JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a02:4780:3f:2162:0:edf:ff0b:1

2a02:4780:3f:2162:0:edf:ff0b:1 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 43%: ?

43%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Hostinger International Limited
Usage Type	Content Delivery Network
ASN	AS47583
Domain Name	hostinger.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a02:4780:3f:2162:0:edf:ff0b:1

Whois 2a02:4780:3f:2162:0:edf:ff0b:1

IP Abuse Reports for 2a02:4780:3f:2162:0:edf:ff0b:1:

This IP address has been reported a total of 27 times from 10 distinct sources. 2a02:4780:3f:2162:0:edf:ff0b:1 was first reported on June 7th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-08 22:00:23 (2 weeks ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-07. show less	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-08 14:06:14 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 10:06:10.504595 2026] [security2:error] [pid 26216:tid 26216] [client 2a02:4780:3f:2162:0:edf:ff0b:1:25692] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nbyoung.com"] [uri "/dev/.env"] [unique_id "aibMUl3qeV_XbipnWXCwowAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 pltcldvlpr	2026-06-08 10:18:26 (2 weeks ago)	CMS/framework probe: 2a02:4780:3f:2162:0:edf:ff0b:1 - - [08/Jun/2026:12:18:25 +0200] "GET /.env HTTP ... show more CMS/framework probe: 2a02:4780:3f:2162:0:edf:ff0b:1 - - [08/Jun/2026:12:18:25 +0200] "GET /.env HTTP/1.1" 206 455 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" asn=- org="-" country=DE ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 09:31:12 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 05:31:07.885415 2026] [security2:error] [pid 19650:tid 19650] [client 2a02:4780:3f:2162:0:edf:ff0b:1:47222] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jpastorphotographics.com"] [uri "/core/.env.save"] [unique_id "aiaL2_6F2QLCvr9Dt7wZfAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 08:48:50 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 04:48:46.935090 2026] [security2:error] [pid 12269:tid 12269] [client 2a02:4780:3f:2162:0:edf:ff0b:1:31716] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "concentricsteel.com"] [uri "/backend/.env"] [unique_id "aiaB7tqhd4asYidWo79BCAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 07:42:37 (2 weeks ago)	(mod_security) mod_security (id:949110) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:949110) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 03:42:32.397961 2026] [security2:error] [pid 9702:tid 9702] [client 2a02:4780:3f:2162:0:edf:ff0b:1:36868] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "saniyadenton.click"] [uri "/app/.env"] [unique_id "aiZyaMboS1eYoIbfSuqMwAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 05:53:32 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 01:53:27.537884 2026] [security2:error] [pid 30515:tid 30515] [client 2a02:4780:3f:2162:0:edf:ff0b:1:56338] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "financesf.com"] [uri "/api/.env"] [unique_id "aiZY17eLfdy0SVMMNUZQKQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 02:33:43 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 22:33:37.265230 2026] [security2:error] [pid 20699:tid 20715] [client 2a02:4780:3f:2162:0:edf:ff0b:1:49900] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "flipkimmel.com"] [uri "/core/.env.save"] [unique_id "aiYqAcw1Hd-7QJEgTaaYuQAAAY4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 02:01:56 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 22:01:50.395746 2026] [security2:error] [pid 30067:tid 30067] [client 2a02:4780:3f:2162:0:edf:ff0b:1:42070] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sharonmauldin.com"] [uri "/.env.save"] [unique_id "aiYijigcvbWl__vB1Lsd8QAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 00:58:24 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 20:58:19.467202 2026] [security2:error] [pid 26442:tid 26442] [client 2a02:4780:3f:2162:0:edf:ff0b:1:65080] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "greensandbeans.us"] [uri "/members/.env"] [unique_id "aiYTq28Vx9JFJAlnYM6B2QAAADg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 23:07:48 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 19:07:42.682186 2026] [security2:error] [pid 18830:tid 18846] [client 2a02:4780:3f:2162:0:edf:ff0b:1:17666] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ureseal.com"] [uri "/laravel/.env"] [unique_id "aiX5vpADFPDjFnjkaiWZrQAAAEg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 22:49:54 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 18:49:48.371465 2026] [security2:error] [pid 23218:tid 23218] [client 2a02:4780:3f:2162:0:edf:ff0b:1:22308] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "newhopepetgrooming.com"] [uri "/dev/.env"] [unique_id "aiX1jGcmpq2OxOTRIZcaMQAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 22:30:29 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:3f:2162:0:edf:ff0b:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 18:30:23.481169 2026] [security2:error] [pid 12549:tid 12549] [client 2a02:4780:3f:2162:0:edf:ff0b:1:46042] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sanesoftware.com"] [uri "/.env"] [unique_id "aiXw_yXeg3PWKWn-YmdnqwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 nfsec.pl	2026-06-07 21:34:31 (2 weeks ago)	2a02:4780:3f:2162:0:edf:ff0b:1 - - [07/Jun/2026:21:34:31 +0000] "GET /core/.env.save HTTP/1.1" 403 8 ... show more 2a02:4780:3f:2162:0:edf:ff0b:1 - - [07/Jun/2026:21:34:31 +0000] "GET /core/.env.save HTTP/1.1" 403 8071 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 2a02:4780:3f:2162:0:edf:ff0b:1 - - [07/Jun/2026:21:34:31 +0000] "GET /.env.save HTTP/1.1" 403 8070 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 2a02:4780:3f:2162:0:edf:ff0b:1 - - [07/Jun/2026:21:34:31 +0000] "GET /admin/.env HTTP/1.1" 403 8070 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 2a02:4780:3f:2162:0:edf:ff0b:1 - - [07/Jun/2026:21:34:31 +0000] "GET /dev/.env HTTP/1.1" 403 8070 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 2a02:4780:3f:2162:0:edf:ff0b:1 - - [07/Jun/2026:21:34:31 +0000] "GET /members/.env HTTP ... show less	Web App Attack Exploited Host
🇨🇿 akac	2026-06-07 20:01:28 (2 weeks ago)	Web vulnerability scanning: HTTP/1.1 GET /admin/.env	Hacking Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 194.187.176.198

🇺🇸 104.29.155.29

🇦🇷 186.23.248.210

🇫🇮 147.185.133.125

🇺🇸 147.185.132.39

🇮🇳 122.187.174.54

🇮🇳 122.160.80.105

🇩🇪 85.215.173.245

🇧🇬 78.128.113.74

🇱🇹 77.90.185.238

🇺🇸 75.48.40.238

🇵🇰 59.103.112.64

🇫🇷 51.103.46.9

🇩🇪 43.228.157.8

🇧🇪 34.53.242.126

🇺🇸 23.29.118.224

🇧🇷 20.226.81.217

🇺🇸 3.236.219.26

🇨🇳 223.243.24.178

🇺🇸 216.25.89.134