JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 51.77.211.39

51.77.211.39 was found in our database!

This IP was reported 353 times. Confidence of Abuse is 100%: ?

100%

ISP	OVH SAS
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Hostname(s)	vps-6d9a10ba.vps.ovh.net
Domain Name	ovh.net
Country	🇫🇷 France
City	Strasbourg, Grand Est

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 51.77.211.39

Whois 51.77.211.39

IP Abuse Reports for 51.77.211.39:

This IP address has been reported a total of 353 times from 96 distinct sources. 51.77.211.39 was first reported on August 15th 2025, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-13 09:19:48 (10 hours ago)	FortiWeb WAF: 90 attacks detected. Threat Score: 38400. Types: Client Management(45), Block IP List( ... show more FortiWeb WAF: 90 attacks detected. Threat Score: 38400. Types: Client Management(45), Block IP List(45). Origin: France. show less	Web App Attack
🇬🇷 setupgr	2026-06-11 17:23:38 (2 days ago)	(PERMBLOCK) 51.77.211.39 has had more than 4 temp blocks in the last 86400 secs; Ports: ; Direction ... show more (PERMBLOCK) 51.77.211.39 has had more than 4 temp blocks in the last 86400 secs; Ports: ; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs: N/A show less	Port Scan
🇬🇷 setupgr	2026-06-11 13:59:10 (2 days ago)	(mod_security) mod_security (id:11000011) triggered by 51.77.211.39: 1 in the last 86400 secs; Ports ... show more (mod_security) mod_security (id:11000011) triggered by 51.77.211.39: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Thu Jun 11 16:59:07.215338 2026] [security2:error] [pid 2151997:tid 2152127] [client 51.77.211.39:52274] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "ovh.net" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "128"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: vps-6d9a10ba.vps.ovh.net"] [hostname "ftiaxtomonosou.gr"] [uri "/wp-content/uploads/2019/05/eco-%CE%A3%CF%84%CE%B1%CE%B8%CE%BC%CF%8C%CF%82-3-%CE%B8%CE%AD%CF%83%CE%B5%CF%89%CE%BD-%CE%BC%CE%B5-%CE%B4%CE%B9%CE%B1%CF%87%CF%89%CF%81%CE%B9%CF%83%CF%84%CE%B9%CE%BA%CF%8C.jpg"] [unique_id "aiq_K4wmWFqf41p6PZuZrgAAAIE"] show less	Port Scan
Anonymous	2026-06-11 09:20:35 (2 days ago)	FortiWeb WAF: 202 attacks detected. Threat Score: 39200. Types: Client Management(101), Block IP Lis ... show more FortiWeb WAF: 202 attacks detected. Threat Score: 39200. Types: Client Management(101), Block IP List(101). Origin: France. show less	Web App Attack
🇬🇷 setupgr	2026-06-11 08:29:22 (2 days ago)	(mod_security) mod_security (id:11000011) triggered by 51.77.211.39: 1 in the last 86400 secs; Ports ... show more (mod_security) mod_security (id:11000011) triggered by 51.77.211.39: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Thu Jun 11 11:29:19.499323 2026] [security2:error] [pid 2066467:tid 2066675] [client 51.77.211.39:48460] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "ovh.net" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "128"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: vps-6d9a10ba.vps.ovh.net"] [hostname "ftiaxtomonosou.gr"] [uri "/%CF%84%CE%B1_%CE%B5%CE%AF%CE%B4%CE%B7_%CF%84%CE%BF%CF%85_%CE%BE%CF%8D%CE%BB%CE%BF%CF%85/%CE%BB%CE%B5%CF%85%CE%BA%CF%8C%CE%B4%CE%B5%CF%81%CE%BC%CE%BF%CF%82-%CF%80%CE%B5%CF%8D%CE%BA%CE%B7/"] [unique_id "aipx33N0xdA8CUhjxYAGYAAAAVg"] show less	Port Scan
🇬🇷 setupgr	2026-06-11 01:40:22 (2 days ago)	(mod_security) mod_security (id:11000011) triggered by 51.77.211.39: 1 in the last 86400 secs; Ports ... show more (mod_security) mod_security (id:11000011) triggered by 51.77.211.39: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Thu Jun 11 04:40:20.392082 2026] [security2:error] [pid 1937412:tid 1937449] [client 51.77.211.39:50274] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "ovh.net" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "128"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: vps-6d9a10ba.vps.ovh.net"] [hostname "ftiaxtomonosou.gr"] [uri "/wp-content/uploads/2019/01/laminate-floor.jpg"] [unique_id "aioSBFnmcBeLN5zUSbqCOQAAAUg"] show less	Port Scan
🇬🇷 setupgr	2026-06-10 21:16:44 (2 days ago)	(mod_security) mod_security (id:11000011) triggered by 51.77.211.39: 1 in the last 86400 secs; Ports ... show more (mod_security) mod_security (id:11000011) triggered by 51.77.211.39: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Thu Jun 11 00:16:40.527497 2026] [security2:error] [pid 1859163:tid 1859222] [client 51.77.211.39:60624] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "ovh.net" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "128"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: vps-6d9a10ba.vps.ovh.net"] [hostname "babis.photo"] [uri "/wp-content/uploads/2021/06/untitled-3.jpg"] [unique_id "ainUOEcRGABfnax9yYgIMgAAAAI"] show less	Port Scan
🇬🇷 setupgr	2026-06-10 19:42:47 (3 days ago)	(mod_security) mod_security (id:11000011) triggered by 51.77.211.39: 1 in the last 86400 secs; Ports ... show more (mod_security) mod_security (id:11000011) triggered by 51.77.211.39: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Wed Jun 10 22:42:44.900165 2026] [security2:error] [pid 1859164:tid 1859315] [client 51.77.211.39:51894] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "ovh.net" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "128"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: vps-6d9a10ba.vps.ovh.net"] [hostname "ftiaxtomonosou.gr"] [uri "/%CF%84%CE%B1_%CE%B5%CE%AF%CE%B4%CE%B7_%CF%84%CE%BF%CF%85_%CE%BE%CF%8D%CE%BB%CE%BF%CF%85/%CE%BA%CE%AD%CE%B4%CF%81%CE%BF%CF%82-2/"] [unique_id "aim-NFm-hOp-vuTAMVbAewAAAFA"] show less	Port Scan
🇸🇬 securejdprop	2026-06-10 19:26:18 (3 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing. crowdsecurity/http-probing	Hacking Web App Attack
🇮🇹 A000Z	2026-06-10 18:41:57 (3 days ago)	Fail2Ban: 51.77.211.39 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 ... show more Fail2Ban: 51.77.211.39 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36 show less	Bad Web Bot
🇷🇺 DZBOT	2026-06-10 18:03:43 (3 days ago)	DZBOT: Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇩🇪 DocNetzwerk	2026-06-10 12:00:39 (3 days ago)	51.77.211.39 (FR/France/vps-6d9a10ba.vps.ovh.net), more than 7 Apache 403 hits	Hacking
🇩🇪 FeG Deutschland	2026-06-10 05:06:05 (3 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 28	Exploited Host Web App Attack
🇦🇺 MAGIC	2026-06-10 02:13:24 (3 days ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 omc	2026-06-10 00:13:06 (3 days ago)	Unauthorized file [PP]	Bad Web Bot

Showing 1 to 15 of 353 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 85.217.149.9

🇺🇸 66.132.186.248

🇳🇱 45.148.10.147

🇨🇳 36.32.104.200

🇻🇪 201.243.65.37

🇧🇪 198.235.24.204

🇺🇸 192.81.229.181

🇲🇽 187.191.48.23

🇺🇸 162.159.104.79

🇵🇱 146.59.95.254

🇬🇧 45.82.76.113

🇦🇺 35.189.27.43

🇨🇴 185.104.167.63

🇺🇸 162.159.104.27

🇺🇸 154.16.119.22

🇨🇳 119.125.100.35

🇨🇳 115.190.241.179

🇳🇱 45.148.10.151

🇮🇳 4.247.141.61

🇧🇷 190.89.137.153