JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a03:e600:100::9

2a03:e600:100::9 was found in our database!

This IP was reported 70 times. Confidence of Abuse is 17%: ?

17%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Foundation for Applied Privacy
Usage Type	University/College/School
ASN	AS208323
Hostname(s)	tor-exit-anonymizer-v6.appliedprivacy.net
Domain Name	appliedprivacy.net
Country	🇦🇹 Austria
City	Vienna, State of Vienna

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a03:e600:100::9

Whois 2a03:e600:100::9

IP Abuse Reports for 2a03:e600:100::9:

This IP address has been reported a total of 70 times from 13 distinct sources. 2a03:e600:100::9 was first reported on June 8th 2023, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-07 14:07:11 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 10:07:04.890388 2026] [security2:error] [pid 15345:tid 15345] [client 2a03:e600:100::9:56382] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.familyfuntennis.com"] [uri "/.git/config"] [unique_id "aiV7CPdJ8DncbaJP1XfcTwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 14:27:28 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 10:27:24.664367 2026] [security2:error] [pid 2709:tid 2709] [client 2a03:e600:100::9:37772] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.savannah-house.com"] [uri "/.git/config"] [unique_id "aiLczArrt2clM_efmW6-EgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 13:55:16 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 09:55:00.536754 2026] [security2:error] [pid 14805:tid 14805] [client 2a03:e600:100::9:51284] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.emisoni.com"] [uri "/.git/config"] [unique_id "aiLVNK1w1T9VGsUl982icQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-10 05:19:12 (4 weeks ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 10 01:19:02.048953 2026] [security2:error] [pid 28455:tid 28455] [client 2a03:e600:100::9:37316] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|christianconsulting.net\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "christianconsulting.net"] [uri "/backupwp.sql"] [unique_id "agAVRsPF9QmLFAajSmpYUwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-08 16:47:10 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 12:46:46.812773 2026] [security2:error] [pid 19106:tid 19106] [client 2a03:e600:100::9:46326] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|brexitop.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "brexitop.com"] [uri "/brexitop_com.sql"] [unique_id "af4TdrolnaJiiROvHYIVHgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-08 15:00:51 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 11:00:41.544172 2026] [security2:error] [pid 30485:tid 30485] [client 2a03:e600:100::9:43494] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|cosplayculture.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "cosplayculture.com"] [uri "/backupdb.sql"] [unique_id "af36mXGFHY6oPU3BPWKkmAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 4server	2026-05-07 14:08:04 (1 month ago)	[ThuMay0716:08:02.1274272026][security2:error][pid555922:tid555947][client2a03:e600:100::9:0]ModSecu ... show more [ThuMay0716:08:02.1274272026][security2:error][pid555922:tid555947][client2a03:e600:100::9:0]ModSecurity:Accessdeniedwithcode403$phase1$.Patternmatch\"$\?i$$\?:/\(\?:\^\\|/$\\\\\\\\.$env\\|git\\|svn\\|hg\\|DS_Store$\\|/$\?:wp-config\\|\\\\\\\\.htaccess\\|\\\\\\\\.htpasswd$\\|\\\\\\\\.$\?:sql\\|bak\\|old\\|log$\$\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"156\"][id\"960720\"][msg\"Forbiddenfileaccessattempt\"][severity\"CRITICAL\"][hostname\"casacarmen.ch\"][uri\"/cas.sql\"][unique_id\"afycwgK_JN3Pjn_36KgXsAAAAA4\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-04-30 21:34:05 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 17:34:01.563372 2026] [security2:error] [pid 9630:tid 9630] [client 2a03:e600:100::9:37060] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.ezsmiledental.com"] [uri "/.git/config"] [unique_id "afPKyVySWt9t9luUUdFanQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-30 09:31:38 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 05:31:31.181415 2026] [security2:error] [pid 31935:tid 31982] [client 2a03:e600:100::9:56974] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.bak" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "la.productions"] [uri "/wp-config.bak"] [unique_id "afMhc4Ud8VRrX7EsFOG9BgAAAVA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-04-26 21:03:54 (1 month ago)	2026-04-26 08:00:47,125 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::9 2026-04-2 ... show more 2026-04-26 08:00:47,125 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::9 2026-04-26 12:01:37,685 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::9 2026-04-26 18:01:35,337 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::9 2026-04-26 21:01:32,812 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::9 2026-04-27 00:03:52,922 fail2ban.actions [7718]: NOTICE [tor] Ban 2a03:e600:100::9 show less	Brute-Force
🇺🇸 TPI-Abuse	2026-04-26 20:02:20 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 16:02:12.366381 2026] [security2:error] [pid 11950:tid 11950] [client 2a03:e600:100::9:54418] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|internetnameregistration.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "internetnameregistration.com"] [uri "/intern.sql"] [unique_id "ae5vROlsUy0r7kmH8dPFSQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 4server	2026-04-26 04:46:06 (1 month ago)	[SunApr2606:46:01.1812312026][security2:error][pid1633765:tid1634046][client2a03:e600:100::9:0]ModSe ... show more [SunApr2606:46:01.1812312026][security2:error][pid1633765:tid1634046][client2a03:e600:100::9:0]ModSecurity:Accessdeniedwithcode403$phase1$.Patternmatch\"$\?i$$\?:/\(\?:\^\\|/$\\\\\\\\.$env\\|git\\|svn\\|hg\\|DS_Store$\\|/$\?:wp-config\\|\\\\\\\\.htaccess\\|\\\\\\\\.htpasswd$\\|\\\\\\\\.$\?:sql\\|bak\\|old\\|log$\$\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"156\"][id\"960720\"][msg\"Forbiddenfileaccessattempt\"][severity\"CRITICAL\"][hostname\"allegraravizza.it\"][uri\"/zza_com.sql\"][unique_id\"ae2YiTSUECaP_mVy_IM2FwAAAcI\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-04-26 01:51:41 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210730) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 25 21:51:32.462475 2026] [security2:error] [pid 11369:tid 11369] [client 2a03:e600:100::9:47968] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|arsndetx.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "arsndetx.com"] [uri "/ars.sql"] [unique_id "ae1vpIOvYR5rxQf9D1dB4gAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-25 04:51:38 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 25 00:51:31.137096 2026] [security2:error] [pid 21010:tid 21010] [client 2a03:e600:100::9:39734] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "soonerstone.com"] [uri "/wp-config.php.backup.txt"] [unique_id "aexIUw289g6_teR19NhHPgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-22 20:17:34 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.applie ... show more (mod_security) mod_security (id:210492) triggered by 2a03:e600:100::9 (tor-exit-anonymizer-v6.appliedprivacy.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 22 16:17:26.279419 2026] [security2:error] [pid 1750025:tid 1750025] [client 2a03:e600:100::9:53444] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nuewines.com"] [uri "/wp-config.phpc"] [unique_id "aeks1kRa8q1BecSFFYv8twAAABw"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 70 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 222.122.196.27

🇺🇸 206.189.203.250

🇺🇸 172.203.134.70

🇸🇪 158.174.211.17

🇧🇬 91.92.40.14

🇨🇳 42.100.58.68

🇧🇷 187.19.172.202

🇦🇷 186.122.177.140

🇺🇸 162.216.149.84

🇰🇷 111.171.125.94

🇨🇦 54.39.210.70

🇩🇪 46.224.234.158

🇪🇬 41.45.185.15

🇮🇪 34.245.148.25

🇷🇴 2.57.122.189

🇪🇹 196.188.116.56

🇮🇳 182.95.126.26

🇩🇪 157.230.18.205

🇺🇸 108.178.7.34

🇺🇸 20.64.105.155