JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 82.25.242.62

82.25.242.62 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 31%: ?

31%

ISP	Internet Utilities Europe and Asia Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS203020
Domain Name	netutils.io
Country	🇸🇮 Slovenia
City	Ljubljana, Ljubljana

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 82.25.242.62

Whois 82.25.242.62

IP Abuse Reports for 82.25.242.62:

This IP address has been reported a total of 15 times from 7 distinct sources. 82.25.242.62 was first reported on September 16th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 bigorre.org	2026-06-13 11:39:07 (1 day ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇺🇸 mnsf	2026-05-29 12:05:39 (2 weeks ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-05-29 11:26:05 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 82.25.242.62 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 82.25.242.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 29 07:25:56.642366 2026] [security2:error] [pid 17292:tid 17299] [client 82.25.242.62:35233] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.gwgfamily.giere.us"] [uri "/wp-config.php"] [unique_id "ahl3xGh57-Mngulgnb1i5wAAAMU"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-05-28 22:03:38 (2 weeks ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-27. show less	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-05-28 16:36:32 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 82.25.242.62 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 82.25.242.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 28 12:36:28.734955 2026] [security2:error] [pid 6871:tid 6871] [client 82.25.242.62:43877] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.tnthandy.com.inetbrain.com"] [uri "/.env.save"] [unique_id "ahhvDFwtD5AvQWW79iByQQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-28 03:00:53 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 82.25.242.62 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 82.25.242.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 23:00:48.759985 2026] [security2:error] [pid 20962:tid 20962] [client 82.25.242.62:57419] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.tvr77.garyrankin.com"] [uri "/.env.vercel"] [unique_id "ahev4I-In-kCGdhZ44M_QAAAAAM"], referer: https://www.google.com/search?q=www.tvr77.garyrankin.com show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2026-05-27 22:30:48 (2 weeks ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 82.25.242.62 (SI/Slovenia/-): 1 in ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 82.25.242.62 (SI/Slovenia/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 18:05:32 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 82.25.242.62 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 82.25.242.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 14:05:25.223444 2026] [security2:error] [pid 32187:tid 32187] [client 82.25.242.62:58563] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|mail.fresnogymnastics.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mail.fresnogymnastics.com"] [uri "/backup.sql"] [unique_id "ahcyZeCMMXKkDbEbDXlV2gAAAA4"], referer: https://www.google.com/search?q=mail.fresnogymnastics.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 15:54:53 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 82.25.242.62 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 82.25.242.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 11:54:47.466782 2026] [security2:error] [pid 28501:tid 28501] [client 82.25.242.62:39973] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "midea.cloudex.link"] [uri "/.env.development"] [unique_id "ahcTxyBAFRTxD4jQjYHFBwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 00:57:48 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 82.25.242.62 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 82.25.242.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 20:57:44.549755 2026] [security2:error] [pid 17231:tid 17231] [client 82.25.242.62:58155] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tatethegreat.com"] [uri "/.env.development"] [unique_id "ahZBiDMrahS8fvX5I6NlaAAAAA8"], referer: https://www.google.com/search?q=tatethegreat.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 00:22:41 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 82.25.242.62 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 82.25.242.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 20:22:35.231910 2026] [security2:error] [pid 28484:tid 28484] [client 82.25.242.62:36197] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vcmail.net"] [uri "/.env.production"] [unique_id "ahY5SzkuWpmPD172VBnyFgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-26 17:58:36 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 82.25.242.62 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 82.25.242.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 13:58:31.770510 2026] [security2:error] [pid 12464:tid 12464] [client 82.25.242.62:48033] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.test-site.angelaridgwaydressage.com"] [uri "/.env.development.local"] [unique_id "ahXfR6f_EtJptfsf-GdHtgAAAAo"], referer: https://www.google.com/search?q=www.test-site.angelaridgwaydressage.com show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 exxos	2025-10-31 16:03:01 (7 months ago)	Attacks with Bad user agents	Hacking
🇳🇱 exxos	2025-10-31 12:05:33 (7 months ago)	Attacks with Bad user agents	Hacking
🇩🇪 CommanderRoot	2025-09-16 11:56:15 (8 months ago)	Bot crawler	DDoS Attack Web Spam

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.111

🇧🇷 209.14.88.118

🇳🇱 195.178.110.30

🇪🇨 186.68.83.105

🇨🇳 183.66.166.30

🇮🇩 182.13.96.107

🇧🇷 177.85.247.230

🇺🇸 162.243.147.237

🇵🇰 154.57.216.142

🇯🇵 152.32.202.151

🇺🇸 137.184.99.130

🇮🇳 122.176.20.134

🇨🇳 120.55.4.115

🇮🇳 103.86.180.10

🇫🇷 91.231.89.51

🇳🇱 91.92.40.44

🇳🇱 91.92.40.7

🇵🇱 87.251.64.147

🇷🇴 80.94.92.182

🇷🇺 79.104.0.82