JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a10:8a40:f313::29

2a10:8a40:f313::29 was found in our database!

This IP was reported 102 times. Confidence of Abuse is 24%: ?

24%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	HUMANS CONNEXION SARL
Usage Type	Fixed Line ISP
ASN	AS39405
Domain Name	humansconnexion.com
Country	🇫🇷 France
City	Toulouse, Occitanie

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a10:8a40:f313::29

Whois 2a10:8a40:f313::29

IP Abuse Reports for 2a10:8a40:f313::29:

This IP address has been reported a total of 102 times from 23 distinct sources. 2a10:8a40:f313::29 was first reported on September 21st 2023, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-12 17:35:22 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 2a10:8a40:f313::29 (Unknown): 1 in the last 300 ... show more (mod_security) mod_security (id:210492) triggered by 2a10:8a40:f313::29 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 13:35:14.638496 2026] [security2:error] [pid 19606:tid 19606] [client 2a10:8a40:f313::29:55048] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.robin5on.com"] [uri "/.git/config"] [unique_id "aixDUtJ7X9Y7icAUYK6lRQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 xmission.com	2026-06-10 23:38:22 (5 days ago)	Blocked by UFW (TCP on 8333) Source port: 33464 Packet length: 80 This report (for 2a10:8a40:f313:0 ... show more Blocked by UFW (TCP on 8333) Source port: 33464 Packet length: 80 This report (for 2a10:8a40:f313:0000:0000:0000:0000:0029) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇮 YF	2026-05-30 09:03:06 (2 weeks ago)	WordPress content enumeration	Web App Attack
Anonymous	2026-04-26 21:05:29 (1 month ago)	2026-04-26 08:01:05,970 fail2ban.actions [7718]: NOTICE [tor] Ban 2a10:8a40:f313::29 2026-04 ... show more 2026-04-26 08:01:05,970 fail2ban.actions [7718]: NOTICE [tor] Ban 2a10:8a40:f313::29 2026-04-26 12:01:49,530 fail2ban.actions [7718]: NOTICE [tor] Ban 2a10:8a40:f313::29 2026-04-26 18:01:47,088 fail2ban.actions [7718]: NOTICE [tor] Ban 2a10:8a40:f313::29 2026-04-26 21:01:46,426 fail2ban.actions [7718]: NOTICE [tor] Ban 2a10:8a40:f313::29 2026-04-27 00:05:27,805 fail2ban.actions [7718]: NOTICE [tor] Ban 2a10:8a40:f313::29 show less	Brute-Force
🇺🇸 TPI-Abuse	2026-04-20 08:10:47 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 2a10:8a40:f313::29 (Unknown): 1 in the last 300 ... show more (mod_security) mod_security (id:210492) triggered by 2a10:8a40:f313::29 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 20 04:10:40.120758 2026] [security2:error] [pid 30567:tid 30592] [client 2a10:8a40:f313::29:37616] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "batonrougegazette.com"] [uri "/wp-config.phpb"] [unique_id "aeXfgGabDJrPKFeOQqi0uwAAARY"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 4server	2026-04-17 00:23:44 (1 month ago)	[FriApr1702:23:39.9480122026][security2:error][pid3630018:tid3630033][client2a10:8a40:f313::29:0]Mod ... show more [FriApr1702:23:39.9480122026][security2:error][pid3630018:tid3630033][client2a10:8a40:f313::29:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Patternmatch\"\^/wp-content/plugins/[\^/] /\(readme\\\\\\\\.txt\\|changelog\\\\\\\\.txt\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"381\"][id\"960828\"][msg\"WordPresspluginenumerationblocked\"][hostname\"www.motogiro.com\"][uri\"/wp-content/plugins/select-membership/readme.txt\"][unique_id\"aeF9i35rxhqa8ggZaAgByQAAAA0\"] show less	Hacking Web App Attack
🇮🇹 VHosting	2026-03-26 20:41:30 (2 months ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇺🇸 TPI-Abuse	2026-03-10 04:52:09 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 2a10:8a40:f313::29 (Unknown): 1 in the last 300 ... show more (mod_security) mod_security (id:210730) triggered by 2a10:8a40:f313::29 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 10 00:52:03.438475 2026] [security2:error] [pid 16932:tid 16932] [client 2a10:8a40:f313::29:55718] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|lkabookkeeping.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "lkabookkeeping.com"] [uri "/monthly.sql"] [unique_id "aa-jc5T1LAy1Wn5aNQW1AwAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-23 03:36:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 2a10:8a40:f313::29 (Unknown): 1 in the last 300 ... show more (mod_security) mod_security (id:210492) triggered by 2a10:8a40:f313::29 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 22:36:28.791364 2026] [security2:error] [pid 11980:tid 11980] [client 2a10:8a40:f313::29:36118] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.chalet-4saisons.com"] [uri "/.git/config"] [unique_id "aZvLPIp9vPJnADFmNp5MOgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 gnom4ik	2026-02-20 20:17:45 (3 months ago)	ban-reviewer auto report; ip=2a10:8a40:f313::29; scenario=http:scan; verdict=valid_ban; confidence=0 ... show more ban-reviewer auto report; ip=2a10:8a40:f313::29; scenario=http:scan; verdict=valid_ban; confidence=0.90; categories=14,15,18; active_decisions=2; lookback_decisions=2; nginx_requests=0; appsec_matches=0; auth_events=0; kernel_events=0; signals=IP flagged for HTTP scanning activity (scan pattern); Decision appears in active decisions total (2); No evidence of legitimate behavior or high-volume normal traffic show less	Port Scan Hacking Brute-Force
🇳🇱 homeshowdomain.nl	2026-02-03 22:59:07 (4 months ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-02-02. show less	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-01-26 02:40:37 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 2a10:8a40:f313::29 (Unknown): 1 in the last 300 ... show more (mod_security) mod_security (id:210492) triggered by 2a10:8a40:f313::29 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 25 21:40:30.956583 2026] [security2:error] [pid 5000:tid 5000] [client 2a10:8a40:f313::29:47426] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.ccureiti.com"] [uri "/.git/config"] [unique_id "aXbUHhq6FVO3he5xWsUP-QAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-26 00:20:38 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 2a10:8a40:f313::29 (Unknown): 1 in the last 300 ... show more (mod_security) mod_security (id:210492) triggered by 2a10:8a40:f313::29 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 25 19:20:34.636122 2026] [security2:error] [pid 709034:tid 709034] [client 2a10:8a40:f313::29:42086] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.controvac.com"] [uri "/.git/config"] [unique_id "aXazUr4oXHx0oAaDKqOtlAAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-25 22:31:46 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 2a10:8a40:f313::29 (Unknown): 1 in the last 300 ... show more (mod_security) mod_security (id:210492) triggered by 2a10:8a40:f313::29 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 25 17:31:41.492916 2026] [security2:error] [pid 9726:tid 9726] [client 2a10:8a40:f313::29:55008] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipv6.southfloridachoppers.com"] [uri "/.git/config"] [unique_id "aXaZzW-UFuEiEOPmCN2DvAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-14 17:02:59 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 2a10:8a40:f313::29 (Unknown): 1 in the last 300 ... show more (mod_security) mod_security (id:210730) triggered by 2a10:8a40:f313::29 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 14 12:02:50.784378 2026] [security2:error] [pid 15891:tid 15891] [client 2a10:8a40:f313::29:57032] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|kontikimotorcycles.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kontikimotorcycles.com"] [uri "/kontiki.sql"] [unique_id "aWfMOnXlFUm7-5qt7flflgAAABs"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 102 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇦 102.54.249.182

🇦🇹 94.198.136.82

🇫🇷 194.163.180.130

🇹🇷 178.244.207.29

🇭🇰 154.219.98.109

🇨🇳 112.113.130.102

🇺🇸 104.236.118.31

🇷🇺 94.190.6.122

🇺🇸 18.189.74.1

🇧🇷 191.35.128.147

🇳🇱 185.223.235.36

🇳🇱 176.65.148.20

🇭🇰 123.58.210.86

🇬🇷 79.103.168.230

🇺🇸 34.133.91.106

🇺🇸 20.161.28.177

🇯🇵 172.81.102.139

🇩🇪 144.31.106.141

🇮🇳 144.16.30.23

🇩🇪 141.11.187.237