JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 203.25.124.203

203.25.124.203 was found in our database!

This IP was reported 80 times. Confidence of Abuse is 90%: ?

90%

ISP	VPN Consumer Osaka, Japan
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	vpnconsumer.com
Country	🇯🇵 Japan
City	Osaka, Osaka

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 203.25.124.203

Whois 203.25.124.203

IP Abuse Reports for 203.25.124.203:

This IP address has been reported a total of 80 times from 42 distinct sources. 203.25.124.203 was first reported on September 26th 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-17 00:03:32 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 203.25.124.203 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 203.25.124.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 20:03:29.144958 2026] [security2:error] [pid 18950:tid 18950] [client 203.25.124.203:32551] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.konahawaiirealty.com"] [uri "/wp-content/wp-config.php"] [unique_id "ajHkUXJgD3JbhTavePnhywAAAAc"], referer: http://konahawaiirealty.com/wp-content/wp-config.php show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-16 23:32:48 (4 days ago)	Multiple, malicious web requests detected	Port Scan Hacking
🇩🇪 paissangroup	2026-06-16 22:45:55 (4 days ago)	Multiple WAF Violations	Web App Attack
🇳🇱 BlueWire Hosting	2026-06-16 16:08:58 (4 days ago)	Probing websites for vulnerabilities	Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 11:52:34 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 203.25.124.203 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 203.25.124.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 07:52:27.261796 2026] [security2:error] [pid 6615:tid 6617] [client 203.25.124.203:28529] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "maroontribe.com"] [uri "/wp-includes/js/wp-config.php"] [unique_id "ajE4-9znRFgcZpuhfKYXkwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 11:31:16 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 203.25.124.203 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 203.25.124.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 07:31:11.949922 2026] [security2:error] [pid 20537:tid 20537] [client 203.25.124.203:50167] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mariettacaseyclub.org"] [uri "/wp-content/wp-config.php"] [unique_id "ajEz_5up0lRny7YkugpHbwAAAAs"], referer: http://mariettacaseyclub.org/wp-content/wp-config.php show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 masterguru	2026-06-16 09:40:59 (4 days ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-122) show less	Bad Web Bot
🇩🇪 LRob.fr	2026-06-16 06:30:31 (4 days ago)	Repeated 403 errors, blocked by Fail2ban in custom-403 jail	Bad Web Bot
🇫🇷 masterguru	2026-06-16 03:40:01 (4 days ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-193) show less	Bad Web Bot
🇫🇷 masterguru	2026-06-16 01:45:44 (5 days ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-195) show less	Bad Web Bot
🇦🇺 paulshipley.com.au	2026-06-12 23:37:46 (1 week ago)	balcomberetreat.com.au:443 203.25.124.203 - - [13/Jun/2026:09:37:44 +1000] "GET /radio.php HTTP/1.1" ... show more balcomberetreat.com.au:443 203.25.124.203 - - [13/Jun/2026:09:37:44 +1000] "GET /radio.php HTTP/1.1" 404 72063 "http://balcomberetreat.com.au/radio.php" "Go-http-client/1.1" ... show less	Web App Attack
🇫🇷 masterguru	2026-06-10 14:00:18 (1 week ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-195) show less	Bad Web Bot
🇩🇪 FeG Deutschland	2026-06-10 13:27:39 (1 week ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 24	Exploited Host Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-09 23:45:14 (1 week ago)	Blocked by CSF 13 firewall - Rule: WPLOGIN AU/Australia/-	Web App Attack
🇦🇺 2000cn.com.au	2026-06-07 20:29:42 (1 week ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-wordpress-scan	Web App Attack Hacking

Showing 1 to 15 of 80 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.202.118.31

🇨🇳 106.75.189.251

🇳🇱 91.92.40.11

🇧🇪 34.62.69.255

🇺🇸 216.25.89.70

🇧🇪 198.235.24.227

🇨🇳 106.13.172.105

🇯🇵 103.125.146.14

🇮🇳 103.69.114.96

🇺🇸 97.74.236.238

🇮🇳 68.233.116.124

🇺🇸 66.132.186.227

🇺🇸 45.61.187.220

🇺🇸 44.200.40.103

🇰🇷 43.155.134.4

🇨🇳 220.181.51.120

🇸🇴 197.231.202.201

🇬🇧 194.156.225.114

🇬🇧 193.163.125.13

🇨🇳 180.76.244.13