JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 82.25.120.136

82.25.120.136 was found in our database!

This IP was reported 55 times. Confidence of Abuse is 100%: ?

100%

ISP	Internet Utilities Europe and Asia Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS47583
Domain Name	netutils.io
Country	🇮🇳 India
City	Mumbai, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 82.25.120.136

Whois 82.25.120.136

IP Abuse Reports for 82.25.120.136:

This IP address has been reported a total of 55 times from 26 distinct sources. 82.25.120.136 was first reported on June 1st 2026, and the most recent report was 22 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 omartin	2026-06-08 10:36:08 (22 minutes ago)	Critical Vulnerability Scan detected	Hacking Brute-Force Exploited Host Web App Attack
🇩🇪 NewGastroline	2026-06-08 10:18:17 (39 minutes ago)	Malicious request blocked by CrowdSec on gastro-prod1.boreus.de	Bad Web Bot Web App Attack
🇩🇪 NewWavesApp	2026-06-08 00:54:02 (10 hours ago)	(mod_security) mod_security triggered on hostname [redacted] 82.25.120.136 (IN/India/-): (CF_ENABLE ... show more (mod_security) mod_security triggered on hostname [redacted] 82.25.120.136 (IN/India/-): (CF_ENABLE) show less	SQL Injection
🇫🇷 dynamix	2026-06-07 20:36:41 (14 hours ago)	Multiple WAF Violations	Web App Attack
Anonymous	2026-06-07 20:18:17 (14 hours ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇮🇩 Burayot	2026-06-07 15:28:26 (19 hours ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 82.25.120.136 (IN/India/-): 1 in the ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 82.25.120.136 (IN/India/-): 1 in the last 3600 secs show less	Web App Attack
🇫🇷 masterguru	2026-06-07 10:22:48 (1 day ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-196)	Hacking Web App Attack
🇫🇷 masterguru	2026-06-07 09:07:12 (1 day ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-197)	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 08:37:32 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 82.25.120.136 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.25.120.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 04:37:27.697851 2026] [security2:error] [pid 15341:tid 15341] [client 82.25.120.136:53790] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jamworldmovements.com"] [uri "/member/.env"] [unique_id "aiUtx0jQP1ymJ1ffF4mnjwAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-07 08:35:07 (1 day ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇫🇷 masterguru	2026-06-07 08:18:44 (1 day ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-195)	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 08:08:19 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 82.25.120.136 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.25.120.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 04:08:12.154282 2026] [security2:error] [pid 31380:tid 31380] [client 82.25.120.136:20320] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "waterjetsolutions.com"] [uri "/laravel/.env"] [unique_id "aiUm7E-bL7kyvUL1MGhvYgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 e.fierstra	2026-06-07 07:30:55 (1 day ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 07:07:36 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 82.25.120.136 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.25.120.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 03:07:29.033728 2026] [security2:error] [pid 9730:tid 9730] [client 82.25.120.136:47976] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kwijlen.com"] [uri "/admin/.env"] [unique_id "aiUYsbeYd3MrUqtke1LZpAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 06:24:40 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 82.25.120.136 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 82.25.120.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 02:24:37.762355 2026] [security2:error] [pid 7349:tid 7349] [client 82.25.120.136:30232] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tbnkardesler.com"] [uri "/app/.env"] [unique_id "aiUOpVexRkybKL67eEgYigAAABk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 55 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 122.114.255.230

🇨🇳 36.33.167.165

🇮🇳 172.253.229.209

🇧🇩 165.99.216.188

🇻🇳 157.66.26.151

🇨🇳 118.196.64.66

🇨🇳 113.31.103.129

🇮🇳 112.133.246.86

🇿🇦 82.29.245.212

🇲🇾 47.250.127.36

🇺🇸 2600:3c02::2000:60ff:fe6b:f238

🇺🇸 216.126.239.17

🇰🇬 212.241.15.82

🇲🇽 186.96.145.241

🇮🇳 152.58.106.172

🇮🇪 108.131.151.129

🇮🇳 103.204.167.14

🇮🇳 103.201.142.219

🇨🇳 101.126.54.36

🇷🇴 92.118.39.236