JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 82.25.125.77

82.25.125.77 was found in our database!

This IP was reported 42 times. Confidence of Abuse is 100%: ?

100%

ISP	Internet Utilities Europe and Asia Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS47583
Domain Name	netutils.io
Country	🇮🇳 India
City	Mumbai, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 82.25.125.77

Whois 82.25.125.77

IP Abuse Reports for 82.25.125.77:

This IP address has been reported a total of 42 times from 32 distinct sources. 82.25.125.77 was first reported on June 6th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-08 21:59:09 (1 week ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-07. show less	Web App Attack SSH Hacking
🇩🇪 Melle	2026-06-08 10:08:09 (1 week ago)	Blocked by CrowdSec \| Scenario: crowdsecurity/http-sensitive-files \| 82.25.125.77 triggered 5 events ... show more Blocked by CrowdSec \| Scenario: crowdsecurity/http-sensitive-files \| 82.25.125.77 triggered 5 events \| Detected: 2026-06-08T10:08:08.521369801Z show less	Web App Attack Hacking
Anonymous	2026-06-08 07:43:40 (1 week ago)	82.25.125.77 - - [08/Jun/2026:09:43:40 +0200] "GET /.env HTTP/1.1" 301 169 "-" "Mozilla/5.0 (Macinto ... show more 82.25.125.77 - - [08/Jun/2026:09:43:40 +0200] "GET /.env HTTP/1.1" 301 169 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" show less	Web App Attack
🇺🇸 dtorrer	2026-06-08 07:16:24 (1 week ago)	General vulnerability scan.	Port Scan
🇬🇧 openstrike.co.uk	2026-06-08 05:13:31 (1 week ago)	9 attacks on env grabbing URLs: GET /laravel/.env HTTP/1.1	Hacking
Anonymous	2026-06-08 04:55:03 (1 week ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Web App Attack Brute-Force Bad Web Bot
Anonymous	2026-06-08 02:55:28 (1 week ago)	(caddyscan) Scanner path probe from 82.25.125.77 (IN/India/-): 5 in the last 3600 secs; Ports: ; Di ... show more (caddyscan) Scanner path probe from 82.25.125.77 (IN/India/-): 5 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 82.25.125.77 - - [08/Jun/2026:02:55:27 +0000] "GET /member/.env HTTP/1.1" [REDACTED] 200 2627 82.25.125.77 - - [08/Jun/2026:02:55:27 +0000] "GET /.env HTTP/1.1" [REDACTED] 200 2627 82.25.125.77 - - [08/Jun/2026:02:55:27 +0000] "GET /app/.env HTTP/1.1" [REDACTED] 200 2627 82.25.125.77 - - [08/Jun/2026:02:55:27 +0000] "GET /backend/.env HTTP/1.1" [REDACTED] 200 2627 82.25.125.77 - - [08/Jun/2026:02:55:27 +0000] "GET /api/.env HTTP/1.1" show less	Port Scan
Anonymous	2026-06-08 00:59:15 (1 week ago)	(caddyscan) Scanner path probe from 82.25.125.77 (IN/India/-): 5 in the last 3600 secs; Ports: ; Di ... show more (caddyscan) Scanner path probe from 82.25.125.77 (IN/India/-): 5 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 82.25.125.77 - - [08/Jun/2026:00:59:11 +0000] "GET /api/.env HTTP/1.1" [REDACTED] 200 2627 82.25.125.77 - - [08/Jun/2026:00:59:11 +0000] "GET /core/.env HTTP/1.1" [REDACTED] 200 2627 82.25.125.77 - - [08/Jun/2026:00:59:11 +0000] "GET /backend/.env HTTP/1.1" [REDACTED] 200 2627 82.25.125.77 - - [08/Jun/2026:00:59:11 +0000] "GET /laravel/.env HTTP/1.1" [REDACTED] 200 2627 82.25.125.77 - - [08/Jun/2026:00:59:11 +0000] "GET /admin/.env HTTP/1.1" show less	Port Scan
🇳🇱 debestelapp	2026-06-07 16:15:06 (1 week ago)		Web App Attack
🇫🇷 dynamix	2026-06-07 13:23:39 (1 week ago)	Multiple WAF Violations	Web App Attack
🇩🇪 raph	2026-06-07 11:40:34 (1 week ago)	[LIB DIR] crawler /vendor/, /node_modules/, /laravel/*, etc.	Bad Web Bot Web App Attack
🇩🇪 paissangroup	2026-06-07 09:41:25 (1 week ago)	Multiple WAF Violations	Web App Attack
Anonymous	2026-06-07 08:44:05 (1 week ago)	(caddyscan) Scanner path probe from 82.25.125.77 (IN/India/-): 5 in the last 3600 secs; Ports: ; Di ... show more (caddyscan) Scanner path probe from 82.25.125.77 (IN/India/-): 5 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 82.25.125.77 - - [07/Jun/2026:08:44:01 +0000] "GET /app/.env HTTP/1.1" [REDACTED] 200 2627 82.25.125.77 - - [07/Jun/2026:08:44:01 +0000] "GET /dev/.env HTTP/1.1" [REDACTED] 200 2627 82.25.125.77 - - [07/Jun/2026:08:44:01 +0000] "GET /core/.env HTTP/1.1" [REDACTED] 200 2627 82.25.125.77 - - [07/Jun/2026:08:44:01 +0000] "GET /laravel/.env HTTP/1.1" [REDACTED] 200 2627 82.25.125.77 - - [07/Jun/2026:08:44:01 +0000] "GET /admin/.env HTTP/1.1" show less	Port Scan
🇷🇺 DZBOT	2026-06-07 07:45:33 (1 week ago)	DZBOT: Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇲🇾 Rizzy	2026-06-07 06:43:33 (1 week ago)	Multiple WAF Violations	Brute-Force Web App Attack

Showing 1 to 15 of 42 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 91.231.89.68

🇺🇸 52.148.5.57

🇯🇵 8.216.5.142

🇬🇷 185.106.37.250

🇨🇳 123.131.134.242

🇫🇷 82.102.18.190

🇸🇦 51.36.227.155

🇳🇱 45.148.10.147

🇸🇬 8.219.220.95

🇰🇷 222.239.251.12

🇰🇿 193.31.200.85

🇧🇷 187.16.96.250

🇵🇱 94.26.68.54

🇭🇰 84.54.3.194

🇫🇷 62.210.199.83

🇧🇬 62.133.47.13

🇬🇧 35.203.210.166

🇺🇸 20.84.101.167

🇺🇸 2604:a880:400:d1:0:4:9880:9001

🇵🇰 223.123.71.218