JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2604:a880:4:1d0::5ae:8000

2604:a880:4:1d0::5ae:8000 was found in our database!

This IP was reported 69 times. Confidence of Abuse is 31%: ?

31%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Hostname(s)	elk.census.shodan.io
Domain Name	digitalocean.com
Country	🇺🇸 United States of America
City	Santa Clara, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2604:a880:4:1d0::5ae:8000

Whois 2604:a880:4:1d0::5ae:8000

IP Abuse Reports for 2604:a880:4:1d0::5ae:8000:

This IP address has been reported a total of 69 times from 21 distinct sources. 2604:a880:4:1d0::5ae:8000 was first reported on October 10th 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 SOC [GOLINE SA]	2026-06-02 19:49:33 (2 days ago)	IDS Alert: IDS High-Severity Alert === ATTACK === Signature: IDS High-Severity Alert \| SID: N/A \| Se ... show more IDS Alert: IDS High-Severity Alert === ATTACK === Signature: IDS High-Severity Alert \| SID: N/A \| Severity: 1-2 \| Category: Security Threat === SOURCE === IP: 2604:a880:4:1d0::5ae:8000 (IPv6) \| Port: N/A \| Country: United States \| ISP: DIGITALOCEAN \| rDNS: elk.census.shodan.io === TARGET === Host: insightvm.goline.ch \| IP: insightvm.goline.ch \| Port: multiple \| Protocol: TCP/UDP \| App: N/A === RESPONSE === Time: 2026-06-02 21:49:31 \| Action: Blocked show less	Port Scan Hacking Bad Web Bot
🇨🇭 SOC [GOLINE SA]	2026-05-31 08:03:20 (4 days ago)	IDS Alert: IDS High-Severity Alert === ATTACK === Signature: IDS High-Severity Alert \| SID: N/A \| Se ... show more IDS Alert: IDS High-Severity Alert === ATTACK === Signature: IDS High-Severity Alert \| SID: N/A \| Severity: 1-2 \| Category: Security Threat === SOURCE === IP: 2604:a880:4:1d0::5ae:8000 (IPv6) \| Port: N/A \| Country: United States \| ISP: DIGITALOCEAN \| rDNS: elk.census.shodan.io === TARGET === Host: insightvm.goline.ch \| IP: insightvm.goline.ch \| Port: multiple \| Protocol: TCP/UDP \| App: N/A === RESPONSE === Time: 2026-05-31 10:03:18 \| Action: Blocked show less	Port Scan Hacking Bad Web Bot
🇨🇭 SOC [GOLINE SA]	2026-05-28 21:40:43 (6 days ago)	IDS Alert: IDS High-Severity Alert === ATTACK === Signature: IDS High-Severity Alert \| SID: N/A \| Se ... show more IDS Alert: IDS High-Severity Alert === ATTACK === Signature: IDS High-Severity Alert \| SID: N/A \| Severity: 1-2 \| Category: Security Threat === SOURCE === IP: 2604:a880:4:1d0::5ae:8000 (IPv6) \| Port: N/A \| Country: United States \| ISP: DIGITALOCEAN \| rDNS: elk.census.shodan.io === TARGET === Host: lg.goline.ch \| IP: lg.goline.ch \| Port: multiple \| Protocol: TCP/UDP \| App: N/A === RESPONSE === Time: 2026-05-28 23:40:42 \| Action: Blocked show less	Port Scan Hacking Bad Web Bot
🇨🇭 SOC [GOLINE SA]	2026-05-26 06:13:32 (1 week ago)	IDS Alert: IDS High-Severity Alert === ATTACK === Signature: IDS High-Severity Alert \| SID: N/A \| Se ... show more IDS Alert: IDS High-Severity Alert === ATTACK === Signature: IDS High-Severity Alert \| SID: N/A \| Severity: 1-2 \| Category: Security Threat === SOURCE === IP: 2604:a880:4:1d0::5ae:8000 (IPv6) \| Port: N/A \| Country: United States \| ISP: DIGITALOCEAN \| rDNS: elk.census.shodan.io === TARGET === Host: insightvm.goline.ch \| IP: insightvm.goline.ch \| Port: multiple \| Protocol: TCP/UDP \| App: N/A === RESPONSE === Time: 2026-05-26 08:13:31 \| Action: Blocked show less	Port Scan Hacking Bad Web Bot
🇨🇭 SOC [GOLINE SA]	2026-05-22 05:33:51 (1 week ago)	goFTP Server detected a brute-force attempt from IP 2604:a880:4:1d0::5ae:8000	FTP Brute-Force
🇨🇭 SOC [GOLINE SA]	2026-05-12 19:16:41 (3 weeks ago)	goFTP Server detected a brute-force attempt from IP 2604:a880:4:1d0::5ae:8000	FTP Brute-Force
🇩🇪 Hazzard	2026-05-09 00:25:00 (3 weeks ago)	(apache-empty-ua) Failed empty apache-ua trigger with match [redacted]): (CF_ENABLE)	Hacking
🇩🇪 BlueWire Hosting	2026-05-08 11:58:19 (3 weeks ago)	Suspicious HTTP(s) activity without a user agent provided	Bad Web Bot
🇫🇮 kumiko	2026-05-07 19:57:23 (4 weeks ago)	[2026-05-07 22:57:22] Probing for exploits [1 requests] "\n" 400	Brute-Force Bad Web Bot Web App Attack
🇩🇪 HandyTreff.de	2026-05-07 19:56:24 (4 weeks ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -103.43 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -103.43 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/98.0.4758.102 Safari/5 show less	Web App Attack Bad Web Bot
🇨🇭 SOC [GOLINE SA]	2026-05-06 16:33:54 (4 weeks ago)	IDS Alert: IDS High-Severity Alert === ATTACK === Signature: IDS High-Severity Alert \| SID: N/A \| Se ... show more IDS Alert: IDS High-Severity Alert === ATTACK === Signature: IDS High-Severity Alert \| SID: N/A \| Severity: 1-2 \| Category: Security Threat === SOURCE === IP: 2604:a880:4:1d0::5ae:8000 (IPv6) \| Port: N/A \| Country: United States \| ISP: Unknown \| rDNS: elk.census.shodan.io === TARGET === Host: insightvm.goline.ch \| IP: insightvm.goline.ch \| Port: multiple \| Protocol: TCP/UDP \| App: N/A === RESPONSE === Time: 2026-05-06 18:33:50 \| Action: Blocked show less	Port Scan Hacking Bad Web Bot
🇫🇷 Bensay	2026-05-06 12:24:59 (4 weeks ago)	[Wed May 06 14:24:57.608003 2026] [authz_core:error] [pid 2272519:tid 2272573] [client 2604:a880:4:1 ... show more [Wed May 06 14:24:57.608003 2026] [authz_core:error] [pid 2272519:tid 2272573] [client 2604:a880:4:1d0::5ae:8000:46896] AH01630: client denied by server configuration: /var/www/empty/ [Wed May 06 14:24:59.229910 2026] [authz_core:error] [pid 2272519:tid 2272575] [client 2604:a880:4:1d0::5ae:8000:46898] AH01630: client denied by server configuration: /var/www/empty/robots.txt ... show less	Hacking Bad Web Bot Web App Attack
🇩🇪 BlueWire Hosting	2026-05-05 01:31:35 (4 weeks ago)	Suspicious HTTP(s) activity without a user agent provided	Bad Web Bot
Anonymous	2026-05-03 13:45:26 (1 month ago)		DNS Compromise DDoS Attack
🇨🇭 SOC [GOLINE SA]	2026-04-30 22:23:20 (1 month ago)	IDS Alert: IDS High-Severity Alert === ATTACK === Signature: IDS High-Severity Alert \| SID: N/A \| Se ... show more IDS Alert: IDS High-Severity Alert === ATTACK === Signature: IDS High-Severity Alert \| SID: N/A \| Severity: 1-2 \| Category: Security Threat === SOURCE === IP: 2604:a880:4:1d0::5ae:8000 (IPv6) \| Port: N/A \| Country: United States \| ISP: Unknown \| rDNS: elk.census.shodan.io === TARGET === Host: lg.goline.ch \| IP: lg.goline.ch \| Port: multiple \| Protocol: TCP/UDP \| App: N/A === RESPONSE === Time: 2026-05-01 00:23:17 \| Action: Blocked show less	Port Scan Hacking Bad Web Bot

Showing 1 to 15 of 69 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4023:100d::12c

🇩🇪 206.189.49.128

🇨🇱 200.120.117.29

🇨🇦 198.245.112.240

🇹🇷 176.41.30.76

🇯🇵 172.104.99.218

🇪🇸 159.253.248.36

🇺🇸 150.107.36.223

🇺🇸 107.151.233.216

🇭🇰 45.116.78.92

🇸🇬 206.189.46.217

🇮🇶 178.210.224.205

🇺🇸 165.154.206.30

🇺🇸 159.242.160.28

🇺🇸 155.2.191.16

🇩🇪 154.196.56.15

🇫🇷 147.79.103.191

🇩🇪 130.12.180.65

🇵🇰 119.73.7.151

🇭🇰 101.36.127.86