JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a0b:8bc0:2:b1ee::1

2a0b:8bc0:2:b1ee::1 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 82%: ?

82%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	NextGenWebs, S.L.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS41608
Domain Name	nextgenwebs.es
Country	🇳🇱 Netherlands
City	Dronten, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a0b:8bc0:2:b1ee::1

Whois 2a0b:8bc0:2:b1ee::1

IP Abuse Reports for 2a0b:8bc0:2:b1ee::1:

This IP address has been reported a total of 22 times from 15 distinct sources. 2a0b:8bc0:2:b1ee::1 was first reported on June 5th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-13 16:52:56 (2 hours ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:b1ee::1 (Unknown): 1 in the last 30 ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:b1ee::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 12:52:49.367910 2026] [security2:error] [pid 18408:tid 18408] [client 2a0b:8bc0:2:b1ee::1:36756] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "noviasaltovacio.com.spyasociados.com"] [uri "/.git/HEAD"] [unique_id "ai2K4QjHIVVSy7oqbtMatwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 16:15:12 (3 hours ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:b1ee::1 (Unknown): 1 in the last 30 ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:b1ee::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 12:14:57.558792 2026] [security2:error] [pid 3761:tid 3761] [client 2a0b:8bc0:2:b1ee::1:56460] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nasa.phpsciencelabs.com"] [uri "/.git/HEAD"] [unique_id "ai2CAeqxWgZdgkTadcs5vgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Mangelot Hosting	2026-06-13 14:48:52 (5 hours ago)	(modsecurity) srv101 ModSecurity 2a0b:8bc0:2:b1ee::1 (NL/The Netherlands/-): 10 in the last 3600 sec ... show more (modsecurity) srv101 ModSecurity 2a0b:8bc0:2:b1ee::1 (NL/The Netherlands/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
Anonymous	2026-06-13 14:25:57 (5 hours ago)	2a0b:8bc0:2:b1ee::1 - - [13/Jun/2026:22:25:56 +0800] "GET /.git/HEAD HTTP/1.1" 404 39515 "-" "Mozill ... show more 2a0b:8bc0:2:b1ee::1 - - [13/Jun/2026:22:25:56 +0800] "GET /.git/HEAD HTTP/1.1" 404 39515 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36 Edg/146.0.3856.109" ... show less	Bad Web Bot Web App Attack
🇩🇪 stinpriza	2026-06-13 11:49:35 (8 hours ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 10:58:08 (8 hours ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:b1ee::1 (Unknown): 1 in the last 30 ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:b1ee::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 06:58:00.732617 2026] [security2:error] [pid 776:tid 776] [client 2a0b:8bc0:2:b1ee::1:36124] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gardenstateakitaclub.org"] [uri "/.git/config"] [unique_id "ai03uNSQXEzlWw4PW9IqgAAAAEI"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-13 09:52:25 (9 hours ago)	Excessive multi-domain requests	Brute-Force
🇺🇸 TPI-Abuse	2026-06-13 09:15:44 (10 hours ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:b1ee::1 (Unknown): 1 in the last 30 ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:b1ee::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 05:15:34.830983 2026] [security2:error] [pid 14587:tid 14587] [client 2a0b:8bc0:2:b1ee::1:41250] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garyrankin.com"] [uri "/.git/HEAD"] [unique_id "ai0fthX7TlGQ5TkqBW-btQAAACc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ger-stg-sifi1	2026-06-12 22:49:49 (21 hours ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇳🇱 BlueWire Hosting	2026-06-12 21:52:57 (21 hours ago)	Probing websites for vulnerabilities	Web App Attack
🇩🇪 big-cloud.nl	2026-06-12 21:50:20 (22 hours ago)	Try to access /.git/HEAD	Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 21:28:36 (22 hours ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:b1ee::1 (Unknown): 1 in the last 30 ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:b1ee::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 17:28:28.951747 2026] [security2:error] [pid 25734:tid 25734] [client 2a0b:8bc0:2:b1ee::1:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gibit.me"] [uri "/.git/HEAD"] [unique_id "aix5_ABrfFx0-gMVhmedZQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 21:06:28 (22 hours ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:b1ee::1 (Unknown): 1 in the last 30 ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:b1ee::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 17:06:22.312144 2026] [security2:error] [pid 996:tid 996] [client 2a0b:8bc0:2:b1ee::1:56788] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ginaotto.com"] [uri "/.env"] [unique_id "aix0zp_yHOUsyDrGePBmrAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 e.fierstra	2026-06-12 18:20:42 (1 day ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 17:54:17 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:b1ee::1 (Unknown): 1 in the last 30 ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:b1ee::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 13:54:14.227714 2026] [security2:error] [pid 9711:tid 9711] [client 2a0b:8bc0:2:b1ee::1:43496] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "geriterry.com"] [uri "/.git/HEAD"] [unique_id "aixHxvHXC_NMgCZ3peULYAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 202.9.122.218

🇫🇷 82.225.63.53

🇦🇺 34.40.239.112

🇺🇸 18.220.214.14

🇧🇷 205.210.31.164

🇺🇸 173.230.150.73

🇺🇸 162.216.149.175

🇫🇮 147.185.133.113

🇨🇳 120.48.150.20

🇨🇳 101.96.200.79

🇳🇱 95.211.95.218

🇫🇷 89.92.247.186

🇸🇪 83.226.56.106

🇨🇴 8.243.73.162

🇳🇱 176.65.140.201

🇫🇮 109.172.95.248

🇲🇰 77.28.235.53

🇺🇸 50.104.163.139

🇸🇳 41.82.50.218

🇬🇧 35.203.211.117