JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2001:b98:301:2a00::4

2001:b98:301:2a00::4 was found in our database!

This IP was reported 137 times. Confidence of Abuse is 14%: ?

14%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Wavenet Limited
Usage Type	Commercial
ASN	AS5413
Domain Name	wavenet.co.uk
Country	🇬🇧 United Kingdom of Great Britain and Northern Ireland
City	Solihull, England

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2001:b98:301:2a00::4

Whois 2001:b98:301:2a00::4

IP Abuse Reports for 2001:b98:301:2a00::4:

This IP address has been reported a total of 137 times from 36 distinct sources. 2001:b98:301:2a00::4 was first reported on February 1st 2025, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-23 08:47:41 (5 days ago)	(mod_security) mod_security (id:225170) triggered by 2001:b98:301:2a00::4 (Unknown): 1 in the last 3 ... show more (mod_security) mod_security (id:225170) triggered by 2001:b98:301:2a00::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 04:47:35.005458 2026] [security2:error] [pid 31208:tid 31208] [client 2001:b98:301:2a00::4:38072] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|iplantotravel.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "iplantotravel.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajpIJ0uHdkgAy3vSZ7qbKwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 10:25:42 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 2001:b98:301:2a00::4 (Unknown): 1 in the last 3 ... show more (mod_security) mod_security (id:225170) triggered by 2001:b98:301:2a00::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 06:25:33.542924 2026] [security2:error] [pid 6895:tid 6895] [client 2001:b98:301:2a00::4:60140] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.texascottagebakers.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.texascottagebakers.org"] [uri "/wp-json/wp/v2/users"] [unique_id "aje8HSFMqjIniu6WdjMLugAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 18:09:46 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 2001:b98:301:2a00::4 (Unknown): 1 in the last 3 ... show more (mod_security) mod_security (id:225170) triggered by 2001:b98:301:2a00::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 14:09:39.332767 2026] [security2:error] [pid 23430:tid 23430] [client 2001:b98:301:2a00::4:53664] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.cliniquecavalancia.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.cliniquecavalancia.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajLi41eSmbCt71wVMiLDwwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Mangelot Hosting	2026-06-17 16:25:08 (1 week ago)	(wp_login_try) srv102 WP Login Attempt 2001:b98:301:2a00::4 (GB/United Kingdom/-): 10 in the last 36 ... show more (wp_login_try) srv102 WP Login Attempt 2001:b98:301:2a00::4 (GB/United Kingdom/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 10:44:52 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 2001:b98:301:2a00::4 (Unknown): 1 in the last 3 ... show more (mod_security) mod_security (id:225170) triggered by 2001:b98:301:2a00::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 06:44:45.500970 2026] [security2:error] [pid 28435:tid 28435] [client 2001:b98:301:2a00::4:54476] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.fundingangelinvestors.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.fundingangelinvestors.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajJ6nTJFo0AxKqeEYaTzHAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 00:13:45 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 2001:b98:301:2a00::4 (Unknown): 1 in the last 3 ... show more (mod_security) mod_security (id:225170) triggered by 2001:b98:301:2a00::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 20:13:41.177404 2026] [security2:error] [pid 1949:tid 1949] [client 2001:b98:301:2a00::4:40098] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.fatcaverecords.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.fatcaverecords.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajHmtYwQVGy5MApqLcLrRQAAACo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 08:08:24 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 2001:b98:301:2a00::4 (Unknown): 1 in the last 3 ... show more (mod_security) mod_security (id:225170) triggered by 2001:b98:301:2a00::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 04:08:17.808499 2026] [security2:error] [pid 4185:tid 4185] [client 2001:b98:301:2a00::4:52310] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|bosdkbook.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bosdkbook.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajEEcd060OMpw4rWFeQbyQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 02:53:38 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 2001:b98:301:2a00::4 (Unknown): 1 in the last 3 ... show more (mod_security) mod_security (id:225170) triggered by 2001:b98:301:2a00::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 22:53:30.853408 2026] [security2:error] [pid 17049:tid 17049] [client 2001:b98:301:2a00::4:60704] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.lajoze.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.lajoze.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajC6qhB9GYQKg9E8Y6hWJAAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 15:19:04 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 2001:b98:301:2a00::4 (Unknown): 1 in the last 3 ... show more (mod_security) mod_security (id:225170) triggered by 2001:b98:301:2a00::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 11:18:57.395853 2026] [security2:error] [pid 30876:tid 30876] [client 2001:b98:301:2a00::4:33628] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.cienmalos.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.cienmalos.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajAX4Q4quSZHJRMlxv5TdgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 10:03:07 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 2001:b98:301:2a00::4 (Unknown): 1 in the last 3 ... show more (mod_security) mod_security (id:225170) triggered by 2001:b98:301:2a00::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 06:03:02.916854 2026] [security2:error] [pid 30421:tid 30421] [client 2001:b98:301:2a00::4:43360] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.thingstodonude.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.thingstodonude.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai_N1uLohGZVZY0SBLClmQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 02:47:26 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 2001:b98:301:2a00::4 (Unknown): 1 in the last 3 ... show more (mod_security) mod_security (id:225170) triggered by 2001:b98:301:2a00::4 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 22:47:22.317389 2026] [security2:error] [pid 21725:tid 21725] [client 2001:b98:301:2a00::4:58366] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|jazziiafoundation.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jazziiafoundation.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ai9nun6MUb3Iyqvs_asRKgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-03-08 03:49:12 (3 months ago)	Try to access /xmlrpc.php	Web App Attack
🇩🇪 LRob.fr	2026-03-07 16:30:19 (3 months ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇩🇪 LRob.fr	2025-10-18 12:32:33 (8 months ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇩🇪 LRob.fr	2025-10-15 05:03:26 (8 months ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack

Showing 1 to 15 of 137 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 168.144.31.91

🇫🇮 147.185.133.77

🇩🇪 2a01:4f8:c015:e3bb::1

🇬🇧 195.206.182.212

🇬🇧 193.163.125.245

🇳🇱 185.242.226.19

🇺🇸 157.245.123.148

🇹🇼 140.130.98.240

🇮🇳 122.187.221.130

🇲🇦 105.77.192.230

🇺🇸 104.234.53.42

🇵🇰 103.164.9.74

🇳🇱 91.92.40.202

🇱🇹 62.60.130.219

🇨🇳 61.186.136.36

🇺🇸 54.161.26.151

🇻🇳 14.225.7.70

🇬🇧 5.151.177.149

🇲🇽 187.192.86.153

🇧🇩 103.252.127.202