This IP was reported 151 times. Confidence of
Abuse
is 20%: ?
20%
Important Note: Public IPv6 addresses may implement the SLAAC
privacy extension. With this, the interface identifier is randomly generated. The SLAAC
privacy extension also implements a time out, which is configurable, so that the IPv6
interface addresses will be discarded and a new interface identifier is generated.
This IP address has been reported a total of
151
times from
15 distinct
sources.
2a0b:f4c2:4::96 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::96 (Unknown): 1 in the last 300 se ...
show more(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::96 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 09 00:14:07.612634 2026] [security2:error] [pid 27763:tid 27763] [client 2a0b:f4c2:4::96:5915] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||geckoturner.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "geckoturner.com"] [uri "/monthly.sql"] [unique_id "aa5JD9WGjCOf4jkseH2QoQAAAAQ"]
show less
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::96 (Unknown): 1 in the last 300 se ...
show more(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::96 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 07 08:19:39.929749 2026] [security2:error] [pid 3613:tid 3613] [client 2a0b:f4c2:4::96:52841] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||diamondtrailerserv.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "diamondtrailerserv.com"] [uri "/wordpress_mondtrailerserv.sql"] [unique_id "aawl6-TM52piDfmghbqTWwAAAA0"]
show less
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::96 (Unknown): 1 in the last 300 se ...
show more(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::96 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 03 14:06:30.331321 2026] [security2:error] [pid 7009:tid 7009] [client 2a0b:f4c2:4::96:9205] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||sekelconsulting.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "sekelconsulting.com"] [uri "/ng_prod.sql"] [unique_id "aacxNhNfxmtMWTxl1M6bvgAAAAY"]
show less
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::96 (Unknown): 1 in the last 300 se ...
show more(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::96 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 15:16:36.753984 2026] [security2:error] [pid 27162:tid 27162] [client 2a0b:f4c2:4::96:53095] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||dwightbrown.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "dwightbrown.com"] [uri "/db_rown.sql"] [unique_id "aZy1pOhk5JwKveoK-Eu9IgAAABo"]
show less
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show moreAuto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-02-01.
show less
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::96 (Unknown): 1 in the last 300 se ...
show more(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::96 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 31 08:17:20.830377 2026] [security2:error] [pid 13994:tid 13994] [client 2a0b:f4c2:4::96:28353] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||williams-rodriguez.org|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "williams-rodriguez.org"] [uri "/iguez_com.sql"] [unique_id "aX4A4N6oAv_2Hsa3-gEzwQAAAAw"]
show less
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::96 (Unknown): 1 in the last 300 se ...
show more(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::96 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 16 19:13:52.732444 2025] [security2:error] [pid 26830:tid 26830] [client 2a0b:f4c2:4::96:57935] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||gabbyspetnanny.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "gabbyspetnanny.com"] [uri "/backupwp.sql"] [unique_id "aUH1wIn0m9A3hSidDt4z6wAAAAM"]
show less
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::96 (Unknown): 1 in the last 300 se ...
show more(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::96 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 15 20:46:46.558978 2025] [security2:error] [pid 14420:tid 14420] [client 2a0b:f4c2:4::96:38943] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||newcitypark.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "newcitypark.com"] [uri "/latest.sql"] [unique_id "aUC6BtxVSbs2UlzDDemGeAAAAAA"]
show less
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::96 (Unknown): 1 in the last 300 se ...
show more(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::96 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 19:25:18.369935 2025] [security2:error] [pid 10126:tid 10126] [client 2a0b:f4c2:4::96:59239] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||prostar.industries|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "prostar.industries"] [uri "/pros.sql"] [unique_id "aTYa7gKVgun77Wwrmj6v8QAAABM"]
show less
(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::96 (Unknown): 1 in the last 300 se ...
show more(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::96 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 18:41:54.269250 2025] [security2:error] [pid 11778:tid 11778] [client 2a0b:f4c2:4::96:57797] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||computerpartsrecovery.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "computerpartsrecovery.com"] [uri "/uterpartsrecovery.sql"] [unique_id "aTYQwk4h4t21QqFN2uAD0gAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Showing 16 to
30
of 151 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ