This IP was reported 19 times. Confidence of
Abuse
is 15%: ?
15%
Important Note: Public IPv6 addresses may implement the SLAAC
privacy extension. With this, the interface identifier is randomly generated. The SLAAC
privacy extension also implements a time out, which is configurable, so that the IPv6
interface addresses will be discarded and a new interface identifier is generated.
This IP address has been reported a total of
19
times from
3 distinct
sources.
2001:678:b30:c::2 was first reported on
, and the most recent report was
.
Old Reports:
The most recent abuse report for this IP address is from
. It is possible that this IP is no longer involved in abusive activities.
(mod_security) mod_security (id:243420) triggered by 2001:678:b30:c::2 (Unknown): 1 in the last 300 ...
show more(mod_security) mod_security (id:243420) triggered by 2001:678:b30:c::2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 06:23:26.616005 2026] [security2:error] [pid 14407:tid 14407] [client 2001:678:b30:c::2:51155] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Referer" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)||christaylorjazzpianist.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "christaylorjazzpianist.com"] [uri "/wp-admin/admin-ajax.php"] [unique_id "aik7GeLPv8mbYfSLUA32wQAAAAc"]
show less
(mod_security) mod_security (id:243420) triggered by 2001:678:b30:c::2 (Unknown): 1 in the last 300 ...
show more(mod_security) mod_security (id:243420) triggered by 2001:678:b30:c::2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 06:00:27.736887 2026] [security2:error] [pid 5343:tid 5343] [client 2001:678:b30:c::2:36398] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Referer" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)||bonesband.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "bonesband.com"] [uri "/wp-admin/admin-ajax.php"] [unique_id "aik1ukwvIL6RrLPsSeUflQAAAAA"]
show less
(mod_security) mod_security (id:243420) triggered by 2001:678:b30:c::2 (Unknown): 1 in the last 300 ...
show more(mod_security) mod_security (id:243420) triggered by 2001:678:b30:c::2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 05:36:51.992301 2026] [security2:error] [pid 2065:tid 2065] [client 2001:678:b30:c::2:7562] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Referer" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)||ashleycroft.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "ashleycroft.com"] [uri "/wp-admin/admin-ajax.php"] [unique_id "aikwL2NqyduxWeXueUVObQAAABQ"]
show less
[WedJun1011:23:20.1788072026][security2:error][pid141181:tid141280][client2001:678:b30:c::2:0]ModSec ...
show more[WedJun1011:23:20.1788072026][security2:error][pid141181:tid141280][client2001:678:b30:c::2:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\(updraft_\|updraft_backup\|backupbuddy_\|ai1wm_\|duplicator_\|all-in-one-wp-migration\|wpvivid_\)\"atARGS:action.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"17\"][id\"200100\"][msg\"WordPressbackuppluginexecutionattempt\"][hostname\"alessandrolucchini.ch\"][uri\"/wp-admin/admin-ajax.php\"][unique_id\"aiktCCdOLJfiH3lIWCol0wAAANI\"]
show less
Port Scan
Brute-Force
Web App Attack
Showing 16 to
19
of 19 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ