JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 82.29.199.64

82.29.199.64 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 100%: ?

100%

ISP	HOSTINGER US
Usage Type	Data Center/Web Hosting/Transit
ASN	AS47583
Domain Name	hostinger.com
Country	🇺🇸 United States of America
City	Boston, Massachusetts

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 82.29.199.64

Whois 82.29.199.64

IP Abuse Reports for 82.29.199.64:

This IP address has been reported a total of 34 times from 27 distinct sources. 82.29.199.64 was first reported on June 7th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇽 octageeks.com	2026-06-09 04:06:34 (1 week ago)	Wordpress malicious attack:[octablocked]	Web App Attack
🇩🇪 4server	2026-06-08 12:00:27 (1 week ago)	[MonJun0814:00:25.0305752026][security2:error][pid1199430:tid1199472][client82.29.199.64:0]ModSecuri ... show more [MonJun0814:00:25.0305752026][security2:error][pid1199430:tid1199472][client82.29.199.64:0]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch\"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf\\|boot\\\\\\\\.ini\\|web.config\)\\\\\\\\b\\|$\\|\^\\|\\\\\\\\.\\\\\\\\.$/etc/\\|/\\\\\\\\.$\?:history\\|bash_history\\|sh_history\\|env$\$\)\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf\"][line\"204\"][id\"390709\"][rev\"30\"][msg\"Atomicorp.comWAFRules:Attempttoaccessprotectedfileremotely\"][data\"/.env\"][severity\"CRITICAL\"][hostname\"gm-swiss.ch\"][uri\"/laravel/.env\"][unique_id\"aiau2e7eZGrX9R9nWw9KjwAAAA4\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 11:25:48 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 82.29.199.64 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 82.29.199.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 07:25:41.054591 2026] [security2:error] [pid 17969:tid 17969] [client 82.29.199.64:61986] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "javathecup.com"] [uri "/laravel/.env"] [unique_id "aiamtfU6BIsFhN7wOhPehAAAADU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 10:13:22 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 82.29.199.64 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 82.29.199.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 06:13:13.907102 2026] [security2:error] [pid 10838:tid 10928] [client 82.29.199.64:44990] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "transiit.org"] [uri "/.env.save"] [unique_id "aiaVuYEIzUo_sHBIfuRnIwAAAc4"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Nevermind	2026-06-08 08:06:01 (1 week ago)	82.29.199.64 - - [08/Jun/2026:10:06:01 +0200] "GET /backend/.env HTTP/1.1" 403 4790 "-" "Mozilla/5.0 ... show more 82.29.199.64 - - [08/Jun/2026:10:06:01 +0200] "GET /backend/.env HTTP/1.1" 403 4790 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 82.29.199.64 - - [08/Jun/2026:10:06:01 +0200] "GET /api/.env HTTP/1.1" 403 4790 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 82.29.199.64 - - [08/Jun/2026:10:06:01 +0200] "GET /app/.env HTTP/1.1" 403 4790 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 82.29.199.64 - - [08/Jun/2026:10:06:01 +0200] "GET /api/.env.save HTTP/1.1" 403 4790 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 07:54:28 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 82.29.199.64 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 82.29.199.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 03:54:21.798980 2026] [security2:error] [pid 32000:tid 32013] [client 82.29.199.64:26648] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "themarketplacelb.com"] [uri "/members/.env"] [unique_id "aiZ1LbSnYpBFbp5F-FvrdAAAAEc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-08 06:35:09 (1 week ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇫🇷 masterguru	2026-06-08 03:07:23 (1 week ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-196)	Hacking Web App Attack
🇫🇷 Little Iguana	2026-06-08 02:42:55 (1 week ago)	Attempt to hack Wordpress Login, XMLRPC or other login	Hacking
🇮🇪 Jim Keir	2026-06-08 02:30:33 (1 week ago)	2026-06-08 02:30:32 82.29.199.64 File scanning, blocking 82.29.199.64 for 5 minutes 2026-06-08 02:30 ... show more 2026-06-08 02:30:32 82.29.199.64 File scanning, blocking 82.29.199.64 for 5 minutes 2026-06-08 02:30:32 82.29.199.64 File scanning, blocking 82.29.199.64 for 5 minutes 2026-06-08 02:30:32 82.29.199.64 File scanning, blocking 82.29.199.64 for 5 minutes 2026-06-08 02:30:32 82.29.199.64 File scanning, blocking 82.29.199.64 for 5 minutes 2026-06-08 02:30:32 82.29.199.64 File scanning, blocking 82.29.199.64 for 5 minutes 2026-06-08 02:30:32 82.29.199.64 File scanning, blocking 82.29.199.64 for 5 minutes 2026-06-08 02:30:32 82.29.199.64 File scanning, blocking 82.29.199.64 for 5 minutes 2026-06-08 02:30:32 82.29.199.64 File scanning, blocking 82.29.199.64 for 5 minutes show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 02:08:46 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 82.29.199.64 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 82.29.199.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 22:08:38.706463 2026] [security2:error] [pid 16261:tid 16261] [client 82.29.199.64:35974] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "trailofcrumbs.com"] [uri "/admin/.env"] [unique_id "aiYkJg_gPfl8mDEvCq_uDAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Matthew Ping	2026-06-08 01:45:01 (1 week ago)	ModSecurity rule 949110 triggered on wp3. Web application attack blocked by CSF/LFD.	Web App Attack Hacking
🇫🇷 ✨	2026-06-08 01:26:07 (1 week ago)	Domain : massimomautone.com Rule : env 2026-06-08 01:25:22 *hidden-privacy* GET /laravel/.env - ... show more Domain : massimomautone.com Rule : env 2026-06-08 01:25:22 *hidden-privacy* GET /laravel/.env - 443 - 82.29.199.64 HTTP/1.1 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36 - massimomautone.com 301 0 0 454 231 100 - - show less	Hacking SQL Injection
🇬🇧 andypiper	2026-06-08 01:01:50 (1 week ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 23:46:59 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 82.29.199.64 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 82.29.199.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 19:46:51.532585 2026] [security2:error] [pid 31968:tid 31968] [client 82.29.199.64:26754] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "forsythfixit.com"] [uri "/api/.env"] [unique_id "aiYC65ExONrvCLp5avJz8gAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 191.241.142.170

🇮🇩 157.10.222.194

🇮🇳 152.58.162.171

🇺🇸 146.19.49.111

🇬🇧 91.206.59.83

🇺🇸 54.241.145.251

🇳🇱 45.148.10.152

🇬🇧 35.203.210.223

🇮🇪 2a05:d018:1231:b002:e61d:b2b5:c4ff:a209

🇺🇸 205.210.31.68

🇨🇳 203.83.238.175

🇧🇷 177.126.132.44

🇦🇪 92.97.23.41

🇳🇱 91.92.42.182

🇧🇬 78.83.249.54

🇺🇸 66.132.172.112

🇷🇴 2.57.121.25

🇺🇸 2620:171:f3:f0:9999::233

🇹🇷 212.64.216.142

🇩🇪 164.92.192.204