JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a03:e600:100::8

2a03:e600:100::8 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 22%: ?

22%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Foundation for Applied Privacy
Usage Type	University/College/School
ASN	AS208323
Hostname(s)	tor-exit-anonymizer-v6.appliedprivacy.net
Domain Name	appliedprivacy.net
Country	🇦🇹 Austria
City	Vienna, State of Vienna

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a03:e600:100::8

Whois 2a03:e600:100::8

IP Abuse Reports for 2a03:e600:100::8:

This IP address has been reported a total of 32 times from 7 distinct sources. 2a03:e600:100::8 was first reported on February 15th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-05 20:11:32 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::8 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::8 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 16:11:23.851331 2026] [security2:error] [pid 452:tid 452] [client 2a03:e600:100::8:34312] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.nwuoregon.org"] [uri "/.git/config"] [unique_id "aiMta_fcy1gtgyqVWHEoRQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 11:57:11 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::8 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::8 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 07:57:03.655665 2026] [security2:error] [pid 19339:tid 19339] [client 2a03:e600:100::8:49092] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.bostonscience.com"] [uri "/.git/config"] [unique_id "aiK5jw0c-Vry73oCex4G0QAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 4server	2026-05-09 04:37:52 (4 weeks ago)	[SatMay0906:37:44.6740992026][security2:error][pid3025856:tid3025959][client2a03:e600:100::8:0]ModSe ... show more [SatMay0906:37:44.6740992026][security2:error][pid3025856:tid3025959][client2a03:e600:100::8:0]ModSecurity:Accessdeniedwithcode403$phase1$.Patternmatch\"$\?i$$\?:/\(\?:\^\\|/$\\\\\\\\.$env\\|git\\|svn\\|hg\\|DS_Store$\\|/$\?:wp-config\\|\\\\\\\\.htaccess\\|\\\\\\\\.htpasswd$\\|\\\\\\\\.$\?:sql\\|bak\\|old\\|log$\$\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"156\"][id\"960720\"][msg\"Forbiddenfileaccessattempt\"][severity\"CRITICAL\"][hostname\"craniosacraltherapy.ch\"][uri\"/craniosacralthe.sql\"][unique_id\"af66GKQ20bhK78i3cQzWXAAAAMw\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-05-08 22:09:32 (4 weeks ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::8 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::8 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 18:09:27.315305 2026] [security2:error] [pid 1449:tid 1449] [client 2a03:e600:100::8:41110] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|hotelausland.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "hotelausland.com"] [uri "/bck.sql"] [unique_id "af5fF3dRiZnEWBo6azqXPgAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-08 16:13:10 (4 weeks ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::8 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::8 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 12:13:02.879177 2026] [security2:error] [pid 10037:tid 10037] [client 2a03:e600:100::8:43160] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|doctorspainmanagement.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "doctorspainmanagement.com"] [uri "/anagement_com.sql"] [unique_id "af4LjlAKsOQ7c0DwnwQPlgAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-05 10:50:44 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::8 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::8 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 05 06:50:37.898270 2026] [security2:error] [pid 29439:tid 29439] [client 2a03:e600:100::8:33472] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|cajunpicasso.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "cajunpicasso.com"] [uri "/o_com.sql"] [unique_id "afnLfUUL4KVsPp-x2NxZUgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-27 05:31:48 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::8 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::8 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 27 01:31:41.041950 2026] [security2:error] [pid 29783:tid 29783] [client 2a03:e600:100::8:45018] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.summitmediawv.com"] [uri "/.git/config"] [unique_id "ae70vat1KWIpJVQ-v_awfQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-04-26 21:03:53 (1 month ago)	2026-04-26 08:00:46,996 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::8 2026-04-2 ... show more 2026-04-26 08:00:46,996 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::8 2026-04-26 12:01:37,645 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::8 2026-04-26 18:01:35,298 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::8 2026-04-26 21:01:32,772 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::8 2026-04-27 00:03:52,655 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::8 show less	Brute-Force
🇺🇸 TPI-Abuse	2026-04-25 04:52:08 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::8 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::8 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 25 00:52:05.007783 2026] [security2:error] [pid 16869:tid 16869] [client 2a03:e600:100::8:40172] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "soonerstone.com"] [uri "/wp-config.php.de"] [unique_id "aexIdVXGKx2V-o_X2A0jYQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-23 00:54:58 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::8 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::8 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 22 20:54:52.217198 2026] [security2:error] [pid 3281741:tid 3281741] [client 2a03:e600:100::8:45976] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brbcash.com"] [uri "/wp-config.phpnew"] [unique_id "aelt3KHKpJDB-gESXYcmcwAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-22 10:38:49 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::8 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::8 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 22 06:38:41.540026 2026] [security2:error] [pid 20120:tid 20120] [client 2a03:e600:100::8:42314] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "technesa.com"] [uri "/wp-config.phpbak"] [unique_id "aeilMcwPiTFf1HhMIs6MPgAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 ipblock.com	2026-04-20 04:21:00 (1 month ago)	IPBlock protected site ID [3717-sec]. Robotic site crawling, undeclared spider	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-17 02:34:52 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::8 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::8 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 16 22:34:41.046558 2026] [security2:error] [pid 3846818:tid 3846818] [client 2a03:e600:100::8:43914] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rambleandprose.com"] [uri "/wp-config.phpo"] [unique_id "aeGcQdNh2PjkElpGSuZl7wAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 4server	2026-04-15 01:08:28 (1 month ago)	[WedApr1503:08:23.6334992026][security2:error][pid1644862:tid1644887][client2a03:e600:100::8:0]ModSe ... show more [WedApr1503:08:23.6334992026][security2:error][pid1644862:tid1644887][client2a03:e600:100::8:0]ModSecurity:Accessdeniedwithcode403$phase1$.Patternmatch\"\^/wp-content/plugins/[\^/] /$readme\\\\\\\\.txt\\|changelog\\\\\\\\.txt$\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"359\"][id\"960828\"][msg\"WordPresspluginenumerationblocked\"][hostname\"edelhaut.ch\"][uri\"/wp-content/plugins/marra-core/readme.txt\"][unique_id\"ad7lBwtvJqasAbUKfZLMFAAAARc\"] show less	Hacking Web App Attack
🇵🇱 sefinek.net	2026-04-13 21:27:09 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from T1. Action: BLOCK \| Protocol: HTTP/2 (GET) \| Endpoint ... show more Triggered Cloudflare WAF (firewallCustom) from T1. Action: BLOCK \| Protocol: HTTP/2 (GET) \| Endpoint: / \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:140.0) Gecko/20100101 Firefox/140.0 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 222.239.254.216

🇨🇳 183.56.199.49

🇯🇴 176.29.229.159

🇺🇸 162.243.114.171

🇺🇸 154.53.58.161

🇧🇩 103.65.240.34

🇺🇸 91.230.168.184

🇱🇹 91.224.92.32

🇺🇸 64.62.197.204

🇮🇪 64.43.15.29

🇧🇷 45.171.128.223

🇮🇩 36.88.18.218

🇺🇸 3.139.100.75

🇷🇴 2.57.121.112

🇩🇪 213.209.159.175

🇬🇧 185.247.137.142

🇫🇷 185.177.72.10

🇮🇳 115.245.198.214

🇷🇴 92.118.39.236

🇩🇪 91.107.151.199