JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a03:e600:100::11

2a03:e600:100::11 was found in our database!

This IP was reported 70 times. Confidence of Abuse is 33%: ?

33%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Foundation for Applied Privacy
Usage Type	University/College/School
ASN	AS208323
Hostname(s)	tor-exit-anonymizer-v6.appliedprivacy.net
Domain Name	appliedprivacy.net
Country	🇦🇹 Austria
City	Vienna, State of Vienna

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a03:e600:100::11

Whois 2a03:e600:100::11

IP Abuse Reports for 2a03:e600:100::11:

This IP address has been reported a total of 70 times from 12 distinct sources. 2a03:e600:100::11 was first reported on December 24th 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Savvii	2026-06-10 08:34:18 (4 days ago)	20 attempts against mh-misbehave-ban on web-new	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 07:49:35 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::11 (tor-exit-anonymizer-v6.appli ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::11 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 03:49:27.276062 2026] [security2:error] [pid 21555:tid 21555] [client 2a03:e600:100::11:48732] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.stefaneder.com"] [uri "/.git/config"] [unique_id "aiUih-4mqbVMZysU6kg3kgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 11:45:06 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::11 (tor-exit-anonymizer-v6.appli ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::11 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 07:44:58.175739 2026] [security2:error] [pid 25693:tid 25693] [client 2a03:e600:100::11:59968] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.interiorsolutions-stuart.com"] [uri "/.git/config"] [unique_id "aiK2uuhAFTbCvDqh4FzQqgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 10:54:31 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::11 (tor-exit-anonymizer-v6.appli ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::11 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 06:54:27.106992 2026] [security2:error] [pid 12864:tid 12864] [client 2a03:e600:100::11:38952] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.clustershow.com"] [uri "/.git/config"] [unique_id "aiKq4128ny6Q-3V2OAk2rAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-01 18:30:46 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::11 (tor-exit-anonymizer-v6.appli ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::11 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 14:30:42.141968 2026] [security2:error] [pid 20289:tid 20289] [client 2a03:e600:100::11:59924] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.myuscpa.com"] [uri "/.git/config"] [unique_id "ah3P0lWHrn_qFb7IzqwNegAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 sefinek.net	2026-05-29 22:21:59 (2 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from T1. Action: BLOCK \| Protocol: HTTP/2 (GET) \| Endpoint ... show more Triggered Cloudflare WAF (firewallCustom) from T1. Action: BLOCK \| Protocol: HTTP/2 (GET) \| Endpoint: /about \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:140.0) Gecko/20100101 Firefox/140.0 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇩🇪 4server	2026-05-07 14:07:59 (1 month ago)	[ThuMay0716:07:53.7951982026][security2:error][pid555926:tid555998][client2a03:e600:100::11:0]ModSec ... show more [ThuMay0716:07:53.7951982026][security2:error][pid555926:tid555998][client2a03:e600:100::11:0]ModSecurity:Accessdeniedwithcode403$phase1$.Patternmatch\"$\?i$$\?:/\(\?:\^\\|/$\\\\\\\\.$env\\|git\\|svn\\|hg\\|DS_Store$\\|/$\?:wp-config\\|\\\\\\\\.htaccess\\|\\\\\\\\.htpasswd$\\|\\\\\\\\.$\?:sql\\|bak\\|old\\|log$\$\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"156\"][id\"960720\"][msg\"Forbiddenfileaccessattempt\"][severity\"CRITICAL\"][hostname\"casacarmen.ch\"][uri\"/latest.sql\"][unique_id\"afycuV887nkt6eb_j4GsYQAAAIs\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-05-06 19:17:07 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::11 (tor-exit-anonymizer-v6.appli ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::11 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 06 15:16:59.616637 2026] [security2:error] [pid 28914:tid 28914] [client 2a03:e600:100::11:52284] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|bluemarineboats.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "bluemarineboats.com"] [uri "/emarineboats_com.sql"] [unique_id "afuTq1TMZulO-gIv-TKtQwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 windowsforum	2026-05-06 08:36:58 (1 month ago)	Spam bot registration: triggers=service_check, username=pukpuk	Web Spam Bad Web Bot
🇺🇸 ipblock.com	2026-05-02 14:49:00 (1 month ago)	IPBlock protected site ID [3717-sec]. Robotic site crawling, undeclared spider	Bad Web Bot Web App Attack
🇫🇮 YF	2026-04-27 10:02:10 (1 month ago)	WordPress config file probe	Web App Attack
Anonymous	2026-04-26 21:03:54 (1 month ago)	2026-04-26 08:00:47,257 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::11 2026-04- ... show more 2026-04-26 08:00:47,257 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::11 2026-04-26 12:01:37,765 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::11 2026-04-26 18:01:35,413 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::11 2026-04-26 21:01:32,901 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::11 2026-04-27 00:03:53,550 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::11 show less	Brute-Force
🇺🇸 TPI-Abuse	2026-04-26 20:52:24 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::11 (tor-exit-anonymizer-v6.appli ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::11 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 16:52:19.357485 2026] [security2:error] [pid 32485:tid 32485] [client 2a03:e600:100::11:56296] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|caferutadelaseda.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "caferutadelaseda.com"] [uri "/utadelaseda_com.sql"] [unique_id "ae57A_yCvu1_Ar-wjvZSbgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-26 20:03:04 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::11 (tor-exit-anonymizer-v6.appli ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::11 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 16:02:51.408554 2026] [security2:error] [pid 16648:tid 16648] [client 2a03:e600:100::11:54792] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|internetnameregistration.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "internetnameregistration.com"] [uri "/internetnameregi.sql"] [unique_id "ae5va3GXZIloXZCNDUBMqwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-26 09:56:44 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::11 (tor-exit-anonymizer-v6.appli ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::11 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 05:56:34.146615 2026] [security2:error] [pid 5456:tid 5456] [client 2a03:e600:100::11:53518] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|avienhowell.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "avienhowell.com"] [uri "/backup_wp.sql"] [unique_id "ae3hUiQazixtapvbkkQhLQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 70 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2001:470:1:c84::253

🇩🇪 213.209.159.241

🇨🇳 183.232.212.207

🇵🇰 139.135.40.172

🇺🇸 129.213.117.99

🇨🇳 123.185.34.107

🇺🇸 104.21.74.55

🇩🇪 72.56.189.137

🇮🇪 52.19.5.68

🇲🇾 49.124.146.41

🇨🇱 45.166.144.212

🇸🇬 202.76.134.66

🇵🇭 124.105.206.79

🇮🇳 122.169.38.87

🇲🇦 105.157.81.243

🇨🇳 101.126.130.208

🇮🇳 98.70.48.241

🇰🇷 59.24.133.197

🇺🇸 35.170.83.253

🇺🇸 31.59.40.94