JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a06:1700:0:82a::12e5:202e

2a06:1700:0:82a::12e5:202e was found in our database!

This IP was reported 8 times. Confidence of Abuse is 35%: ?

35%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	FlokiNET ehf
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200651
Domain Name	flokinet.is
Country	🇷🇴 Romania
City	Bucharest, Bucharest

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a06:1700:0:82a::12e5:202e

Whois 2a06:1700:0:82a::12e5:202e

IP Abuse Reports for 2a06:1700:0:82a::12e5:202e:

This IP address has been reported a total of 8 times from 6 distinct sources. 2a06:1700:0:82a::12e5:202e was first reported on June 7th 2026, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-15 07:41:55 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 2a06:1700:0:82a::12e5:202e (Unknown): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 2a06:1700:0:82a::12e5:202e (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 03:41:43.626593 2026] [security2:error] [pid 6775:tid 6775] [client 2a06:1700:0:82a::12e5:202e:35204] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thevenicecafe.com"] [uri "/.svn/wc.db"] [unique_id "ai-st9il-UKth-KYeZxFcQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇯🇵 Tom Tamagawa	2026-06-14 21:36:00 (4 days ago)	Probing for vulnerabilities	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 14:24:45 (5 days ago)	(mod_security) mod_security (id:210730) triggered by 2a06:1700:0:82a::12e5:202e (Unknown): 1 in the ... show more (mod_security) mod_security (id:210730) triggered by 2a06:1700:0:82a::12e5:202e (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 10:24:37.829117 2026] [security2:error] [pid 9409:tid 9428] [client 2a06:1700:0:82a::12e5:202e:43808] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.bestthingieveratelocations.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.bestthingieveratelocations.com"] [uri "/backup.sql"] [unique_id "ai65pc-aLQLAeiS8cZvw7wAAAI8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 gamabe	2026-06-14 13:29:51 (5 days ago)	Detected crowdsecurity/http-sensitive-files attack pattern. Reported by CrowdSec IDS.	Hacking
🇳🇱 Savvii	2026-06-14 11:17:39 (5 days ago)	20 attempts against mh-misbehave-ban on pavo	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 10:18:11 (5 days ago)	(mod_security) mod_security (id:210730) triggered by 2a06:1700:0:82a::12e5:202e (Unknown): 1 in the ... show more (mod_security) mod_security (id:210730) triggered by 2a06:1700:0:82a::12e5:202e (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 06:18:03.518143 2026] [security2:error] [pid 6690:tid 6690] [client 2a06:1700:0:82a::12e5:202e:47982] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|eatinnola.com\|F\|2"] [data ".mdb"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "eatinnola.com"] [uri "/database.mdb"] [unique_id "ai5_20zWpMussSk5kmWISQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Apache	2026-06-08 13:10:25 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 2a06:1700:0:82a::12e5:202e (Unknown): 5 in the ... show more (mod_security) mod_security (id:210492) triggered by 2a06:1700:0:82a::12e5:202e (Unknown): 5 in the last 300 secs show less	Brute-Force Web App Attack
🇸🇬 Cloudkul Cloudkul	2026-06-07 08:36:53 (1 week ago)	Attempted Brute Force on our application	Brute-Force Web App Attack

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.244.66.226

🇮🇳 175.101.131.169

🇺🇸 165.245.167.227

🇺🇸 162.216.149.136

🇧🇬 94.155.124.98

🇨🇦 85.217.149.65

🇺🇸 66.132.172.134

🇫🇷 64.204.13.38

🇸🇬 45.197.12.65

🇺🇸 44.231.253.148

🇺🇸 216.24.219.130

🇺🇸 162.216.150.111

🇨🇦 85.217.149.47

🇺🇸 44.21.92.160

🇬🇧 216.226.76.20

🇬🇧 216.226.76.10

🇺🇸 47.77.195.68

🇳🇱 45.148.10.183

🇺🇸 44.190.110.88

🇨🇳 39.149.174.100