JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a03:e600:100::4

2a03:e600:100::4 was found in our database!

This IP was reported 256 times. Confidence of Abuse is 20%: ?

20%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Foundation for Applied Privacy
Usage Type	University/College/School
ASN	AS208323
Hostname(s)	tor-exit-anonymizer-v6.appliedprivacy.net
Domain Name	appliedprivacy.net
Country	🇦🇹 Austria
City	Vienna, State of Vienna

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a03:e600:100::4

Whois 2a03:e600:100::4

IP Abuse Reports for 2a03:e600:100::4:

This IP address has been reported a total of 256 times from 46 distinct sources. 2a03:e600:100::4 was first reported on June 23rd 2023, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 CommanderRoot	2025-07-19 13:02:11 (11 months ago)	AI Bot crawler	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-07-16 06:31:50 (11 months ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 16 02:31:45.499913 2025] [security2:error] [pid 5863:tid 5863] [client 2a03:e600:100::4:60460] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|eftekharschool.ir\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "eftekharschool.ir"] [uri "/2023-hool.sql"] [unique_id "aHdHUTBWPJaETC_LcnBUTwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-11 13:04:02 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 11 09:03:53.248627 2025] [security2:error] [pid 24942:tid 24942] [client 2a03:e600:100::4:25946] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thepreschoolsource.com"] [uri "/.git/config"] [unique_id "aHELue9XbXmrHur-dd1CLwAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 LRob.fr	2025-07-04 15:30:07 (11 months ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-03 18:29:52 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 03 14:29:44.824562 2025] [security2:error] [pid 26919:tid 26947] [client 2a03:e600:100::4:21718] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "npaccountants.org"] [uri "/wp-config.php.env"] [unique_id "aGbMGNHzr4HYS-aepWnsEQAAAQE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-06-23 06:52:30 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 23 02:52:23.747682 2025] [security2:error] [pid 1199671:tid 1199671] [client 2a03:e600:100::4:4048] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|nancyscafeandcatering.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "nancyscafeandcatering.com"] [uri "/ering-2022.sql"] [unique_id "aFj5pxJz-xrVGZDaoYFjCgAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 sabrinagoom	2025-06-10 15:51:16 (1 year ago)	Triggered WAF (firewallCustom) from T1 Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: / ... show more Triggered WAF (firewallCustom) from T1 Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: / UA: Mozilla/5.0 (iPhone; CPU iPhone OS 17_6_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Mobile/15E148 Safari/604.1 show less	Bad Web Bot
🇳🇱 Site.eu	2025-06-10 02:10:49 (1 year ago)	Excessive 404/403 errors	Brute-Force
🇺🇸 TPI-Abuse	2025-06-04 12:42:15 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 04 08:42:09.085323 2025] [security2:error] [pid 1856747:tid 1856747] [client 2a03:e600:100::4:53600] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "penguinexpressmag.com"] [uri "/wp-config.php.bak.a2"] [unique_id "aEA_IXmBSDcFTvIR7CXUxAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 on-com	2025-05-11 16:39:23 (1 year ago)	URL scan	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-05-08 08:07:45 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 08 04:07:39.416960 2025] [security2:error] [pid 1123029:tid 1123042] [client 2a03:e600:100::4:12740] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|pennassociatenotary.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "pennassociatenotary.com"] [uri "/migration.sql"] [unique_id "aBxmS9zTrQRXgY5Qm8jJdgAAAMk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-06 20:43:05 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 06 16:42:57.600449 2025] [security2:error] [pid 1342295:tid 1342308] [client 2a03:e600:100::4:48216] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|condo.management\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "condo.management"] [uri "/adminer.sql"] [unique_id "aBp0UTD75uHDnG0t5NwFmQAAAMk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-04 17:18:07 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 04 13:18:02.237403 2025] [security2:error] [pid 3904998:tid 3904998] [client 2a03:e600:100::4:34298] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.teleplussolutions.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.teleplussolutions.com"] [uri "/bd.sql"] [unique_id "aBehSr0nt0Xk-7X9m3foJgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 pm33	2025-04-23 09:40:34 (1 year ago)	Wordpress login attempts	Brute-Force
🇺🇸 TPI-Abuse	2025-04-23 02:17:10 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 22 22:17:04.797065 2025] [security2:error] [pid 18913:tid 18913] [client 2a03:e600:100::4:59614] [client 2a03:e600:100::4] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|intrinsicdiscovery.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "intrinsicdiscovery.com"] [uri "/administrator/backups/database-sql.sql"] [unique_id "aAhNoPaZgbTfVKvtyfYqOAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 136 to 150 of 256 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 200.77.172.159

🇮🇳 103.158.138.179

🇦🇪 80.227.147.94

🇧🇪 34.77.127.22

🇩🇪 217.84.37.48

🇩🇪 194.187.176.154

🇺🇸 192.169.226.214

🇳🇱 176.65.148.250

🇬🇧 158.220.86.73

🇮🇳 123.253.162.254

🇧🇩 103.179.199.234

🇧🇩 103.86.198.162

🇧🇷 102.211.152.138

🇸🇬 47.84.110.132

🇺🇸 20.150.192.134

🇺🇸 20.65.152.136

🇨🇳 14.103.127.7

🇩🇪 5.83.136.39

🇳🇱 190.2.149.242

🇺🇸 172.202.117.221