This IP was reported 65 times. Confidence of
Abuse
is 100%: ?
100%
Important Note: Public IPv6 addresses may implement the SLAAC
privacy extension. With this, the interface identifier is randomly generated. The SLAAC
privacy extension also implements a time out, which is configurable, so that the IPv6
interface addresses will be discarded and a new interface identifier is generated.
This IP address has been reported a total of
65
times from
35 distinct
sources.
2a04:c300:400::1e7 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Blocked by UFW (TCP on 443)
Source port: 28180
Packet length: 80
This report (for 2a04:c300:0400:00 ...
show moreBlocked by UFW (TCP on 443)
Source port: 28180
Packet length: 80
This report (for 2a04:c300:0400:0000:0000:0000:0000:01e7) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
(mod_security) mod_security triggered on hostname [redacted] 2a04:c300:400::1e7 (Unknown): (CF_ENAB ...
show more(mod_security) mod_security triggered on hostname [redacted] 2a04:c300:400::1e7 (Unknown): (CF_ENABLE)
show less
(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::1e7 (Unknown): 5 in the last 300 ...
show more(mod_security) mod_security (id:210492) triggered by 2a04:c300:400::1e7 (Unknown): 5 in the last 300 secs (CF_ENABLE)
show less
[FriJun1908:38:43.4036482026][security2:error][pid1950810:tid1950935][client2a04:c300:400::1e7:0]Mod ...
show more[FriJun1908:38:43.4036482026][security2:error][pid1950810:tid1950935][client2a04:c300:400::1e7:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Patternmatch\"\(\?i\)\(\?:/\(\?:\^\|/\)\\\\\\\\.\(env\|git\|svn\|hg\|DS_Store\)\|/\(\?:wp-config\|\\\\\\\\.htaccess\|\\\\\\\\.htpasswd\)\|\\\\\\\\.\(\?:sql\|bak\|old\|log\)\$\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"156\"][id\"960720\"][msg\"Forbiddenfileaccessattempt\"][severity\"CRITICAL\"][hostname\"mail.maurokorangraf.ch\"][uri\"/wp-content/debug.log\"][unique_id\"ajTj86WBclwlvkMu-kdNRgAAARE\"]
show less
59 attacks on config grabbing URLs (type 2), env grabbing URLs, VC URLs, password grabbing URLs:
GET ...
show more59 attacks on config grabbing URLs (type 2), env grabbing URLs, VC URLs, password grabbing URLs:
GET /config.json HTTP/1.1
GET /.env.production.bak HTTP/1.1
GET /.git/HEAD HTTP/1.1
GET /.aws/credentials HTTP/1.1
show less
{"level":"info","ts":1781843116.2575862,"logger":"http.log.access.log0","msg":"handled request","req ...
show more{"level":"info","ts":1781843116.2575862,"logger":"http.log.access.log0","msg":"handled request","request":{"remote_ip":"2a04:c300:400::1e7","remote_port":"43646","client_ip":"2a04:c300:400::1e7","proto":"HTTP/1.1","method":"GET","host":"crgd.status.updown.io","uri":"/","headers":{"User-Agent":["Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36"],"Accept":["*/*"],"Accept-Encoding":["gzip"]}},"bytes_read":0,"user_id":"","duration":0.000073411,"size":0,"status":308,"resp_headers":{"Connection":["close"],"Location":["https://crgd.status.updown.io/"],"Content-Type":[],"Server":["Caddy"]}}
{"level":"info","ts":1781843120.7831442,"logger":"http.log.access.log0","msg":"handled request","request":{"remote_ip":"2a04:c300:400::1e7","remote_port":"58506","client_ip":"2a04:c300:400::1e7","proto":"HTTP/1.1","method":"GET","host":"crgd.status.updown.io","uri":"/gcloud-service-key.json","headers":{"User-Agent":["Mozilla/5.0 (Windows N
...
show less
404 burst: 20 hits in 5 min, URI /sa-key.json, Ref , UA Mozilla/5.0 (X11; Linux x86_64; rv:149.0) Ge ...
show more404 burst: 20 hits in 5 min, URI /sa-key.json, Ref , UA Mozilla/5.0 (X11; Linux x86_64; rv:149.0) Gecko/20100101 Firefox/149.0
show less
Brute-Force
Web App Attack
Bad Web Bot
Showing 1 to
15
of 65 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ