JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 240d:c010:c8:f::48

240d:c010:c8:f::48 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 4%: ?

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	ACEVILLE PTE.LTD.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS139341
Domain Name	tencent.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 240d:c010:c8:f::48

Whois 240d:c010:c8:f::48

IP Abuse Reports for 240d:c010:c8:f::48:

This IP address has been reported a total of 4 times from 1 distinct source. 240d:c010:c8:f::48 was first reported on June 14th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 oh.mg	2026-06-20 02:16:31 (2 days ago)	240d:c010:c8:f::48 - - [20/Jun/2026:04:16:26 +0200] "GET /.env.example HTTP/1.1" 403 2251 "-" "TLM-A ... show more 240d:c010:c8:f::48 - - [20/Jun/2026:04:16:26 +0200] "GET /.env.example HTTP/1.1" 403 2251 "-" "TLM-Audit-Scanner/1.0" 240d:c010:c8:f::48 - - [20/Jun/2026:04:16:27 +0200] "GET /.git/hooks/pre-commit HTTP/1.1" 403 561 "-" "TLM-Audit-Scanner/1.0" 240d:c010:c8:f::48 - - [20/Jun/2026:04:16:27 +0200] "GET /.git/hooks/pre-commit HTTP/1.1" 403 561 "-" "TLM-Audit-Scanner/1.0" ... show less	Bad Web Bot Web App Attack
🇫🇮 oh.mg	2026-06-15 23:49:42 (6 days ago)	240d:c010:c8:f::48 - - [16/Jun/2026:01:49:34 +0200] "GET /login.action HTTP/1.1" 403 539 "-" "Mozill ... show more 240d:c010:c8:f::48 - - [16/Jun/2026:01:49:34 +0200] "GET /login.action HTTP/1.1" 403 539 "-" "Mozilla/5.0 (l9scan/2.0.9353e2734323e2437313e23343; +https://leakix.net)" 240d:c010:c8:f::48 - - [16/Jun/2026:01:49:42 +0200] "GET /.git/config HTTP/1.1" 403 539 "-" "Mozilla/5.0 (l9scan/2.0.9353e2634323e2437313e23343; +https://leakix.net)" 240d:c010:c8:f::48 - - [16/Jun/2026:01:49:42 +0200] "GET /.git/config HTTP/1.1" 403 539 "-" "Mozilla/5.0 (l9scan/2.0.9353e2634323e2437313e23343; +https://leakix.net)" 240d:c010:c8:f::48 - - [16/Jun/2026:01:49:42 +0200] "GET /.env HTTP/1.1" 403 2251 "-" "Mozilla/5.0 (l9scan/2.0.9353e2734323e2437313e23343; +https://leakix.net)" ... show less	Bad Web Bot Web App Attack
🇫🇮 oh.mg	2026-06-14 04:12:43 (1 week ago)	240d:c010:c8:f::48 - - [14/Jun/2026:06:12:42 +0200] "GET /.env~ HTTP/1.1" 403 2251 "-" "Mozilla/4.0 ... show more 240d:c010:c8:f::48 - - [14/Jun/2026:06:12:42 +0200] "GET /.env~ HTTP/1.1" 403 2251 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; en) Opera 8.0" 240d:c010:c8:f::48 - - [14/Jun/2026:06:12:42 +0200] "GET /api/.env.bak HTTP/1.1" 403 2251 "-" "Mozilla/5.0 (X11; U; Linux x86_64; sv-SE; rv:1.8.1.12) Gecko/20080207 Ubuntu/7.10 (gutsy) Firefox/2.0.0.12" 240d:c010:c8:f::48 - - [14/Jun/2026:06:12:42 +0200] "GET /.env.orig HTTP/1.1" 403 2251 "-" "Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.100 Mobile Safari/537.36" 240d:c010:c8:f::48 - - [14/Jun/2026:06:12:42 +0200] "GET /backend/.env.backup HTTP/1.1" 403 2251 "-" "Mozilla/5.0 (Linux; Android 8.0.0; SAMSUNG SM-G935F Build/R16NW) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/9.4 Chrome/67.0.3396.87 Mobile Safari/537.36" 240d:c010:c8:f::48 - - [14/Jun/2026:06:12:42 +0200] "GET /api/v3/.env HTTP/1.1" 403 2251 "-" "Mozilla/5.0 (X11; OpenBSD amd64; rv:28.0) Gecko/20100 ... show less	Bad Web Bot Web App Attack
🇫🇮 oh.mg	2026-06-14 02:24:21 (1 week ago)	[Sun Jun 14 04:24:18.232094 2026] [security2:error] [pid 2991649:tid 2991660] [client 240d:c010:c8:f ... show more [Sun Jun 14 04:24:18.232094 2026] [security2:error] [pid 2991649:tid 2991660] [client 240d:c010:c8:f::48:20698] [client 240d:c010:c8:f::48] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.10.0-dev"] [tag "anomaly-evaluation"] [tag "OWASP_CRS"] [hostname "archive.mmn.on.ca"] [uri "/html/.git/config"] [unique_id "ai4Q0k_X3ZC3EiLghAW4rQAAAMg"] [Sun Jun 14 04:24:18.456395 2026] [security2:error] [pid 2992780:tid 2992793] [client 240d:c010:c8:f::48:20782] [client 240d:c010:c8:f::48] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] ... show less	Web App Attack Bad Web Bot

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 153.66.28.132

🇺🇸 104.248.50.150

🇺🇸 104.210.55.152

🇮🇳 103.68.176.234

🇨🇾 94.46.212.2

🇬🇧 87.236.176.183

🇲🇽 201.161.46.133

🇺🇸 174.179.77.35

🇧🇷 138.122.140.200

🇮🇳 106.51.92.114

🇺🇸 74.125.186.145

🇬🇧 193.163.125.56

🇷🇺 188.170.82.181

🇺🇿 185.191.141.115

🇳🇱 176.65.148.158

🇩🇪 138.197.191.87

🇺🇸 104.171.24.204

🇺🇸 3.133.105.224

🇩🇪 194.113.233.25

🇬🇧 193.163.125.20