JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a0b:8800:580::7a

2a0b:8800:580::7a was found in our database!

This IP was reported 7 times. Confidence of Abuse is 35%: ?

35%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	DOTRO TELECOM SRL
Usage Type	Data Center/Web Hosting/Transit
ASN	AS43376
Domain Name	dotro.ro
Country	🇷🇴 Romania
City	Bucharest, Bucharest

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a0b:8800:580::7a

Whois 2a0b:8800:580::7a

IP Abuse Reports for 2a0b:8800:580::7a:

This IP address has been reported a total of 7 times from 5 distinct sources. 2a0b:8800:580::7a was first reported on June 3rd 2026, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Baking333	2026-06-17 14:21:21 (12 hours ago)	[redacted] 2a0b:8800:580::7a - - [17/Jun/2026:15:21:19 +0100] "GET /.git/HEAD HTTP/1.1" 302 5273 0/7 ... show more [redacted] 2a0b:8800:580::7a - - [17/Jun/2026:15:21:19 +0100] "GET /.git/HEAD HTTP/1.1" 302 5273 0/79042 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15_7_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.0 Safari/605.1.15" [redacted] 2a0b:8800:580::7a - - [17/Jun/2026:15:21:19 +0100] "GET /.git/config HTTP/1.1" 302 5273 0/122838 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" show less	Bad Web Bot Web App Attack
🇫🇮 6kilowatti	2026-06-16 14:43:15 (1 day ago)	2a0b:8800:580::7a - - [16/Jun/2026:17:43:14 +0300] "GET /.git/HEAD HTTP/1.1" 500 2517 "-" "Mozilla/5 ... show more 2a0b:8800:580::7a - - [16/Jun/2026:17:43:14 +0300] "GET /.git/HEAD HTTP/1.1" 500 2517 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:149.0) Gecko/20100101 Firefox/149.0" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 19:27:36 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:8800:580::7a (Unknown): 1 in the last 300 ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:8800:580::7a (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 15:27:28.856113 2026] [security2:error] [pid 27140:tid 27140] [client 2a0b:8800:580::7a:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "backlogica.com"] [uri "/.git/HEAD"] [unique_id "ajBSIN3XnNEESDMOKE2hYAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Jarda_H	2026-06-14 00:48:29 (4 days ago)	http-sensitive-files	Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 21:06:37 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:8800:580::7a (Unknown): 1 in the last 300 ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:8800:580::7a (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 17:06:30.034083 2026] [security2:error] [pid 22743:tid 22743] [client 2a0b:8800:580::7a:38838] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "drivingthrumud.paulburns.com"] [uri "/.git/config"] [unique_id "aisjVqOEW7tNsbIEVkKgZgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 05:56:36 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:8800:580::7a (Unknown): 1 in the last 300 ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:8800:580::7a (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 01:56:29.610566 2026] [security2:error] [pid 24264:tid 24264] [client 2a0b:8800:580::7a:48078] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "backyardbrickoven.com"] [uri "/.git/config"] [unique_id "aiZZjQKJE-x4iIseZuJu1QAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-03 22:03:35 (2 weeks ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-02. show less	Web App Attack SSH Hacking

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇴 217.79.117.138

🇰🇷 211.106.133.202

🇺🇸 207.90.244.27

🇨🇳 182.204.181.147

🇮🇳 103.91.246.73

🇸🇬 18.143.235.216

🇰🇬 185.117.149.234

🇸🇬 152.32.220.188

🇭🇰 150.5.148.103

🇳🇱 91.92.40.10

🇰🇬 89.237.200.53

🇫🇮 80.223.192.112

🇫🇷 46.105.132.32

🇧🇷 45.205.1.5

🇳🇱 45.148.10.152

🇧🇪 34.140.251.161

🇧🇪 34.34.141.36

🇮🇳 2404:6800:4000:1004::125

🇨🇿 208.64.33.108

🇧🇷 205.210.31.196