JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a0e:97c0:3ea:616::1

2a0e:97c0:3ea:616::1 was found in our database!

This IP was reported 31 times. Confidence of Abuse is 96%: ?

96%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Datalix
Usage Type	Data Center/Web Hosting/Transit
ASN	AS203446
Domain Name	datalix.de
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a0e:97c0:3ea:616::1

Whois 2a0e:97c0:3ea:616::1

IP Abuse Reports for 2a0e:97c0:3ea:616::1:

This IP address has been reported a total of 31 times from 17 distinct sources. 2a0e:97c0:3ea:616::1 was first reported on April 27th 2025, and the most recent report was 15 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 oh.mg	2026-06-28 05:44:29 (15 minutes ago)	2a0e:97c0:3ea:616::1 - - [28/Jun/2026:07:44:27 +0200] "GET /.git/HEAD HTTP/1.1" 403 502 "-" "Mozilla ... show more 2a0e:97c0:3ea:616::1 - - [28/Jun/2026:07:44:27 +0200] "GET /.git/HEAD HTTP/1.1" 403 502 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15_7_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.0 Safari/605.1.15" 2a0e:97c0:3ea:616::1 - - [28/Jun/2026:07:44:28 +0200] "GET /.git/config HTTP/1.1" 403 4437 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15_7_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.0 Safari/605.1.15" 2a0e:97c0:3ea:616::1 - - [28/Jun/2026:07:44:28 +0200] "GET /.env HTTP/1.1" 403 502 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15.7; rv:149.0) Gecko/20100101 Firefox/149.0" 2a0e:97c0:3ea:616::1 - - [28/Jun/2026:07:44:28 +0200] "GET /api/.env HTTP/1.1" 403 4435 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15.7; rv:149.0) Gecko/20100101 Firefox/149.0" 2a0e:97c0:3ea:616::1 - - [28/Jun/2026:07:44:28 +0200] "GET /.env.local HTTP/1.1" 403 4436 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15.7; rv:149.0) Gecko/20100101 Firefox/149.0" ... show less	Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-06-28 04:30:05 (1 hour ago)	Try to access /.git/HEAD	Web App Attack
🇺🇸 TPI-Abuse	2026-06-28 04:11:38 (1 hour ago)	(mod_security) mod_security (id:210492) triggered by 2a0e:97c0:3ea:616::1 (Unknown): 1 in the last 3 ... show more (mod_security) mod_security (id:210492) triggered by 2a0e:97c0:3ea:616::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 00:11:30.296552 2026] [security2:error] [pid 9225:tid 9225] [client 2a0e:97c0:3ea:616::1:52564] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "virginians.com"] [uri "/.git/HEAD"] [unique_id "akCe8gedjqVTLHWai3hWcAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-27 23:28:43 (6 hours ago)	Excessive multi-domain requests	Brute-Force
🇺🇸 TPI-Abuse	2026-06-27 23:22:12 (6 hours ago)	(mod_security) mod_security (id:210492) triggered by 2a0e:97c0:3ea:616::1 (Unknown): 1 in the last 3 ... show more (mod_security) mod_security (id:210492) triggered by 2a0e:97c0:3ea:616::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 19:22:08.765891 2026] [security2:error] [pid 16576:tid 16576] [client 2a0e:97c0:3ea:616::1:37776] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "leadkings.biz"] [uri "/.env.development"] [unique_id "akBbIGtFe_TduAw9IhPQEgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 23:01:44 (6 hours ago)	(mod_security) mod_security (id:210492) triggered by 2a0e:97c0:3ea:616::1 (Unknown): 1 in the last 3 ... show more (mod_security) mod_security (id:210492) triggered by 2a0e:97c0:3ea:616::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 19:01:38.835371 2026] [security2:error] [pid 18813:tid 18813] [client 2a0e:97c0:3ea:616::1:40516] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "krankybitchguitars.com"] [uri "/.git/config"] [unique_id "akBWUj6CbKoRwjzU28qxcwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-27 22:41:00 (7 hours ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 22:18:15 (7 hours ago)	(mod_security) mod_security (id:210492) triggered by 2a0e:97c0:3ea:616::1 (Unknown): 1 in the last 3 ... show more (mod_security) mod_security (id:210492) triggered by 2a0e:97c0:3ea:616::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 18:18:08.585138 2026] [security2:error] [pid 17545:tid 17545] [client 2a0e:97c0:3ea:616::1:46726] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "laurengardner.org"] [uri "/.git/HEAD"] [unique_id "akBMIP_vBuXFMEi2lftgOwAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-27 22:04:29 (7 hours ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-26. show less	Web App Attack SSH Hacking
🇳🇱 Mangelot Hosting	2026-06-27 21:46:44 (8 hours ago)	(modsecurity) srv101 ModSecurity 2a0e:97c0:3ea:616::1 (DE/Germany/-): 10 in the last 3600 secs; Port ... show more (modsecurity) srv101 ModSecurity 2a0e:97c0:3ea:616::1 (DE/Germany/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇺🇸 ambor	2026-06-27 21:35:18 (8 hours ago)	L0ss Honeypot: Git HEAD file access attempt. Path: /.git/HEAD	Web App Attack
🇩🇪 ger-stg-sifi1	2026-06-27 21:00:51 (8 hours ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 20:45:21 (9 hours ago)	(mod_security) mod_security (id:210492) triggered by 2a0e:97c0:3ea:616::1 (Unknown): 1 in the last 3 ... show more (mod_security) mod_security (id:210492) triggered by 2a0e:97c0:3ea:616::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 16:45:15.656975 2026] [security2:error] [pid 17462:tid 17462] [client 2a0e:97c0:3ea:616::1:52746] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kwcccarshow.com"] [uri "/.git/HEAD"] [unique_id "akA2W0TRAK8Ko5tt3KK9iAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 20:13:06 (9 hours ago)	(mod_security) mod_security (id:210492) triggered by 2a0e:97c0:3ea:616::1 (Unknown): 1 in the last 3 ... show more (mod_security) mod_security (id:210492) triggered by 2a0e:97c0:3ea:616::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 16:13:01.207792 2026] [security2:error] [pid 31083:tid 31083] [client 2a0e:97c0:3ea:616::1:36990] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lanegraves.com"] [uri "/.git/HEAD"] [unique_id "akAuzc-X71Yzw2m1234mxQAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 LRob.fr	2026-06-27 20:00:02 (9 hours ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot

Showing 1 to 15 of 31 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.199.171.219

🇹🇼 198.235.24.127

🇺🇸 109.105.210.100

🇳🇱 81.19.216.121

🇲🇾 47.254.213.105

🇳🇱 45.148.10.152

🇺🇸 43.165.65.117

🇺🇸 20.163.13.222

🇺🇸 20.106.187.206

🇦🇺 223.27.18.80

🇹🇼 198.235.24.53

🇯🇵 150.66.31.130

🇨🇳 124.152.90.68

🇻🇳 58.186.20.143

🇳🇱 185.223.235.39

🇭🇰 182.16.91.214

🇫🇮 172.253.83.208

🇺🇸 104.232.79.58

🇷🇺 81.23.1.229

🇩🇪 69.5.169.225