JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a06:a880:5:cb59::1

2a06:a880:5:cb59::1 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 92%: ?

92%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	STYLISH BY A&L SRL
Usage Type	Data Center/Web Hosting/Transit
ASN	AS9009
Domain Name	07internet.ro
Country	🇳🇱 Netherlands
City	The Hague, South Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a06:a880:5:cb59::1

Whois 2a06:a880:5:cb59::1

IP Abuse Reports for 2a06:a880:5:cb59::1:

This IP address has been reported a total of 24 times from 16 distinct sources. 2a06:a880:5:cb59::1 was first reported on June 19th 2026, and the most recent report was 22 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-20 23:08:01 (22 minutes ago)	(mod_security) mod_security (id:210492) triggered by 2a06:a880:5:cb59::1 (Unknown): 1 in the last 30 ... show more (mod_security) mod_security (id:210492) triggered by 2a06:a880:5:cb59::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 19:07:57.941664 2026] [security2:error] [pid 7150:tid 7150] [client 2a06:a880:5:cb59::1:41316] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.oposicionesyconcursos.es"] [uri "/.env.example"] [unique_id "ajcdTX3jcyBKcVmGmp96OQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Ba-Yu	2026-06-20 20:31:16 (2 hours ago)	General hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇩🇪 juutis	2026-06-20 19:14:22 (4 hours ago)	Multiple WAF abuses - IP blocked	Hacking Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 17:05:22 (6 hours ago)	(mod_security) mod_security (id:210492) triggered by 2a06:a880:5:cb59::1 (Unknown): 1 in the last 30 ... show more (mod_security) mod_security (id:210492) triggered by 2a06:a880:5:cb59::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 13:05:16.690983 2026] [security2:error] [pid 16909:tid 16909] [client 2a06:a880:5:cb59::1:56206] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dwipapuri-abadi.com"] [uri "/.env"] [unique_id "ajbITCZeGbCJTWyL9JkulQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 16:19:55 (7 hours ago)	(mod_security) mod_security (id:210492) triggered by 2a06:a880:5:cb59::1 (Unknown): 1 in the last 30 ... show more (mod_security) mod_security (id:210492) triggered by 2a06:a880:5:cb59::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 12:19:50.509975 2026] [security2:error] [pid 9566:tid 9566] [client 2a06:a880:5:cb59::1:46974] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.spyasociados.com"] [uri "/.env"] [unique_id "aja9pii4YB878mIwzykoSQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-20 14:32:59 (8 hours ago)	2a06:a880:5:cb59::1 - - [20/Jun/2026:09:32:42 -0500] "GET /.env HTTP/1.1" 403 199 "-" "Mozilla/5.0 A ... show more 2a06:a880:5:cb59::1 - - [20/Jun/2026:09:32:42 -0500] "GET /.env HTTP/1.1" 403 199 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot" 104.23.170.4 2a06:a880:5:cb59::1 - - [20/Jun/2026:09:32:44 -0500] "GET /.env.example HTTP/1.1" 403 199 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; GPTBot/1.2; +https://openai.com/gptbot" 104.23.170.4 2a06:a880:5:cb59::1 - - [20/Jun/2026:09:32:45 -0500] "GET /.env.production HTTP/1.1" 403 199 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; PerplexityBot/1.0; +https://perplexity.ai/perplexitybot" 104.23.170.4 2a06:a880:5:cb59::1 - - [20/Jun/2026:09:32:47 -0500] "GET /.env.local HTTP/1.1" 403 199 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; OAI-SearchBot/1.0; +https://openai.com/searchbot" 104.23.170.4 2a06:a880:5:cb59::1 - - [20/Jun/2026:09:32:52 -0500] "GET /.env.development HTTP/1.1" 403 199 "-" "anthropic-ai" 104.23.170.4 2a0 ... show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Hazzard	2026-06-20 13:13:05 (10 hours ago)	(apache-useragents) Failed apache-useragents trigger with match [redacted]): (CF_ENABLE)	Bad Web Bot
🇪🇸 alferez	2026-06-20 12:51:22 (10 hours ago)	Searching .(env\|sql\|zip\|tar\|rar) files	Hacking Exploited Host Web App Attack
🇳🇱 e.fierstra	2026-06-20 10:02:45 (13 hours ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇫🇷 pm33	2026-06-20 09:38:44 (13 hours ago)	Probing for resource vulnerabilities HTTP(S)	Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 05:41:13 (17 hours ago)	(mod_security) mod_security (id:210492) triggered by 2a06:a880:5:cb59::1 (Unknown): 1 in the last 30 ... show more (mod_security) mod_security (id:210492) triggered by 2a06:a880:5:cb59::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 01:41:08.821116 2026] [security2:error] [pid 15889:tid 16019] [client 2a06:a880:5:cb59::1:45632] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sujugada.com"] [uri "/.env"] [unique_id "ajYn9C9D62sLQBBnBVzaVwAAAFg"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 tinect	2026-06-20 02:10:37 (21 hours ago)	This IP was detected by CrowdSec triggering tinect/http-sensitive-file-probe	Web App Attack
🇩🇪 big-cloud.nl	2026-06-20 00:50:30 (22 hours ago)	Try to access /api/.env	Web App Attack
🇮🇹 ciccio diddo	2026-06-20 00:33:23 (22 hours ago)	High Burst multiple 40X port:Tcp/80,443	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 00:24:30 (23 hours ago)	(mod_security) mod_security (id:210492) triggered by 2a06:a880:5:cb59::1 (Unknown): 1 in the last 30 ... show more (mod_security) mod_security (id:210492) triggered by 2a06:a880:5:cb59::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 20:24:24.865815 2026] [security2:error] [pid 15091:tid 15091] [client 2a06:a880:5:cb59::1:43858] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "savoiapower.com"] [uri "/api/.env"] [unique_id "ajXduKmzphsJmXBkjAXElwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.202.112.89

🇷🇺 193.233.48.169

🇺🇸 147.185.132.63

🇷🇺 141.8.167.247

🇳🇱 91.92.40.204

🇺🇸 74.7.243.201

🇳🇴 46.29.238.172

🇫🇷 45.81.243.62

🇷🇴 2.57.122.238

🇰🇷 218.156.8.97

🇳🇱 89.21.67.138

🇭🇰 43.132.227.251

🇦🇲 195.250.79.2

🇱🇹 45.227.254.170

🇳🇱 45.156.87.253

🇨🇳 218.13.26.42

🇹🇭 203.150.107.244

🇧🇪 198.235.24.208

🇺🇸 147.185.132.149

🇺🇸 129.121.102.3