JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a03:b0c0:2:d0::13be:4001

2a03:b0c0:2:d0::13be:4001 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 11%: ?

11%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Hostname(s)	ws02.danego.net
Domain Name	digitalocean.com
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a03:b0c0:2:d0::13be:4001

Whois 2a03:b0c0:2:d0::13be:4001

IP Abuse Reports for 2a03:b0c0:2:d0::13be:4001:

This IP address has been reported a total of 12 times from 5 distinct sources. 2a03:b0c0:2:d0::13be:4001 was first reported on November 2nd 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-15 22:56:48 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 2a03:b0c0:2:d0::13be:4001 (ws02.danego.net): 1 ... show more (mod_security) mod_security (id:225170) triggered by 2a03:b0c0:2:d0::13be:4001 (ws02.danego.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 18:56:44.049219 2026] [security2:error] [pid 1685:tid 1745] [client 2a03:b0c0:2:d0::13be:4001:40320] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|coasterdvdsonline.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "coasterdvdsonline.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajCDLISs7t2KXJfjg3bcuwAAAFg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 10:45:49 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 2a03:b0c0:2:d0::13be:4001 (ws02.danego.net): 1 ... show more (mod_security) mod_security (id:225170) triggered by 2a03:b0c0:2:d0::13be:4001 (ws02.danego.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 06:45:45.337483 2026] [security2:error] [pid 22173:tid 22173] [client 2a03:b0c0:2:d0::13be:4001:58804] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.bickleton.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.bickleton.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ai_X2Xrtv-Yk1hjPr8hftgAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 01:05:13 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 2a03:b0c0:2:d0::13be:4001 (ws02.danego.net): 1 ... show more (mod_security) mod_security (id:225170) triggered by 2a03:b0c0:2:d0::13be:4001 (ws02.danego.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 21:05:07.067782 2026] [security2:error] [pid 13357:tid 13357] [client 2a03:b0c0:2:d0::13be:4001:45344] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.rocksolidhomebuilders.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.rocksolidhomebuilders.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai9Pw7Y7P1LQMoGpRHzvqQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 15:37:02 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 2a03:b0c0:2:d0::13be:4001 (ws02.danego.net): 1 ... show more (mod_security) mod_security (id:225170) triggered by 2a03:b0c0:2:d0::13be:4001 (ws02.danego.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 11:36:58.384948 2026] [security2:error] [pid 8027:tid 8027] [client 2a03:b0c0:2:d0::13be:4001:35360] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|adona.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "adona.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ai7KmnBP5xWGF3vCFboGVwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 12:14:14 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 2a03:b0c0:2:d0::13be:4001 (ws02.danego.net): 1 ... show more (mod_security) mod_security (id:225170) triggered by 2a03:b0c0:2:d0::13be:4001 (ws02.danego.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 08:14:09.292923 2026] [security2:error] [pid 20984:tid 20984] [client 2a03:b0c0:2:d0::13be:4001:52314] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.vrevgaming.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.vrevgaming.net"] [uri "/wp-json/wp/v2/users"] [unique_id "ai6bESEGFKhVKIQ6vV7YlAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 06:38:19 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 2a03:b0c0:2:d0::13be:4001 (ws02.danego.net): 1 ... show more (mod_security) mod_security (id:225170) triggered by 2a03:b0c0:2:d0::13be:4001 (ws02.danego.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 02:38:15.085304 2026] [security2:error] [pid 5978:tid 5978] [client 2a03:b0c0:2:d0::13be:4001:49502] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.iee-usa.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.iee-usa.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai5MV3RIaV0EgUjkAd90jQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-14 22:06:33 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 2a03:b0c0:2:d0::13be:4001 (ws02.danego.net): 1 ... show more (mod_security) mod_security (id:225170) triggered by 2a03:b0c0:2:d0::13be:4001 (ws02.danego.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 14 18:06:27.697886 2026] [security2:error] [pid 29349:tid 29349] [client 2a03:b0c0:2:d0::13be:4001:42698] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|crystaljohns.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "crystaljohns.com"] [uri "/wp-json/wp/v2/users"] [unique_id "agZHY5VXD1DhvuYqWdcxfgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 LRob.fr	2026-05-14 21:45:06 (1 month ago)	Repeated 403 errors, blocked by Fail2ban in custom-403 jail	Bad Web Bot
🇩🇪 Hazzard	2026-03-16 02:55:47 (3 months ago)	(wordpress) Failed wordpress login from 2a03:b0c0:2:d0::13be:4001 (NL/The Netherlands/North Holland/ ... show more (wordpress) Failed wordpress login from 2a03:b0c0:2:d0::13be:4001 (NL/The Netherlands/North Holland/Amsterdam/ws02.danego.net/[redacted]): (CF_ENABLE) show less	Brute-Force
🇩🇪 Hazzard	2026-02-17 19:21:58 (4 months ago)	(wordpress) Failed wordpress login from 2a03:b0c0:2:d0::13be:4001 (NL/Netherlands/North Holland/Amst ... show more (wordpress) Failed wordpress login from 2a03:b0c0:2:d0::13be:4001 (NL/Netherlands/North Holland/Amsterdam/ws02.danego.net/[redacted]): (CF_ENABLE) show less	Brute-Force
🇩🇪 big-cloud.nl	2026-01-27 06:56:31 (4 months ago)	Try to access /xmlrpc.php	Web App Attack
🇩🇪 F242	2025-11-02 13:27:51 (7 months ago)	Wordpress Login or XMLRPC abuse	Web App Attack

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 194.187.176.225

🇫🇮 147.185.133.50

🇳🇱 91.92.40.239

🇮🇳 223.233.67.43

🇰🇷 211.116.107.222

🇲🇽 187.192.86.153

🇻🇳 183.80.73.144

🇩🇪 167.94.146.34

🇺🇸 162.216.150.136

🇺🇸 157.230.180.149

🇨🇳 124.226.216.189

🇨🇳 106.13.48.135

🇳🇱 91.92.40.231

🇳🇱 91.92.40.7

🇬🇧 87.236.176.15

🇩🇪 80.187.125.241

🇩🇪 64.226.107.125

🇷🇺 46.39.254.221

🇳🇱 45.198.224.120

🇬🇧 45.82.76.125