This IP was reported 151 times. Confidence of
Abuse
is 16%: ?
16%
Important Note: Public IPv6 addresses may implement the SLAAC
privacy extension. With this, the interface identifier is randomly generated. The SLAAC
privacy extension also implements a time out, which is configurable, so that the IPv6
interface addresses will be discarded and a new interface identifier is generated.
This IP address has been reported a total of
151
times from
19 distinct
sources.
2a0d:c2c0:1:4::2 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Blocked by UFW (TCP on 8333)
Source port: 44594
Packet length: 80
This report (for 2a0d:c2c0:0001:0 ...
show moreBlocked by UFW (TCP on 8333)
Source port: 44594
Packet length: 80
This report (for 2a0d:c2c0:0001:0004:0000:0000:0000:0002) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
Anonymous
2026-04-26 08:01:03,120 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0d:c2c0:1:4::2
2026-04-2 ...
show more2026-04-26 08:01:03,120 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0d:c2c0:1:4::2
2026-04-26 12:01:47,780 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0d:c2c0:1:4::2
2026-04-26 18:01:45,345 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0d:c2c0:1:4::2
2026-04-26 21:01:44,641 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0d:c2c0:1:4::2
2026-04-27 00:05:11,833 fail2ban.actions [7718]: NOTICE [tor] Ban 2a0d:c2c0:1:4::2
show less
Blocked by UFW (TCP on 8333)
Source port: 44348
Packet length: 80
This report (for 2a0d:c2c0:0001:0 ...
show moreBlocked by UFW (TCP on 8333)
Source port: 44348
Packet length: 80
This report (for 2a0d:c2c0:0001:0004:0000:0000:0000:0002) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
(mod_security) mod_security (id:210730) triggered by 2a0d:c2c0:1:4::2 (Unknown): 1 in the last 300 s ...
show more(mod_security) mod_security (id:210730) triggered by 2a0d:c2c0:1:4::2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 30 04:50:55.478650 2026] [security2:error] [pid 3844319:tid 3844342] [client 2a0d:c2c0:1:4::2:58026] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||perspectivedesigninc.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "perspectivedesigninc.com"] [uri "/perspectivede.sql"] [unique_id "aXx-_2pPw4VG9QyCxI-7aAAAAAo"]
show less
(mod_security) mod_security (id:210730) triggered by 2a0d:c2c0:1:4::2 (Unknown): 1 in the last 300 s ...
show more(mod_security) mod_security (id:210730) triggered by 2a0d:c2c0:1:4::2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 28 21:30:43.980658 2026] [security2:error] [pid 15098:tid 15098] [client 2a0d:c2c0:1:4::2:38452] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||jatglobalsolution.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "jatglobalsolution.com"] [uri "/back.sql"] [unique_id "aXrGU2i9U5496ZMEEdzSwQAAAA8"]
show less
(mod_security) mod_security (id:210730) triggered by 2a0d:c2c0:1:4::2 (Unknown): 1 in the last 300 s ...
show more(mod_security) mod_security (id:210730) triggered by 2a0d:c2c0:1:4::2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 21:21:59.639132 2026] [security2:error] [pid 20151:tid 20151] [client 2a0d:c2c0:1:4::2:36808] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||eliteelectricalservices.us|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "eliteelectricalservices.us"] [uri "/es.sql"] [unique_id "aWryR1qd8hIIjeH_5z1qkwAAAAA"]
show less
Blocked by UFW (TCP on 8333)
Source port: 48392
Packet length: 80
This report (for 2a0d:c2c0:0001:0 ...
show moreBlocked by UFW (TCP on 8333)
Source port: 48392
Packet length: 80
This report (for 2a0d:c2c0:0001:0004:0000:0000:0000:0002) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
(mod_security) mod_security (id:210730) triggered by 2a0d:c2c0:1:4::2 (Unknown): 1 in the last 300 s ...
show more(mod_security) mod_security (id:210730) triggered by 2a0d:c2c0:1:4::2 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 00:35:39.069319 2025] [security2:error] [pid 11731:tid 11731] [client 2a0d:c2c0:1:4::2:35132] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||brbcoin.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "brbcoin.com"] [uri "/backupdb.sql"] [unique_id "aVNkq9stoB-9WaHdIJV8NgAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Showing 1 to
15
of 151 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ