This IP was reported 94 times. Confidence of
Abuse
is 84%: ?
84%
Important Note: Public IPv6 addresses may implement the SLAAC
privacy extension. With this, the interface identifier is randomly generated. The SLAAC
privacy extension also implements a time out, which is configurable, so that the IPv6
interface addresses will be discarded and a new interface identifier is generated.
This IP address has been reported a total of
94
times from
37 distinct
sources.
2602:80d:1007::c2 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
[ThuJun1123:51:15.1975322026][security2:error][pid2666219:tid2666266][client2602:80d:1007::c2:0]ModS ...
show more[ThuJun1123:51:15.1975322026][security2:error][pid2666219:tid2666266][client2602:80d:1007::c2:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\(\?:\\\\\\\\bshodan\\\\\\\\b\|\\\\\\\\bcensysinspect\\\\\\\\b\|\\\\\\\\bcensys\\\\\\\\b\|\\\\\\\\bexpanse\\\\\\\\b\|\\\\\\\\bnetsystemsresearch\\\\\\\\b\|\\\\\\\\bnetcraftsurveyagent\\\\\\\\b\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf\"][line\"73\"][id\"338801\"][rev\"1\"][msg\"Atomicorp.comWAFRules:Blockedinternet-widesurveyorUA\"][severity\"ERROR\"][hostname\"www.buletti-panettoni.ch\"][uri\"/\"][unique_id\"aist0wu5sMwtmGP2HOFElAAAAEs\"]
show less
[FriJun0520:28:02.0026162026][security2:error][pid1123154:tid1123193][client2602:80d:1007::c2:0]ModS ...
show more[FriJun0520:28:02.0026162026][security2:error][pid1123154:tid1123193][client2602:80d:1007::c2:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\(\?:\\\\\\\\bshodan\\\\\\\\b\|\\\\\\\\bcensysinspect\\\\\\\\b\|\\\\\\\\bcensys\\\\\\\\b\|\\\\\\\\bexpanse\\\\\\\\b\|\\\\\\\\bnetsystemsresearch\\\\\\\\b\|\\\\\\\\bnetcraftsurveyagent\\\\\\\\b\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf\"][line\"73\"][id\"338801\"][rev\"1\"][msg\"Atomicorp.comWAFRules:Blockedinternet-widesurveyorUA\"][severity\"ERROR\"][hostname\"mail.formet.ch\"][uri\"/\"][unique_id\"aiMVMeZSHriudt2YIJySSwAAABA\"]
show less
[TueJun0207:16:27.3431462026][security2:error][pid3823075:tid3823155][client2602:80d:1007::c2:0]ModS ...
show more[TueJun0207:16:27.3431462026][security2:error][pid3823075:tid3823155][client2602:80d:1007::c2:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\(\?:\\\\\\\\bshodan\\\\\\\\b\|\\\\\\\\bcensysinspect\\\\\\\\b\|\\\\\\\\bcensys\\\\\\\\b\|\\\\\\\\bexpanse\\\\\\\\b\|\\\\\\\\bnetsystemsresearch\\\\\\\\b\|\\\\\\\\bnetcraftsurveyagent\\\\\\\\b\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf\"][line\"73\"][id\"338801\"][rev\"1\"][msg\"Atomicorp.comWAFRules:Blockedinternet-widesurveyorUA\"][severity\"ERROR\"][hostname\"www.pulispina.ch\"][uri\"/\"][unique_id\"ah5nK2VOtuHSJx7MmahX1wAAAI8\"]
show less
Port Scan
Brute-Force
Web App Attack
Anonymous
This IP was detected by CrowdSec triggering crowdsecurity/http-bad-user-agent