JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a02:4780:12:5c53::1

2a02:4780:12:5c53::1 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 38%: ?

38%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	HOSTINGER IN
Usage Type	Content Delivery Network
ASN	AS47583
Hostname(s)	srv1245526.hstgr.cloud
Domain Name	hostinger.com
Country	🇮🇳 India
City	Mumbai, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a02:4780:12:5c53::1

Whois 2a02:4780:12:5c53::1

IP Abuse Reports for 2a02:4780:12:5c53::1:

This IP address has been reported a total of 10 times from 7 distinct sources. 2a02:4780:12:5c53::1 was first reported on May 24th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 e.fierstra	2026-06-15 12:28:53 (3 days ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇩🇪 LRob.fr	2026-06-15 12:15:06 (3 days ago)	Repeated 403 errors, blocked by Fail2ban in custom-403 jail	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-15 10:41:10 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:12:5c53::1 (srv1245526.hstgr.cloud): ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:12:5c53::1 (srv1245526.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 06:41:03.631928 2026] [security2:error] [pid 1370:tid 1370] [client 2a02:4780:12:5c53::1:35188] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "michaelthompson.biz"] [uri "/cpanel/.env"] [unique_id "ai_WvziSR2Wxim_KJ0XWyAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 10:07:44 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:12:5c53::1 (srv1245526.hstgr.cloud): ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:12:5c53::1 (srv1245526.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 06:07:36.651955 2026] [security2:error] [pid 9657:tid 9657] [client 2a02:4780:12:5c53::1:53996] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "anbrusgoldens.com"] [uri "/cpanel/.env"] [unique_id "ai_O6OJFQwmkAPhXsIw4cgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 09:21:19 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:12:5c53::1 (srv1245526.hstgr.cloud): ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:12:5c53::1 (srv1245526.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 05:21:15.804433 2026] [security2:error] [pid 11863:tid 11870] [client 2a02:4780:12:5c53::1:53278] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "paygulf.com"] [uri "/.env"] [unique_id "ai_EC4ZIWF6VeU_-Jqul8wAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 openstrike.co.uk	2026-05-25 08:47:46 (3 weeks ago)	7 packets to port 21	FTP Brute-Force
🇺🇸 chronos	2026-05-25 06:54:11 (3 weeks ago)	[AUTORAVALT][[25/05/2026 - 03:54:10 -03:00 UTC] Attack from [2a02:4780:12:5c53::1][srv1245526.hstgr. ... show more [AUTORAVALT][[25/05/2026 - 03:54:10 -03:00 UTC] Attack from [2a02:4780:12:5c53::1][srv1245526.hstgr.cloud] Action: BLocKed FTP Brute-Force -> Running brute force credentials on the FTP server. Brute-Force -> Credential brute-force attacks on webpage logins and services like SSH, FTP, SIP, SMTP, RDP, etc. ] ... show less	FTP Brute-Force Brute-Force
🇳🇱 Roderic	2026-05-24 23:08:41 (3 weeks ago)	2a02:4780:12:5c53::1 (IN/India/Maharashtra/Mumbai/-/[redacted]	Brute-Force
🇩🇪 ghostwarriors	2026-05-24 21:51:20 (3 weeks ago)	Unauthorized connection to FTP port 21	FTP Brute-Force Brute-Force
🇺🇸 chronos	2026-05-24 04:36:29 (3 weeks ago)	[AUTORAVALT][[24/05/2026 - 01:36:29 -03:00 UTC] Attack from [2a02:4780:12:5c53::1][srv1245526.hstgr. ... show more [AUTORAVALT][[24/05/2026 - 01:36:29 -03:00 UTC] Attack from [2a02:4780:12:5c53::1][srv1245526.hstgr.cloud] Action: BLocKed FTP Brute-Force -> Running brute force credentials on the FTP server. Brute-Force -> Credential brute-force attacks on webpage logins and services like SSH, FTP, SIP, SMTP, RDP, etc. ] ... show less	FTP Brute-Force Brute-Force

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇾 115.135.234.221

🇳🇱 91.92.42.64

🇺🇸 2600:3c02::2000:eeff:fed4:53f5

🇳🇱 138.226.239.12

🇮🇳 117.218.75.251

🇮🇳 103.82.157.45

🇺🇸 2a13:dcc7:4314:8b1d:e297:6e7:d983:d96a

🇩🇪 213.209.159.228

🇹🇼 211.20.14.156

🇪🇸 185.176.8.77

🇸🇬 178.128.81.146

🇫🇮 147.185.133.101

🇺🇸 43.130.74.193

🇺🇸 38.141.62.238

🇷🇺 31.130.35.29

🇮🇳 27.0.221.174

🇺🇸 146.75.154.67

🇳🇱 144.31.54.15

🇰🇷 112.168.38.78

🇺🇸 91.230.168.86