JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 82.22.215.97

82.22.215.97 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 2%: ?

ISP	Internet Utilities Europe and Asia Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS198968
Domain Name	netutils.io
Country	🇪🇸 Spain
City	Madrid, Madrid

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 82.22.215.97

Whois 82.22.215.97

IP Abuse Reports for 82.22.215.97:

This IP address has been reported a total of 5 times from 4 distinct sources. 82.22.215.97 was first reported on August 7th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-30 23:40:04 (1 week ago)	\| A web attack returned code 200 (success).	Web App Attack Hacking SQL Injection
🇺🇸 TPI-Abuse	2025-12-01 07:06:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 82.22.215.97 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 82.22.215.97 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 02:06:22.920040 2025] [security2:error] [pid 27471:tid 27493] [client 82.22.215.97:55709] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.kettlehill.com"] [uri "/.env.cpcontacts"] [unique_id "aS0-bnLXOKC0tXS7y0k78QAAAIU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 BridgeBurner	2025-09-02 07:37:24 (9 months ago)	Layer 7 DDoS with Cloudflare Under Attack Mode Bypass	DDoS Attack
🇺🇸 TPI-Abuse	2025-09-01 02:09:36 (9 months ago)	(mod_security) mod_security (id:210492) triggered by 82.22.215.97 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 82.22.215.97 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 31 22:09:32.026799 2025] [security2:error] [pid 4167007:tid 4167034] [client 82.22.215.97:38267] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.staging.kettlehill.com"] [uri "/.git/config"] [unique_id "aLUAXLJvJhw2WatQMF44QQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇸🇬 raramos	2025-08-07 19:00:07 (10 months ago)	[SMB remote code execution attempt: port tcp/445] in blocklist.de:'listed [pop3]' in SpamCop:'listed ... show more [SMB remote code execution attempt: port tcp/445] in blocklist.de:'listed [pop3]' in SpamCop:'listed' in sorbs:'listed [web], [spam]' in Unsubscore:'listed' *(RWIN=8192)(04:10) show less	Web Spam Email Spam Port Scan Hacking Brute-Force Web App Attack

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 192.109.200.204

🇵🇱 20.215.51.53

🇺🇸 165.154.206.34

🇳🇱 81.19.216.88

🇺🇸 66.132.172.238

🇨🇴 45.169.99.249

🇩🇪 43.157.38.228

🇫🇷 185.252.234.32

🇺🇸 138.113.22.151

🇧🇪 104.155.125.214

🇬🇧 37.156.64.39

🇨🇳 14.103.115.124

🇸🇪 217.212.214.55

🇳🇬 196.216.253.13

🇳🇴 158.173.166.74

🇺🇸 147.185.132.205

🇨🇳 121.29.84.22

🇺🇸 107.167.34.125

🇮🇹 93.39.97.203

🇬🇧 35.203.210.243