JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a03:e600:100::7

2a03:e600:100::7 was found in our database!

This IP was reported 77 times. Confidence of Abuse is 28%: ?

28%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Foundation for Applied Privacy
Usage Type	University/College/School
ASN	AS208323
Hostname(s)	tor-exit-anonymizer-v6.appliedprivacy.net
Domain Name	appliedprivacy.net
Country	🇦🇹 Austria
City	Vienna, State of Vienna

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a03:e600:100::7

Whois 2a03:e600:100::7

IP Abuse Reports for 2a03:e600:100::7:

This IP address has been reported a total of 77 times from 11 distinct sources. 2a03:e600:100::7 was first reported on December 24th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-07 05:57:48 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::7 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::7 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 01:57:39.638846 2026] [security2:error] [pid 28619:tid 28619] [client 2a03:e600:100::7:41464] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.links.goddesskink.com"] [uri "/.git/config"] [unique_id "aiUIU2J0Xr2ta85qJ40RPAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 ipblock.com	2026-06-06 14:01:00 (3 days ago)	IPBlock protected site ID [3717-sec]. Robotic site crawling, undeclared spider	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 13:05:27 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::7 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::7 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 09:05:21.447749 2026] [security2:error] [pid 28731:tid 28731] [client 2a03:e600:100::7:46632] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.ricketyshack.ca"] [uri "/.git/config"] [unique_id "aiLJkR2O_nosG-y7Qn2WqgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 11:47:57 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::7 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::7 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 07:47:52.309570 2026] [security2:error] [pid 31594:tid 31594] [client 2a03:e600:100::7:40852] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.kingdomvalleyfarm.com"] [uri "/.git/config"] [unique_id "aiK3aOVdKw9lDoucX-6P1gAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-09 08:26:32 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::7 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::7 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 04:26:25.983277 2026] [security2:error] [pid 7091:tid 7091] [client 2a03:e600:100::7:58770] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|kaldaragroup.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kaldaragroup.com"] [uri "/kaldar.sql"] [unique_id "af7vsWgXm5ZhT7thHsmjwAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-08 16:59:48 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::7 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::7 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 12:59:40.016984 2026] [security2:error] [pid 2896:tid 2896] [client 2a03:e600:100::7:52192] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|crep-psych.org\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "crep-psych.org"] [uri "/h_com.sql"] [unique_id "af4WfKhIsYzckZ7HqLLsSAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-05-08 16:01:39 (1 month ago)	124 querystring crawling (29m59s)	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-08 09:59:40 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::7 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::7 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 05:59:34.278310 2026] [security2:error] [pid 8375:tid 8375] [client 2a03:e600:100::7:48392] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|bitcoincasting.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "bitcoincasting.com"] [uri "/b.sql"] [unique_id "af20Bum_dc259jzw_YQXBQAAACo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-06 19:31:58 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::7 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::7 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 06 15:31:53.789270 2026] [security2:error] [pid 16274:tid 16274] [client 2a03:e600:100::7:60098] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|faithlines.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "faithlines.com"] [uri "/f.sql"] [unique_id "afuXKdA_9E0UL8UzRRLwCgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-05 11:03:29 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::7 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::7 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 05 07:03:23.479798 2026] [security2:error] [pid 15158:tid 15158] [client 2a03:e600:100::7:45990] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|billymitchell.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "billymitchell.com"] [uri "/billymitc.sql"] [unique_id "afnOez-ILPdn_Zm-rj8fJwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-04-26 21:03:53 (1 month ago)	2026-04-26 08:00:46,941 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::7 2026-04-2 ... show more 2026-04-26 08:00:46,941 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::7 2026-04-26 12:01:37,604 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::7 2026-04-26 18:01:35,260 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::7 2026-04-26 21:01:32,732 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::7 2026-04-27 00:03:52,357 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::7 show less	Brute-Force
🇺🇸 TPI-Abuse	2026-04-26 20:52:19 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::7 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::7 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 16:52:14.661666 2026] [security2:error] [pid 32485:tid 32485] [client 2a03:e600:100::7:42062] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|caferutadelaseda.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "caferutadelaseda.com"] [uri "/a_com.sql"] [unique_id "ae56_vyCvu1_Ar-wjvZSbAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-25 16:35:19 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::7 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::7 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 25 12:35:15.334094 2026] [security2:error] [pid 5640:tid 5640] [client 2a03:e600:100::7:40296] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kh6jim.com"] [uri "/wp-config.phpd"] [unique_id "aeztQ8Rsu9RHnLq3GYcJYQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 as211431.net	2026-04-24 15:35:28 (1 month ago)	Triggered Cloudflare WAF (firewallManaged) from T1. Action taken: BLOCK Protocol: HTTP/1.1 (GET meth ... show more Triggered Cloudflare WAF (firewallManaged) from T1. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /wp-config.php~ UA: Mozilla/5.0 (Linux; Android 4.1.2; SGH-I727R Build/JZO54K) AppleWebKit/537.22 (KHTML, like Gecko) Chrome/25.0.1364.169 Mobile Safari/537.22 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 ipblock.com	2026-04-18 10:13:00 (1 month ago)	IPBlock protected site ID [3717-sec]. Robotic site crawling, undeclared spider	Bad Web Bot Web App Attack

Showing 1 to 15 of 77 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 217.154.35.203

🇧🇷 200.196.50.91

🇸🇬 172.217.47.28

🇪🇸 91.142.223.216

🇧🇬 78.128.114.22

🇺🇸 66.132.195.57

🇳🇱 45.148.10.141

🇷🇴 2.57.121.25

🇺🇸 205.210.31.46

🇩🇪 194.88.98.106

🇧🇴 190.129.122.221

🇺🇸 147.185.132.75

🇺🇸 107.178.10.54

🇭🇰 103.243.24.124

🇫🇷 91.231.89.227

🇫🇷 85.217.140.22

🇫🇷 85.204.70.90

🇳🇱 77.83.39.54

🇩🇪 69.5.169.103

🇩🇪 69.5.169.50