JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a0b:8bc0:2:dc22::1

2a0b:8bc0:2:dc22::1 was found in our database!

This IP was reported 183 times. Confidence of Abuse is 35%: ?

35%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	NextGenWebs, S.L.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS41608
Domain Name	nextgenwebs.es
Country	🇳🇱 Netherlands
City	Dronten, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a0b:8bc0:2:dc22::1

Whois 2a0b:8bc0:2:dc22::1

IP Abuse Reports for 2a0b:8bc0:2:dc22::1:

This IP address has been reported a total of 183 times from 82 distinct sources. 2a0b:8bc0:2:dc22::1 was first reported on April 16th 2026, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 evicky2002	2026-06-22 05:25:06 (5 days ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=1)	Hacking Brute-Force SSH
🇺🇸 Charlesiv	2026-05-05 14:10:51 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from NL. Action taken: BLOCK ASN: 41608 (NextGenWebs, S.L. ... show more Triggered Cloudflare WAF (firewallCustom) from NL. Action taken: BLOCK ASN: 41608 (NextGenWebs, S.L.) Protocol: HTTP/1.1 (GET method) Endpoint: /serviceAccountKey.json Timestamp: 2026-05-05T13:59:54Z Ray ID: 9f7044b43dd1fffd UA: Mozilla/5.0 (X11; Linux x86_64; rv:150.0) Gecko/20100101 Firefox/150.0 show less	Bad Web Bot
🇩🇪 dbmwebdesign	2026-05-05 08:10:51 (1 month ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇩🇪 Dennis	2026-05-05 05:56:35 (1 month ago)	2a0b:8bc0:2:dc22::1 has been banned for triggering http-sensitive-files (5 events over 2.30802737s).	Brute-Force Web App Attack
Anonymous	2026-05-05 04:31:48 (1 month ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇫🇷 pocketpark	2026-05-05 01:38:12 (1 month ago)	Triggered Cloudflare WAF (firewallManaged) from NL. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpo ... show more Triggered Cloudflare WAF (firewallManaged) from NL. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoint: /app/.env \| UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:150.0) Gecko/20100101 Firefox/150.0 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇩🇪 BlueWire Hosting	2026-05-05 01:07:10 (1 month ago)	Probing websites for vulnerabilities	Web App Attack SQL Injection
🇩🇪 XICTRON	2026-05-04 22:15:03 (1 month ago)	ModSecurity rule violation detected by Fail2Ban	Web App Attack
🇩🇪 4server	2026-05-04 18:54:26 (1 month ago)	[MonMay0420:54:24.7896032026][security2:error][pid562663:tid562794][client2a0b:8bc0:2:dc22::1:0]ModS ... show more [MonMay0420:54:24.7896032026][security2:error][pid562663:tid562794][client2a0b:8bc0:2:dc22::1:0]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch\"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf\\|boot\\\\\\\\.ini\\|web.config\)\\\\\\\\b\\|$\\|\^\\|\\\\\\\\.\\\\\\\\.$/etc/\\|/\\\\\\\\.$\?:history\\|bash_history\\|sh_history\\|env$\$\)\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf\"][line\"204\"][id\"390709\"][rev\"30\"][msg\"Atomicorp.comWAFRules:Attempttoaccessprotectedfileremotely\"][data\"/.env\"][severity\"CRITICAL\"][hostname\"autodiscover.gmint.ch\"][uri\"/app/.env\"][unique_id\"afjrYBillMP4R1KxCKLiBwAAARQ\"] show less	Port Scan Brute-Force Web App Attack
🇩🇪 gadix	2026-05-04 17:45:11 (1 month ago)	[04/May/2026:19:45:07.165159 +0200] afjbIy8fLQb-fczvoWtQagAAAAo 2a0b:8bc0:2:dc22::1 41712 127.0.0.1 ... show more [04/May/2026:19:45:07.165159 +0200] afjbIy8fLQb-fczvoWtQagAAAAo 2a0b:8bc0:2:dc22::1 41712 127.0.0.1 7080 [04/May/2026:19:45:07.165398 +0200] afjbI1wcKHTe9iOd9Tmr0wAAAEE 2a0b:8bc0:2:dc22::1 41744 127.0.0.1 7080 [04/May/2026:19:45:07.165634 +0200] afjbI1wcKHTe9iOd9Tmr0QAAAE4 2a0b:8bc0:2:dc22::1 41696 127.0.0.1 7080 ... show less	Web App Attack
🇫🇷 dynamix	2026-05-04 07:00:28 (1 month ago)	Multiple WAF Violations	Web App Attack
🇳🇱 e.fierstra	2026-05-04 05:56:39 (1 month ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-05-03 18:46:01 (1 month ago)	Try to access /api/.env	Web App Attack
🇳🇱 Mangelot Hosting	2026-05-03 08:23:51 (1 month ago)	(modsecurity) srv102 ModSecurity 2a0b:8bc0:2:dc22::1 (NL/The Netherlands/-): 10 in the last 3600 sec ... show more (modsecurity) srv102 ModSecurity 2a0b:8bc0:2:dc22::1 (NL/The Netherlands/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇫🇷 Baking333	2026-05-03 00:44:58 (1 month ago)	[redacted] 2a0b:8bc0:2:dc22::1 - - [03/May/2026:01:44:57 +0100] "GET /.env HTTP/1.1" 302 1564 0/8045 ... show more [redacted] 2a0b:8bc0:2:dc22::1 - - [03/May/2026:01:44:57 +0100] "GET /.env HTTP/1.1" 302 1564 0/80453 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:150.0) Gecko/20100101 Firefox/150.0" [redacted] 2a0b:8bc0:2:dc22::1 - - [03/May/2026:01:44:57 +0100] "GET /.[redacted] HTTP/1.1" 302 5293 0/56005 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:149.0) Gecko/20100101 Firefox/149.0" show less	Bad Web Bot Web App Attack

Showing 1 to 15 of 183 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.148.30

🇫🇮 147.185.133.189

🇩🇪 65.111.22.27

🇺🇸 49.51.243.95

🇳🇱 45.148.10.152

🇬🇧 35.203.211.215

🇮🇳 20.244.95.134

🇺🇸 180.178.56.134

🇺🇸 147.185.132.55

🇬🇧 101.36.97.205

🇦🇪 98.98.240.47

🇺🇸 72.10.32.138

🇩🇪 65.111.22.120

🇩🇪 45.3.54.100

🇧🇷 20.226.50.160

🇰🇷 218.146.133.117

🇭🇰 199.45.155.81

🇺🇸 162.216.149.248

🇺🇦 109.87.9.225

🇩🇪 45.3.42.180