JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a09:bac5:398c:16dc::247:71

2a09:bac5:398c:16dc::247:71 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 3%: ?

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Cloudflare London, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13335
Domain Name	cloudflare.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a09:bac5:398c:16dc::247:71

Whois 2a09:bac5:398c:16dc::247:71

IP Abuse Reports for 2a09:bac5:398c:16dc::247:71:

This IP address has been reported a total of 4 times from 1 distinct source. 2a09:bac5:398c:16dc::247:71 was first reported on June 10th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-10 12:43:56 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 2a09:bac5:398c:16dc::247:71 (Unknown): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 2a09:bac5:398c:16dc::247:71 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 08:43:47.813738 2026] [security2:error] [pid 15740:tid 15740] [client 2a09:bac5:398c:16dc::247:71:53552] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thefiregoddess.net"] [uri "/sftp-config.json"] [unique_id "ailcA4ihSpW0niuMme5cBgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 12:12:45 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 2a09:bac5:398c:16dc::247:71 (Unknown): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 2a09:bac5:398c:16dc::247:71 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 08:12:40.848016 2026] [security2:error] [pid 15773:tid 15773] [client 2a09:bac5:398c:16dc::247:71:61436] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "technoware-lb.com"] [uri "/sftp-config.json"] [unique_id "ailUuJmr0cfjM5NXih30PgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 08:45:08 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 2a09:bac5:398c:16dc::247:71 (Unknown): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 2a09:bac5:398c:16dc::247:71 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 04:45:05.624760 2026] [security2:error] [pid 20405:tid 20405] [client 2a09:bac5:398c:16dc::247:71:49958] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ycrlbasketball.com"] [uri "/sftp-config.json"] [unique_id "aikkESx_AFuEJaVtDHjC-gAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 06:20:16 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 2a09:bac5:398c:16dc::247:71 (Unknown): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 2a09:bac5:398c:16dc::247:71 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 02:20:10.196311 2026] [security2:error] [pid 2477:tid 2477] [client 2a09:bac5:398c:16dc::247:71:39996] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.solidthought.com"] [uri "/sftp-config.json"] [unique_id "aikCGip66LZ8KFgSSEXi-QAAABI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 139.59.173.98

🇺🇸 138.197.200.106

🇰🇷 121.185.89.74

🇨🇳 120.48.7.181

🇸🇬 47.84.181.53

🇨🇳 36.104.144.114

🇩🇪 2a01:4f8:150:13a5::100:2c

🇨🇳 221.229.52.11

🇭🇰 220.246.43.109

🇬🇧 193.176.29.22

🇫🇷 188.165.241.169

🇸🇬 167.99.66.42

🇩🇪 167.94.145.21

🇩🇪 157.90.172.93

🇫🇮 147.185.133.141

🇦🇺 112.213.214.145

🇻🇳 112.137.143.2

🇺🇸 70.23.136.66

🇩🇪 69.5.169.249

🇮🇶 65.20.163.103