JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 82.198.227.130

82.198.227.130 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 100%: ?

100%

ISP	Hostinger International Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS47583
Domain Name	hostinger.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 82.198.227.130

Whois 82.198.227.130

IP Abuse Reports for 82.198.227.130:

This IP address has been reported a total of 43 times from 33 distinct sources. 82.198.227.130 was first reported on June 6th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 openstrike.co.uk	2026-06-09 05:14:48 (1 week ago)	24 attacks on env grabbing URLs: GET /backend/.env HTTP/1.1	Hacking
🇳🇱 e.fierstra	2026-06-08 11:48:30 (1 week ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
Anonymous	2026-06-08 09:50:47 (1 week ago)	(caddyscan) Scanner path probe from 82.198.227.130 (DE/Germany/-): 5 in the last 3600 secs; Ports: * ... show more (caddyscan) Scanner path probe from 82.198.227.130 (DE/Germany/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 82.198.227.130 - - [08/Jun/2026:09:50:46 +0000] "GET /members/.env HTTP/1.1" [REDACTED] 200 2627 82.198.227.130 - - [08/Jun/2026:09:50:46 +0000] "GET /api/.env HTTP/1.1" [REDACTED] 200 2627 82.198.227.130 - - [08/Jun/2026:09:50:46 +0000] "GET /backend/.env HTTP/1.1" [REDACTED] 200 2627 82.198.227.130 - - [08/Jun/2026:09:50:46 +0000] "GET /app/.env HTTP/1.1" [REDACTED] 200 2627 82.198.227.130 - - [08/Jun/2026:09:50:46 +0000] "GET /core/.env HTTP/1.1" show less	Port Scan
Anonymous	2026-06-08 08:54:35 (1 week ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇩🇪 4server	2026-06-08 07:37:44 (1 week ago)	[MonJun0809:37:42.5639332026][security2:error][pid857673:tid857804][client82.198.227.130:0]ModSecuri ... show more [MonJun0809:37:42.5639332026][security2:error][pid857673:tid857804][client82.198.227.130:0]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch\"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf\\|boot\\\\\\\\.ini\\|web.config\)\\\\\\\\b\\|$\\|\^\\|\\\\\\\\.\\\\\\\\.$/etc/\\|/\\\\\\\\.$\?:history\\|bash_history\\|sh_history\\|env$\$\)\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf\"][line\"204\"][id\"390709\"][rev\"30\"][msg\"Atomicorp.comWAFRules:Attempttoaccessprotectedfileremotely\"][data\"/.env\"][severity\"CRITICAL\"][hostname\"chesasilva.ch\"][uri\"/api/.env\"][unique_id\"aiZxRmivz0YVvvCTUAifjAAAAQ4\"] show less	Port Scan Brute-Force Web App Attack
🇵🇱 lns.bz	2026-06-08 04:26:14 (1 week ago)	Web app attack [PL.Lu]	Exploited Host Web App Attack
🇹🇷 baku.hosting	2026-06-08 03:44:27 (1 week ago)	CSF Auto Report: (mod_security) mod_security (id:949110) triggered by 82.198.227.130 (DE/Germany/-): ... show more CSF Auto Report: (mod_security) mod_security (id:949110) triggered by 82.198.227.130 (DE/Germany/-): 5 in the last 3600 secs show less	Brute-Force Web App Attack
🇩🇪 Roper123	2026-06-08 03:11:38 (1 week ago)	Web exploits - access forbidden	Web App Attack
🇲🇾 Rizzy	2026-06-08 01:24:49 (1 week ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇦🇺 2000cn.com.au	2026-06-08 01:08:08 (1 week ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇫🇷 ✨	2026-06-08 01:05:10 (1 week ago)	Domain : felinfachgriffin.co.uk Rule : env 2026-06-08 01:03:13 217.194.212.6 GET /laravel/.env - 443 ... show more Domain : felinfachgriffin.co.uk Rule : env 2026-06-08 01:03:13 217.194.212.6 GET /laravel/.env - 443 - 82.198.227.130 HTTP/1.1 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36 - felinfachgriffin.co.uk 404 0 2 1556 235 46 - - show less	Hacking SQL Injection
🇬🇧 Apache	2026-06-08 00:49:29 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 82.198.227.130 (DE/Germany/-): 5 in the last 30 ... show more (mod_security) mod_security (id:210492) triggered by 82.198.227.130 (DE/Germany/-): 5 in the last 300 secs (CF_ENABLE) show less	Brute-Force Web App Attack
🇻🇳 trung.fun	2026-06-07 17:28:39 (1 week ago)	DDoS, Hack, Brute Force, Web Attack ...	DDoS Attack Web Spam Hacking Brute-Force Web App Attack
🇷🇺 DZBOT	2026-06-07 17:14:53 (1 week ago)	DZBOT: Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇧🇷 Halux	2026-06-07 16:19:27 (1 week ago)	82.198.227.130 Probing protected path or service	Web App Attack

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇵 8.216.48.165

🇺🇸 162.216.149.147

🇨🇳 144.123.76.180

🇿🇦 105.233.67.36

🇷🇺 88.147.173.32

🇺🇸 45.130.83.109

🇺🇸 23.234.107.70

🇿🇦 2c0f:fb50:4001:5::12e

🇧🇪 198.235.24.174

🇺🇸 166.88.155.127

🇺🇸 135.222.40.122

🇳🇱 91.92.40.37

🇰🇿 82.200.235.138

🇮🇳 66.116.240.218

🇵🇰 59.103.121.32

🇺🇸 23.234.107.235

🇺🇸 23.234.107.210

🇳🇱 176.65.139.247

🇷🇴 80.94.92.182

🇩🇿 41.111.161.84