JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 82.25.113.169

82.25.113.169 was found in our database!

This IP was reported 38 times. Confidence of Abuse is 100%: ?

100%

ISP	Internet Utilities Europe and Asia Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS47583
Domain Name	netutils.io
Country	🇫🇷 France
City	Paris, Ile-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 82.25.113.169

Whois 82.25.113.169

IP Abuse Reports for 82.25.113.169:

This IP address has been reported a total of 38 times from 24 distinct sources. 82.25.113.169 was first reported on June 7th 2026, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Holger	2026-06-13 12:35:12 (5 hours ago)	Bruteforce WebAttack	Brute-Force Web App Attack
🇩🇪 Holger	2026-06-11 09:28:41 (2 days ago)	Bruteforce WebAttack	Brute-Force Web App Attack
🇩🇪 iNetWorker	2026-06-08 14:50:06 (5 days ago)	trolling for resource vulnerabilities	Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 14:49:37 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 82.25.113.169 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.25.113.169 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 10:49:30.054983 2026] [security2:error] [pid 6238:tid 6238] [client 82.25.113.169:60018] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "badfoodlawsuit.com"] [uri "/members/.env"] [unique_id "aibWetbP5lz8dGYLlquhIgAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 11:55:59 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 82.25.113.169 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.25.113.169 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 07:55:52.789615 2026] [security2:error] [pid 22669:tid 22669] [client 82.25.113.169:17752] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "heavymetalnutrition.blog"] [uri "/dev/.env"] [unique_id "aiatyDIQUYH57fygmEzVmgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 juutis	2026-06-08 11:39:08 (5 days ago)	Multiple WAF abuses - IP blocked	Hacking Brute-Force Web App Attack
🇩🇪 EGP Abuse Dept	2026-06-08 10:45:18 (5 days ago)	Scanning for web/db/file exploits on jekeukenwrappen.nl	SQL Injection Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 08:50:20 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 82.25.113.169 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.25.113.169 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 04:50:13.073181 2026] [security2:error] [pid 17741:tid 17741] [client 82.25.113.169:49598] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dealconsultingllc.com"] [uri "/members/.env"] [unique_id "aiaCRTZnYLfKsgSPXJsJjwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-08 08:45:53 (5 days ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇩🇪 Holger	2026-06-08 08:03:01 (5 days ago)	Bruteforce WebAttack	Brute-Force Web App Attack
🇨🇭 zynex	2026-06-08 07:39:50 (5 days ago)	URL Probing: /core/.env	Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 06:50:24 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 82.25.113.169 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.25.113.169 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 02:50:17.489435 2026] [security2:error] [pid 10324:tid 10324] [client 82.25.113.169:32586] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lukeschicago.com"] [uri "/.env"] [unique_id "aiZmKSIzjF-Ux_Lk6ntXlAAAAGw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 06:17:53 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 82.25.113.169 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.25.113.169 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 02:17:48.409937 2026] [security2:error] [pid 15481:tid 15481] [client 82.25.113.169:17208] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "moodyauto.com"] [uri "/dev/.env"] [unique_id "aiZejACDzN-ynntl3fUWNQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-08 06:07:17 (5 days ago)	Blocked: Reason='Suspicious traffic score=60 (review-based detection)'; Requests=12	Hacking
Anonymous	2026-06-08 05:09:05 (5 days ago)	Bot / scanning and/or hacking attempts: GET /members/.env HTTP/1.1, GET /core/.env.save HTTP/1.1, GE ... show more Bot / scanning and/or hacking attempts: GET /members/.env HTTP/1.1, GET /core/.env.save HTTP/1.1, GET /.env HTTP/1.1, GET /.env.save HTTP/1.1, GET /dev/.env HTTP/1.1, GET /app/.env HTTP/1.1, GET /backend/.env HTTP/1.1, GET /api/.env HTTP/1.1 show less	Hacking Web App Attack

Showing 1 to 15 of 38 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇭 209.99.185.195

🇺🇸 184.168.21.211

🇫🇮 147.185.133.155

🇧🇩 103.183.62.3

🇮🇩 103.41.247.76

🇺🇸 66.132.195.20

🇺🇸 20.168.120.151

🇺🇸 209.222.101.194

🇸🇪 171.25.158.74

🇺🇸 34.162.98.130

🇨🇳 8.138.85.185

🇻🇳 171.247.209.89

🇺🇸 147.185.132.233

🇯🇵 103.163.220.119

🇺🇸 100.29.192.53

🇵🇱 94.26.68.55

🇺🇸 64.62.156.24

🇸🇬 47.237.206.80

🇳🇱 20.123.146.93

🇻🇳 14.225.206.187