JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 203.25.124.148

203.25.124.148 was found in our database!

This IP was reported 131 times. Confidence of Abuse is 100%: ?

100%

ISP	VPN Consumer Osaka, Japan
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	vpnconsumer.com
Country	🇯🇵 Japan
City	Osaka, Osaka

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 203.25.124.148

Whois 203.25.124.148

IP Abuse Reports for 203.25.124.148:

This IP address has been reported a total of 131 times from 58 distinct sources. 203.25.124.148 was first reported on May 21st 2025, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-06-06 12:18:56 (7 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-06 12:17:22 (7 hours ago)	203.25.124.148 - - [06/Jun/2026:15:17:21 +0300] "GET /wp-includes/blocks/site-tagline/ HTTP/1.1" 404 ... show more 203.25.124.148 - - [06/Jun/2026:15:17:21 +0300] "GET /wp-includes/blocks/site-tagline/ HTTP/1.1" 404 708 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-06 02:33:16 (16 hours ago)	203.25.124.148 - - [06/Jun/2026:05:33:15 +0300] "GET /wp-includes/assets/chosen.php HTTP/1.1" 404 70 ... show more 203.25.124.148 - - [06/Jun/2026:05:33:15 +0300] "GET /wp-includes/assets/chosen.php HTTP/1.1" 404 707 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-05 22:31:36 (20 hours ago)	203.25.124.148 - - [06/Jun/2026:01:31:34 +0300] "GET /wp-content/plugins/LayerSlider/wp/1.php HTTP/1 ... show more 203.25.124.148 - - [06/Jun/2026:01:31:34 +0300] "GET /wp-content/plugins/LayerSlider/wp/1.php HTTP/1.1" 404 704 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇦🇺 2000cn.com.au	2026-06-05 19:24:15 (1 day ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-wordpress-scan	Web App Attack Hacking
🇺🇦 URAN Publishing Service	2026-06-05 18:12:53 (1 day ago)	203.25.124.148 - - [05/Jun/2026:21:12:52 +0300] "GET /wp-includes/sitemaps/providers/ HTTP/1.1" 404 ... show more 203.25.124.148 - - [05/Jun/2026:21:12:52 +0300] "GET /wp-includes/sitemaps/providers/ HTTP/1.1" 404 720 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-05 16:56:09 (1 day ago)	203.25.124.148 - - [05/Jun/2026:19:56:08 +0300] "GET /wp-content/plugins/so-pinyin-slugs/inc/new.php ... show more 203.25.124.148 - - [05/Jun/2026:19:56:08 +0300] "GET /wp-content/plugins/so-pinyin-slugs/inc/new.php HTTP/1.1" 404 706 "-" "Go-http-client/1.1" 203.25.124.148 - - [05/Jun/2026:19:56:08 +0300] "GET /wp-content/themes/news-portal/wp-admins.php HTTP/1.1" 404 706 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇫🇷 devsecops.cv	2026-06-05 05:24:33 (1 day ago)	Fail2Ban: plesk-bot-aggressive - 15 failures	Port Scan Bad Web Bot Web App Attack
🇮🇹 Inartis	2026-06-04 06:43:38 (2 days ago)	203.25.124.148 - - [04/Jun/2026:08:43:37 +0200] "GET /1.php HTTP/1.1" 302 391 "-" "Go-http-client/1. ... show more 203.25.124.148 - - [04/Jun/2026:08:43:37 +0200] "GET /1.php HTTP/1.1" 302 391 "-" "Go-http-client/1.1" ... show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 6kilowatti	2026-06-04 00:51:31 (2 days ago)	2026/06/04 03:51:31 [error] 1118#1118: 383651 FastCGI sent in stderr: "Primary script unknown" whil ... show more 2026/06/04 03:51:31 [error] 1118#1118: 383651 FastCGI sent in stderr: "Primary script unknown" while reading response header from upstream, client: 203.25.124.148, server: 6kw.fi, request: "GET /wp-good.php HTTP/1.1", upstream: "fastcgi://unix:/var/run/6kw.fi.sock:", host: "6kw.fi" 2026/06/04 03:51:31 [error] 1118#1118: *383651 FastCGI sent in stderr: "Primary script unknown" while reading response header from upstream, client: 203.25.124.148, server: 6kw.fi, request: "GET /wp-content/uploads/upload.php HTTP/1.1", upstream: "fastcgi://unix:/var/run/6kw.fi.sock:", host: "6kw.fi" ... show less	Web App Attack
🇩🇪 4server	2026-06-03 23:31:22 (2 days ago)	[ThuJun0401:31:17.3397342026][security2:error][pid2464383:tid2464493][client203.25.124.148:0]ModSecu ... show more [ThuJun0401:31:17.3397342026][security2:error][pid2464383:tid2464493][client203.25.124.148:0]ModSecurity:Accessdeniedwithcode403$phase2$.Matchof\"rx/index\\\\\\\\.php\$\"against\"REQUEST_FILENAME\"required.[file\"/etc/apache2/conf.d/modsec_rules/51_asl_wordpress_extra.conf\"][line\"33\"][id\"333149\"][rev\"21\"][msg\"Atomicorp.comWAFRules:PossiblePHPwebshelldetectedandblocked\"][severity\"CRITICAL\"][hostname\"assmra.org\"][uri\"/wp-content/uploads/elementor/classwithtostring.php\"][unique_id\"aiC5RUjMgQTHU_GxncXJ3gAAAI4\"] show less	Port Scan Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-03 17:47:12 (3 days ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-195) show less	Bad Web Bot
🇩🇪 LRob.fr	2026-06-03 13:45:05 (3 days ago)	Repeated 403 errors, blocked by Fail2ban in custom-403 jail	Bad Web Bot
🇳🇱 BlueWire Hosting	2026-06-03 10:20:26 (3 days ago)	Probing websites for vulnerabilities	Web App Attack
🇬🇧 Mendip_Defender	2026-06-03 00:27:24 (3 days ago)	203.25.124.148 - - [03/Jun/2026:01:27:18 +0100] "GET /wp-includes/blocks/code/ HTTP/1.1" 403 4830 "h ... show more 203.25.124.148 - - [03/Jun/2026:01:27:18 +0100] "GET /wp-includes/blocks/code/ HTTP/1.1" 403 4830 "http://4x4response.uk/wp-includes/blocks/code/" "Go-http-client/2.0" 203.25.124.148 - - [03/Jun/2026:01:27:19 +0100] "GET /wp-content/about.php HTTP/1.1" 404 49697 "http://4x4response.uk/wp-content/about.php" "Go-http-client/2.0" 203.25.124.148 - - [03/Jun/2026:01:27:19 +0100] "GET /wp-includes/block-bindings/ HTTP/1.1" 403 4830 "http://4x4response.uk/wp-includes/block-bindings/" "Go-http-client/2.0" ... show less	Hacking Web App Attack

Showing 1 to 15 of 131 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 143.198.123.221

🇩🇪 82.198.227.177

🇱🇹 81.30.98.44

🇮🇩 210.79.142.221

🇬🇧 194.50.235.158

🇮🇹 188.152.238.126

🇵🇰 153.117.34.130

🇺🇸 134.209.117.175

🇱🇹 81.30.98.158

🇱🇹 81.30.98.144

🇺🇿 80.80.214.208

🇳🇱 45.148.10.183

🇳🇱 45.148.10.121

🇧🇪 198.235.24.186

🇨🇴 186.190.224.87

🇺🇸 185.180.141.37

🇺🇸 173.236.82.246

🇩🇪 172.70.242.180

🇨🇳 123.13.68.108

🇹🇼 122.254.18.76