JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 125.94.200.202

125.94.200.202 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 4%: ?

ISP	CHINANET Guangdong province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenzhen, Guangdong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 125.94.200.202

Whois 125.94.200.202

IP Abuse Reports for 125.94.200.202:

This IP address has been reported a total of 10 times from 9 distinct sources. 125.94.200.202 was first reported on February 21st 2023, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-22 22:52:16 (4 days ago)	(mod_security) mod_security (id:210831) triggered by 125.94.200.202 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 125.94.200.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 18:52:09.972875 2026] [security2:error] [pid 24954:tid 24954] [client 125.94.200.202:31119] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.jinkokyudojo.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.jinkokyudojo.com"] [uri "/"] [unique_id "ajm8maukUUGvpTUUKhMAuwAAAAA"], referer: http://www.jinkokyudojo.com/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-03-16 13:21:27 (2 years ago)	Web attack	Bad Web Bot Web App Attack
🇺🇸 MPL	2023-08-16 06:15:41 (2 years ago)	tcp/1433 (8 or more attempts)	Port Scan
🇿🇦 IrisFlower	2023-05-19 22:20:20 (3 years ago)	Unauthorized connection attempt detected from IP address 125.94.200.202 to port 443 [J]	Port Scan Hacking
Anonymous	2023-02-24 09:12:51 (3 years ago)	[ER hit] Tried to deliver spam. Already well known.	Email Spam Exploited Host
🇵🇱 fripers.pl	2023-02-24 06:51:23 (3 years ago)	2023-02-24 07:51:01 H=([125.94.200.202]) [125.94.200.202]:13255 I=[193.107.88.166]:25 F=<qkilz@fripe ... show more 2023-02-24 07:51:01 H=([125.94.200.202]) [125.94.200.202]:13255 I=[193.107.88.166]:25 F=<[email protected]> rejected RCPT <[email protected]>: Sender verify failed 2023-02-24 07:51:12 H=([125.94.200.202]) [125.94.200.202]:13517 I=[193.107.88.166]:25 F=<[email protected]> rejected RCPT <[email protected]>: Sender verify failed 2023-02-24 07:51:22 H=([125.94.200.202]) [125.94.200.202]:14280 I=[193.107.88.166]:25 F=<[email protected]> rejected RCPT <[email protected]>: Sender verify failed ... show less	Brute-Force
🇨🇭 Kepler-1649c	2023-02-23 07:58:13 (3 years ago)	Spam/Spoofing	Email Spam Spoofing
🇩🇪 MarkGGN	2023-02-22 11:42:16 (3 years ago)	SMTP Bruteforce. Feb 22 12:42:03 * postfix/smtpd[964398]: NOQUEUE: reject: RCPT from unknown[125.94. ... show more SMTP Bruteforce. Feb 22 12:42:03 * postfix/smtpd[964398]: NOQUEUE: reject: RCPT from unknown[125.94.200.202]: 450 4.7.1 Client host rejected: cannot find your reverse hostname, [125.94.200.202]; from=<globe@> to=<globe@> proto=ESMTP helo=<[125.94.200.202]> Feb 22 12:42:15 * postfix/smtpd[964398]: NOQUEUE: reject: RCPT from unknown[125.94.200.202]: 450 4.7.1 Client host rejected: cannot find your reverse hostname, [125.94.200.202]; from=<globe@> to=<globe@> proto=ESMTP helo=<[125.94.200.202]> show less	Brute-Force
Anonymous	2023-02-21 14:00:37 (3 years ago)	Spam/Spoofing	Email Spam Spoofing
Anonymous	2023-02-21 14:00:37 (3 years ago)	Spam/Spoofing	Email Spam Spoofing

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2604:a940:302:118:0:24::

🇺🇸 216.25.89.144

🇰🇪 196.207.177.56

🇳🇱 80.82.77.139

🇩🇪 45.3.42.196

🇺🇸 20.169.107.54

🇸🇬 13.229.54.181

🇷🇴 2.57.121.25

🇧🇷 2804:7f7:e03e:2822:4c3b:108b:cd42:3e00

🇧🇴 200.105.172.184

🇺🇸 198.23.248.136

🇺🇸 193.26.115.137

🇯🇵 152.32.202.151

🇺🇸 135.237.126.196

🇧🇷 131.108.51.92

🇻🇳 125.212.244.35

🇳🇱 91.92.40.8

🇫🇷 85.217.140.31

🇫🇷 85.217.140.4

🇺🇸 66.132.172.131