JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a06:6440:0:2c2f::1

2a06:6440:0:2c2f::1 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 15%: ?

15%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Hosting Ukraine LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200000
Hostname(s)	business-73.default-host.net
Domain Name	ukraine.com.ua
Country	🇺🇦 Ukraine
City	Kyiv, Kyiv City

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a06:6440:0:2c2f::1

Whois 2a06:6440:0:2c2f::1

IP Abuse Reports for 2a06:6440:0:2c2f::1:

This IP address has been reported a total of 15 times from 3 distinct sources. 2a06:6440:0:2c2f::1 was first reported on March 5th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-08 10:40:44 (1 hour ago)	(mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.n ... show more (mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 06:40:38.858616 2026] [security2:error] [pid 19856:tid 19856] [client 2a06:6440:0:2c2f::1:14500] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|churchbehindthewalls.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "churchbehindthewalls.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiacJso0YX_7MHVCnqNnAQAAAH0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 05:40:48 (6 hours ago)	(mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.n ... show more (mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 01:40:43.496762 2026] [security2:error] [pid 6600:tid 6600] [client 2a06:6440:0:2c2f::1:11688] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|parastesh.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "parastesh.org"] [uri "/wp-json/wp/v2/users"] [unique_id "aiZV2-IxzpPH0XFb4p5gzgAAAHk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 14:21:24 (22 hours ago)	(mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.n ... show more (mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 10:21:20.827330 2026] [security2:error] [pid 2773:tid 2773] [client 2a06:6440:0:2c2f::1:58922] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.spacebooger.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.spacebooger.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiV-YIKe1jbKo10iZaMuHQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 01:10:33 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.n ... show more (mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 21:10:26.564587 2026] [security2:error] [pid 28231:tid 28231] [client 2a06:6440:0:2c2f::1:48198] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.smoothiessoupssalads.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.smoothiessoupssalads.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiTFAjHn8rf0iK8gVGeiCgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 17:59:31 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.n ... show more (mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 13:59:25.213871 2026] [security2:error] [pid 2212:tid 2212] [client 2a06:6440:0:2c2f::1:15636] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.losbarbarosdelnorte.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.losbarbarosdelnorte.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiMOfZnngbYRhEelcwpP3AAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 06:27:12 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.n ... show more (mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 02:27:04.162308 2026] [security2:error] [pid 8552:tid 8552] [client 2a06:6440:0:2c2f::1:19678] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.brianwhitty.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.brianwhitty.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiJsONG6V1IbXIpgEqJLGAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 12:07:23 (4 days ago)	(mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.n ... show more (mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 08:07:13.564379 2026] [security2:error] [pid 22908:tid 22919] [client 2a06:6440:0:2c2f::1:54970] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|vinylnotespodcast.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "vinylnotespodcast.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiFqcTjGfrMuPIMOZFdQRAAAAMc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 01:14:13 (5 days ago)	(mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.n ... show more (mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 21:14:05.126061 2026] [security2:error] [pid 20477:tid 20477] [client 2a06:6440:0:2c2f::1:58698] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|bonnesfrequences.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bonnesfrequences.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ah9_3SijSqCSaazvO5SqLQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 08:01:42 (6 days ago)	(mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.n ... show more (mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 04:01:33.535057 2026] [security2:error] [pid 14136:tid 14136] [client 2a06:6440:0:2c2f::1:4616] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.velvetculture.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.velvetculture.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ah6N3XgO2O-sDOWKsp7OdwAAACg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-01 22:22:37 (6 days ago)	(mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.n ... show more (mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 18:22:30.037591 2026] [security2:error] [pid 14094:tid 14109] [client 2a06:6440:0:2c2f::1:42472] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.jimlawrencesongs.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.jimlawrencesongs.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ah4GJr4LPfUmiX3_echixAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-31 22:08:20 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.n ... show more (mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 18:08:12.319081 2026] [security2:error] [pid 27863:tid 27863] [client 2a06:6440:0:2c2f::1:26638] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.godcanuseyou.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.godcanuseyou.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ahyxTL41GNjaCnqGJAj77gAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-31 20:48:15 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.n ... show more (mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 16:48:07.675046 2026] [security2:error] [pid 25981:tid 25981] [client 2a06:6440:0:2c2f::1:26626] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|bethanpearce.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bethanpearce.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ahyeh8SUrUDC0c115gkG0gAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-31 04:20:04 (1 week ago)	\| [Dangerous/Ukraine] Aggressive IP 2a06:6440:0:2c2f::1 (~30 hits). Type: DoS Defender- Web server 4 ... show more \| [Dangerous/Ukraine] Aggressive IP 2a06:6440:0:2c2f::1 (~30 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
🇺🇸 TPI-Abuse	2026-05-30 13:29:45 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.n ... show more (mod_security) mod_security (id:225170) triggered by 2a06:6440:0:2c2f::1 (business-73.default-host.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 30 09:29:38.161267 2026] [security2:error] [pid 12252:tid 12252] [client 2a06:6440:0:2c2f::1:52870] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.innovacionesnimba.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.innovacionesnimba.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ahrmQmajZOFiLK10pUaGEwAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-03-05 22:57:04 (3 months ago)	Blocking for trying to access an exploit file: /xmlrpc.php	Hacking

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 2401:4900:1ce1:c02:24bd:2768:ab5:56cd

🇵🇰 103.72.1.35

🇭🇰 101.36.127.85

🇸🇪 85.229.46.153

🇺🇸 50.62.22.47

🇩🇪 47.245.141.179

🇫🇷 45.95.233.88

🇳🇱 2a10:3c0:3:0:1:28:0:5

🇧🇷 170.150.93.73

🇺🇸 165.154.182.168

🇺🇸 152.32.236.180

🇺🇸 140.235.0.96

🇵🇭 122.54.88.152

🇰🇷 121.66.63.189

🇺🇸 91.230.168.176

🇺🇸 65.49.20.68

🇳🇱 64.89.162.167

🇺🇸 52.224.109.126

🇺🇸 45.55.226.206

🇭🇰 34.150.101.113