JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 203.25.124.206

203.25.124.206 was found in our database!

This IP was reported 95 times. Confidence of Abuse is 94%: ?

94%

ISP	VPN Consumer Osaka, Japan
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	vpnconsumer.com
Country	🇯🇵 Japan
City	Osaka, Osaka

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 203.25.124.206

Whois 203.25.124.206

IP Abuse Reports for 203.25.124.206:

This IP address has been reported a total of 95 times from 39 distinct sources. 203.25.124.206 was first reported on April 7th 2025, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇦 URAN Publishing Service	2026-06-18 10:38:35 (10 hours ago)	203.25.124.206 - - [18/Jun/2026:13:38:34 +0300] "GET /wp-content/plugins/penci-bookmark-follow/inc/a ... show more 203.25.124.206 - - [18/Jun/2026:13:38:34 +0300] "GET /wp-content/plugins/penci-bookmark-follow/inc/admin/forms/penci-bf-users-logs-profile.php HTTP/1.1" 404 714 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇩🇪 LRob.fr	2026-06-18 08:15:08 (12 hours ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇺🇦 URAN Publishing Service	2026-06-18 07:47:09 (13 hours ago)	203.25.124.206 - - [18/Jun/2026:10:46:33 +0300] "GET /wp-content/plugins/advanced-llms-txt-generator ... show more 203.25.124.206 - - [18/Jun/2026:10:46:33 +0300] "GET /wp-content/plugins/advanced-llms-txt-generator/assets/css/css_json.php HTTP/1.1" 404 4688 "http://neonatology.bsmu.edu.ua/wp-content/plugins/advanced-llms-txt-generator/assets/css/css_json.php" "Go-http-client/1.1" 203.25.124.206 - - [18/Jun/2026:10:47:06 +0300] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 404 4690 "http://neonatology.bsmu.edu.ua/wp-content/themes/seotheme/db.php?u" "Go-http-client/1.1" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 00:48:01 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 203.25.124.206 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 203.25.124.206 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 20:47:57.832811 2026] [security2:error] [pid 4043:tid 4043] [client 203.25.124.206:35563] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mijn-pedicure.nl"] [uri "/wp-includes/images/wp-config.php"] [unique_id "ajHuvZRWB5y5-zBWhVZRNgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 00:04:32 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 203.25.124.206 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 203.25.124.206 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 20:04:28.957774 2026] [security2:error] [pid 18384:tid 18384] [client 203.25.124.206:44077] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "konahawaii.com"] [uri "/wp-content/uploads/wp-config.php"] [unique_id "ajHkjEGB_1Z-tTcldvKhnAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-16 23:25:47 (1 day ago)	Multiple, malicious web requests detected	Port Scan Hacking
🇳🇱 Site.eu	2026-06-16 22:06:14 (1 day ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 FeG Deutschland	2026-06-16 21:20:12 (1 day ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 20:09:00 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 203.25.124.206 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 203.25.124.206 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 16:08:53.444209 2026] [security2:error] [pid 4190:tid 4190] [client 203.25.124.206:57033] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.pcga.golf"] [uri "/wp-includes/js/wp-config.php"] [unique_id "ajGtVeioJCrCoedcNWozVQAAABw"], referer: http://pcga.golf/wp-includes/js/wp-config.php show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 19:31:33 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 203.25.124.206 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 203.25.124.206 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 15:31:27.146923 2026] [security2:error] [pid 1431:tid 1431] [client 203.25.124.206:50803] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.hendersonhomes.com"] [uri "/wp-includes/wp-config.php"] [unique_id "ajGkjwuoyfajlFbfkEc3TQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 BlueWire Hosting	2026-06-16 15:57:41 (2 days ago)	Probing websites for vulnerabilities	Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 13:31:00 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 203.25.124.206 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 203.25.124.206 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 09:30:53.896899 2026] [security2:error] [pid 11355:tid 11492] [client 203.25.124.206:62503] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marilynoakes.com"] [uri "/wp-content/wp-config.php"] [unique_id "ajFQDfYCyKWX0T8ajT0iwgAAAFY"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 masterguru	2026-06-16 09:26:22 (2 days ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-122) show less	Bad Web Bot
🇫🇷 masterguru	2026-06-16 03:38:21 (2 days ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-193) show less	Bad Web Bot
🇫🇷 masterguru	2026-06-16 01:53:12 (2 days ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-195) show less	Bad Web Bot

Showing 1 to 15 of 95 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 213.111.139.197

🇳🇱 185.223.235.20

🇨🇱 172.217.39.149

🇺🇸 107.167.34.125

🇫🇷 91.196.152.33

🇱🇹 45.227.254.170

🇳🇱 45.142.193.105

🇺🇸 205.210.31.39

🇨🇳 183.56.179.201

🇧🇷 179.51.153.37

🇯🇵 156.59.29.242

🇷🇺 91.79.227.169

🇨🇳 39.154.8.190

🇺🇸 20.12.213.50

🇨🇳 220.243.133.81

🇫🇮 185.148.1.18

🇩🇪 139.162.186.99

🇸🇬 45.78.198.199

🇬🇧 35.203.211.152

🇺🇸 23.23.214.190