JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 203.25.124.16

203.25.124.16 was found in our database!

This IP was reported 75 times. Confidence of Abuse is 97%: ?

97%

ISP	VPN Consumer Osaka, Japan
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	vpnconsumer.com
Country	🇯🇵 Japan
City	Osaka, Osaka

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 203.25.124.16

Whois 203.25.124.16

IP Abuse Reports for 203.25.124.16:

This IP address has been reported a total of 75 times from 40 distinct sources. 203.25.124.16 was first reported on July 27th 2025, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 LRob.fr	2026-06-11 04:15:03 (7 hours ago)	Repeated 403 errors, blocked by Fail2ban in custom-403 jail	Bad Web Bot
🇧🇪 cmbplf	2026-06-10 17:42:29 (18 hours ago)	126 requests with url.path *config.php	Brute-Force Bad Web Bot
🇺🇦 URAN Publishing Service	2026-06-10 16:26:32 (19 hours ago)	203.25.124.16 - - [10/Jun/2026:19:26:27 +0300] "GET /wp-content/plugins/ HTTP/1.1" 404 707 "http://w ... show more 203.25.124.16 - - [10/Jun/2026:19:26:27 +0300] "GET /wp-content/plugins/ HTTP/1.1" 404 707 "http://www.ed.pdatu.edu.ua/wp-content/plugins/" "Go-http-client/1.1" 203.25.124.16 - - [10/Jun/2026:19:26:31 +0300] "GET /wp-content/plugins/hello.php HTTP/1.1" 404 707 "http://www.ed.pdatu.edu.ua/wp-content/plugins/hello.php" "Go-http-client/1.1" ... show less	Web App Attack
🇫🇷 Octopuce	2026-06-10 12:06:32 (23 hours ago)	Aggressive web search of vulnerable pages: /wp-admin/link/ /wp-includes/rest-api/fields/zczv.php /wp ... show more Aggressive web search of vulnerable pages: /wp-admin/link/ /wp-includes/rest-api/fields/zczv.php /wp-includes/theme-compat/patterns/ /wp-conten ... show less	Web App Attack
🇲🇾 Rizzy	2026-06-10 08:57:39 (1 day ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇪🇸 masterguru	2026-06-10 08:43:08 (1 day ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:user-agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:user-agent. (1100000-122) show less	Bad Web Bot
🇳🇱 Site.eu	2026-06-10 08:05:53 (1 day ago)	Excessive multi-domain requests	Brute-Force
Anonymous	2026-06-10 01:41:37 (1 day ago)	Multiple, malicious web requests detected	Port Scan Hacking
🇺🇸 nyt	2026-06-09 15:06:54 (1 day ago)	Non-standard WP File, Unusual access to restricted WordPress directory	Web App Attack
🇩🇪 ghostwarriors	2026-06-08 08:20:41 (3 days ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇦🇺 2000cn.com.au	2026-06-07 23:16:40 (3 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-wordpress-scan	Web App Attack Hacking
🇦🇺 paulshipley.com.au	2026-06-06 01:02:34 (5 days ago)	angleseaarthouse.com.au:443 203.25.124.16 - - [06/Jun/2026:11:02:31 +1000] "GET /item.php HTTP/1.1" ... show more angleseaarthouse.com.au:443 203.25.124.16 - - [06/Jun/2026:11:02:31 +1000] "GET /item.php HTTP/1.1" 404 69510 "http://angleseaarthouse.com.au/item.php" "Go-http-client/1.1" ... show less	Web App Attack
Anonymous	2026-06-04 23:28:09 (6 days ago)	203.25.124.16 - - [05/Jun/2026:01:28:06 +0200] "POST /wp-login.php HTTP/1.1" 200 7226 "https://femme ... show more 203.25.124.16 - - [05/Jun/2026:01:28:06 +0200] "POST /wp-login.php HTTP/1.1" 200 7226 "https://femmestylista.co.bw/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36" 203.25.124.16 - - [05/Jun/2026:01:28:07 +0200] "POST /wp-login.php HTTP/1.1" 200 7226 "https://femmestylista.co.bw/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36" 203.25.124.16 - - [05/Jun/2026:01:28:07 +0200] "POST /wp-login.php HTTP/1.1" 200 7226 "https://femmestylista.co.bw/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36" 203.25.124.16 - - [05/Jun/2026:01:28:08 +0200] "POST /wp-login.php HTTP/1.1" 200 7226 "https://femmestylista.co.bw/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36" 203.25.124.16 - - [05/Jun/ ... show less	Brute-Force Web App Attack
Anonymous	2026-05-28 06:22:03 (2 weeks ago)	203.25.124.16 - - [28/May/2026:06:22:02 +0000] "GET /wp-content/plugins/wpforms/class-wpforms-update ... show more 203.25.124.16 - - [28/May/2026:06:22:02 +0000] "GET /wp-content/plugins/wpforms/class-wpforms-update.php HTTP/1.1" 302 515 "-" "Go-http-client/1.1" ... show less	Bad Web Bot Web App Attack
🇨🇭 backslash	2026-05-27 17:42:00 (2 weeks ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot

Showing 1 to 15 of 75 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 193.124.20.251

🇺🇸 185.201.43.181

🇺🇸 162.216.149.254

🇬🇧 161.35.38.115

🇺🇸 153.75.251.65

🇺🇸 135.132.67.58

🇺🇸 104.248.57.115

🇻🇳 103.166.184.148

🇩🇪 85.215.107.193

🇧🇷 72.60.252.152

🇺🇸 66.132.186.254

🇯🇵 54.248.17.61

🇳🇱 45.148.10.152

🇺🇸 3.131.169.210

🇺🇸 2.57.168.28

🇳🇱 172.235.189.83

🇬🇧 159.65.61.26

🇭🇰 101.36.109.176

🇺🇸 84.32.70.211

🇺🇸 45.156.129.98