JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a09:bac1:7680:7d0::51:47

2a09:bac1:7680:7d0::51:47 was found in our database!

This IP was reported 68 times. Confidence of Abuse is 71%: ?

71%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Cloudflare London, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13335
Domain Name	cloudflare.com
Country	🇺🇸 United States of America
City	Las Vegas, Nevada

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a09:bac1:7680:7d0::51:47

Whois 2a09:bac1:7680:7d0::51:47

IP Abuse Reports for 2a09:bac1:7680:7d0::51:47:

This IP address has been reported a total of 68 times from 18 distinct sources. 2a09:bac1:7680:7d0::51:47 was first reported on June 4th 2026, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 4server	2026-06-24 17:47:49 (5 days ago)	[WedJun2419:47:44.1748632026][security2:error][pid354745:tid354798][client2a09:bac1:7680:7d0::51:47: ... show more [WedJun2419:47:44.1748632026][security2:error][pid354745:tid354798][client2a09:bac1:7680:7d0::51:47:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"www.giuseppeasaro.com\"][uri\"/.git/config\"][unique_id\"ajwYQMUBBbL9_ioTGciTzAAAAMg\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 18:46:26 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 2a09:bac1:7680:7d0::51:47 (Unknown): 1 in the l ... show more (mod_security) mod_security (id:210492) triggered by 2a09:bac1:7680:7d0::51:47 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 14:46:18.815924 2026] [security2:error] [pid 30217:tid 30217] [client 2a09:bac1:7680:7d0::51:47:12138] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.getitenglish.casademunt.com"] [uri "/.git/HEAD"] [unique_id "ajrUekM45Ho034FfgrIetgAAADg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 08:39:07 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 2a09:bac1:7680:7d0::51:47 (Unknown): 1 in the l ... show more (mod_security) mod_security (id:210492) triggered by 2a09:bac1:7680:7d0::51:47 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 04:39:02.732842 2026] [security2:error] [pid 15433:tid 15433] [client 2a09:bac1:7680:7d0::51:47:44642] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.smsindustries.com"] [uri "/.git/config"] [unique_id "ajpGJmWXsv6mpM4uElG2MAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 07:35:21 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 2a09:bac1:7680:7d0::51:47 (Unknown): 1 in the l ... show more (mod_security) mod_security (id:210492) triggered by 2a09:bac1:7680:7d0::51:47 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 03:35:13.458070 2026] [security2:error] [pid 19769:tid 19769] [client 2a09:bac1:7680:7d0::51:47:55436] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.smoothiegirl.benshermanguitar.com"] [uri "/.git/config"] [unique_id "ajo3Mc7-2-tqMEbGF_eGJgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 04:34:11 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 2a09:bac1:7680:7d0::51:47 (Unknown): 1 in the l ... show more (mod_security) mod_security (id:210492) triggered by 2a09:bac1:7680:7d0::51:47 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 00:34:06.833185 2026] [security2:error] [pid 22510:tid 22510] [client 2a09:bac1:7680:7d0::51:47:32504] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.sketchnotebook.com"] [uri "/.git/config"] [unique_id "aji7Pkeva49Xzjyt_8c23QAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 02:22:31 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 2a09:bac1:7680:7d0::51:47 (Unknown): 1 in the l ... show more (mod_security) mod_security (id:210492) triggered by 2a09:bac1:7680:7d0::51:47 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 22:22:26.667898 2026] [security2:error] [pid 22458:tid 22483] [client 2a09:bac1:7680:7d0::51:47:53872] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.sjstauffer.com"] [uri "/.git/HEAD"] [unique_id "ajicYvomvsw7W8sc4yVk0gAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 22:35:16 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 2a09:bac1:7680:7d0::51:47 (Unknown): 1 in the l ... show more (mod_security) mod_security (id:210492) triggered by 2a09:bac1:7680:7d0::51:47 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 18:35:09.613863 2026] [security2:error] [pid 1409:tid 1409] [client 2a09:bac1:7680:7d0::51:47:42896] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.sites.caribbeancoders.com"] [uri "/.git/config"] [unique_id "ajhnHZSauTcqIj7phFbg4AAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-21 22:01:49 (1 week ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-20. show less	Web App Attack SSH Hacking
🇩🇪 IVski	2026-06-21 15:08:12 (1 week ago)	IVski WAF \| Sensitive file probe detected - looking for .git	Port Scan Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 01:47:29 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 2a09:bac1:7680:7d0::51:47 (Unknown): 1 in the l ... show more (mod_security) mod_security (id:210492) triggered by 2a09:bac1:7680:7d0::51:47 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 21:47:25.984790 2026] [security2:error] [pid 7831:tid 7831] [client 2a09:bac1:7680:7d0::51:47:25850] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.bwmurphy.com"] [uri "/.git/config"] [unique_id "ajXxLQB4t44wYaJNTT2GpwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 sailor	2026-06-19 15:16:00 (1 week ago)	Unauthorized attempt to access restricted file: GET .../.git/config	Web App Attack
🇩🇪 4server	2026-06-19 12:55:30 (1 week ago)	[FriJun1914:55:27.6940552026][security2:error][pid1950806:tid1950875][client2a09:bac1:7680:7d0::51:4 ... show more [FriJun1914:55:27.6940552026][security2:error][pid1950806:tid1950875][client2a09:bac1:7680:7d0::51:47:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"www.brunocampagna.com\"][uri\"/.git/config\"][unique_id\"ajU8Pz_gVZ3vpiEa2lQhOwAAAIA\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-18 22:31:31 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 2a09:bac1:7680:7d0::51:47 (Unknown): 1 in the l ... show more (mod_security) mod_security (id:210492) triggered by 2a09:bac1:7680:7d0::51:47 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 18:31:24.937378 2026] [security2:error] [pid 32067:tid 32067] [client 2a09:bac1:7680:7d0::51:47:27624] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.brazilianbikinis.com"] [uri "/.git/config"] [unique_id "ajRxvG60rIPzQ0VFRSA3RAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-06-18 13:00:54 (1 week ago)	Try to access /.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-06-18 02:10:46 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 2a09:bac1:7680:7d0::51:47 (Unknown): 1 in the l ... show more (mod_security) mod_security (id:210492) triggered by 2a09:bac1:7680:7d0::51:47 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 22:10:40.469108 2026] [security2:error] [pid 30123:tid 30123] [client 2a09:bac1:7680:7d0::51:47:11420] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.boatmoldremover.com"] [uri "/.git/HEAD"] [unique_id "ajNToLyKuApJaA5IcRRgOgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 68 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.244

🇳🇴 185.12.59.118

🇮🇹 176.126.83.26

🇺🇸 172.245.197.44

🇳🇱 172.211.56.214

🇨🇳 106.75.144.202

🇩🇪 69.5.169.80

🇺🇸 66.132.195.40

🇺🇸 66.132.186.165

🇺🇸 66.132.172.183

🇳🇱 45.148.10.25

🇳🇱 45.148.10.21

🇬🇧 35.203.211.97

🇬🇧 31.14.254.32

🇮🇩 2001:448a:e000:d727:e4c7:fbe8:9857:4ba8

🇹🇷 176.240.242.251

🇨🇳 58.46.168.186

🇩🇪 43.157.98.118

🇺🇸 23.94.102.136

🇧🇷 201.131.246.6