JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 82.118.29.240

82.118.29.240 was found in our database!

This IP was reported 122 times. Confidence of Abuse is 61%: ?

61%

ISP	Sheimo Scorpion Data AB
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	scorpiondata.com
Country	🇸🇪 Sweden
City	Stockholm, Stockholm

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 82.118.29.240

Whois 82.118.29.240

IP Abuse Reports for 82.118.29.240:

This IP address has been reported a total of 122 times from 61 distinct sources. 82.118.29.240 was first reported on August 12th 2022, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇪 AutosOnShow	2026-06-28 14:14:06 (2 days ago)	blocked for webapp attack \| path requested: /.env \| seen at 2026-06-28 14:13:52.710 \|	Web App Attack
Anonymous	2026-06-27 15:54:02 (3 days ago)	Web App Attack	Brute-Force Exploited Host Web App Attack
🇬🇧 Smish	2026-06-27 11:58:44 (3 days ago)	HONEYPOT HIT --> Fail2ban time=1782561524 log=2026-06-27T12:58:44+01:00 ip=82.118.29.240 host=direct ... show more HONEYPOT HIT --> Fail2ban time=1782561524 log=2026-06-27T12:58:44+01:00 ip=82.118.29.240 host=direct.smishcraft.com method=GET uri="/.env" status=404 ua="Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0" ref="-" rid=88adcf3e4d93e1a0113b684e6f0e519c show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 11:35:31 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 82.118.29.240 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.118.29.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 07:34:58.354951 2026] [security2:error] [pid 31599:tid 31599] [client 82.118.29.240:56331] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.johneiden.com"] [uri "/.git/description"] [unique_id "aj-1Ykn9jZqE-k9vju68LgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 10:56:15 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 82.118.29.240 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.118.29.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 06:55:59.872463 2026] [security2:error] [pid 28830:tid 28830] [client 82.118.29.240:47693] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "heytechiesshow.com"] [uri "/.git/COMMIT_EDITMSG"] [unique_id "aj-sP3ARDuBKZzM2O5GpEwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Mykola Spesivtsev	2026-06-27 07:45:25 (3 days ago)	HTTP Tarpit detected bot activity:TargetPort:443, Path:/.env.example, Method:GET, UA:Mozilla/5.0 (Wi ... show more HTTP Tarpit detected bot activity:TargetPort:443, Path:/.env.example, Method:GET, UA:Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/124.0.0.0 Safari/537.36 show less	Port Scan Web App Attack Bad Web Bot
🇩🇪 Mykola Spesivtsev	2026-06-27 04:55:29 (3 days ago)	HTTP Tarpit detected bot activity:TargetPort:80, Path:/config/parameters.yml, Method:GET, UA:Mozilla ... show more HTTP Tarpit detected bot activity:TargetPort:80, Path:/config/parameters.yml, Method:GET, UA:Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 Chrome/124.0.0.0 Safari/537.36 show less	Port Scan Web App Attack Bad Web Bot
🇩🇪 Mykola Spesivtsev	2026-06-27 03:25:09 (3 days ago)	HTTP Tarpit detected bot activity:TargetPort:80, Path:/settings.js, Method:GET, UA:Mozilla/5.0 (Wind ... show more HTTP Tarpit detected bot activity:TargetPort:80, Path:/settings.js, Method:GET, UA:Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/124.0.0.0 Safari/537.36 show less	Port Scan Web App Attack Bad Web Bot
🇩🇪 Mykola Spesivtsev	2026-06-27 02:56:15 (3 days ago)	HTTP Tarpit detected bot activity:TargetPort:80, Path:/.env, Method:GET, UA:Mozilla/5.0 (Windows NT ... show more HTTP Tarpit detected bot activity:TargetPort:80, Path:/.env, Method:GET, UA:Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0 show less	Port Scan Web App Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-27 02:10:31 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 82.118.29.240 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.118.29.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 22:09:21.462687 2026] [security2:error] [pid 19686:tid 19686] [client 82.118.29.240:29617] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "trafficstopper.com"] [uri "/.env.local"] [unique_id "aj8w0RCQNj9bdLY7GzDTJwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-26 22:29:40 (3 days ago)	82.118.29.240 - - [27/Jun/2026:01:29:23 +0300] "GET /.env HTTP/1.1" 403 243 82.118.29.240 - - [27/Ju ... show more 82.118.29.240 - - [27/Jun/2026:01:29:23 +0300] "GET /.env HTTP/1.1" 403 243 82.118.29.240 - - [27/Jun/2026:01:29:24 +0300] "GET /wp-config.php HTTP/1.1" 404 259 82.118.29.240 - - [27/Jun/2026:01:29:38 +0300] "GET /.git/info/exclude HTTP/1.1" 403 256 show less	Bad Web Bot
Anonymous	2026-06-26 18:57:31 (3 days ago)	fail2ban_an apache-modsecurity [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [uri "/webpac ... show more fail2ban_an apache-modsecurity [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [uri "/webpack.config.js"] show less	Bad Web Bot Web App Attack
Anonymous	2026-06-26 18:38:02 (3 days ago)	82.118.29.240 - - [26/Jun/2026:18:38:02 +0000] "GET /.env.live HTTP/1.1" 404 6973 "-" "Mozilla/5.0 ( ... show more 82.118.29.240 - - [26/Jun/2026:18:38:02 +0000] "GET /.env.live HTTP/1.1" 404 6973 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/123.0.0.0 Safari/537.36" ... show less	Brute-Force Web App Attack
Anonymous	2026-06-18 11:35:54 (1 week ago)	(PERMBLOCK) 82.118.29.240 (SE/Sweden/-) has had more than 4 temp blocks	Hacking
Anonymous	2026-06-18 08:13:21 (1 week ago)	(wordpress) Failed wordpress login from 82.118.29.240 (SE/Sweden/-)	Brute-Force

Showing 1 to 15 of 122 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4001:c0b::120

🇮🇷 217.172.98.139

🇭🇰 199.45.155.77

🇲🇰 188.44.20.33

🇧🇷 187.94.215.137

🇻🇳 123.20.174.119

🇺🇸 205.210.31.70

🇧🇷 200.39.46.41

🇲🇴 182.93.7.194

🇬🇧 167.99.93.212

🇺🇸 135.119.73.164

🇺🇸 45.33.94.76

🇯🇵 172.233.89.133

🇫🇷 152.228.135.83

🇮🇷 78.109.200.147

🇺🇸 43.173.126.150

🇺🇸 38.132.109.165

🇮🇩 36.94.237.123

🇯🇵 20.46.171.111

🇮🇳 2404:6800:4000:1006::120