AbuseIPDB » 2001:67c:e60:c0c:192:42:116:218

2001:67c:e60:c0c:192:42:116:218 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 14%: ?

14%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Church of Cyberology
Usage Type	Commercial
ASN	AS215125
Domain Name	cyberology.nl
Country	Netherlands
City	Catrijp, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 2001:67c:e60:c0c:192:42:116:218

Whois 2001:67c:e60:c0c:192:42:116:218

IP Abuse Reports for 2001:67c:e60:c0c:192:42:116:218:

This IP address has been reported a total of 17 times from 2 distinct sources. 2001:67c:e60:c0c:192:42:116:218 was first reported on May 9th 2025, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
on-com	2025-06-14 00:29:44 (6 days ago)	URL scan	Brute-Force Web App Attack
TPI-Abuse	2025-06-11 17:10:26 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in ... show more(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 11 13:10:20.645042 2025] [security2:error] [pid 1173425:tid 1173425] [client 2001:67c:e60:c0c:192:42:116:218:26818] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|mchen-arch.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mchen-arch.com"] [uri "/administrator/backups/database.sql"] [unique_id "aEm4fD-Vv8wlwGOy6ABe6QAAACU"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-06-10 06:55:32 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in ... show more(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 10 02:55:28.988434 2025] [security2:error] [pid 261570:tid 261570] [client 2001:67c:e60:c0c:192:42:116:218:41915] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|fatcavestudios.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "fatcavestudios.com"] [uri "/s.sql"] [unique_id "aEfW4K25wzRwT_A1-o9r3QAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-06-09 03:03:18 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in ... show more(mod_security) mod_security (id:210492) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 08 23:03:11.034031 2025] [security2:error] [pid 54997:tid 54997] [client 2001:67c:e60:c0c:192:42:116:218:48506] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.midiowagymnastics.com"] [uri "/.git/config"] [unique_id "aEZO729TloJxcS17dVDULgAAAFM"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-06-06 18:43:18 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in ... show more(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 06 14:43:14.686591 2025] [security2:error] [pid 674037:tid 674037] [client 2001:67c:e60:c0c:192:42:116:218:19849] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|pa-ksa.com\|F\|2"] [data ".dat"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "pa-ksa.com"] [uri "/docs/Vovaf.dat"] [unique_id "aEM2woCRWfnctdvnB3kUHwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-05-30 11:22:08 (3 weeks ago)	(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in ... show more(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 30 07:22:04.074499 2025] [security2:error] [pid 2887902:tid 2887918] [client 2001:67c:e60:c0c:192:42:116:218:13254] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|utahhoaservices.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "utahhoaservices.com"] [uri "/utahhoaservices_2023.sql"] [unique_id "aDmU3FegcnqUhErsyQ_OGwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-05-18 13:59:30 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in ... show more(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 18 09:59:26.654143 2025] [security2:error] [pid 1740902:tid 1740902] [client 2001:67c:e60:c0c:192:42:116:218:42515] [client 2001:67c:e60:c0c:192:42:116:218] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|sbiusa.org\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "sbiusa.org"] [uri "/adminer.sql"] [unique_id "aCnnvtsaw4gscMMULSZ8jQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-05-18 00:14:07 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in ... show more(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 17 20:14:00.244118 2025] [security2:error] [pid 3618555:tid 3618555] [client 2001:67c:e60:c0c:192:42:116:218:33968] [client 2001:67c:e60:c0c:192:42:116:218] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|nuewines.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "nuewines.com"] [uri "/bd.sql"] [unique_id "aCkmSJ0JASgZU1cIv6F50AAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-05-15 06:47:38 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in ... show more(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 15 02:47:31.916240 2025] [security2:error] [pid 999193:tid 999193] [client 2001:67c:e60:c0c:192:42:116:218:37342] [client 2001:67c:e60:c0c:192:42:116:218] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|constructionloansfunding.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "constructionloansfunding.com"] [uri "/migration.sql"] [unique_id "aCWOA-VXYuwS6wJKPAqADAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-05-15 00:32:05 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in ... show more(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 14 20:31:58.693162 2025] [security2:error] [pid 2235773:tid 2235773] [client 2001:67c:e60:c0c:192:42:116:218:16987] [client 2001:67c:e60:c0c:192:42:116:218] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|indyham.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "indyham.com"] [uri "/migration.sql"] [unique_id "aCU1_u_m2eesDZ3hQuuK0AAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-05-14 22:07:40 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in ... show more(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 14 18:07:36.241395 2025] [security2:error] [pid 1231812:tid 1231812] [client 2001:67c:e60:c0c:192:42:116:218:30876] [client 2001:67c:e60:c0c:192:42:116:218] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|madisonventures.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "madisonventures.com"] [uri "/bd.sql"] [unique_id "aCUUKKfo1kM0s9bEZ3ac1AAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-05-14 19:18:38 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in ... show more(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 14 15:18:31.251253 2025] [security2:error] [pid 1745027:tid 1745027] [client 2001:67c:e60:c0c:192:42:116:218:62535] [client 2001:67c:e60:c0c:192:42:116:218] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|humbliaslaw.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "humbliaslaw.com"] [uri "/adminer.sql"] [unique_id "aCTsh0QA06aIPhFfbya8XgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-05-14 15:45:58 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in ... show more(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 14 11:45:51.232021 2025] [security2:error] [pid 156970:tid 157125] [client 2001:67c:e60:c0c:192:42:116:218:17795] [client 2001:67c:e60:c0c:192:42:116:218] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.michaelrandon.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.michaelrandon.com"] [uri "/migration.sql"] [unique_id "aCS6r_OygE8v4L4GSn-XlwAAAI4"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-05-12 18:44:00 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in ... show more(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 12 14:43:54.679000 2025] [security2:error] [pid 2754051:tid 2754051] [client 2001:67c:e60:c0c:192:42:116:218:45392] [client 2001:67c:e60:c0c:192:42:116:218] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.losbarbarosdelnorte.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.losbarbarosdelnorte.com"] [uri "/adminer.sql"] [unique_id "aCJBar6TWXM2q2OHN0uHRAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-05-09 15:58:50 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in ... show more(mod_security) mod_security (id:210730) triggered by 2001:67c:e60:c0c:192:42:116:218 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 09 11:58:44.931558 2025] [security2:error] [pid 1467519:tid 1467519] [client 2001:67c:e60:c0c:192:42:116:218:30981] [client 2001:67c:e60:c0c:192:42:116:218] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|district7vote.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "district7vote.com"] [uri "/bd.sql"] [unique_id "aB4mNJKulukFTJi_qkZwBQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 17 reports

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩

Recently Reported IPs:

201.211.25.191

35.217.24.57

102.214.8.82

98.83.178.66

176.65.148.55

23.234.82.98

82.65.53.67

118.193.56.235

64.20.34.138

216.24.210.49

98.83.177.42

98.83.10.183

212.19.236.30

162.19.243.139

104.248.81.123

98.82.66.172

193.24.211.22

50.87.231.135

81.192.46.49

172.208.19.71