JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2001:4c4e:13dd:db00:e891:75a9:e9e4:56c

2001:4c4e:13dd:db00:e891:75a9:e9e4:56c was found in our database!

This IP was reported 6 times. Confidence of Abuse is 30%: ?

30%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Magyar Telekom Plc.
Usage Type	Fixed Line ISP
ASN	AS5483
Hostname(s)	20014C4E13DDDB00E89175A9E9E4056C.dsl.pool.telekom.hu
Domain Name	telekom.hu
Country	🇭🇺 Hungary
City	Eger, Heves County

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2001:4c4e:13dd:db00:e891:75a9:e9e4:56c

Whois 2001:4c4e:13dd:db00:e891:75a9:e9e4:56c

IP Abuse Reports for 2001:4c4e:13dd:db00:e891:75a9:e9e4:56c:

This IP address has been reported a total of 6 times from 4 distinct sources. 2001:4c4e:13dd:db00:e891:75a9:e9e4:56c was first reported on June 24th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-24 21:46:19 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 2001:4c4e:13dd:db00:e891:75a9:e9e4:56c (20014C4 ... show more (mod_security) mod_security (id:225170) triggered by 2001:4c4e:13dd:db00:e891:75a9:e9e4:56c (20014C4E13DDDB00E89175A9E9E4056C.dsl.pool.telekom.hu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 17:46:15.199465 2026] [security2:error] [pid 4994:tid 4994] [client 2001:4c4e:13dd:db00:e891:75a9:e9e4:56c:51207] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|instalatoribucuresti.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "instalatoribucuresti.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajxQJ2x_xaWwW8zj5Z4VSQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 21:26:01 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 2001:4c4e:13dd:db00:e891:75a9:e9e4:56c (20014C4 ... show more (mod_security) mod_security (id:225170) triggered by 2001:4c4e:13dd:db00:e891:75a9:e9e4:56c (20014C4E13DDDB00E89175A9E9E4056C.dsl.pool.telekom.hu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 17:25:58.204475 2026] [security2:error] [pid 12120:tid 12120] [client 2001:4c4e:13dd:db00:e891:75a9:e9e4:56c:63938] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|inquisitivequincie.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "inquisitivequincie.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajxLZsNO4YrSamydqSjVUgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 19:25:23 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 2001:4c4e:13dd:db00:e891:75a9:e9e4:56c (20014C4 ... show more (mod_security) mod_security (id:225170) triggered by 2001:4c4e:13dd:db00:e891:75a9:e9e4:56c (20014C4E13DDDB00E89175A9E9E4056C.dsl.pool.telekom.hu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 15:25:15.897099 2026] [security2:error] [pid 14034:tid 14034] [client 2001:4c4e:13dd:db00:e891:75a9:e9e4:56c:59860] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|fundingworkingcapital.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fundingworkingcapital.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajwvG3Z-C_V19AW2ydDxYQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 LRob.fr	2026-06-24 18:45:04 (3 days ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇩🇪 stinpriza	2026-06-24 18:43:03 (3 days ago)	Web App Attack	Web App Attack
🇩🇪 4server	2026-06-24 18:05:59 (3 days ago)	[WedJun2420:05:54.5824302026][security2:error][pid354753:tid354901][client2001:4c4e:13dd:db00:e891:7 ... show more [WedJun2420:05:54.5824302026][security2:error][pid354753:tid354901][client2001:4c4e:13dd:db00:e891:75a9:e9e4:56c:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"170\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"domoticaswiss.ch\"][uri\"/xmlrpc.php\"][unique_id\"ajwcgo89P1MQTSJke0rYGgAAAVY\"] show less	Port Scan Brute-Force Web App Attack

Showing 1 to 6 of 6 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 217.87.42.51

🇳🇱 45.142.193.53

🇺🇸 35.254.81.198

🇵🇱 195.78.66.221

🇧🇷 179.105.129.5

🇮🇩 157.85.205.153

🇧🇷 131.100.242.102

🇪🇸 88.1.152.248

🇷🇴 80.94.92.234

🇧🇷 45.229.91.34

🇸🇬 43.134.27.142

🇻🇳 27.79.43.34

🇯🇵 20.89.44.87

🇺🇸 20.29.47.111

🇷🇴 2.57.121.25

🇨🇳 222.241.250.125

🇳🇱 195.178.110.30

🇮🇳 182.95.189.66

🇮🇳 143.244.137.131

🇺🇸 141.11.88.6