JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a02:c206:2152:9474::1

2a02:c206:2152:9474::1 was found in our database!

This IP was reported 6 times. Confidence of Abuse is 5%: ?

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51167
Hostname(s)	163.119.220.158.in-addr.arpa
Domain Name	contabo.com
Country	🇫🇷 France
City	Lauterbourg, Grand Est

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a02:c206:2152:9474::1

Whois 2a02:c206:2152:9474::1

IP Abuse Reports for 2a02:c206:2152:9474::1:

This IP address has been reported a total of 6 times from 1 distinct source. 2a02:c206:2152:9474::1 was first reported on June 11th 2026, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-14 13:04:37 (13 hours ago)	(mod_security) mod_security (id:225170) triggered by 2a02:c206:2152:9474::1 (163.119.220.158.in-addr ... show more (mod_security) mod_security (id:225170) triggered by 2a02:c206:2152:9474::1 (163.119.220.158.in-addr.arpa): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 09:04:32.425295 2026] [security2:error] [pid 7601:tid 7601] [client 2a02:c206:2152:9474::1:52684] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|theyoungstrategist.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "theyoungstrategist.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai6m4EggzFzHxY7-rhYE4AAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 13:35:56 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 2a02:c206:2152:9474::1 (163.119.220.158.in-addr ... show more (mod_security) mod_security (id:225170) triggered by 2a02:c206:2152:9474::1 (163.119.220.158.in-addr.arpa): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 09:35:52.601748 2026] [security2:error] [pid 2735:tid 2735] [client 2a02:c206:2152:9474::1:59282] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.aroilcontrolsystem.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.aroilcontrolsystem.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai1cuM8zRHGE3c7qyX3MkQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 12:11:54 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 2a02:c206:2152:9474::1 (163.119.220.158.in-addr ... show more (mod_security) mod_security (id:225170) triggered by 2a02:c206:2152:9474::1 (163.119.220.158.in-addr.arpa): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 08:11:48.794202 2026] [security2:error] [pid 15181:tid 15181] [client 2a02:c206:2152:9474::1:38358] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.batesstrategygroup.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.batesstrategygroup.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai1JBMiWJNnr6puNi5-SwAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 04:41:34 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 2a02:c206:2152:9474::1 (163.119.220.158.in-addr ... show more (mod_security) mod_security (id:225170) triggered by 2a02:c206:2152:9474::1 (163.119.220.158.in-addr.arpa): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 00:41:30.208359 2026] [security2:error] [pid 32678:tid 32680] [client 2a02:c206:2152:9474::1:44886] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.asetiadi.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.asetiadi.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aiuN-m9a07j9GHng4SUgxgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 02:01:46 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 2a02:c206:2152:9474::1 (163.119.220.158.in-addr ... show more (mod_security) mod_security (id:225170) triggered by 2a02:c206:2152:9474::1 (163.119.220.158.in-addr.arpa): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 22:01:40.651254 2026] [security2:error] [pid 13445:tid 13501] [client 2a02:c206:2152:9474::1:40624] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.dwcmachining.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.dwcmachining.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aitohD239R4-fSn5DS2C9QAAAFY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 11:42:22 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 2a02:c206:2152:9474::1 (163.119.220.158.in-addr ... show more (mod_security) mod_security (id:225170) triggered by 2a02:c206:2152:9474::1 (163.119.220.158.in-addr.arpa): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 07:42:18.491383 2026] [security2:error] [pid 4566:tid 4566] [client 2a02:c206:2152:9474::1:51282] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.fundingangelinvestors.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.fundingangelinvestors.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiqfGvlKFVBrUrmN-CBLKQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 6 of 6 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 157.173.118.224

🇨🇳 150.255.95.0

🇺🇸 147.185.132.180

🇮🇳 125.19.162.70

🇧🇪 104.155.29.73

🇨🇦 85.217.149.58

🇺🇸 66.132.172.251

🇺🇸 34.11.18.169

🇺🇸 2607:f8b0:4004:1001::129

🇰🇷 219.248.4.146

🇹🇯 176.113.129.77

🇩🇪 162.55.237.46

🇺🇸 138.197.39.208

🇨🇳 112.103.129.120

🇺🇸 73.7.194.137

🇨🇳 59.52.100.252

🇺🇸 50.190.89.138

🇧🇪 35.240.86.139

🇨🇳 14.103.111.167

🇨🇳 1.205.222.170