JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a02:c207:2330:4438::1

2a02:c207:2330:4438::1 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 39%: ?

39%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51167
Hostname(s)	vmi3304438.contaboserver.net
Domain Name	contabo.com
Country	🇫🇷 France
City	Lauterbourg, Grand Est

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a02:c207:2330:4438::1

Whois 2a02:c207:2330:4438::1

IP Abuse Reports for 2a02:c207:2330:4438::1:

This IP address has been reported a total of 13 times from 6 distinct sources. 2a02:c207:2330:4438::1 was first reported on June 11th 2026, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 4server	2026-06-13 07:48:34 (5 days ago)	[SatJun1309:48:28.2353832026][security2:error][pid171419:tid171694][client2a02:c207:2330:4438::1:0]M ... show more [SatJun1309:48:28.2353832026][security2:error][pid171419:tid171694][client2a02:c207:2330:4438::1:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"www.benvenutialfood.ch\"][uri\"/.env\"][unique_id\"ai0LTI9hd3OqBPqphxCRigAAARE\"] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 07:32:22 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:c207:2330:4438::1 (vmi3304438.contaboserve ... show more (mod_security) mod_security (id:210492) triggered by 2a02:c207:2330:4438::1 (vmi3304438.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 03:32:16.879529 2026] [security2:error] [pid 24280:tid 24290] [client 2a02:c207:2330:4438::1:40260] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "driftwoodvendors.giere.us"] [uri "/.env"] [unique_id "ai0HgLpWjMu-seEwcViRtAAAAEg"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 openstrike.co.uk	2026-06-13 05:14:27 (5 days ago)	2 attacks on env grabbing URLs: GET /.env HTTP/1.1	Hacking
🇺🇸 TPI-Abuse	2026-06-13 02:46:12 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:c207:2330:4438::1 (vmi3304438.contaboserve ... show more (mod_security) mod_security (id:210492) triggered by 2a02:c207:2330:4438::1 (vmi3304438.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 22:46:08.234077 2026] [security2:error] [pid 11809:tid 11809] [client 2a02:c207:2330:4438::1:38300] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.pilates-slings.eu"] [uri "/.env"] [unique_id "aizEcHqZyw2_kLPnJ7UHRgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 02:24:57 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:c207:2330:4438::1 (vmi3304438.contaboserve ... show more (mod_security) mod_security (id:210492) triggered by 2a02:c207:2330:4438::1 (vmi3304438.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 22:24:49.995608 2026] [security2:error] [pid 866:tid 866] [client 2a02:c207:2330:4438::1:58700] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.ampstudio.eu"] [uri "/.env"] [unique_id "aiy_cbWFkvNAHQCfRCQk9wAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Aetherweb Ark	2026-06-13 02:12:06 (5 days ago)	(mod_security) mod_security (id:949110) triggered by 2a02:c207:2330:4438::1 (vmi3304438.contaboserve ... show more (mod_security) mod_security (id:949110) triggered by 2a02:c207:2330:4438::1 (vmi3304438.contaboserver.net): N in the last X secs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 18:26:53 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:c207:2330:4438::1 (vmi3304438.contaboserve ... show more (mod_security) mod_security (id:210492) triggered by 2a02:c207:2330:4438::1 (vmi3304438.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 14:26:47.325180 2026] [security2:error] [pid 10713:tid 10713] [client 2a02:c207:2330:4438::1:54360] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.notariaarauco.cl"] [uri "/.env"] [unique_id "aixPZ2myKCALuDNm37MwzgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 11:20:10 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:c207:2330:4438::1 (vmi3304438.contaboserve ... show more (mod_security) mod_security (id:210492) triggered by 2a02:c207:2330:4438::1 (vmi3304438.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 07:20:06.380548 2026] [security2:error] [pid 23421:tid 23421] [client 2a02:c207:2330:4438::1:48634] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.wgs.cc"] [uri "/.env"] [unique_id "aivrZqIk-5ujRyfVYPjI0gAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 10:43:30 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:c207:2330:4438::1 (vmi3304438.contaboserve ... show more (mod_security) mod_security (id:210492) triggered by 2a02:c207:2330:4438::1 (vmi3304438.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 06:43:26.669307 2026] [security2:error] [pid 28811:tid 28811] [client 2a02:c207:2330:4438::1:40972] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.spiritcountry.cc"] [uri "/.env"] [unique_id "aivizrDJ39mLqfQH8zbsqwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 10:17:44 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:c207:2330:4438::1 (vmi3304438.contaboserve ... show more (mod_security) mod_security (id:210492) triggered by 2a02:c207:2330:4438::1 (vmi3304438.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 06:17:37.783447 2026] [security2:error] [pid 24307:tid 24307] [client 2a02:c207:2330:4438::1:34908] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.qxz.cc"] [uri "/.env"] [unique_id "aivcwY1Ohwh61dSMUdk-jgAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-12 05:32:51 (6 days ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 04:43:32 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:c207:2330:4438::1 (vmi3304438.contaboserve ... show more (mod_security) mod_security (id:210492) triggered by 2a02:c207:2330:4438::1 (vmi3304438.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 00:43:28.205988 2026] [security2:error] [pid 1930:tid 1930] [client 2a02:c207:2330:4438::1:50436] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "uhfcfoundation.org"] [uri "/.env"] [unique_id "aiuOcJgvIN6-SRyo7ewOUwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-11 15:50:30 (1 week ago)	2a02:c207:2330:4438::1 - - [11/Jun/2026:15:50:29 +0000] "GET /.env HTTP/1.1" 404 47419 "-" "Mozilla/ ... show more 2a02:c207:2330:4438::1 - - [11/Jun/2026:15:50:29 +0000] "GET /.env HTTP/1.1" 404 47419 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36 Edg/138.0.0.0" ... show less	Bad Web Bot Web App Attack

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇷 213.14.166.46

🇧🇷 189.85.176.42

🇮🇳 152.52.51.202

🇻🇳 103.28.36.122

🇱🇹 81.30.98.144

🇺🇸 20.168.122.83

🇩🇪 5.9.215.57

🇷🇴 2.57.121.25

🇧🇪 198.235.24.236

🇮🇳 143.110.177.177

🇻🇳 115.77.186.217

🇭🇰 114.111.54.189

🇪🇬 102.47.36.63

🇹🇷 85.105.129.171

🇹🇷 81.214.134.36

🇯🇴 79.173.248.58

🇹🇷 78.186.250.123

🇩🇪 64.89.163.146

🇳🇱 45.142.193.223

🇨🇳 1.92.153.111