JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.80.0.98

66.80.0.98 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 88%: ?

88%

ISP	Bunny Communications
Usage Type	Fixed Line ISP
ASN	AS5065
Hostname(s)	ip-66-80-0-98.dsl.sca.megapath.net
Domain Name	bunnycommunications.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.80.0.98

Whois 66.80.0.98

IP Abuse Reports for 66.80.0.98:

This IP address has been reported a total of 26 times from 15 distinct sources. 66.80.0.98 was first reported on June 25th 2026, and the most recent report was 2 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 WellSpring	2026-06-30 10:36:52 (2 minutes ago)	env leak on 305.today/frontend/.env — WellSpr.ing/NetSentinel civic-AI security layer	Web App Attack
🇺🇸 Rip	2026-06-30 10:21:21 (18 minutes ago)	Automated recon attempt targeting restricted and sensitive paths.	Web App Attack
🇺🇸 Sling	2026-06-30 09:45:21 (54 minutes ago)	Automated detection: IP accessed 11 sensitive endpoints within 30s on slingexe.com. Paths: /.env, /. ... show more Automated detection: IP accessed 11 sensitive endpoints within 30s on slingexe.com. Paths: /.env, /.env.local, /.env.production, /.env.dev, /.env.backup, /.env.bak, /.env.example, /.env.sample, /env, /app/.env. UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36 (Silvy X Ran). show less	Web App Attack Bad Web Bot Hacking
🇩🇪 Teufel100	2026-06-30 09:15:33 (1 hour ago)	ModSecurity rejected a query	Brute-Force Hacking Web App Attack
🇬🇧 consul.to	2026-06-30 08:41:09 (1 hour ago)	Web attack/malicious scanning detected	Web App Attack
🇮🇹 VHosting	2026-06-30 07:55:08 (2 hours ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇩🇪 ger-stg-sifi1	2026-06-30 07:53:17 (2 hours ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇺🇸 TPI-Abuse	2026-06-30 07:40:01 (2 hours ago)	(mod_security) mod_security (id:210492) triggered by 66.80.0.98 (ip-66-80-0-98.dsl.sca.megapath.net) ... show more (mod_security) mod_security (id:210492) triggered by 66.80.0.98 (ip-66-80-0-98.dsl.sca.megapath.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 03:39:55.045730 2026] [security2:error] [pid 18158:tid 18181] [client 66.80.0.98:53292] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "21370.com"] [uri "/.env.production"] [unique_id "akNyywm4MMtQn6hrlV0GOQAAAZQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-30 07:27:52 (3 hours ago)	Probing\(5\) HTTP Ports ...	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-30 07:12:17 (3 hours ago)	(mod_security) mod_security (id:210492) triggered by 66.80.0.98 (ip-66-80-0-98.dsl.sca.megapath.net) ... show more (mod_security) mod_security (id:210492) triggered by 66.80.0.98 (ip-66-80-0-98.dsl.sca.megapath.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 03:12:12.351564 2026] [security2:error] [pid 14459:tid 14459] [client 66.80.0.98:54406] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.sfeirarch.com"] [uri "/.env.dist"] [unique_id "akNsTJHtG4_TGBt6NKy8eAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-30 07:05:13 (3 hours ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-30 06:52:17 (3 hours ago)	(mod_security) mod_security (id:210492) triggered by 66.80.0.98 (ip-66-80-0-98.dsl.sca.megapath.net) ... show more (mod_security) mod_security (id:210492) triggered by 66.80.0.98 (ip-66-80-0-98.dsl.sca.megapath.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 02:52:10.847650 2026] [security2:error] [pid 15952:tid 15952] [client 66.80.0.98:47706] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jerusalem-temple-today.com"] [uri "/.env"] [unique_id "akNnmniRiBVKyuKPGJRGGAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-30 06:20:17 (4 hours ago)	(mod_security) mod_security (id:210492) triggered by 66.80.0.98 (ip-66-80-0-98.dsl.sca.megapath.net) ... show more (mod_security) mod_security (id:210492) triggered by 66.80.0.98 (ip-66-80-0-98.dsl.sca.megapath.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 02:20:14.491355 2026] [security2:error] [pid 5943:tid 5943] [client 66.80.0.98:41110] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "janesoffice.com"] [uri "/.env.sample"] [unique_id "akNgHobtbiPP66tg0c3BsAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 dbmwebdesign	2026-06-30 05:55:44 (4 hours ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇺🇸 TPI-Abuse	2026-06-30 05:42:43 (4 hours ago)	(mod_security) mod_security (id:210492) triggered by 66.80.0.98 (ip-66-80-0-98.dsl.sca.megapath.net) ... show more (mod_security) mod_security (id:210492) triggered by 66.80.0.98 (ip-66-80-0-98.dsl.sca.megapath.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 01:42:35.903714 2026] [security2:error] [pid 12815:tid 12815] [client 66.80.0.98:33484] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pseudo.space"] [uri "/.env.staging"] [unique_id "akNXSyXLB0dPw7obcIs-YQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇿 196.28.226.66

🇺🇸 172.253.9.151

🇪🇬 156.209.4.233

🇫🇷 87.98.184.144

🇺🇸 73.162.0.208

🇳🇱 45.148.10.141

🇧🇪 34.156.37.35

🇮🇳 20.244.18.126

🇬🇪 2.57.217.229

🇻🇳 183.81.18.76

🇺🇸 161.35.99.7

🇸🇪 135.116.20.17

🇯🇴 94.249.5.86

🇹🇷 94.154.43.43

🇧🇪 91.86.88.24

🇸🇪 83.233.149.204

🇱🇹 81.30.98.144

🇺🇸 76.169.78.221

🇰🇿 37.151.47.27

🇿🇦 197.185.179.59