy from 85.5.148.125 port 41438 2026-05-24T23:54:21+02:00 Invalid user csserver from 85.5.148.125 port 58112 2026-05-24T23:57:34+02:00 Disconnected from authenticating user root 85.5.148.125 port 51184 [preauth] show less	Brute-Force SSH
🇹🇷 hasankayra04	2026-05-24 22:13:12 (1 week ago)	May 25 01:07:37 localhost sshd[429173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ... show more May 25 01:07:37 localhost sshd[429173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.5.148.125 May 25 01:07:37 localhost sshd[429173]: Invalid user rich from 85.5.148.125 port 39326 May 25 01:07:39 localhost sshd[429173]: Failed password for invalid user rich from 85.5.148.125 port 39326 ssh2 May 25 01:11:24 localhost sshd[429528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.5.148.125 user=root May 25 01:11:25 localhost sshd[429528]: Failed password for root from 85.5.148.125 port 34872 ssh2 ... show less	Brute-Force SSH
🇮🇹 alph44	2026-05-24 22:10:29 (1 week ago)	SSH brute force attack detected: 5 failed attempts	Brute-Force
🇷🇺 shiroyashik	2026-05-24 22:00:02 (1 week ago)	2026-05-25T00:47:47.980224+03:00 [HOSTNAME] sshd-session[2675664]: Invalid user deploy from 85.5.148 ... show more 2026-05-25T00:47:47.980224+03:00 [HOSTNAME] sshd-session[2675664]: Invalid user deploy from 85.5.148.125 port 56392 2026-05-25T00:53:33.871936+03:00 [HOSTNAME] sshd-session[2676143]: Invalid user csserver from 85.5.148.125 port 58130 2026-05-25T01:00:00.925317+03:00 [HOSTNAME] sshd-session[2676703]: Invalid user roott from 85.5.148.125 port 44896 ... show less	SSH
🇪🇸 NB.INFRA	2026-05-24 21:57:02 (1 week ago)	2026-05-24T21:41:24.319102+00:00 panel sshd[45357]: Invalid user user from 85.5.148.125 port 55738 2 ... show more 2026-05-24T21:41:24.319102+00:00 panel sshd[45357]: Invalid user user from 85.5.148.125 port 55738 2026-05-24T21:51:45.868730+00:00 panel sshd[46544]: Invalid user tom from 85.5.148.125 port 44784 2026-05-24T21:57:02.378644+00:00 panel sshd[47105]: Invalid user hb from 85.5.148.125 port 49380 ... show less	SSH
🇩🇪 zGrav	2026-05-24 21:56:47 (1 week ago)	2026-05-24T23:53:32.665377+02:00 zgrav sshd-session[1194435]: Invalid user csserver from 85.5.148.12 ... show more 2026-05-24T23:53:32.665377+02:00 zgrav sshd-session[1194435]: Invalid user csserver from 85.5.148.125 port 56004 2026-05-24T23:53:32.671126+02:00 zgrav sshd-session[1194435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.5.148.125 2026-05-24T23:53:34.094914+02:00 zgrav sshd-session[1194435]: Failed password for invalid user csserver from 85.5.148.125 port 56004 ssh2 2026-05-24T23:56:45.041161+02:00 zgrav sshd-session[1194492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.5.148.125 user=root 2026-05-24T23:56:47.260422+02:00 zgrav sshd-session[1194492]: Failed password for root from 85.5.148.125 port 59892 ssh2 ... show less	Brute-Force SSH
🇧🇬 sh97	2026-05-24 21:54:35 (1 week ago)	BG02-INCOG: SSH Brute Force from 85.5.148.125 at 2026-05-25 03:24:35 IST	Brute-Force SSH
🇫🇮 basil s	2026-05-24 21:53:36 (1 week ago)	Blocked by CrowdSec Server Protection. Attack type: crowdsecurity/ssh-slow-bf Source Country: CH Tim ... show more Blocked by CrowdSec Server Protection. Attack type: crowdsecurity/ssh-slow-bf Source Country: CH Time (UTC): 2026-05-24T21:47:43.987214826Z show less	Brute-Force SSH
🇩🇪 ghostwarriors	2026-05-24 21:50:29 (1 week ago)	Unauthorized connection attempt detected, SSH Brute-Force	Brute-Force Port Scan SSH
Anonymous	2026-05-24 21:48:05 (1 week ago)	May 25 00:48:02 community sshd[3806326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ... show more May 25 00:48:02 community sshd[3806326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.5.148.125 May 25 00:48:04 community sshd[3806326]: Failed password for invalid user deploy from 85.5.148.125 port 57524 ssh2 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-24 21:47:01 (1 week ago)	(sshd) Failed SSH login from 85.5.148.125 (CH/Switzerland/125.148.5.85.dynamic.cust.swisscom.net): 5 ... show more (sshd) Failed SSH login from 85.5.148.125 (CH/Switzerland/125.148.5.85.dynamic.cust.swisscom.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: May 24 16:33:10 13617 sshd[6122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.5.148.125 user=root May 24 16:33:12 13617 sshd[6122]: Failed password for root from 85.5.148.125 port 58690 ssh2 May 24 16:41:43 13617 sshd[7012]: Invalid user user from 85.5.148.125 port 37654 May 24 16:41:45 13617 sshd[7012]: Failed password for invalid user user from 85.5.148.125 port 37654 ssh2 May 24 16:46:51 13617 sshd[7571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.5.148.125 user=root show less	Brute-Force SSH

Showing 1381 to 1395 of 1403 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 37.148.132.190

🇷🇺 37.77.150.67

🇳🇱 192.142.24.156

🇺🇸 192.3.218.12

🇦🇹 185.212.100.65

🇩🇪 167.94.145.24

🇺🇸 136.144.33.178

🇮🇩 103.26.128.236

🇳🇱 89.248.167.131

🇺🇸 85.239.151.41

🇺🇸 73.128.33.173

🇩🇪 69.5.169.107

🇺🇸 65.49.1.230

🇧🇷 45.205.1.244

🇸🇬 43.245.97.82

🇮🇳 27.123.88.186

🇵🇭 210.79.179.244

🇹🇼 198.235.24.36

🇿🇦 197.94.254.49

🇺🇸 192.142.2.40