JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a02:4780:11:2304:0:3995:f0ec:1

2a02:4780:11:2304:0:3995:f0ec:1 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 26%: ?

26%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	HOSTINGER IN
Usage Type	Content Delivery Network
ASN	AS47583
Domain Name	hostinger.com
Country	🇮🇳 India
City	Mumbai, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a02:4780:11:2304:0:3995:f0ec:1

Whois 2a02:4780:11:2304:0:3995:f0ec:1

IP Abuse Reports for 2a02:4780:11:2304:0:3995:f0ec:1:

This IP address has been reported a total of 16 times from 5 distinct sources. 2a02:4780:11:2304:0:3995:f0ec:1 was first reported on June 7th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-09 22:01:24 (2 weeks ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08. show less	Web App Attack SSH Hacking
🇬🇧 openstrike.co.uk	2026-06-08 05:13:22 (3 weeks ago)	12 attacks on env grabbing URLs: GET /api/.env HTTP/1.1	Hacking
🇨🇭 4server	2026-06-08 02:04:47 (3 weeks ago)	[MonJun0804:04:42.9706532026][security2:error][pid1942231:tid1943203][client2a02:4780:11:2304:0:3995 ... show more [MonJun0804:04:42.9706532026][security2:error][pid1942231:tid1943203][client2a02:4780:11:2304:0:3995:f0ec:1:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"support-ticino.ch\"][uri\"/members/.env\"][unique_id\"aiYjOsqPtjyX69G_a5gYeAAAAMc\"] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 00:03:07 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 20:03:02.188614 2026] [security2:error] [pid 13047:tid 13047] [client 2a02:4780:11:2304:0:3995:f0ec:1:53460] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "philipjnielsen-drafting-design.com"] [uri "/dev/.env"] [unique_id "aiYGtguklfTtZGTYJO8IMgAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 23:36:51 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 19:36:47.011467 2026] [security2:error] [pid 10479:tid 10479] [client 2a02:4780:11:2304:0:3995:f0ec:1:26828] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "whipchecks.com.au"] [uri "/.env"] [unique_id "aiYAjxLci71X2QszPqB-HgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 22:42:57 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 18:42:50.923555 2026] [security2:error] [pid 13912:tid 13912] [client 2a02:4780:11:2304:0:3995:f0ec:1:31404] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oshadega.com"] [uri "/.env.save"] [unique_id "aiXz6qPhHMNBQlKdTV2bjgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 21:38:14 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 17:38:06.356938 2026] [security2:error] [pid 22773:tid 22773] [client 2a02:4780:11:2304:0:3995:f0ec:1:51418] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "letmespeakpodcast.com"] [uri "/dev/.env"] [unique_id "aiXkvp4NJsDlTCJeUjkWRAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 21:19:39 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 17:19:33.456950 2026] [security2:error] [pid 25468:tid 25468] [client 2a02:4780:11:2304:0:3995:f0ec:1:64700] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bergenoaks.com"] [uri "/laravel/.env"] [unique_id "aiXgZQH4GDM7wrbslXBbfgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 20:14:52 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 16:14:47.607940 2026] [security2:error] [pid 586:tid 586] [client 2a02:4780:11:2304:0:3995:f0ec:1:22770] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ampstudio.eu"] [uri "/core/.env"] [unique_id "aiXRN5T1oP2ojELqvKElmgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 19:53:08 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 15:53:02.149071 2026] [security2:error] [pid 7207:tid 7207] [client 2a02:4780:11:2304:0:3995:f0ec:1:31188] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "interartny.com"] [uri "/app/.env"] [unique_id "aiXMHu2OxKYkIFKQ50M2_AAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 18:51:17 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 14:51:09.674945 2026] [security2:error] [pid 28420:tid 28442] [client 2a02:4780:11:2304:0:3995:f0ec:1:62900] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aaenroll.com"] [uri "/admin/.env"] [unique_id "aiW9nalRVUpFwtUnBgsoEwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 17:51:33 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 13:51:28.061837 2026] [security2:error] [pid 20566:tid 20566] [client 2a02:4780:11:2304:0:3995:f0ec:1:31442] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "eurocs2.com"] [uri "/members/.env"] [unique_id "aiWvoCtOk_A_KaTjbz0xuwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 17:30:47 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 13:30:40.530088 2026] [security2:error] [pid 17644:tid 17644] [client 2a02:4780:11:2304:0:3995:f0ec:1:48066] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "moonstonenightclub.com"] [uri "/admin/.env"] [unique_id "aiWqwAuuQV3KuTqt7pUadAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 16:08:04 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:11:2304:0:3995:f0ec:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 12:07:59.623938 2026] [security2:error] [pid 16608:tid 16608] [client 2a02:4780:11:2304:0:3995:f0ec:1:51710] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "waterarchitecture.com"] [uri "/api/.env"] [unique_id "aiWXXwAUpPGRTCPccSRYxAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 e.fierstra	2026-06-07 14:29:00 (3 weeks ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 91.92.40.52

🇧🇬 79.124.56.146

🇺🇸 52.188.231.113

🇿🇦 173.194.171.212

🇷🇺 109.248.255.142

🇳🇱 85.17.240.152

🇱🇹 81.30.98.49

🇪🇸 68.221.67.111

🇺🇦 46.149.191.249

🇳🇱 45.148.10.141

🇺🇸 43.135.135.17

🇺🇸 20.168.122.38

🇬🇧 2a06:4880:2000::49

🇩🇪 213.209.159.242

🇩🇰 152.115.79.150

🇮🇪 109.79.92.207

🇱🇹 81.30.98.158

🇨🇦 45.194.92.57

🇮🇩 36.37.73.242

🇩🇪 213.209.159.228