JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 203.25.124.187

203.25.124.187 was found in our database!

This IP was reported 91 times. Confidence of Abuse is 100%: ?

100%

ISP	VPN Consumer Osaka, Japan
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	vpnconsumer.com
Country	🇯🇵 Japan
City	Osaka, Osaka

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 203.25.124.187

Whois 203.25.124.187

IP Abuse Reports for 203.25.124.187:

This IP address has been reported a total of 91 times from 38 distinct sources. 203.25.124.187 was first reported on March 2nd 2025, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-06-17 01:00:45 (13 hours ago)	Web attack/malicious scanning detected	Web App Attack
Anonymous	2026-06-16 23:50:58 (14 hours ago)	[ns31.kdns.gr] httpd-suspicious-path: sites=savouras.gr; logs=/var/log/httpd/domains/savouras.gr.log ... show more [ns31.kdns.gr] httpd-suspicious-path: sites=savouras.gr; logs=/var/log/httpd/domains/savouras.gr.log; samples=/wp-content/languages/config.php \| /wp-includes/fonts/config.php \| /wp-content/upgrade/admin.php show less	Hacking Web App Attack
🇳🇱 Site.eu	2026-06-16 22:09:08 (16 hours ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 FeG Deutschland	2026-06-16 21:21:13 (17 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 24	Exploited Host Web App Attack
Anonymous	2026-06-16 21:18:59 (17 hours ago)	Multiple, malicious web requests detected	Port Scan Hacking
🇺🇸 TPI-Abuse	2026-06-16 20:11:46 (18 hours ago)	(mod_security) mod_security (id:210492) triggered by 203.25.124.187 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 203.25.124.187 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 16:11:41.097188 2026] [security2:error] [pid 14931:tid 14931] [client 203.25.124.187:40209] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pulleasy.com"] [uri "/wp-includes/js/wp-config.php"] [unique_id "ajGt_awvT0KfItPkkltwjgAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-16 17:38:20 (20 hours ago)	Multiple WAF Violations	Web App Attack
🇳🇱 BlueWire Hosting	2026-06-16 16:14:30 (22 hours ago)	Probing websites for vulnerabilities	Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 14:14:59 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 203.25.124.187 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 203.25.124.187 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 10:14:55.279697 2026] [security2:error] [pid 2082:tid 2082] [client 203.25.124.187:31135] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mosheimlib.org"] [uri "/wp-includes/wp-config.php"] [unique_id "ajFaXwf6eUUSxwTi7eUnDQAAAAo"], referer: http://mosheimlib.org/wp-includes/wp-config.php show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 13:30:22 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 203.25.124.187 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 203.25.124.187 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 09:30:16.302130 2026] [security2:error] [pid 11358:tid 11484] [client 203.25.124.187:28889] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marilynoakes.com"] [uri "/wp-content/uploads/wp-config.php"] [unique_id "ajFP6O96emyunJyZ7K4n9gAAARE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 11:54:28 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 203.25.124.187 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 203.25.124.187 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 07:54:24.650267 2026] [security2:error] [pid 5589:tid 5688] [client 203.25.124.187:29265] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "maroontribe.com"] [uri "/wp-includes/images/wp-config.php"] [unique_id "ajE5cDGXvQSRcHp4PHrHrQAAANI"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 masterguru	2026-06-16 09:30:24 (1 day ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-122) show less	Bad Web Bot
🇫🇷 masterguru	2026-06-16 03:41:03 (1 day ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-193) show less	Bad Web Bot
🇫🇷 masterguru	2026-06-16 01:44:54 (1 day ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-195) show less	Bad Web Bot
🇫🇷 masterguru	2026-06-16 00:51:04 (1 day ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-197) show less	Bad Web Bot

Showing 1 to 15 of 91 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 192.169.234.117

🇲🇽 187.191.48.23

🇲🇴 182.93.50.90

🇮🇶 169.224.86.220

🇹🇷 95.130.170.146

🇳🇱 77.83.39.42

🇧🇷 45.230.163.52

🇺🇸 45.131.195.167

🇮🇶 37.238.124.23

🇺🇸 2607:f8b0:400e:c0a::128

🇬🇧 185.91.69.77

🇸🇦 82.197.48.152

🇳🇱 68.183.7.48

🇺🇸 64.62.156.57

🇰🇷 59.24.131.89

🇷🇺 45.195.221.26

🇺🇸 44.1.128.173

🇺🇸 23.94.92.98

🇬🇧 193.163.125.126

🇷🇴 193.32.162.125