JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a0b:f4c2::6

2a0b:f4c2::6 was found in our database!

This IP was reported 228 times. Confidence of Abuse is 23%: ?

23%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Artikel10 e.V.
Usage Type	Commercial
ASN	AS60729
Hostname(s)	berlin01.tor-exit.artikel10.org
Domain Name	artikel10.org
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a0b:f4c2::6

Whois 2a0b:f4c2::6

IP Abuse Reports for 2a0b:f4c2::6:

This IP address has been reported a total of 228 times from 30 distinct sources. 2a0b:f4c2::6 was first reported on September 21st 2023, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-12 00:59:24 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::6 (berlin01.tor-exit.artikel10.org): ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::6 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 20:59:20.240745 2026] [security2:error] [pid 2663:tid 2663] [client 2a0b:f4c2::6:15094] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.concoursegallery.com"] [uri "/.git/config"] [unique_id "aitZ6F7azkOH1Fqroy3cYAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 xmission.com	2026-06-02 13:05:28 (2 weeks ago)	Blocked by UFW (TCP on 8333) Source port: 42080 Packet length: 80 This report (for 2a0b:f4c2:0000:0 ... show more Blocked by UFW (TCP on 8333) Source port: 42080 Packet length: 80 This report (for 2a0b:f4c2:0000:0000:0000:0000:0000:0006) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 TPI-Abuse	2026-05-26 06:21:58 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::6 (berlin01.tor-exit.artikel10.org): ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::6 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 02:21:49.313034 2026] [security2:error] [pid 1120:tid 1120] [client 2a0b:f4c2::6:36794] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.pattenden.com"] [uri "/.git/config"] [unique_id "ahU7_e7bdyxUdT3Rl8KoJQAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-25 13:41:44 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::6 (berlin01.tor-exit.artikel10.org): ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::6 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 25 09:41:37.608050 2026] [security2:error] [pid 12107:tid 12107] [client 2a0b:f4c2::6:51342] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "barigby.com"] [uri "/.git/"] [unique_id "ahRRkXbtO0lKe0QHDVBxkwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 xmission.com	2026-05-22 16:29:02 (4 weeks ago)	Blocked by UFW (TCP on 8333) Source port: 19462 Packet length: 80 This report (for 2a0b:f4c2:0000:0 ... show more Blocked by UFW (TCP on 8333) Source port: 19462 Packet length: 80 This report (for 2a0b:f4c2:0000:0000:0000:0000:0000:0006) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 ipblock.com	2026-05-17 13:38:00 (1 month ago)	IPBlock protected site ID [3717-sec]. Robotic site crawling, undeclared spider	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-09 17:14:28 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2::6 (berlin01.tor-exit.artikel10.org): ... show more (mod_security) mod_security (id:210730) triggered by 2a0b:f4c2::6 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 13:14:22.637222 2026] [security2:error] [pid 366:tid 366] [client 2a0b:f4c2::6:57906] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|jeremyscraig.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "jeremyscraig.com"] [uri "/je.sql"] [unique_id "af9rbl-UVFOGef8559kFeQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-08 22:09:18 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2::6 (berlin01.tor-exit.artikel10.org): ... show more (mod_security) mod_security (id:210730) triggered by 2a0b:f4c2::6 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 18:09:11.573941 2026] [security2:error] [pid 19532:tid 19532] [client 2a0b:f4c2::6:46764] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|hotelausland.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "hotelausland.com"] [uri "/latest.sql"] [unique_id "af5fB8ZfaBn4G5HW71soaQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 xmission.com	2026-04-30 11:03:15 (1 month ago)	Blocked by UFW (TCP on 47682) Source port: 9004 Packet length: 214 This report (for 2a0b:f4c2:0000: ... show more Blocked by UFW (TCP on 47682) Source port: 9004 Packet length: 214 This report (for 2a0b:f4c2:0000:0000:0000:0000:0000:0006) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 TPI-Abuse	2026-04-26 21:58:52 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::6 (berlin01.tor-exit.artikel10.org): ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::6 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 17:58:43.698761 2026] [security2:error] [pid 22008:tid 22008] [client 2a0b:f4c2::6:62490] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.bak" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "theseventhcongregationofladderdayvixens.org"] [uri "/wp-config.bak"] [unique_id "ae6Kk8EDVBP3WdJUt3L_pQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-04-26 21:04:32 (1 month ago)	2026-04-26 08:00:53,615 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0b:f4c2::6 2026-04-26 12 ... show more 2026-04-26 08:00:53,615 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0b:f4c2::6 2026-04-26 12:01:41,655 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0b:f4c2::6 2026-04-26 18:01:39,308 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0b:f4c2::6 2026-04-26 21:01:38,559 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0b:f4c2::6 2026-04-27 00:04:26,152 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0b:f4c2::6 show less	Brute-Force
🇺🇸 TPI-Abuse	2026-04-26 20:03:21 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2::6 (berlin01.tor-exit.artikel10.org): ... show more (mod_security) mod_security (id:210730) triggered by 2a0b:f4c2::6 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 16:03:15.656411 2026] [security2:error] [pid 5952:tid 5952] [client 2a0b:f4c2::6:2116] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|internetnameregistration.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "internetnameregistration.com"] [uri "/inte.sql"] [unique_id "ae5vg41VR3lONsZn6d5u5QAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-26 01:51:38 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 2a0b:f4c2::6 (berlin01.tor-exit.artikel10.org): ... show more (mod_security) mod_security (id:210730) triggered by 2a0b:f4c2::6 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 25 21:51:31.950380 2026] [security2:error] [pid 15493:tid 15493] [client 2a0b:f4c2::6:58844] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|arsndetx.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "arsndetx.com"] [uri "/weekly.sql"] [unique_id "ae1vo8R0X1J5hnr5g8x6-wAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-25 00:17:06 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::6 (berlin01.tor-exit.artikel10.org): ... show more (mod_security) mod_security (id:210492) triggered by 2a0b:f4c2::6 (berlin01.tor-exit.artikel10.org): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 24 20:17:02.314065 2026] [security2:error] [pid 22497:tid 22497] [client 2a0b:f4c2::6:15938] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "joqlawn.com"] [uri "/wp-config.php_old"] [unique_id "aewH_u4PY4-yDfDaaePi1AAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 gnom4ik	2026-04-24 12:32:30 (1 month ago)	ban-reviewer auto report; ip=2a0b:f4c2::6; scenario=http:scan; verdict=valid_ban; confidence=0.92; c ... show more ban-reviewer auto report; ip=2a0b:f4c2::6; scenario=http:scan; verdict=valid_ban; confidence=0.92; categories=14,15,18,22; active_decisions=2; lookback_decisions=2; nginx_requests=0; appsec_matches=0; auth_events=0; kernel_events=0; signals=ip_decision_count_high show less	Port Scan Hacking Brute-Force SSH

Showing 1 to 15 of 228 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 117.181.236.8

🇨🇳 117.29.104.208

🇸🇬 23.111.14.185

🇨🇳 218.73.125.146

🇩🇪 213.209.159.227

🇭🇳 181.115.60.45

🇮🇩 103.138.14.94

🇧🇬 91.191.209.118

🇳🇱 89.21.67.143

🇳🇱 85.137.95.79

🇮🇱 81.2.146.142

🇩🇪 69.5.169.33

🇷🇺 46.42.146.69

🇪🇸 5.182.83.231

🇭🇰 199.45.155.83

🇲🇽 189.239.218.229

🇦🇷 181.9.212.166

🇮🇩 163.61.83.58

🇩🇪 155.117.234.80

🇹🇭 150.95.82.21