JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 170.168.29.11

170.168.29.11 was found in our database!

This IP was reported 6 times. Confidence of Abuse is 15%: ?

15%

ISP	Fine Group Servers Solutions LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS59651
Domain Name	finegroupservers.com
Country	🇫🇷 France
City	Prince, Brittany

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 170.168.29.11

Whois 170.168.29.11

IP Abuse Reports for 170.168.29.11:

This IP address has been reported a total of 6 times from 3 distinct sources. 170.168.29.11 was first reported on January 16th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 nationaleventpros.com	2026-06-14 16:25:20 (2 hours ago)	WordPress login attempt	Brute-Force
🇺🇸 TPI-Abuse	2026-06-12 01:27:02 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 170.168.29.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 170.168.29.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 21:26:55.403415 2026] [security2:error] [pid 25337:tid 25337] [client 170.168.29.11:14869] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|assheton.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "assheton.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aitgX3Xbk20pcGFf5sukZgAAAAo"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-26 11:27:45 (2 weeks ago)	(mod_security) mod_security (id:225170) triggered by 170.168.29.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 170.168.29.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 07:27:41.066594 2026] [security2:error] [pid 19954:tid 19954] [client 170.168.29.11:53693] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|johngutierrez.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "johngutierrez.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ahWDrfvoowWSLP_dYY2UowAAAAQ"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-18 18:06:22 (3 weeks ago)	(mod_security) mod_security (id:225170) triggered by 170.168.29.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 170.168.29.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 18 14:06:16.291502 2026] [security2:error] [pid 21664:tid 21664] [client 170.168.29.11:15061] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|i-med.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "i-med.com"] [uri "/wp-json/wp/v2/users"] [unique_id "agtVGMWZTHd0T7rYXBfvbAAAAAA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-03-15 16:24:13 (2 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 18-24.170.168.29.11.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 18-24.170.168.29.11.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇺🇸 TPI-Abuse	2026-01-16 12:26:52 (4 months ago)	(mod_security) mod_security (id:210350) triggered by 170.168.29.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 170.168.29.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 07:26:45.947894 2026] [security2:error] [pid 27120:tid 27120] [client 170.168.29.11:9083] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|daebakdesign.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "daebakdesign.com"] [uri "/wp-login.php"] [unique_id "aWouhbjP0ejRK2ZlyfDY_gAAAAk"], referer: http://daebakdesign.com show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 6 of 6 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 178.16.55.208

🇫🇮 2a00:1450:4010:c20::121

🇧🇴 200.105.141.172

🇹🇼 198.235.24.31

🇺🇸 147.185.132.37

🇳🇱 142.93.128.25

🇧🇬 79.124.40.130

🇦🇱 77.247.88.88

🇰🇷 58.224.62.29

🇨🇳 58.50.206.88

🇸🇬 2407:1c00:6300:3390::

🇰🇷 203.252.10.3

🇺🇸 192.3.196.157

🇺🇸 165.154.235.9

🇨🇳 39.106.61.225

🇩🇪 34.141.54.112

🇺🇸 32.216.116.41

🇲🇽 189.204.171.149

🇮🇳 182.95.187.86

🇮🇳 175.101.131.169