JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 82.112.229.16

82.112.229.16 was found in our database!

This IP was reported 39 times. Confidence of Abuse is 100%: ?

100%

ISP	Hostinger International Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS47583
Domain Name	hostinger.com
Country	🇮🇳 India
City	Mumbai, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 82.112.229.16

Whois 82.112.229.16

IP Abuse Reports for 82.112.229.16:

This IP address has been reported a total of 39 times from 26 distinct sources. 82.112.229.16 was first reported on June 7th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-08 21:59:17 (2 days ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-07. show less	Web App Attack SSH Hacking
Anonymous	2026-06-08 08:45:53 (3 days ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇳🇱 wlt-blocker	2026-06-08 07:17:25 (3 days ago)	Unauthorized access to webpage admin	Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 05:06:33 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 82.112.229.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.112.229.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 01:06:26.963499 2026] [security2:error] [pid 4163:tid 4163] [client 82.112.229.16:60006] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gevieworld.com"] [uri "/.env"] [unique_id "aiZN0mf9ucF2HyRWApMmPAAAADo"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 EGP Abuse Dept	2026-06-08 05:05:19 (3 days ago)	Scanning for web/db/file exploits on www.gevers.nl	SQL Injection Bad Web Bot Web App Attack
🇬🇧 andypiper	2026-06-08 01:01:09 (3 days ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇮🇹 Inartis	2026-06-08 00:28:16 (3 days ago)	82.112.229.16 - - [08/Jun/2026:02:28:13 +0200] "GET /.env.save HTTP/1.1" 403 4144 "-" "Mozilla/5.0 ( ... show more 82.112.229.16 - - [08/Jun/2026:02:28:13 +0200] "GET /.env.save HTTP/1.1" 403 4144 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 82.112.229.16 - - [08/Jun/2026:02:28:13 +0200] "GET /admin/.env HTTP/1.1" 403 4144 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 82.112.229.16 - - [08/Jun/2026:02:28:14 +0200] "GET /.env HTTP/1.1" 403 4144 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" ... show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 [email protected]	2026-06-08 00:14:54 (3 days ago)	[Mon Jun 08 02:14:54.778751 2026] [authz_core:error] [pid 1407403:tid 1407520] [client 82.112.229.16 ... show more [Mon Jun 08 02:14:54.778751 2026] [authz_core:error] [pid 1407403:tid 1407520] [client 82.112.229.16:27498] AH01630: client denied by server configuration: /var/www/html/MyWeb/Public_www/.env show less	Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-07 23:57:03 (3 days ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-193)	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 23:23:33 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 82.112.229.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.112.229.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 19:23:28.764620 2026] [security2:error] [pid 30746:tid 30746] [client 82.112.229.16:17120] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "manvsfoodlocations.com"] [uri "/core/.env"] [unique_id "aiX9cAarCFw0mJtwMgmloQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 22:48:42 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 82.112.229.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.112.229.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 18:48:36.986174 2026] [security2:error] [pid 30239:tid 30239] [client 82.112.229.16:21634] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rjhills.com"] [uri "/admin/.env"] [unique_id "aiX1RGuL9VRpViXlCLwtxQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-07 19:48:26 (3 days ago)	(caddyscan) Scanner path probe from 82.112.229.16 (IN/India/-): 5 in the last 3600 secs; Ports: ; D ... show more (caddyscan) Scanner path probe from 82.112.229.16 (IN/India/-): 5 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 82.112.229.16 - - [07/Jun/2026:19:48:21 +0000] "GET /app/.env HTTP/1.1" [REDACTED] 200 2627 82.112.229.16 - - [07/Jun/2026:19:48:21 +0000] "GET /.env.save HTTP/1.1" [REDACTED] 200 2627 82.112.229.16 - - [07/Jun/2026:19:48:21 +0000] "GET /admin/.env HTTP/1.1" [REDACTED] 200 2627 82.112.229.16 - - [07/Jun/2026:19:48:21 +0000] "GET /core/.env.save HTTP/1.1" [REDACTED] 200 2627 82.112.229.16 - - [07/Jun/2026:19:48:21 +0000] "GET /laravel/.env HTTP/1.1" show less	Port Scan
🇫🇷 masterguru	2026-06-07 19:33:24 (3 days ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-195)	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 19:12:55 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 82.112.229.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.112.229.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 15:12:49.993112 2026] [security2:error] [pid 31859:tid 31873] [client 82.112.229.16:42944] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ureseal.com"] [uri "/admin/.env"] [unique_id "aiXCsUUn0-DnPIX6WSwYYAAAAEw"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-07 18:58:44 (3 days ago)	URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .b ... show more URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .backup/ .bak/ .bck/ .bk/ .bkp/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .cnf/ .com/ .compositefont/ .config/ .conf/ .copy/ .crt/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dist/ .dll/ .dos/ .dpkg-dist/ .drv/ .gadget/ .hta/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .inf/ .ini/ .jks/ .jse/ .key/ .licx/ .lnk/ .log/ .mdb/ .msc/ .ocx/ .old/ .pass/ .pdb/ .pfx/ .pif/ .pem/ .pol/ .prf/ .printer/ .pwd/ .rdb/ .rdp/ .reg/ .resources/ .resx/ .sav/ .save/ .scr/ .sct/ .sh/ .shs/ .sql/ .sqlite/ .sqlite3/ .swap/ .swo/ .swp/ .sys/ .temp/ .tfstate/ .tlb/ .tmp/ .vb/ .vbe/ .vbs/ .vbproj/ .vsdisco/ .vxd/ .webinfo/ .ws/ .wsc/ .wsf/ .wsh/ .xsd/ .xsx/" at TX:extension. (920440-201) show less	Hacking

Showing 1 to 15 of 39 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 195.184.76.56

🇺🇸 154.83.197.61

🇺🇸 195.184.76.193

🇺🇸 195.184.76.100

🇬🇧 194.50.235.135

🇺🇸 162.216.150.180

🇭🇰 154.212.141.222

🇭🇰 154.212.141.168

🇭🇰 154.212.141.165

🇭🇰 154.212.141.151

🇻🇳 103.200.25.79

🇺🇸 97.93.43.157

🇺🇸 66.132.224.232

🇺🇸 20.83.150.53

🇺🇸 195.184.76.122

🇺🇸 162.216.150.236

🇺🇸 156.239.253.250

🇭🇰 154.212.141.159

🇫🇮 147.185.133.101

🇺🇸 147.185.132.242