AbuseIPDB » 2600:1900:0:2d0b::1601
2600:1900:0:2d0b::1601
This IP was reported 6 times. Confidence of
Abuse
is 0% : ?
Important Note: Public IPv6 addresses may implement the SLAAC
privacy extension. With this, the interface identifier is randomly generated. The SLAAC
privacy extension also implements a time out, which is configurable, so that the IPv6
interface addresses will be discarded and a new interface identifier is generated.
ISP
Google LLC
Usage Type
Data Center/Web Hosting/Transit
ASN
AS396982
Domain Name
google.com
Country
πΊπΈ
United States of America
City
Council Bluffs, Iowa
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
Important Note: 2600:1900:0:2d0b::1601 is an IP address from within
our whitelist belonging to the subnet
2600:1900::/34 ,
which we identify as: "Google non-cloud IPs" .
Whitelisted netblocks are typically owned by trusted entities, such as Google
or Microsoft who may use them for search engine spiders. However, these same entities
sometimes also provide cloud servers and mail services which are easily abused. Pay special
attention when trusting or distrusting these IPs.
IP Abuse Reports for 2600:1900:0:2d0b::1601 :
This IP address has been reported a total of
6
times from
2 distinct
sources.
2600:1900:0:2d0b::1601 was first reported on
May 10th 2026 , and the most recent report was
6 days ago
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
π©πͺ
marcel-knorr.de
2026-06-06 04:05:49
(6 days ago)
[MK-Root1] Blocked by UFW
Brute-Force
Port Scan
πΊπΈ
TPI-Abuse
2026-05-10 18:02:07
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2600:1900:0:2d0b::1601 (Unknown): 1 in the last ...
show more
(mod_security) mod_security (id:210492) triggered by 2600:1900:0:2d0b::1601 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 10 14:02:03.486625 2026] [security2:error] [pid 25915:tid 25915] [client 2600:1900:0:2d0b::1601:35060] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.thinksite.net"] [uri "/.env"] [unique_id "agDIG6ROxS--gO9lmhZQTAAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-10 16:24:59
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2600:1900:0:2d0b::1601 (Unknown): 1 in the last ...
show more
(mod_security) mod_security (id:210492) triggered by 2600:1900:0:2d0b::1601 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 10 12:24:54.053003 2026] [security2:error] [pid 12446:tid 12446] [client 2600:1900:0:2d0b::1601:48824] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.lopansri.com"] [uri "/.env"] [unique_id "agCxVqfQIHw6sB9xOknvvwAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-10 16:05:19
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2600:1900:0:2d0b::1601 (Unknown): 1 in the last ...
show more
(mod_security) mod_security (id:210492) triggered by 2600:1900:0:2d0b::1601 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 10 12:05:15.213501 2026] [security2:error] [pid 7772:tid 7772] [client 2600:1900:0:2d0b::1601:41129] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.themediaplanet.com"] [uri "/.env"] [unique_id "agCsu6V43TtN773c5kf5zwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-10 11:10:10
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2600:1900:0:2d0b::1601 (Unknown): 1 in the last ...
show more
(mod_security) mod_security (id:210492) triggered by 2600:1900:0:2d0b::1601 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 10 07:10:05.601457 2026] [security2:error] [pid 31018:tid 31018] [client 2600:1900:0:2d0b::1601:5244] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.ridgecrestconsultinggroup.com"] [uri "/.env"] [unique_id "agBnjQJzLCLatqZial9LtAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-10 10:38:25
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 2600:1900:0:2d0b::1601 (Unknown): 1 in the last ...
show more
(mod_security) mod_security (id:210492) triggered by 2600:1900:0:2d0b::1601 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 10 06:38:18.068025 2026] [security2:error] [pid 15696:tid 15696] [client 2600:1900:0:2d0b::1601:5563] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.habakkukent.com"] [uri "/.env"] [unique_id "agBgGlB4W2fTY5qmZNegEAAAAC4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Showing 1 to
6
of 6 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown π©
Recently Reported IPs: