JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 125.134.19.111

125.134.19.111 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 44%: ?

44%

ISP	Korea Telecom
Usage Type	Fixed Line ISP
ASN	AS4766
Domain Name	kt.com
Country	🇰🇷 Korea (the Republic of)
City	Busan, Busan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 125.134.19.111

Whois 125.134.19.111

IP Abuse Reports for 125.134.19.111:

This IP address has been reported a total of 27 times from 27 distinct sources. 125.134.19.111 was first reported on February 7th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇿 Countryman	2026-06-18 21:06:48 (3 days ago)	repeated unauthorized connection attempts, host sweep, port scan	Port Scan
🇫🇮 payincog	2026-06-14 19:06:13 (1 week ago)	Date: Jun 14 21:43:49 2026 EAT \| Reported IP: 125.134.19.111 mod_security \| id: 920350 \| KR/pay.my_d ... show more Date: Jun 14 21:43:49 2026 EAT \| Reported IP: 125.134.19.111 mod_security \| id: 920350 \| KR/pay.my_domain/- \| Connections: 1 \| Blocked: Permanent Block: [LF_MODSEC] \| Logs: ; Host header is a numeric IP address show less	SQL Injection Brute-Force Bad Web Bot
🇦🇹 centurion	2026-06-09 03:31:29 (1 week ago)	Unauthorized attempt on coresecret [5000/tcp] Source port: 59838 TTL: 244 Packet length: 40 TOS: 0x0 ... show more Unauthorized attempt on coresecret [5000/tcp] Source port: 59838 TTL: 244 Packet length: 40 TOS: 0x00 https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇯🇵 jay hung	2026-06-02 09:41:41 (2 weeks ago)	2026-06-02T09:41:41.196260+00:00 quarktech kernel: [228141.115501] [UFW BLOCK] IN=eth0 OUT= MAC=22:0 ... show more 2026-06-02T09:41:41.196260+00:00 quarktech kernel: [228141.115501] [UFW BLOCK] IN=eth0 OUT= MAC=22:00:92:2e:84:93:fe:ff:ff:ff:ff:ff:08:00 SRC=125.134.19.111 DST=172.237.20.248 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=15692 PROTO=TCP SPT=46392 DPT=90 WINDOW=1300 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇩🇰 RhQM	2026-06-01 00:03:03 (3 weeks ago)		Bad Web Bot Exploited Host Web App Attack
🇩🇪 Admins@FBN	2026-05-31 02:10:06 (3 weeks ago)	FW-PortScan: Traffic Blocked srcport=59021 dstport=8000	Port Scan
🇹🇷 Threat.live	2026-05-25 17:55:03 (4 weeks ago)	Threat.live: Web Scan	Web App Attack
Anonymous	2026-05-22 14:04:02 (1 month ago)	Drop from IP address 125.134.19.111 to tcp-port 50000	Port Scan
🇫🇮 ngonghillsbikers	2026-05-21 01:00:09 (1 month ago)	Date: 21/May/2026:03:28:47.805120 +0300 \| Reported IP: 125.134.19.111 mod_security \| id: 920350 9501 ... show more Date: 21/May/2026:03:28:47.805120 +0300 \| Reported IP: 125.134.19.111 mod_security \| id: 920350 950130 959100 980170 \| KR/group.my_domain/- \| Connections: 1 \| Blocked: Permanent Block: [LF_MODSEC] \| Logs: ; ; ; ; ; Warning. Pattern match; Warning. Pattern match; Warning. Unconditional match in SecAction. [file; Access denied with code 403 (phase 4). Operator GE matched 4 at TX:blocking_outbound_anomaly_score. [file show less	SQL Injection Brute-Force Bad Web Bot
🇵🇱 Roper123	2026-05-15 00:45:12 (1 month ago)	Web app exploits	Web App Attack
🇩🇪 on1x.cloud	2026-05-09 05:28:55 (1 month ago)	[on1x.cloud] SSH-Multi login Attempt	Brute-Force SSH
🇳🇱 DonAtari	2026-04-28 16:48:30 (1 month ago)	DShield firewall scan - TCP to port 82	Brute-Force SSH
🇩🇪 check-the-sum.fr	2026-04-17 12:46:22 (2 months ago)	Port Scanning	Port Scan
🇳🇱 VMHeaven.io	2026-04-11 00:16:00 (2 months ago)	Blocked by UFW [557/tcp] Source port: 56105 TTL: 239 Packet length: 40	Port Scan
🇮🇩 hermawan	2026-04-06 07:49:52 (2 months ago)	1775461784.157472 125.134.19.111 103.166.156.58 1300__0_0 2026-04-06 21:49:44 WIB ...	Email Spam Hacking

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 157.22.45.213

🇨🇿 91.221.212.203

🇨🇱 190.161.66.238

🇧🇷 190.3.166.143

🇩🇪 176.9.47.205

🇮🇳 172.253.226.117

🇸🇬 172.188.89.41

🇺🇸 147.185.132.93

🇨🇳 112.86.225.122

🇩🇪 85.215.78.221

🇪🇸 82.213.192.99

🇨🇳 39.149.242.54

🇨🇳 39.100.91.113

🇻🇳 14.191.32.210

🇮🇹 2.57.170.204

🇧🇷 187.17.138.135

🇭🇰 156.226.176.91

🇺🇸 137.184.226.118

🇬🇧 134.122.106.248

🇭🇰 123.58.215.196