JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a0b:f4c2::24

2a0b:f4c2::24 was found in our database!

This IP was reported 227 times. Confidence of Abuse is 22%: ?

22%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Artikel10 e.V.
Usage Type	Commercial
ASN	AS60729
Hostname(s)	berlin01.tor-exit.artikel10.org
Domain Name	artikel10.org
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a0b:f4c2::24

Whois 2a0b:f4c2::24

IP Abuse Reports for 2a0b:f4c2::24:

This IP address has been reported a total of 227 times from 33 distinct sources. 2a0b:f4c2::24 was first reported on November 25th 2022, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-06-11 20:30:51 (1 day ago)	Blocked by UFW (TCP on 8333) Source port: 24390 Packet length: 80 This report (for 2a0b:f4c2:0000:0 ... show more Blocked by UFW (TCP on 8333) Source port: 24390 Packet length: 80 This report (for 2a0b:f4c2:0000:0000:0000:0000:0000:0024) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-04 09:30:47 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::24 (berlin01.tor-exit.artikel10.org) ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::24 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 05:30:38.661740 2026] [security2:error] [pid 29353:tid 29353] [client 2a0b:f4c2::24:54190] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.citizenscommunity.net"] [uri "/.git/config"] [unique_id "aiFFvvcvxUlZmv8tLcGCPgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-09 01:09:10 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2::24 (berlin01.tor-exit.artikel10.org) ... show more (mod_security) mod_security (id:210730) triggered by 2a0b:f4c2::24 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 21:09:03.738841 2026] [security2:error] [pid 19904:tid 19904] [client 2a0b:f4c2::24:25466] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|areafinancieratf.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "areafinancieratf.com"] [uri "/areafin.sql"] [unique_id "af6JLwpZ6wAtSexfCNQF5QAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-05 10:50:58 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2::24 (berlin01.tor-exit.artikel10.org) ... show more (mod_security) mod_security (id:210730) triggered by 2a0b:f4c2::24 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 05 06:50:49.213841 2026] [security2:error] [pid 7559:tid 7559] [client 2a0b:f4c2::24:10034] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|cajunpicasso.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "cajunpicasso.com"] [uri "/picasso_com.sql"] [unique_id "afnLieBN6MwLKRZHn4zbRgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-04-26 21:04:36 (1 month ago)	2026-04-26 08:00:54,853 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0b:f4c2::24 2026-04-26 1 ... show more 2026-04-26 08:00:54,853 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0b:f4c2::24 2026-04-26 12:01:42,383 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0b:f4c2::24 2026-04-26 18:01:40,039 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0b:f4c2::24 2026-04-26 21:01:39,288 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0b:f4c2::24 2026-04-27 00:04:32,517 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0b:f4c2::24 show less	Brute-Force
🇺🇸 TPI-Abuse	2026-04-23 20:30:26 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::24 (berlin01.tor-exit.artikel10.org) ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::24 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 23 16:30:19.419000 2026] [security2:error] [pid 15023:tid 15023] [client 2a0b:f4c2::24:40686] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "freemanfoundationcle.org"] [uri "/wp-config.php-o"] [unique_id "aeqBWzdu0FVk5Jv4V2R2VwAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-23 00:55:06 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::24 (berlin01.tor-exit.artikel10.org) ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::24 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 22 20:54:55.901454 2026] [security2:error] [pid 3281392:tid 3281392] [client 2a0b:f4c2::24:19692] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brbcash.com"] [uri "/wp-config.php.bak"] [unique_id "aelt32x0y8SlDAeukCHn7QAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-22 20:17:35 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::24 (berlin01.tor-exit.artikel10.org) ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::24 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 22 16:17:27.195044 2026] [security2:error] [pid 1753861:tid 1753861] [client 2a0b:f4c2::24:23502] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nuewines.com"] [uri "/wp-config.php-n"] [unique_id "aeks12Z4ICRCfmOgrNW1IwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 xmission.com	2026-04-19 00:10:45 (1 month ago)	Blocked by UFW (TCP on 8333) Source port: 39886 Packet length: 80 This report (for 2a0b:f4c2:0000:0 ... show more Blocked by UFW (TCP on 8333) Source port: 39886 Packet length: 80 This report (for 2a0b:f4c2:0000:0000:0000:0000:0000:0024) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇭 4server	2026-04-17 21:48:12 (1 month ago)	[FriApr1723:48:06.0215892026][security2:error][pid4069118:tid4069144][client2a0b:f4c2::24:0]ModSecur ... show more [FriApr1723:48:06.0215892026][security2:error][pid4069118:tid4069144][client2a0b:f4c2::24:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Patternmatch\"\^/wp-content/plugins/[\^/] /\(readme\\\\\\\\.txt\\|changelog\\\\\\\\.txt\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"381\"][id\"960828\"][msg\"WordPresspluginenumerationblocked\"][hostname\"giuristifriburgo.ch\"][uri\"/wp-content/plugins/contact-form-7/readme.txt\"][unique_id\"aeKqlo5w5DmknFHPLWpjxAAAAFg\"] show less	Hacking Web App Attack
🇺🇸 xmission.com	2026-04-08 20:45:53 (2 months ago)	Blocked by UFW (TCP on 8333) Source port: 4158 Packet length: 80 This report (for 2a0b:f4c2:0000:00 ... show more Blocked by UFW (TCP on 8333) Source port: 4158 Packet length: 80 This report (for 2a0b:f4c2:0000:0000:0000:0000:0000:0024) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 TPI-Abuse	2026-04-08 05:50:58 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::24 (berlin01.tor-exit.artikel10.org) ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::24 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 01:50:51.615228 2026] [security2:error] [pid 1950228:tid 1950228] [client 2a0b:f4c2::24:6348] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "healingworksmassage.studio"] [uri "/wp-config.phpb"] [unique_id "adXsu4o54tyIYXwwCmegWQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-01 05:03:37 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::24 (berlin01.tor-exit.artikel10.org) ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::24 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 01 01:03:28.121440 2026] [security2:error] [pid 19679:tid 19679] [client 2a0b:f4c2::24:42292] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.blc2.co"] [uri "/.git/config"] [unique_id "acynIEdGQIU8GGpoMionSAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-15 02:55:24 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::24 (berlin01.tor-exit.artikel10.org) ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::24 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 14 22:55:16.239298 2026] [security2:error] [pid 13618:tid 13636] [client 2a0b:f4c2::24:41524] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.handsonresearch.com"] [uri "/.git/config"] [unique_id "abYflCCVA22sZgglMZ1ekgAAAU0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 ipblock.com	2026-03-14 15:52:00 (2 months ago)	IPBlock protected site ID [3717-sec]. Robotic site crawling, undeclared spider	Bad Web Bot Web App Attack

Showing 1 to 15 of 227 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇵 162.158.119.227

🇺🇸 18.221.179.104

🇮🇳 223.181.71.122

🇱🇰 220.247.224.226

🇲🇾 202.184.145.225

🇩🇪 167.94.146.52

🇩🇪 164.92.161.148

🇮🇷 81.16.112.42

🇺🇸 54.163.161.231

🇸🇬 43.156.239.194

🇯🇵 207.56.225.34

🇨🇳 117.143.82.37

🇨🇳 115.190.226.99

🇺🇸 113.20.0.58

🇮🇳 103.91.246.73

🇨🇦 85.217.149.9

🇮🇩 41.216.178.119

🇺🇸 217.217.113.105

🇨🇳 202.105.98.252

🇹🇼 198.235.24.46