JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a02:4780:b:730:0:12c9:4c94:1

2a02:4780:b:730:0:12c9:4c94:1 was found in our database!

This IP was reported 39 times. Confidence of Abuse is 58%: ?

58%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Hostinger International Limited
Usage Type	Content Delivery Network
ASN	AS47583
Domain Name	hostinger.com
Country	🇺🇸 United States of America
City	Phoenix, Arizona

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a02:4780:b:730:0:12c9:4c94:1

Whois 2a02:4780:b:730:0:12c9:4c94:1

IP Abuse Reports for 2a02:4780:b:730:0:12c9:4c94:1:

This IP address has been reported a total of 39 times from 9 distinct sources. 2a02:4780:b:730:0:12c9:4c94:1 was first reported on May 31st 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-03 08:18:30 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:b:730:0:12c9:4c94:1 (Unknown): 1 in t ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:b:730:0:12c9:4c94:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 04:18:21.950558 2026] [security2:error] [pid 27206:tid 27206] [client 2a02:4780:b:730:0:12c9:4c94:1:52310] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "anthonyvanstyn.com"] [uri "/dev/.env"] [unique_id "ah_jTSMyW8r90AQN-X-b5wAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 openstrike.co.uk	2026-06-03 05:14:17 (1 day ago)	9 attacks on env grabbing URLs: GET /admin/.env HTTP/1.1	Hacking
🇺🇸 interbiznw.com	2026-06-03 00:37:51 (1 day ago)	malicious-web-requests-vulnerability-scanning	Hacking Brute-Force Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 19:23:09 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:b:730:0:12c9:4c94:1 (Unknown): 1 in t ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:b:730:0:12c9:4c94:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 15:23:02.016454 2026] [security2:error] [pid 25607:tid 25607] [client 2a02:4780:b:730:0:12c9:4c94:1:43884] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "shafoo.com"] [uri "/app/.env"] [unique_id "ah8tll16CeSgbkAuWWu6KAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 18:51:25 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:b:730:0:12c9:4c94:1 (Unknown): 1 in t ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:b:730:0:12c9:4c94:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 14:51:21.716509 2026] [security2:error] [pid 29330:tid 29330] [client 2a02:4780:b:730:0:12c9:4c94:1:32176] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "3dsportschannel.com"] [uri "/"] [unique_id "ah8mKTuCyWEMm1DdHqF9OwAAAAo"], referer: https://3dsportscanada.com/core/.env show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-02 14:45:20 (2 days ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 13:32:27 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:b:730:0:12c9:4c94:1 (Unknown): 1 in t ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:b:730:0:12c9:4c94:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 09:32:19.045052 2026] [security2:error] [pid 17276:tid 17276] [client 2a02:4780:b:730:0:12c9:4c94:1:60224] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jenricker.com"] [uri "/core/.env"] [unique_id "ah7bY3ls1t_1Erm3FDoOWQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 11:50:32 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:b:730:0:12c9:4c94:1 (Unknown): 1 in t ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:b:730:0:12c9:4c94:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 07:50:25.352857 2026] [security2:error] [pid 32242:tid 32242] [client 2a02:4780:b:730:0:12c9:4c94:1:30366] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "theateroobleck.com"] [uri "/admin/.env"] [unique_id "ah7DgS9O1maZjJG-PexpSQAAACc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 09:01:26 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:b:730:0:12c9:4c94:1 (Unknown): 1 in t ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:b:730:0:12c9:4c94:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 05:01:22.724011 2026] [security2:error] [pid 1873:tid 1873] [client 2a02:4780:b:730:0:12c9:4c94:1:19416] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "morganmotors.com"] [uri "/dev/.env"] [unique_id "ah6b4mi-R06LBCpv9ZmKWgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 BlueWire Hosting	2026-06-02 08:14:41 (2 days ago)	Probing websites for vulnerabilities	Web App Attack SQL Injection
🇺🇸 TPI-Abuse	2026-06-02 05:42:59 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:b:730:0:12c9:4c94:1 (Unknown): 1 in t ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:b:730:0:12c9:4c94:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 01:42:53.915964 2026] [security2:error] [pid 4113:tid 4113] [client 2a02:4780:b:730:0:12c9:4c94:1:59376] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "centrodentalsindolor.com"] [uri "/api/.env"] [unique_id "ah5tXbCXDfcHOCbBmolVCwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 04:57:40 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:b:730:0:12c9:4c94:1 (Unknown): 1 in t ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:b:730:0:12c9:4c94:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 00:57:35.520540 2026] [security2:error] [pid 14276:tid 14276] [client 2a02:4780:b:730:0:12c9:4c94:1:43068] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "greatwesternfirearms.com"] [uri "/member/.env"] [unique_id "ah5ivymXDW-TnC_dUKVDmAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 e.fierstra	2026-06-02 04:02:17 (2 days ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 03:51:56 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:b:730:0:12c9:4c94:1 (Unknown): 1 in t ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:b:730:0:12c9:4c94:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 23:51:50.901164 2026] [security2:error] [pid 8477:tid 8477] [client 2a02:4780:b:730:0:12c9:4c94:1:60510] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "machineryenchantress.com"] [uri "/admin/.env"] [unique_id "ah5TVsTTRnZnmbnhIgEWYgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 02:28:32 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 2a02:4780:b:730:0:12c9:4c94:1 (Unknown): 1 in t ... show more (mod_security) mod_security (id:210492) triggered by 2a02:4780:b:730:0:12c9:4c94:1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 22:28:26.102577 2026] [security2:error] [pid 5159:tid 5159] [client 2a02:4780:b:730:0:12c9:4c94:1:36226] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tntserv.com"] [uri "/new/.env"] [unique_id "ah4_ykkYCtKcjVbJQ3WhOgAAABY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 39 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 113.13.202.192

🇺🇸 71.6.233.2

🇮🇪 54.194.147.5

🇷🇴 2.57.121.25

🇨🇳 221.198.83.96

🇨🇳 111.113.88.105

🇲🇾 103.249.84.242

🇫🇷 91.172.208.98

🇺🇸 66.132.224.94

🇨🇳 39.149.34.67

🇨🇳 36.213.0.140

🇺🇸 20.169.104.27

🇵🇰 2400:adc5:419:3000:bce3:9c12:25b5:8498

🇧🇷 189.8.5.118

🇧🇷 187.16.96.250

🇺🇸 172.208.25.111

🇭🇰 114.111.52.109

🇺🇿 87.192.224.131

🇫🇷 85.217.140.42

🇳🇱 45.142.193.7