JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a03:e600:100::4

2a03:e600:100::4 was found in our database!

This IP was reported 256 times. Confidence of Abuse is 23%: ?

23%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Foundation for Applied Privacy
Usage Type	University/College/School
ASN	AS208323
Hostname(s)	tor-exit-anonymizer-v6.appliedprivacy.net
Domain Name	appliedprivacy.net
Country	🇦🇹 Austria
City	Vienna, State of Vienna

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a03:e600:100::4

Whois 2a03:e600:100::4

IP Abuse Reports for 2a03:e600:100::4:

This IP address has been reported a total of 256 times from 46 distinct sources. 2a03:e600:100::4 was first reported on June 23rd 2023, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-10-21 18:52:41 (8 months ago)	(mod_security) mod_security (id:225170) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:225170) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Oct 21 14:52:34.016390 2025] [security2:error] [pid 3073:tid 3073] [client 2a03:e600:100::4:58964] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.idahopictures.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.idahopictures.com"] [uri "/blog/wp-json/wp/v2/users/"] [unique_id "aPfWcjj1lL_mPJrd9NUFbQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 stinpriza	2025-10-16 11:44:45 (8 months ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2025-10-13 14:52:54 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Oct 13 10:52:48.178805 2025] [security2:error] [pid 18721:tid 18721] [client 2a03:e600:100::4:9708] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|newmooncafe.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "newmooncafe.com"] [uri "/newmo.sql"] [unique_id "aO0SQBQgYwOdtwcsXBWdRQAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 agenciahypelab.com.br	2025-10-13 00:13:28 (8 months ago)	WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2025-10-08 05:50:45 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 08 01:50:41.126332 2025] [security2:error] [pid 29978:tid 29978] [client 2a03:e600:100::4:5918] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|alsetsystems.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "alsetsystems.com"] [uri "/wp.sql"] [unique_id "aOX7sY3_ZyLrrWDPFy3LaAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-08 04:53:36 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 08 00:53:30.921824 2025] [security2:error] [pid 22089:tid 22089] [client 2a03:e600:100::4:61582] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|ashleycroft.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ashleycroft.com"] [uri "/leycroft.sql"] [unique_id "aOXuStjQZtKTJRfLYsB_GQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 stinpriza	2025-10-06 05:05:49 (8 months ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2025-10-04 19:14:18 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 04 15:14:11.342891 2025] [security2:error] [pid 1082:tid 1504] [client 2a03:e600:100::4:9298] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|arizonasolutionsgroup.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "arizonasolutionsgroup.com"] [uri "/arizona.sql"] [unique_id "aOFyA1YXzCMGqjAxHOTLgQAAAUY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-04 13:26:15 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 04 09:26:09.381053 2025] [security2:error] [pid 5362:tid 5362] [client 2a03:e600:100::4:11870] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|premierveterinarysurgery.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "premierveterinarysurgery.com"] [uri "/.sql"] [unique_id "aOEgcVd1z6iPVdW-rctJ8wAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 jjnxpct	2025-10-03 03:45:17 (8 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /koe.sql (Rule ID: 210730) - COMODO WAF: URL file extension is restricted by policy\|\|www.koelehomedesign.nl\|F\|2 show less	SQL Injection Web App Attack
🇬🇧 Globe2	2025-09-29 12:21:32 (8 months ago)	[29/Sep/2025:13:21:30 +0100] qnapryhgIRtNNmdNPkXf1OM4 2a03:e600:100::4 20742 91.212.212.13 443 [29/S ... show more [29/Sep/2025:13:21:30 +0100] qnapryhgIRtNNmdNPkXf1OM4 2a03:e600:100::4 20742 91.212.212.13 443 [29/Sep/2025:13:21:30 +0100] qnapryhgIRtNNmdNPkXf1OM4 2a03:e600:100::4 20742 91.212.212.13 443 [29/Sep/2025:13:21:31 +0100] vtGEUW0PDv6OxE6wNIWaojCr 2a03:e600:100::4 20742 91.212.212.13 443 ... show less	Web App Attack
🇺🇸 TPI-Abuse	2025-09-23 04:40:33 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Sep 23 00:40:27.012495 2025] [security2:error] [pid 30299:tid 30299] [client 2a03:e600:100::4:28672] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|greensandbeans.us\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "greensandbeans.us"] [uri "/backups.sql"] [unique_id "aNIku8HTZMVVpLEuR9s7VgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-09-22 06:42:56 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 22 02:42:50.385019 2025] [security2:error] [pid 2530:tid 2530] [client 2a03:e600:100::4:49746] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|36sovereignchambers.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "36sovereignchambers.com"] [uri "/36sovereignc.sql"] [unique_id "aNDv6sY3fwKe1sV83SNO9gAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-09-22 03:57:00 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Sep 21 23:56:54.352482 2025] [security2:error] [pid 342:tid 342] [client 2a03:e600:100::4:2140] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|investorscalifornia.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "investorscalifornia.com"] [uri "/investors.sql"] [unique_id "aNDJBrtxi7YCfqNr1iELtAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-09-20 07:18:59 (9 months ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::4 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 20 03:18:53.292466 2025] [security2:error] [pid 17605:tid 17605] [client 2a03:e600:100::4:21270] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kadinisi.org"] [uri "/wp-config.php.zip"] [unique_id "aM5VXbCmaYlDNFGZ5Q8zzQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 91 to 105 of 256 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 20.127.220.21

🇺🇸 205.210.31.71

🇬🇧 198.244.240.120

🇹🇼 198.235.24.102

🇸🇬 194.164.107.6

🇹🇼 165.154.227.158

🇷🇴 143.20.185.242

🇰🇷 119.209.12.20

🇳🇱 91.92.40.233

🇺🇸 65.110.40.143

🇳🇱 45.148.10.152

🇰🇷 43.155.214.159

🇧🇷 205.210.31.201

🇧🇷 189.51.32.48

🇮🇹 185.49.249.39

🇧🇷 177.8.133.27

🇫🇷 173.212.239.52

🇺🇸 150.136.56.244

🇺🇸 147.185.132.240

🇮🇩 103.160.213.137