JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2001:41d0:303:98bd::1

2001:41d0:303:98bd::1 was found in our database!

This IP was reported 216 times. Confidence of Abuse is 53%: ?

53%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	OVH SAS
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Domain Name	ovh.net
Country	🇫🇷 France
City	Dunkerque, Hauts-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2001:41d0:303:98bd::1

Whois 2001:41d0:303:98bd::1

IP Abuse Reports for 2001:41d0:303:98bd::1:

This IP address has been reported a total of 216 times from 57 distinct sources. 2001:41d0:303:98bd::1 was first reported on June 1st 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 rh24	2026-06-01 17:33:41 (3 days ago)	(apache-useragents) Failed apache-useragents trigger with match [redacted] from 2001:41d0:303:98bd:: ... show more (apache-useragents) Failed apache-useragents trigger with match [redacted] from 2001:41d0:303:98bd::1 (Unknown) show less	Bad Web Bot
🇳🇱 Mangelot Hosting	2026-06-01 17:28:50 (3 days ago)	(modsecurity) srv101 ModSecurity 2001:41d0:303:98bd::1 (FR/France/-): 10 in the last 3600 secs; Port ... show more (modsecurity) srv101 ModSecurity 2001:41d0:303:98bd::1 (FR/France/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇨🇿 antihack.anarchista.xyz	2026-05-30 20:04:06 (5 days ago)	404 burst: 30 hits in 10 min, URI /na-%E2%98%95%EF%B8%8F-s-vojtechem-29-12-2025-www-doktorvajicko-co ... show more 404 burst: 30 hits in 10 min, URI /na-%E2%98%95%EF%B8%8F-s-vojtechem-29-12-2025-www-doktorvajicko-com/, Ref , UA Mozilla/5.0 (compatible; MJ12bot/v1.4.8; http://mj12bot.com/) show less	Brute-Force Web App Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-30 10:29:02 (5 days ago)	(mod_security) mod_security (id:210730) triggered by 2001:41d0:303:98bd::1 (Unknown): 1 in the last ... show more (mod_security) mod_security (id:210730) triggered by 2001:41d0:303:98bd::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 30 06:28:55.821117 2026] [security2:error] [pid 7566:tid 7566] [client 2001:41d0:303:98bd::1:60128] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Churchill II Recliner/Double Fudge/Thumbs.db"] [unique_id "ahq75wicS0wwBFhimE7cmAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-28 03:05:16 (1 week ago)	2001:41d0:303:98bd::1 - - [28/May/2026:11:03:34 +0800] "GET /%C3%A3%C2%80%C2%8A%C3%A5%C2%86%C2%8D%C3 ... show more 2001:41d0:303:98bd::1 - - [28/May/2026:11:03:34 +0800] "GET /%C3%A3%C2%80%C2%8A%C3%A5%C2%86%C2%8D%C3%A9%C2%81%C2%87%C3%AF%C2%BC%C2%8E%C3%A7%C2%91%C2%AA%C3%A9%C2%BA%C2%97%C3%A7%C2%9A%C2%87%C3%A5%C2%90%C2%8E%C3%A3%C2%80%C2%8B%C3%A7%C2%B6%C2%B2%C3%A4%C2%B8%C2%8A%C3%A6%C2%94%C2%BE%C3%A6%C2%98%C2%A0/ HTTP/1.1" 404 39515 "-" "Mozilla/5.0 (compatible; MJ12bot/v1.4.8; http://mj12bot.com/)" 2001:41d0:303:98bd::1 - - [28/May/2026:11:03:54 +0800] "GET /%C3%A3%C2%80%C2%8A%C3%A6%C2%83%C2%85%C3%A4%C2%BF%C2%A1%C3%A3%C2%80%C2%8B%C3%A6%C2%96%C2%B0%C3%A5%C2%8A%C2%A0%C3%A5%C2%9D%C2%A1/ HTTP/1.1" 404 39515 "-" "Mozilla/5.0 (compatible; MJ12bot/v1.4.8; http://mj12bot.com/)" 2001:41d0:303:98bd::1 - - [28/May/2026:11:04:29 +0800] "GET /2013%C3%A5%C2%B9%C2%B4%C3%A6%C2%96%C2%B0%C3%A8%C2%A3%C2%BD%C3%A4%C2%BD%C2%9C%C3%A6%C2%83%C2%A1%C3%A7%C2%AB%C2%A5%C3%A6%C2%97%C2%A5%C3%A8%C2%A8%C2%98%C3%A7%C2%AC%C2%AC%C3%A4%C2%BA%C2%8C%C3%A9%C2%83%C2%A8%C3%A6%C2%9B%C2%B2%C3%A3%C2%80%C2%8A%C3%A4%C2%BA%C2%8C%C3%A4%C2%BA%C2%BA%C3 ... show less	Bad Web Bot Web App Attack
🇫🇷 devsecops.cv	2026-05-23 20:49:13 (1 week ago)	Fail2Ban: plesk-bot-aggressive - 15 failures	Port Scan Bad Web Bot Web App Attack
🇬🇧 Mendip_Defender	2026-05-21 08:56:24 (2 weeks ago)	2001:41d0:303:98bd::1 - - [21/May/2026:09:56:23 +0100] "GET /robots.txt HTTP/1.1" 403 146 "-" "Mozil ... show more 2001:41d0:303:98bd::1 - - [21/May/2026:09:56:23 +0100] "GET /robots.txt HTTP/1.1" 403 146 "-" "Mozilla/5.0 (compatible; MJ12bot/v1.4.8; http://mj12bot.com/)" ... show less	Bad Web Bot
🇩🇪 marcel-knorr.de	2026-05-21 05:22:26 (2 weeks ago)	[MK-VM1] Blocked by UFW	Brute-Force Port Scan
🇬🇧 Mendip_Defender	2026-05-15 22:52:54 (2 weeks ago)	2001:41d0:303:98bd::1 - - [15/May/2026:23:52:53 +0100] "GET /robots.txt HTTP/1.1" 403 146 "-" "Mozil ... show more 2001:41d0:303:98bd::1 - - [15/May/2026:23:52:53 +0100] "GET /robots.txt HTTP/1.1" 403 146 "-" "Mozilla/5.0 (compatible; MJ12bot/v1.4.8; http://mj12bot.com/)" ... show less	Bad Web Bot
🇳🇱 Mangelot Hosting	2026-05-15 00:28:48 (2 weeks ago)	(modsecurity) srv101 ModSecurity 2001:41d0:303:98bd::1 (FR/-/-): 10 in the last 3600 secs; Ports: ; ... show more (modsecurity) srv101 ModSecurity 2001:41d0:303:98bd::1 (FR/-/-): 10 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇨🇿 antihack.anarchista.xyz	2026-05-11 15:36:27 (3 weeks ago)	404 burst: 30 hits in 10 min, URI /na-%E2%98%95%EF%B8%8F-s-vojtechem-29-11-2025-www-doktorvajicko-co ... show more 404 burst: 30 hits in 10 min, URI /na-%E2%98%95%EF%B8%8F-s-vojtechem-29-11-2025-www-doktorvajicko-com/, Ref , UA Mozilla/5.0 (compatible; MJ12bot/v1.4.8; http://mj12bot.com/) show less	Brute-Force Web App Attack Bad Web Bot
🇳🇱 Mangelot Hosting	2026-05-11 11:17:35 (3 weeks ago)	(modsecurity) srv103 ModSecurity 2001:41d0:303:98bd::1 (FR/France/-): 10 in the last 3600 secs; Port ... show more (modsecurity) srv103 ModSecurity 2001:41d0:303:98bd::1 (FR/France/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇮🇹 NonOggiCaroMio	2026-05-03 23:32:17 (1 month ago)	Arruso ca si: crowdsecurity/http-bad-user-agent	Brute-Force
🇳🇱 Mangelot Hosting	2026-05-01 13:38:23 (1 month ago)	(modsecurity) srv104 ModSecurity 2001:41d0:303:98bd::1 (FR/France/-): 10 in the last 3600 secs; Port ... show more (modsecurity) srv104 ModSecurity 2001:41d0:303:98bd::1 (FR/France/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇺🇸 nodepile	2026-05-01 10:10:07 (1 month ago)	Requests denied due to active blacklist hits (tenant=82 method=GET path=/jeep-wrangler-jl-18-26-squa ... show more Requests denied due to active blacklist hits (tenant=82 method=GET path=/jeep-wrangler-jl-18-26-squadron-r-fog-pocket-light-kit-sport-bumper.html ua='Mozilla/5.0 (compatible; MJ12bot/v1.4.8; http://mj12bot.com/)') show less	Web App Attack Exploited Host

Showing 1 to 15 of 216 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 208.109.188.137

🇮🇹 185.197.8.64

🇩🇪 164.92.244.132

🇺🇸 147.185.132.73

🇮🇹 93.92.76.190

🇩🇪 213.209.159.226

🇺🇸 206.223.228.229

🇺🇸 205.210.31.87

🇸🇳 196.50.14.93

🇵🇹 149.90.0.54

🇸🇬 134.185.85.99

🇻🇳 125.253.121.228

🇮🇳 125.19.158.2

🇨🇳 111.42.175.101

🇸🇬 74.114.28.16

🇹🇭 202.29.236.76

🇺🇸 172.234.192.12

🇺🇸 162.216.149.195

🇺🇸 162.216.149.53

🇳🇱 136.144.209.118