JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 178.20.28.252

178.20.28.252 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 1%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS59651
Domain Name	finegroupservers.com
Country	🇫🇮 Finland
City	Vantaa, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 178.20.28.252

Whois 178.20.28.252

IP Abuse Reports for 178.20.28.252:

This IP address has been reported a total of 14 times from 10 distinct sources. 178.20.28.252 was first reported on October 28th 2023, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 inlink.ltd	2026-05-27 02:03:39 (1 week ago)	Known malicious PHP file or CMS probe	Web App Attack
🇮🇹 VHosting	2026-03-26 19:57:26 (2 months ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇫🇷 masterguru	2026-02-07 00:21:50 (4 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 178.20.28.252 (FI/Finland/-): 1 in the last 36 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 178.20.28.252 (FI/Finland/-): 1 in the last 3600 secs (0-197) show less	Hacking
🇫🇷 masterguru	2026-02-06 23:08:53 (4 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 178.20.28.252 (FI/Finland/-): 1 in the last 36 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 178.20.28.252 (FI/Finland/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇫🇷 masterguru	2026-02-06 22:38:25 (4 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 178.20.28.252 (NL/The Netherlands/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 178.20.28.252 (NL/The Netherlands/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇫🇷 tilellit.pro	2026-02-06 15:46:08 (4 months ago)	Fail2Ban banned 178.20.28.252 for security violations in jail wp-armour. Log: 2026/02/06 15:46:08 [e ... show more Fail2Ban banned 178.20.28.252 for security violations in jail wp-armour. Log: 2026/02/06 15:46:08 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 178.20.28.252 \| Target: wplogin" , client: 178.20.28.252, server: [REDACTED], request: "POST /wp-login.php HTTP/2.0", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇪🇸 10dencehispahard SL	2026-02-06 07:10:23 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
Anonymous	2026-01-23 20:02:03 (4 months ago)	wordpress-trap	Web App Attack
🇫🇷 masterguru	2025-12-24 13:48:56 (5 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 178.20.28.252 (NL/The Netherlands/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 178.20.28.252 (NL/The Netherlands/-): 1 in the last 3600 secs (0-197) show less	Hacking
🇺🇸 TPI-Abuse	2025-03-07 18:36:16 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 178.20.28.252 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 178.20.28.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 07 13:36:10.158447 2025] [security2:error] [pid 25153:tid 25153] [client 178.20.28.252:38393] [client 178.20.28.252] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.judithcaldwell.com"] [uri "/.env"] [unique_id "Z8s8mnZWvtcFAPcS_DspVQAAABQ"], referer: https://tasamm.com/about/ggg204.html show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-02-22 03:41:19 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 178.20.28.252 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 178.20.28.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 21 22:41:14.527671 2025] [security2:error] [pid 27932:tid 27932] [client 178.20.28.252:44883] [client 178.20.28.252] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "davefortier.com"] [uri "/.env"] [unique_id "Z7lHWqhLweSnJGbbwNKdbAAAABU"], referer: https://tasamm.com/about/ddd22.html show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 oncord	2025-01-19 13:13:14 (1 year ago)	Form spam	Web Spam
🇲🇹 Malta	2024-12-24 21:15:44 (1 year ago)	178.20.28.252 - - [24/Dec/2024:22:15:43 +0100] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows; ... show more 178.20.28.252 - - [24/Dec/2024:22:15:43 +0100] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.224 Safari/534.10" show less	VPN IP Hacking Web App Attack
🇵🇱 rafix	2023-10-28 10:15:22 (2 years ago)	Scrapping website, using diffrent useragents, not wait for response, #botnet20231026	DDoS Attack Bad Web Bot

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.205.34.19

🇨🇳 218.13.157.209

🇵🇹 195.158.248.231

🇳🇱 185.156.73.233

🇨🇳 112.92.210.19

🇨🇦 85.217.149.63

🇬🇧 81.19.219.243

🇧🇬 79.124.40.130

🇺🇸 77.91.118.50

🇧🇷 45.205.1.240

🇳🇱 45.148.10.151

🇧🇪 35.190.221.63

🇧🇴 190.181.4.12

🇲🇰 188.44.20.32

🇦🇷 186.13.24.118

🇨🇳 150.138.231.102

🇬🇧 146.70.119.15

🇮🇳 106.197.94.232

🇷🇴 92.118.39.236

🇸🇪 90.230.168.26