JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 178.20.212.220

178.20.212.220 was found in our database!

This IP was reported 25 times. Confidence of Abuse is 1%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 178.20.212.220

Whois 178.20.212.220

IP Abuse Reports for 178.20.212.220:

This IP address has been reported a total of 25 times from 17 distinct sources. 178.20.212.220 was first reported on December 16th 2021, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-05-03 16:11:29 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 178.20.212.220 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 178.20.212.220 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 03 12:11:24.436985 2026] [security2:error] [pid 7827:tid 7890] [client 178.20.212.220:47817] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|longevityworkout.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "longevityworkout.com"] [uri "/"] [unique_id "afdzrP05ozQS4TjltkqwuwAAAQE"], referer: https://www.facebook.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 webgobe	2026-03-17 12:11:45 (2 months ago)	jow-Joomla User : try to access forms...	Hacking
Anonymous	2026-03-03 17:04:50 (3 months ago)	Forum/form spam	Web Spam
🇱🇻 garmtech.com	2026-03-03 13:11:44 (3 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 15-11.178.20.212.220.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 15-11.178.20.212.220.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇺🇸 webgobe	2026-01-22 15:50:04 (4 months ago)	jow-Joomla User : try to access forms...	Hacking
🇺🇸 TPI-Abuse	2026-01-19 05:06:36 (4 months ago)	(mod_security) mod_security (id:210350) triggered by 178.20.212.220 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 178.20.212.220 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 19 00:06:31.778634 2026] [security2:error] [pid 8734:tid 8734] [client 178.20.212.220:46533] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|plava.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "plava.org"] [uri "/"] [unique_id "aW2711iifgyBLSn9egSvNwAAABI"], referer: https://www.facebook.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 relianoid.com	2026-01-05 01:52:31 (5 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇮🇩 BPS-StatisticsIndonesia	2026-01-03 14:02:32 (5 months ago)	WP Login Scan Activities	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-12-31 08:29:41 (5 months ago)	WP Login Scan Activities	Web App Attack
Anonymous	2025-12-18 15:48:54 (5 months ago)	multiple unauthorized attempts at Wed, 17 Dec 2025 12:06:33 +0000 a total of 1 times.	Brute-Force
🇺🇸 webgobe	2025-12-16 09:22:07 (5 months ago)	jow-Joomla User : try to access forms...	Hacking
Anonymous	2025-12-08 09:22:14 (5 months ago)	Forum/form spam	Web Spam
🇩🇪 Packets-Decreaser.NET	2025-11-17 16:50:31 (6 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇩🇪 f2_IT	2025-11-12 15:51:33 (6 months ago)	SSLVPN Login attempt (blocked type h) from 178.20.212.220	Brute-Force
Anonymous	2025-10-09 22:37:09 (7 months ago)	VPN endpoint login attempts	Brute-Force

Showing 1 to 15 of 25 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.148.156

🇩🇪 176.65.132.22

🇸🇬 152.32.218.30

🇳🇱 45.148.10.141

🇺🇸 216.244.66.239

🇲🇲 103.154.241.42

🇬🇧 89.37.172.147

🇺🇸 66.132.186.196

🇻🇳 27.79.44.206

🇵🇭 210.5.117.238

🇺🇸 170.106.197.109

🇸🇬 139.99.18.16

🇱🇰 2406:2d40:61f9:a310:99be:4e1e:b20b:b959

🇻🇳 222.254.44.27

🇬🇧 217.146.80.106

🇺🇸 216.25.89.131

🇨🇭 209.99.189.174

🇬🇧 195.206.182.200

🇬🇧 193.163.125.24

🇳🇱 192.142.24.66