AbuseIPDB » 202.125.68.126
202.125.68.126 was found in our database!
This IP was reported 9 times. Confidence of
Abuse
is 29% : ?
ISP
Grameen CyberNet
Usage Type
Fixed Line ISP
ASN
AS138004
Domain Name
grameencybernet.net
Country
๐ง๐ฉ
Bangladesh
City
Dhaka, Dhaka Division
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 202.125.68.126 :
This IP address has been reported a total of
9
times from
8 distinct
sources.
202.125.68.126 was first reported on
April 1st 2026 , and the most recent report was
1 day ago .
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐บ๐ธ
kosada.com
2026-07-11 20:23:40
(1 day ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot
Anonymous
2026-07-04 16:31:57
(1 week ago)
Unauthorized connection attempt
Port Scan
Hacking
Exploited Host
๐บ๐ธ
kosada.com
2026-06-29 04:14:30
(2 weeks ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot
๐ฎ๐ฉ
hermawan
2026-06-27 12:15:05
(2 weeks ago)
Captured JA4H: ge20n_1e45ec625f21 | Log: 202.125.68.126 - - [27/Jun/2026:19:14:33 +0700] "GET /index ...
show more
Captured JA4H: ge20n_1e45ec625f21 | Log: 202.125.68.126 - - [27/Jun/2026:19:14:33 +0700] "GET /index.php/informasi-iklim/infografis-iklim/infografis-klimat-story/555561581-mengenal-fenomena-la-nina-si-pembawa-hujan HTTP/2.0" 200 31240 "-" "Mozilla/5.0 (Linux; Android 12; SM-G996B Build/QP1A.190711.020) AppleWebKit/547.2 (KHTML, like Gecko) Firefox/106.0.2494.44 Mobile Safari/547.0" ge20n_accept,accept-encoding,upgrade-insecure-requests,accept-language,user-agent,host...
...
show less
Email Spam
Hacking
๐ฎ๐น
Progetto1
2026-06-25 18:28:05
(2 weeks ago)
Mail - Multiple failed login attempts
Brute-Force
Exploited Host
Anonymous
2026-05-28 21:00:03
(1 month ago)
Web App Attack, Hacking
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-11 03:56:06
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 202.125.68.126 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 202.125.68.126 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 10 23:56:00.588474 2026] [security2:error] [pid 3569660:tid 3569660] [client 202.125.68.126:47274] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/composer.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.et.lobibilisim.com"] [uri "/vendor/jenssegers/agent/composer.json"] [unique_id "adnGUORya4TuewKM1boSpgAAAAw"], referer: https://www.et.lobibilisim.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
quilla
2026-04-03 03:20:35
(3 months ago)
Botnet infected device observed in honeypot (Vector: TCP)
DDoS Attack
Anonymous
2026-04-01 18:14:14
(3 months ago)
Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to ...
show more
Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to bypass firewall/robots.txt restrictions in thread-post.asp
show less
Exploited Host
Bad Web Bot
Showing 1 to
9
of 9 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: