JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a0b:f4c2:4::98

2a0b:f4c2:4::98 was found in our database!

This IP was reported 149 times. Confidence of Abuse is 27%: ?

27%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Digitalcourage e.V.
Usage Type	Commercial
ASN	AS60729
Domain Name	digitalcourage.de
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a0b:f4c2:4::98

Whois 2a0b:f4c2:4::98

IP Abuse Reports for 2a0b:f4c2:4::98:

This IP address has been reported a total of 149 times from 20 distinct sources. 2a0b:f4c2:4::98 was first reported on February 25th 2024, and the most recent report was 19 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-12 09:14:27 (19 hours ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2:4::98 (Unknown): 1 in the last 300 se ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:f4c2:4::98 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 05:14:19.818328 2026] [security2:error] [pid 32766:tid 32766] [client 2a0b:f4c2:4::98:27515] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.teamsterslmcc.com"] [uri "/.git/config"] [unique_id "aivN6yEKjuhOKhuo2FAQJgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Savvii	2026-06-10 08:38:47 (2 days ago)	20 attempts against mh-misbehave-ban on web-new	Brute-Force Bad Web Bot Web App Attack
🇺🇸 xmission.com	2026-06-06 23:01:07 (6 days ago)	Blocked by UFW (TCP on 9999) Source port: 7701 Packet length: 72 This report (for 2a0b:f4c2:0004:00 ... show more Blocked by UFW (TCP on 9999) Source port: 7701 Packet length: 72 This report (for 2a0b:f4c2:0004:0000:0000:0000:0000:0098) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Ping of Death
🇺🇸 xmission.com	2026-05-16 06:41:43 (3 weeks ago)	Blocked by UFW (TCP on 8333) Source port: 54809 Packet length: 72 This report (for 2a0b:f4c2:0004:0 ... show more Blocked by UFW (TCP on 8333) Source port: 54809 Packet length: 72 This report (for 2a0b:f4c2:0004:0000:0000:0000:0000:0098) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-04-26 21:04:59 (1 month ago)	2026-04-26 08:01:00,815 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0b:f4c2:4::98 2026-04-26 ... show more 2026-04-26 08:01:00,815 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0b:f4c2:4::98 2026-04-26 12:01:46,382 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0b:f4c2:4::98 2026-04-26 18:01:43,971 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0b:f4c2:4::98 2026-04-26 21:01:43,255 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0b:f4c2:4::98 2026-04-27 00:04:58,392 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0b:f4c2:4::98 show less	Brute-Force
🇺🇸 TPI-Abuse	2026-04-18 04:39:54 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2:4::98 (Unknown): 1 in the last 300 se ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:f4c2:4::98 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 18 00:39:48.739094 2026] [security2:error] [pid 4094362:tid 4094362] [client 2a0b:f4c2:4::98:29965] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "local639.com"] [uri "/wp-config.phpbak"] [unique_id "aeMLFDLxA4juFK3mLF8Z8gAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-05 13:27:58 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::98 (Unknown): 1 in the last 300 se ... show more (mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::98 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 05 08:27:48.931989 2026] [security2:error] [pid 23389:tid 23389] [client 2a0b:f4c2:4::98:18587] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|aboutagingparents.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "aboutagingparents.com"] [uri "/wordpress_nts.sql"] [unique_id "aamE1NK-37QH8F9UG1s5QwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 jjnxpct	2026-03-05 04:50:53 (3 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /site.sql (Rule ID: 920440) - URL file extension is restricted by policy show less	Web App Attack SQL Injection Hacking
🇳🇱 Hobby Bob	2026-02-27 06:18:36 (3 months ago)	Feb 27 06:18:35 server dovecot: pop3-login: Disconnected: Connection closed (no auth attempts in 1 s ... show more Feb 27 06:18:35 server dovecot: pop3-login: Disconnected: Connection closed (no auth attempts in 1 secs): user=, rip=2a0b:f4c2:4::98, lip=X.X.X.X session= show less	Port Scan Hacking
🇺🇸 TPI-Abuse	2026-02-25 11:56:57 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::98 (Unknown): 1 in the last 300 se ... show more (mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::98 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 25 06:56:52.770068 2026] [security2:error] [pid 5006:tid 5006] [client 2a0b:f4c2:4::98:41521] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|thesalonx.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "thesalonx.com"] [uri "/dbthesalonx.sql"] [unique_id "aZ7jhC45nAn13prgD2gQOwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-24 09:27:13 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2:4::98 (Unknown): 1 in the last 300 se ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:f4c2:4::98 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 24 04:27:06.088405 2026] [security2:error] [pid 7218:tid 7236] [client 2a0b:f4c2:4::98:17281] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.meanmouse.com"] [uri "/.git/config"] [unique_id "aZ1u6tiTUckBx7PAuxSz8AAAAVA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-23 03:04:57 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2:4::98 (Unknown): 1 in the last 300 se ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:f4c2:4::98 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 22:04:53.749569 2026] [security2:error] [pid 8811:tid 8811] [client 2a0b:f4c2:4::98:5059] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.jesuspuzzle.com"] [uri "/.git/config"] [unique_id "aZvD1efUzXoan2mN38RicgAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-22 16:44:51 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2:4::98 (Unknown): 1 in the last 300 se ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:f4c2:4::98 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 11:44:45.347267 2026] [security2:error] [pid 13778:tid 13778] [client 2a0b:f4c2:4::98:22007] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.gaeltv.com"] [uri "/.git/config"] [unique_id "aZsyfQ8PMlwZlRzpNQPhjQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-21 11:43:44 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2:4::98 (Unknown): 1 in the last 300 se ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:f4c2:4::98 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 21 06:43:35.488892 2026] [security2:error] [pid 16570:tid 16570] [client 2a0b:f4c2:4::98:56469] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.mainstreetofficesuites.com"] [uri "/.git/config"] [unique_id "aZmaZ3ZvaRLvDPkPuE53-QAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-16 14:08:08 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::98 (Unknown): 1 in the last 300 se ... show more (mod_security) mod_security (id:210730) triggered by 2a0b:f4c2:4::98 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 16 09:08:00.188344 2026] [security2:error] [pid 29365:tid 29365] [client 2a0b:f4c2:4::98:20175] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|thepotteriesmesilla.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "thepotteriesmesilla.com"] [uri "/thepot.sql"] [unique_id "aZMkwBWyGFNznxHTJ2ykvQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 149 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.22

🇨🇳 183.165.249.80

🇺🇸 162.216.149.37

🇳🇱 45.148.10.141

🇺🇸 20.169.107.67

🇮🇳 8.231.125.177

🇫🇷 2a02:c207:3018:3705::1

🇺🇸 2602:80d:1007::74

🇯🇵 219.104.169.77

🇩🇪 213.209.159.242

🇺🇸 209.192.132.211

🇧🇷 191.7.96.216

🇧🇷 177.22.169.76

🇺🇸 172.174.132.252

🇨🇦 143.198.38.204

🇺🇸 137.184.159.183

🇹🇭 125.27.12.122

🇨🇳 103.254.78.162

🇮🇳 103.185.242.66

🇮🇷 79.132.192.251