This IP was reported 3 times. Confidence of
Abuse
is 0%: ?
0%
Important Note: Public IPv6 addresses may implement the SLAAC
privacy extension. With this, the interface identifier is randomly generated. The SLAAC
privacy extension also implements a time out, which is configurable, so that the IPv6
interface addresses will be discarded and a new interface identifier is generated.
IP info including ISP, Usage Type, and Location provided
by IPInfo. Updated weekly.
Important Note: 2603:1063:14::b8 is an IP address from within
our whitelist belonging to the subnet
2603:1063::/38,
which we identify as: "Microsoft Teams".
Whitelisted netblocks are typically owned by trusted entities, such as Google
or Microsoft who may use them for search engine spiders. However, these same entities
sometimes also provide cloud servers and mail services which are easily abused. Pay special
attention when trusting or distrusting these IPs.
(mod_security) mod_security (id:210730) triggered by 2603:1063:14::b8 (Unknown): 1 in the last 300 s ...
show more(mod_security) mod_security (id:210730) triggered by 2603:1063:14::b8 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 12:46:40.189238 2026] [security2:error] [pid 880:tid 880] [client 2603:1063:14::b8:7168] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.ji-technovation.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.ji-technovation.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com"] [unique_id "aiw38Lr_1TrLEN7SLKn-wQAAABU"]
show less
(mod_security) mod_security (id:210730) triggered by 2603:1063:14::b8 (Unknown): 1 in the last 300 s ...
show more(mod_security) mod_security (id:210730) triggered by 2603:1063:14::b8 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 07:24:48.680665 2026] [security2:error] [pid 23279:tid 23279] [client 2603:1063:14::b8:5120] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.ji-technovation.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.ji-technovation.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com"] [unique_id "aZWvkFKLe0u9VE--FHM5xQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Showing 1 to
3
of 3 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ