AbuseIPDB » 2a0b:f4c2:4::110

2a0b:f4c2:4::110 was found in our database!

This IP was reported 77 times. Confidence of Abuse is 22%: ?

22%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Digitalcourage e.V.
Usage Type	Commercial
ASN	AS60729
Domain Name	digitalcourage.de
Country	Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 2a0b:f4c2:4::110

Whois 2a0b:f4c2:4::110

IP Abuse Reports for 2a0b:f4c2:4::110:

This IP address has been reported a total of 77 times from 8 distinct sources. 2a0b:f4c2:4::110 was first reported on February 25th 2024, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
Anonymous	2025-07-06 16:34:22 (4 days ago)	Action: Block, Reason: DDOS attack detected	DDoS Attack
TPI-Abuse	2025-06-22 05:34:37 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 s ... show more(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 22 01:34:26.964202 2025] [security2:error] [pid 2543613:tid 2543613] [client 2a0b:f4c2:4::110:22655] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||gasoilliquidsdaily.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "gasoilliquidsdaily.com"] [uri "/asoilliquidsdaily.sql"] [unique_id "aFeV4uIjXYoi2xTnpk6xEQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-06-18 20:00:37 (3 weeks ago)	(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 s ... show more(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 18 16:00:30.769362 2025] [security2:error] [pid 2163689:tid 2163689] [client 2a0b:f4c2:4::110:44239] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.doug-riley.net|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.doug-riley.net"] [uri "/adminer.sql"] [unique_id "aFMa3hXA-bsNp0znEUz8ygAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
sefinek.net	2025-06-12 20:06:45 (3 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from T1. Action taken: BLOCK Protocol: HTTP/2 ... show moreTriggered Cloudflare WAF (firewallCustom) from T1. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: /tools/ip-checker UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:128.0) Gecko/20100101 Firefox/128.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2025-06-09 05:53:17 (1 month ago)	Action: Block, Reason: DDOS attack detected	DDoS Attack
TPI-Abuse	2025-06-07 11:45:13 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 s ... show more(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 07 07:45:03.385829 2025] [security2:error] [pid 1296335:tid 1296335] [client 2a0b:f4c2:4::110:62709] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "uphillfarmvt.com"] [uri "/wp-config.php.CloudTech_bak"] [unique_id "aEQmPz9_MoIoJk1l2NxglgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-06-06 14:29:03 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 s ... show more(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 06 10:28:54.428346 2025] [security2:error] [pid 2620015:tid 2620015] [client 2a0b:f4c2:4::110:46441] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||winformation.us|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "winformation.us"] [uri "/2022_rmation.sql"] [unique_id "aEL7JqrFCIuU45bD-a8TuQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
Nerdscave Hosting	2025-06-04 09:50:05 (1 month ago)	Plesk panel brute-force detected by Fail2Ban in plesk-panel jail	Web App Attack
TPI-Abuse	2025-05-28 05:20:01 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 s ... show more(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 28 01:19:56.037682 2025] [security2:error] [pid 981110:tid 981110] [client 2a0b:f4c2:4::110:48501] [client 2a0b:f4c2:4::110] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||raintechgutters.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "raintechgutters.com"] [uri "/administrator/backups/database-sql.sql"] [unique_id "aDac_LPDhSeMtk9W4GU8gQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-05-14 22:49:58 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 s ... show more(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 14 18:49:53.894301 2025] [security2:error] [pid 3137672:tid 3137672] [client 2a0b:f4c2:4::110:15781] [client 2a0b:f4c2:4::110] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||healingworksmassage.studio|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "healingworksmassage.studio"] [uri "/adminer.sql"] [unique_id "aCUeEXzbhME_mUv3xQha9wAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-05-08 10:56:18 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 s ... show more(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 08 06:56:12.753440 2025] [security2:error] [pid 240850:tid 240955] [client 2a0b:f4c2:4::110:18589] [client 2a0b:f4c2:4::110] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||jpdesign.us|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "jpdesign.us"] [uri "/sqldump.sql"] [unique_id "aByNzCCePkl_l7E7UJQycQAAAMk"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-05-08 00:18:25 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 s ... show more(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 07 20:18:18.062716 2025] [security2:error] [pid 781332:tid 781332] [client 2a0b:f4c2:4::110:5733] [client 2a0b:f4c2:4::110] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||odinathletes.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "odinathletes.com"] [uri "/adminer.sql"] [unique_id "aBv4Sp8uNAAKhfp6wFfV3gAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-04-29 10:54:33 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 s ... show more(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 29 06:54:27.758444 2025] [security2:error] [pid 3590:tid 3590] [client 2a0b:f4c2:4::110:56123] [client 2a0b:f4c2:4::110] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||firstunitedreserve.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "firstunitedreserve.com"] [uri "/administrator/backups/database-sql.sql"] [unique_id "aBCv43UQvNVIZwVRMlhl7AAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-04-28 20:48:23 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 s ... show more(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 28 16:48:18.290430 2025] [security2:error] [pid 1017:tid 1055] [client 2a0b:f4c2:4::110:55091] [client 2a0b:f4c2:4::110] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dontbeajerklikeyourwork.com"] [uri "/wp-config.php.backup.txt"] [unique_id "aA_pko6wVLwM6omllS0l-wAAAI0"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-04-27 05:36:58 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 s ... show more(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::110 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 27 01:36:52.235564 2025] [security2:error] [pid 316130:tid 316130] [client 2a0b:f4c2:4::110:2293] [client 2a0b:f4c2:4::110] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||tcit.org|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "tcit.org"] [uri "/it-2023.sql"] [unique_id "aA3CdJC2nrg91_AzP23sOQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩