JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a0b:8bc0:2:df4b::1

2a0b:8bc0:2:df4b::1 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 83%: ?

83%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	NextGenWebs, S.L.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS41608
Domain Name	nextgenwebs.es
Country	🇳🇱 Netherlands
City	Dronten, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a0b:8bc0:2:df4b::1

Whois 2a0b:8bc0:2:df4b::1

IP Abuse Reports for 2a0b:8bc0:2:df4b::1:

This IP address has been reported a total of 30 times from 16 distinct sources. 2a0b:8bc0:2:df4b::1 was first reported on May 31st 2026, and the most recent report was 20 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 e.fierstra	2026-06-14 09:22:09 (20 hours ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 08:42:13 (21 hours ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:df4b::1 (Unknown): 1 in the last 30 ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:df4b::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 04:42:07.197969 2026] [security2:error] [pid 21991:tid 21991] [client 2a0b:8bc0:2:df4b::1:48382] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vintagetejas.com"] [uri "/.git/HEAD"] [unique_id "ai5pX55cIFZR8oDZavkC5QAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ger-stg-sifi1	2026-06-14 07:49:49 (21 hours ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 05:18:57 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:df4b::1 (Unknown): 1 in the last 30 ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:df4b::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 01:18:50.205382 2026] [security2:error] [pid 20069:tid 20072] [client 2a0b:8bc0:2:df4b::1:58382] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "virusskins.com"] [uri "/.git/HEAD"] [unique_id "ai45ukfyo-FyJ5RSEDrcIQAAAEA"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 oh.mg	2026-06-13 16:31:19 (1 day ago)	[Sat Jun 13 18:31:17.369113 2026] [security2:error] [pid 2916626:tid 2916648] [client 2a0b:8bc0:2:df ... show more [Sat Jun 13 18:31:17.369113 2026] [security2:error] [pid 2916626:tid 2916648] [client 2a0b:8bc0:2:df4b::1:52014] [client 2a0b:8bc0:2:df4b::1] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.10.0-dev"] [tag "anomaly-evaluation"] [tag "OWASP_CRS"] [hostname "nei.lol"] [uri "/.git/HEAD"] [unique_id "ai2F1YXvoWJbNyA4ViwvDwAAARQ"] [Sat Jun 13 18:31:18.388836 2026] [security2:error] [pid 2916626:tid 2916628] [client 2a0b:8bc0:2:df4b::1:52014] [client 2a0b:8bc0:2:df4b::1] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_ ... show less	Web App Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-13 15:22:01 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:df4b::1 (Unknown): 1 in the last 30 ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:df4b::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 11:21:55.528325 2026] [security2:error] [pid 21623:tid 21623] [client 2a0b:8bc0:2:df4b::1:37162] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nemoscientific.com"] [uri "/.git/HEAD"] [unique_id "ai11k-1gGFG9gzYteWsvywAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 e.fierstra	2026-06-12 23:06:04 (2 days ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 21:32:33 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:df4b::1 (Unknown): 1 in the last 30 ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:df4b::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 17:32:27.310459 2026] [security2:error] [pid 25596:tid 25596] [client 2a0b:8bc0:2:df4b::1:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.empoweruamerica.org"] [uri "/.git/HEAD"] [unique_id "aix669VHNwy5Qzbwe8EwdgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 SCHAPPY	2026-06-12 21:23:32 (2 days ago)	Mutliple attempts to access forbidden web resources, HTTP code 403.	Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 18:39:23 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:df4b::1 (Unknown): 1 in the last 30 ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:df4b::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 14:39:16.413924 2026] [security2:error] [pid 29298:tid 29298] [client 2a0b:8bc0:2:df4b::1:46440] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.exoticcarwrap.com"] [uri "/.git/HEAD"] [unique_id "aixSVCpkZ5mBLb1jrj2ULAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 17:39:09 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:df4b::1 (Unknown): 1 in the last 30 ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:df4b::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 13:39:05.497355 2026] [security2:error] [pid 4735:tid 4735] [client 2a0b:8bc0:2:df4b::1:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.frogmouthatx.com"] [uri "/.git/HEAD"] [unique_id "aixEOS4FC1yfm7ka7PL_ZAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-12 17:36:14 (2 days ago)	Fail2ban jail=webexploits banned IP=2a0b:8bc0:2:df4b::1 after 1 hits. Reason=web probing.	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 17:04:14 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:df4b::1 (Unknown): 1 in the last 30 ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:df4b::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 13:04:07.054813 2026] [security2:error] [pid 14090:tid 14090] [client 2a0b:8bc0:2:df4b::1:33546] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "atelier92.com"] [uri "/.git/HEAD"] [unique_id "aiw8B9rLzWfapgvGniDinQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-12 15:50:58 (2 days ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 IloGus	2026-06-12 15:45:19 (2 days ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 198.46.168.51

🇨🇳 43.242.97.17

🇬🇧 185.127.70.64

🇵🇪 168.194.103.227

🇺🇸 66.132.186.222

🇮🇪 54.217.163.233

🇺🇸 47.77.234.253

🇨🇳 39.183.162.243

🇧🇴 190.129.103.48

🇨🇴 190.26.51.110

🇺🇸 143.244.164.153

🇺🇸 107.150.103.12

🇵🇱 89.67.246.166

🇨🇦 85.217.149.34

🇸🇬 46.250.234.200

🇵🇪 38.25.18.52

🇺🇸 34.30.213.146

🇺🇸 195.184.76.133

🇭🇰 122.10.115.18

🇳🇬 102.88.137.213