JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 170.168.242.12

170.168.242.12 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 3%: ?

ISP	Fine Group Servers Solutions LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS59651
Domain Name	finegroupservers.com
Country	🇸🇪 Sweden
City	Marsta, Stockholm

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 170.168.242.12

Whois 170.168.242.12

IP Abuse Reports for 170.168.242.12:

This IP address has been reported a total of 7 times from 5 distinct sources. 170.168.242.12 was first reported on January 1st 2026, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tilellit.pro	2026-06-27 19:30:05 (12 hours ago)	Fail2Ban banned 170.168.242.12 for security violations in jail wp-armour. Log: 2026/06/27 19:30:04 [ ... show more Fail2Ban banned 170.168.242.12 for security violations in jail wp-armour. Log: 2026/06/27 19:30:04 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 170.168.242.12 \| Target: wplogin" , client: 170.168.242.12, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇫🇷 tilellit.pro	2026-06-27 07:25:15 (1 day ago)	Fail2Ban banned 170.168.242.12 for security violations in jail wp-armour. Log: 2026/06/27 07:25:14 [ ... show more Fail2Ban banned 170.168.242.12 for security violations in jail wp-armour. Log: 2026/06/27 07:25:14 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 170.168.242.12 \| Target: wplogin" , client: 170.168.242.12, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇺🇸 TPI-Abuse	2026-04-11 12:15:53 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 170.168.242.12 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 170.168.242.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 11 08:15:46.031119 2026] [security2:error] [pid 1889126:tid 1889126] [client 170.168.242.12:9161] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|wildpete.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "wildpete.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ado7cu3dQ5SkDLplgqZTnwAAAA8"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 stinpriza	2026-03-19 18:41:12 (3 months ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2026-01-05 21:11:06 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 170.168.242.12 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 170.168.242.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 05 16:11:00.617716 2026] [security2:error] [pid 11311:tid 11311] [client 170.168.242.12:24671] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.whatyouhear.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.whatyouhear.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aVwo5A4SZxFin3noCqtEoAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-01-03 19:05:06 (5 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇮🇹 VHosting	2026-01-01 22:45:03 (5 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇷 179.48.248.245

🇭🇰 150.5.169.176

🇵🇱 146.59.46.9

🇺🇸 107.172.50.134

🇮🇩 103.160.213.66

🇯🇵 43.165.180.54

🇨🇳 42.180.4.166

🇺🇸 34.61.71.230

🇨🇳 223.74.192.33

🇺🇸 216.25.89.140

🇳🇱 193.25.217.247

🇸🇪 178.20.213.223

🇺🇸 173.236.141.65

🇺🇸 173.194.103.169

🇮🇩 103.155.199.212

🇰🇪 102.68.76.201

🇿🇦 102.67.141.165

🇿🇲 102.23.122.235

🇳🇱 94.237.40.60

🇺🇸 71.6.134.235