JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 82.24.238.193

82.24.238.193 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 18%: ?

18%

ISP	Internet Utilities Europe and Asia Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS395092
Domain Name	netutils.io
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 82.24.238.193

Whois 82.24.238.193

IP Abuse Reports for 82.24.238.193:

This IP address has been reported a total of 10 times from 3 distinct sources. 82.24.238.193 was first reported on May 26th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-05-30 08:34:42 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 82.24.238.193 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.24.238.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 30 04:34:37.799675 2026] [security2:error] [pid 29434:tid 29434] [client 82.24.238.193:38111] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.saletrender.com"] [uri "/wp-config.php.swp"] [unique_id "ahqhHa8h5znAMcvkz71X_QAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-05-28 22:04:13 (2 weeks ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-27. show less	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-05-28 03:23:14 (2 weeks ago)	(mod_security) mod_security (id:949110) triggered by 82.24.238.193 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:949110) triggered by 82.24.238.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 23:23:09.983695 2026] [security2:error] [pid 15978:tid 15978] [client 82.24.238.193:35819] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "joycepelham.com"] [uri "/.env.development"] [unique_id "ahe1HeCbulOgJjA7CfmXdQAAABI"], referer: https://www.google.com/search?q=joycepelham.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-28 03:00:56 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 82.24.238.193 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.24.238.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 23:00:48.293546 2026] [security2:error] [pid 20962:tid 20962] [client 82.24.238.193:33021] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.tvr77.garyrankin.com"] [uri "/wp-config.php.save"] [unique_id "ahev4I-In-kCGdhZ44M_PgAAAAM"], referer: https://www.google.com/search?q=www.tvr77.garyrankin.com show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-05-27 22:00:36 (2 weeks ago)	Auto-ban: >3000 req/min op 2026-05-27	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-05-27 17:44:21 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 82.24.238.193 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.24.238.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 13:44:07.269223 2026] [security2:error] [pid 7197:tid 7197] [client 82.24.238.193:45395] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.westsacneighborsfair.webserviceswest.com"] [uri "/wp-config.php~"] [unique_id "ahctZ4_8OlLP9gwq5Sf4CgAAAAM"], referer: https://www.google.com/search?q=www.westsacneighborsfair.webserviceswest.com show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 4server	2026-05-27 03:53:00 (2 weeks ago)	[WedMay2705:52:55.6335382026][security2:error][pid1081994:tid1082354][client82.24.238.193:0]ModSecur ... show more [WedMay2705:52:55.6335382026][security2:error][pid1081994:tid1082354][client82.24.238.193:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"cpu-services.ch\"][uri\"/.env.local\"][unique_id\"ahZql4-5rUOiviQZfT4MTQAAAIY\"] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 00:33:11 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 82.24.238.193 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.24.238.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 20:32:55.681628 2026] [security2:error] [pid 15531:tid 15531] [client 82.24.238.193:40475] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.noelramos.independentmusicconference.com"] [uri "/.env"] [unique_id "ahY7t1L9RhLvgvlxTfX7ggAAAD4"], referer: https://www.google.com/search?q=www.noelramos.independentmusicconference.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-26 18:10:43 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 82.24.238.193 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.24.238.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 14:10:37.544555 2026] [security2:error] [pid 23136:tid 23136] [client 82.24.238.193:53933] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mayflowersgifts.com"] [uri "/.env.save"] [unique_id "ahXiHR-kcLZzgcO9uwtb5wAAAAs"], referer: https://www.google.com/search?q=mayflowersgifts.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-26 17:54:32 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 82.24.238.193 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.24.238.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 13:54:22.898805 2026] [security2:error] [pid 22960:tid 22960] [client 82.24.238.193:43833] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stonetarot.com"] [uri "/.env.development.local"] [unique_id "ahXeTnkH-FLZhD1b7IOsiQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇵 164.52.24.186

🇹🇼 111.70.31.135

🇸🇪 81.170.248.221

🇩🇪 194.88.98.90

🇺🇿 188.113.222.221

🇵🇭 113.19.181.37

🇩🇪 94.134.176.135

🇫🇷 91.231.89.76

🇸🇦 79.72.3.119

🇺🇸 66.132.172.157

🇺🇸 57.141.0.38

🇺🇸 54.235.125.129

🇦🇷 45.239.34.179

🇳🇱 45.148.10.183

🇧🇷 34.39.250.230

🇺🇸 20.221.69.50

🇺🇸 18.97.26.34

🇲🇳 202.9.46.16

🇧🇷 186.26.78.255

🇵🇰 163.61.129.131