JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a02:6ea0:4000::24

2a02:6ea0:4000::24 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 52%: ?

52%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Datacamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	datacamp.co.uk
Country	🇦🇷 Argentina
City	Buenos Aires, Buenos Aires F.D.

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a02:6ea0:4000::24

Whois 2a02:6ea0:4000::24

IP Abuse Reports for 2a02:6ea0:4000::24:

This IP address has been reported a total of 19 times from 8 distinct sources. 2a02:6ea0:4000::24 was first reported on June 11th 2026, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Charlesiv	2026-06-15 02:02:52 (7 hours ago)	Triggered Cloudflare WAF (firewallCustom) from AR. Action taken: BLOCK ASN: 212238 (Datacamp Limited ... show more Triggered Cloudflare WAF (firewallCustom) from AR. Action taken: BLOCK ASN: 212238 (Datacamp Limited) Protocol: HTTP/1.1 (GET method) Endpoint: /.env.local Timestamp: 2026-06-15T00:37:08Z Ray ID: a0bd81296826de5e UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36 show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-15 01:43:07 (7 hours ago)	(mod_security) mod_security (id:210492) triggered by 2a02:6ea0:4000::24 (Unknown): 1 in the last 300 ... show more (mod_security) mod_security (id:210492) triggered by 2a02:6ea0:4000::24 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 21:43:00.373507 2026] [security2:error] [pid 6332:tid 6332] [client 2a02:6ea0:4000::24:55441] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.vm.ostborg.com"] [uri "/.env.local"] [unique_id "ai9YpEeFCe_uegfi7K6SsQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 todix	2026-06-14 19:41:11 (13 hours ago)	Web App Attack Exploid from 2a02:6ea0:4000::24	Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 10:29:51 (23 hours ago)	(mod_security) mod_security (id:210492) triggered by 2a02:6ea0:4000::24 (Unknown): 1 in the last 300 ... show more (mod_security) mod_security (id:210492) triggered by 2a02:6ea0:4000::24 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 06:29:41.752831 2026] [security2:error] [pid 24468:tid 24468] [client 2a02:6ea0:4000::24:51046] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.chat.5995.us"] [uri "/.env"] [unique_id "ai6ClWqay1H-CGMORKS6XwAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 07:47:45 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 2a02:6ea0:4000::24 (Unknown): 1 in the last 300 ... show more (mod_security) mod_security (id:210492) triggered by 2a02:6ea0:4000::24 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 03:47:36.576138 2026] [security2:error] [pid 682:tid 682] [client 2a02:6ea0:4000::24:54565] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vanduijnencoaching.nl"] [uri "/.env"] [unique_id "ai5cmDLCZzl--H-qLxt7CgAAACg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 00:33:18 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 2a02:6ea0:4000::24 (Unknown): 1 in the last 300 ... show more (mod_security) mod_security (id:210492) triggered by 2a02:6ea0:4000::24 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 20:33:10.922386 2026] [security2:error] [pid 26649:tid 26649] [client 2a02:6ea0:4000::24:57089] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "patriotstorageworld.com"] [uri "/backend/.env"] [unique_id "ai32xvg4o5mAL1qP1-wlKQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 11:10:54 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 2a02:6ea0:4000::24 (Unknown): 1 in the last 300 ... show more (mod_security) mod_security (id:210492) triggered by 2a02:6ea0:4000::24 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 07:10:45.788780 2026] [security2:error] [pid 23185:tid 23185] [client 2a02:6ea0:4000::24:51389] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "web37.dnchosting.com"] [uri "/.git/config"] [unique_id "ai06tZOOix_Na9Q6ue1mdAAAAE4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 04:48:23 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:6ea0:4000::24 (Unknown): 1 in the last 300 ... show more (mod_security) mod_security (id:210492) triggered by 2a02:6ea0:4000::24 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 00:48:16.508325 2026] [security2:error] [pid 13397:tid 13397] [client 2a02:6ea0:4000::24:63452] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "barrykrueger.com"] [uri "/.env"] [unique_id "aizhELCGWcNWbQGMiyvLqQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 00:40:50 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:6ea0:4000::24 (Unknown): 1 in the last 300 ... show more (mod_security) mod_security (id:210492) triggered by 2a02:6ea0:4000::24 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 20:40:44.784758 2026] [security2:error] [pid 13389:tid 13389] [client 2a02:6ea0:4000::24:49685] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thepinman.org"] [uri "/.env.production"] [unique_id "aiynDBS1dwS-bVACal52cwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-12 22:00:41 (2 days ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-11. show less	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-12 15:52:17 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:6ea0:4000::24 (Unknown): 1 in the last 300 ... show more (mod_security) mod_security (id:210492) triggered by 2a02:6ea0:4000::24 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 11:52:11.876986 2026] [security2:error] [pid 19935:tid 19953] [client 2a02:6ea0:4000::24:56553] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hotairwelder.com"] [uri "/.env.dev"] [unique_id "aiwrK3Y8hS5Dz4nioStcsgAAAJA"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-06-12 11:48:12 (2 days ago)	169 requests with url.path *.env	Brute-Force Bad Web Bot
🇱🇻 garmtech.com	2026-06-12 07:33:04 (3 days ago)	IM360 WAF: Direct access to sensitive file or dotfile MV:/src/.env	Web App Attack
🇺🇸 stypr	2026-06-12 05:20:22 (3 days ago)	Malicious activity detected on HTTP/HTTPS	Hacking Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 22:15:06 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:6ea0:4000::24 (Unknown): 1 in the last 300 ... show more (mod_security) mod_security (id:210492) triggered by 2a02:6ea0:4000::24 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 18:14:59.271668 2026] [security2:error] [pid 7786:tid 7786] [client 2a02:6ea0:4000::24:56836] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lynnsmetkodesigns.com"] [uri "/.env"] [unique_id "aiszY9UlOiB26_0jyq66BwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 66.132.172.242

🇧🇷 34.95.239.245

🇬🇧 217.154.42.110

🇳🇱 195.178.110.104

🇳🇱 195.178.110.30

🇺🇸 146.88.241.158

🇻🇳 103.81.87.161

🇸🇪 95.155.194.123

🇨🇳 43.248.108.72

🇨🇱 34.176.86.176

🇺🇸 24.101.212.107

🇺🇸 2604:a880:400:d1:0:4:9623:7001

🇲🇽 189.240.44.9

🇲🇽 187.230.190.69

🇺🇸 154.92.23.249

🇷🇴 80.94.92.164

🇩🇪 69.5.169.91

🇬🇧 45.82.76.133

🇮🇳 34.47.134.30

🇺🇸 4.157.250.195