This IP was reported 42 times. Confidence of
Abuse
is 39%: ?
39%
Important Note: Public IPv6 addresses may implement the SLAAC
privacy extension. With this, the interface identifier is randomly generated. The SLAAC
privacy extension also implements a time out, which is configurable, so that the IPv6
interface addresses will be discarded and a new interface identifier is generated.
This IP address has been reported a total of
42
times from
32 distinct
sources.
240e:204:4:6::4 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
Anonymous
2026-04-21T14:09:37.973144+02:00 postfix/smtpd[3381238]: improper command pipelining after CONNECT ...
show more2026-04-21T14:09:37.973144+02:00 postfix/smtpd[3381238]: improper command pipelining after CONNECT from unknown[240e:204:4:6::4]: EHLO\r\n 2026-04-21T14:09:46.726178+02:00 postfix/smtpd[3381238]: improper command pipelining after CONNECT from unknown[240e:204:4:6::4]: HELP\r\n 2026-04-21T14:09:54.439831+02:00 postfix/smtpd[3381238]: improper command pipelining after CONNECT from unknown[240e:204:4:6::4]: GET / HTTP/1.0\r\n\r\n
show less
SMTP Bruteforce. 2026-03-13T03:26:42.051598+01:00 *.* postfix/submission/smtpd[807619]: improper com ...
show moreSMTP Bruteforce. 2026-03-13T03:26:42.051598+01:00 *.* postfix/submission/smtpd[807619]: improper command pipelining after CONNECT from unknown[240e:204:4:6::4]: EHLOrn
2026-03-13T03:26:44.068889+01:00 *.* postfix/submission/smtpd[807619]: improper command pipelining after CONNECT from unknown[240e:204:4:6::4]: HELPrn
show less
(modsecurity) srv104 ModSecurity 240e:204:4:6::4 (Unknown): 5 in the last 3600 secs; Ports: *; Direc ...
show more(modsecurity) srv104 ModSecurity 240e:204:4:6::4 (Unknown): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs:
show less
This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(๐พ - ๐จ Network ๐ต sc ...
show moreThis IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(๐พ - ๐จ Network ๐ต scan ๐ฉ NMAP ๐จโ๐ป). Ip 240e:0204:0004:0006:0000:0000:0000:0004 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2026-01-31 00:08:46.749077721 +0000 UTC
show less
Hacking
Web App Attack
Anonymous
2026-01-24T17:11:14.681296+01:00 mail.nb6.de postfix/smtpd[457469]: improper command pipelining afte ...
show more2026-01-24T17:11:14.681296+01:00 mail.nb6.de postfix/smtpd[457469]: improper command pipelining after CONNECT from unknown[240e:204:4:6::4]: EHLO\r\n
2026-01-24T17:11:14.978100+01:00 mail.nb6.de postfix/smtpd[457469]: improper command pipelining after CONNECT from unknown[240e:204:4:6::4]: HELP\r\n
2026-01-24T17:11:15.298432+01:00 mail.nb6.de postfix/smtpd[457469]: improper command pipelining after CONNECT from unknown[240e:204:4:6::4]: GET / HTTP/1.0\r\n\r\n
2026-01-24T17:11:17.175340+01:00 mail.nb6.de postfix/smtpd[457726]: improper command pipelining after CONNECT from unknown[240e:204:4:6::4]: HELP\r\n
2026-01-24T17:11:17.677171+01:00 mail.nb6.de postfix/smtpd[457726]: improper command pipelining after CONNECT from unknown[240e:204:4:6::4]: \r\n\r\n
...
show less
Brute-Force
Anonymous
[10/Jan/2026:07:09:43 +1100] "HEAD / HTTP/1.1" 400 - "Mozilla/5.0(WindowsNT10.0;Win64;x64)AppleWebKi ...
show more[10/Jan/2026:07:09:43 +1100] "HEAD / HTTP/1.1" 400 - "Mozilla/5.0(WindowsNT10.0;Win64;x64)AppleWebKit/537.36(KHTML,likeGecko)Chrome/86.0.4240.111Safari/537.36" [10/Jan/2026:07:09:43 +1100] "GET /nmaplowercheck1767989382 HTTP/1.1" 400 266 "Mozilla/5.0(WindowsNT10.0;Win64;x64)AppleWebKit/537.36(KHTML,likeGecko)Chrome/86.0.4240.111Safari/537.36"
show less
Blocked by UFW (TCP on 587)
Source port: 44642
Packet length: 64
This report (for 240e:0204:0004:00 ...
show moreBlocked by UFW (TCP on 587)
Source port: 44642
Packet length: 64
This report (for 240e:0204:0004:0006:0000:0000:0000:0004) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
2025-10-08T19:12:32.885183+02:00 mail postfix/smtps/smtpd[2176261]: lost connection after CONNECT fr ...
show more2025-10-08T19:12:32.885183+02:00 mail postfix/smtps/smtpd[2176261]: lost connection after CONNECT from unknown[240e:204:4:6::4]
2025-10-08T19:12:37.869911+02:00 mail postfix/smtpd[2176259]: lost connection after CONNECT from unknown[240e:204:4:6::4]
2025-10-08T19:12:38.035546+02:00 mail postfix/smtpd[2176259]: improper command pipelining after CONNECT from unknown[240e:204:4:6::4]: EHLO\r\n
2025-10-08T19:12:40.387326+02:00 mail postfix/smtpd[2176086]: lost connection after EHLO from unknown[240e:204:4:6::4]
2025-10-08T19:12:45.535456+02:00 mail postfix/smtpd[2176259]: lost connection after EHLO from unknown[240e:204:4:6::4]
...
show less