JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 82.22.222.7

82.22.222.7 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 24%: ?

24%

ISP	Internet Utilities Europe and Asia Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	netutils.io
Country	🇵🇱 Poland
City	Warsaw, Mazovia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 82.22.222.7

Whois 82.22.222.7

IP Abuse Reports for 82.22.222.7:

This IP address has been reported a total of 32 times from 18 distinct sources. 82.22.222.7 was first reported on April 1st 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 sverson	2026-05-16 10:47:51 (1 month ago)	Mutliple unauthorized attempts to access web resources	Web App Attack
🇺🇸 TPI-Abuse	2026-05-15 05:55:24 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 82.22.222.7 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 82.22.222.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 15 01:55:19.367041 2026] [security2:error] [pid 7631:tid 7631] [client 82.22.222.7:51674] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.dodojuice.com"] [uri "/sftp-config.json"] [unique_id "aga1R51NbA9I5Vd1DAKBzQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-12 23:46:48 (1 month ago)	(mod_security) mod_security (id:210580) triggered by 82.22.222.7 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210580) triggered by 82.22.222.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 12 19:46:44.171090 2026] [security2:error] [pid 31709:tid 31709] [client 82.22.222.7:38248] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "sftp-config.json" at REQUEST_COOKIES:handl_landing_page. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/08_Global_Other.conf"] [line "57"] [id "210580"] [rev "2"] [msg "COMODO WAF: OS File Access Attempt\|\|somaflow.okwellbeing.com\|F\|2"] [data "Matched Data: sftp-config.json found within REQUEST_COOKIES:handl_landing_page: https:/ensitech.com/sftp-config.json"] [severity "CRITICAL"] [tag "CWAF"] [tag "Other"] [hostname "somaflow.okwellbeing.com"] [uri "/"] [unique_id "agO75ORkNvs0UldXpwPNTQAAACc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-09 13:47:40 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 82.22.222.7 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 82.22.222.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 09:47:35.168960 2026] [security2:error] [pid 17199:tid 17199] [client 82.22.222.7:9472] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lifeinsmoke.com"] [uri "/sftp-config.json"] [unique_id "af869wFASgXKqIPen8tNEQAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-05-09 01:11:55 (1 month ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇬🇧 Axel	2026-05-07 21:46:02 (1 month ago)	Blocked by ModSecurity. Rule ID: 210580 Message: COMODO WAF: OS File Access Attempt\|\|axel-networks.c ... show more Blocked by ModSecurity. Rule ID: 210580 Message: COMODO WAF: OS File Access Attempt\|\|axel-networks.com\|F\|2 Phase: 2 Severity: CRITICAL URI: /.vscode/sftp.json Server: UK-01 show less	Web App Attack Hacking SQL Injection
🇺🇸 TPI-Abuse	2026-05-07 07:41:17 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 82.22.222.7 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 82.22.222.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 07 03:41:13.208434 2026] [security2:error] [pid 4355:tid 4355] [client 82.22.222.7:59408] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "adm-sal.com"] [uri "/sftp-config.json"] [unique_id "afxCGRTKBLW4NwFm9XeDLAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 YF	2026-05-05 03:02:18 (1 month ago)	Config JSON probe	Web App Attack
🇺🇸 Nate Woods	2026-05-04 19:13:00 (1 month ago)	Attempted to visit /.vscode/sftp.json?q=.vscode%2Fsftp.json	Web App Attack
🇺🇸 S.O.B.A. Dev.	2026-05-03 12:02:19 (1 month ago)	Threat Blocked by BeeHive from (ASN:212238) (Network:Datacamp Limited) (Host:soba.dev) (Method:GET) ... show more Threat Blocked by BeeHive from (ASN:212238) (Network:Datacamp Limited) (Host:soba.dev) (Method:GET) (Protocol:HTTP/1.1) (Timestamp:2026-05-03T12:02:19Z) show less	Brute-Force Web Spam Web App Attack
🇺🇸 TPI-Abuse	2026-05-02 16:03:25 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 82.22.222.7 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 82.22.222.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 02 12:03:21.543716 2026] [security2:error] [pid 26399:tid 26399] [client 82.22.222.7:8358] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hatefmusic.com"] [uri "/sftp-config.json"] [unique_id "afYgSSR0W4tfibkaxs8bXQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Didier Lagaert	2026-05-01 02:10:29 (1 month ago)	lie-17 : Block hidden directories=>/.vscode/sftp.json(/)	Hacking
🇩🇪 FeG Deutschland	2026-04-24 16:06:30 (1 month ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇩🇪 Mario Silber	2026-04-23 11:09:39 (1 month ago)	(mod_security) mod_security triggered on hostname [redacted] 82.22.222.7 (PL/Poland/-)	SQL Injection
🇩🇪 FeG Deutschland	2026-04-22 21:06:16 (2 months ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 13.90.206.6

🇺🇸 2607:f8b0:4002:c00::127

🇮🇳 194.164.149.230

🇸🇬 152.32.218.244

🇨🇳 116.28.182.163

🇫🇷 85.217.140.46

🇨🇳 60.166.83.133

🇺🇸 50.188.204.213

🇷🇺 213.234.11.10

🇺🇸 199.127.60.187

🇲🇽 189.217.130.86

🇨🇳 120.25.208.223

🇧🇬 78.128.114.166

🇺🇸 45.130.83.107

🇺🇸 44.62.21.54

🇨🇳 218.13.157.209

🇦🇷 200.63.111.132

🇺🇸 195.184.76.127

🇸🇪 171.25.158.57

🇹🇼 111.70.32.49