JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2001:1600:10:101::18b

2001:1600:10:101::18b was found in our database!

This IP was reported 34 times. Confidence of Abuse is 0%: ?

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Infomaniak Network SA
Usage Type	Data Center/Web Hosting/Transit
ASN	AS29222
Domain Name	infomaniak.com
Country	🇨🇭 Switzerland
City	Geneva, Geneva

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2001:1600:10:101::18b

Whois 2001:1600:10:101::18b

IP Abuse Reports for 2001:1600:10:101::18b:

This IP address has been reported a total of 34 times from 11 distinct sources. 2001:1600:10:101::18b was first reported on February 28th 2025, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 dynamix	2025-03-03 05:32:19 (1 year ago)	Multiple WAF Violations	Web App Attack
Anonymous	2025-03-03 02:52:25 (1 year ago)	Fail2Ban apache-noscript	Bad Web Bot
Anonymous	2025-03-02 02:42:52 (1 year ago)	(mod_security) mod_security triggered on hostname [redacted] 2001:1600:10:101::18b (Unknown)	SQL Injection
🇫🇷 dynamix	2025-03-02 01:10:26 (1 year ago)	Multiple WAF Violations	Web App Attack
Anonymous	2025-03-02 01:03:25 (1 year ago)	Fail2Ban apache-noscript	Bad Web Bot
🇺🇸 TPI-Abuse	2025-03-01 20:27:54 (1 year ago)	(mod_security) mod_security (id:240000) triggered by 2001:1600:10:101::18b (Unknown): 1 in the last ... show more (mod_security) mod_security (id:240000) triggered by 2001:1600:10:101::18b (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 01 15:27:48.391745 2025] [security2:error] [pid 25317:tid 25317] [client 2001:1600:10:101::18b:60148] [client 2001:1600:10:101::18b] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|www.rotentendales.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "www.rotentendales.com"] [uri "/images/stories/admin-post.php"] [unique_id "Z8NtxNNQiBHgxYwkmUTxggAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-03-01 19:54:56 (1 year ago)	(mod_security) mod_security (id:240000) triggered by 2001:1600:10:101::18b (Unknown): 1 in the last ... show more (mod_security) mod_security (id:240000) triggered by 2001:1600:10:101::18b (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 01 14:54:49.199362 2025] [security2:error] [pid 19438:tid 19438] [client 2001:1600:10:101::18b:60808] [client 2001:1600:10:101::18b] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|literarylights.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "literarylights.com"] [uri "/images/stories/admin-post.php"] [unique_id "Z8NmCVpO5OvgqyExIN4e7wAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-03-01 19:02:49 (1 year ago)	(mod_security) mod_security (id:240000) triggered by 2001:1600:10:101::18b (Unknown): 1 in the last ... show more (mod_security) mod_security (id:240000) triggered by 2001:1600:10:101::18b (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 01 14:02:43.357426 2025] [security2:error] [pid 21791:tid 21791] [client 2001:1600:10:101::18b:56579] [client 2001:1600:10:101::18b] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "87"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|www.pamelalambert.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "www.pamelalambert.com"] [uri "/images/stories/admin-post.php"] [unique_id "Z8NZ0wGkl-65ZIXh5MK5RQAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-03-01 18:24:16 (1 year ago)	(mod_security) mod_security (id:240000) triggered by 2001:1600:10:101::18b (Unknown): 1 in the last ... show more (mod_security) mod_security (id:240000) triggered by 2001:1600:10:101::18b (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 01 13:24:10.201728 2025] [security2:error] [pid 30127:tid 30127] [client 2001:1600:10:101::18b:63802] [client 2001:1600:10:101::18b] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|www.adventiststoday.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "www.adventiststoday.com"] [uri "/images/stories/admin-post.php"] [unique_id "Z8NQyotr_ssH4LSyK6hlRgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-03-01 15:40:10 (1 year ago)	2001:1600:10:101::18b - - [01/Mar/2025:16:39:51 +0100] "GET /wp-includes/Text/network.php HTTP/1.1" ... show more 2001:1600:10:101::18b - - [01/Mar/2025:16:39:51 +0100] "GET /wp-includes/Text/network.php HTTP/1.1" 404 33132 2001:1600:10:101::18b - - [01/Mar/2025:16:39:53 +0100] "GET /js/fm.php HTTP/1.1" 404 33131 2001:1600:10:101::18b - - [01/Mar/2025:16:39:55 +0100] "GET /wp-content/themes/astra/inc/ki1k.php HTTP/1.1" 404 33131 2001:1600:10:101::18b - - [01/Mar/2025:16:39:57 +0100] "GET /WordPress/wp-admin/includes/zmFM.php HTTP/1.1" 404 33131 2001:1600:10:101::18b - - [01/Mar/2025:16:39:58 +0100] "GET /default.php HTTP/1.1" 404 29527 2001:1600:10:101::18b - - [01/Mar/2025:16:40:00 +0100] "GET /ty.php HTTP/1.1" 404 29527 2001:1600:10:101::18b - - [01/Mar/2025:16:40:02 +0100] "GET /wp-content/themes/cay-van-phong/filemanager.php HTTP/1.1" 404 33131 2001:1600:10:101::18b - - [01/Mar/2025:16:40:03 +0100] "GET /fm.php HTTP/1.1" 404 29526 2001:1600:10:101::18b - - [01/Mar/2025:16:40:06 +0100] "GET /wp-content/plugins/seoplugins/ HTTP/1.1" 404 30967 2001:1600:10:101::18b - - [01/Mar/2025:16:40:08 +0100 ... show less	Web Spam Web App Attack
🇩🇪 ardexter	2025-03-01 13:52:00 (1 year ago)	Wordpress attack and DDOS	DDoS Attack Web App Attack
🇨🇭 teamsecure	2025-03-01 07:45:06 (1 year ago)	Banned for trying to access wp-login	Web App Attack
🇺🇸 TPI-Abuse	2025-03-01 07:36:40 (1 year ago)	(mod_security) mod_security (id:240000) triggered by 2001:1600:10:101::18b (Unknown): 1 in the last ... show more (mod_security) mod_security (id:240000) triggered by 2001:1600:10:101::18b (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 01 02:36:33.146465 2025] [security2:error] [pid 29722:tid 29722] [client 2001:1600:10:101::18b:64761] [client 2001:1600:10:101::18b] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|encoremtmorris.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "encoremtmorris.com"] [uri "/images/stories/admin-post.php"] [unique_id "Z8K5AZQVHUgAnb9d7f9zYQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-03-01 07:14:22 (1 year ago)	(mod_security) mod_security (id:240000) triggered by 2001:1600:10:101::18b (Unknown): 1 in the last ... show more (mod_security) mod_security (id:240000) triggered by 2001:1600:10:101::18b (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 01 02:14:16.526803 2025] [security2:error] [pid 9863:tid 9863] [client 2001:1600:10:101::18b:57051] [client 2001:1600:10:101::18b] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "87"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|sekel.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "sekel.org"] [uri "/images/stories/admin-post.php"] [unique_id "Z8KzyOEwM23z6FvKSIiKUAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-03-01 06:13:17 (1 year ago)	(mod_security) mod_security (id:240000) triggered by 2001:1600:10:101::18b (Unknown): 1 in the last ... show more (mod_security) mod_security (id:240000) triggered by 2001:1600:10:101::18b (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 01 01:13:12.857899 2025] [security2:error] [pid 1927:tid 1927] [client 2001:1600:10:101::18b:55526] [client 2001:1600:10:101::18b] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|www.trafficstopper.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "www.trafficstopper.com"] [uri "/images/stories/admin-post.php"] [unique_id "Z8KleKzIi2czZ81nwPLMiAAAABc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇭 203.170.192.251

🇧🇷 152.32.199.112

🇺🇸 136.119.162.126

🇸🇬 101.47.159.125

🇫🇮 95.217.114.159

🇸🇬 51.79.180.235

🇬🇧 217.146.80.125

🇳🇱 185.242.226.73

🇮🇳 168.144.89.70

🇹🇭 159.192.132.34

🇺🇸 159.89.36.51

🇺🇸 34.123.251.38

🇺🇸 2607:f8b0:4001:c17::128

🇺🇸 170.130.187.22

🇩🇪 45.135.141.8

🇺🇸 35.253.42.225

🇸🇬 35.187.231.181

🇨🇳 218.13.26.42

🇹🇼 212.115.54.84

🇹🇼 198.235.24.110