JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 178.20.29.201

178.20.29.201 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 3%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS46475
Domain Name	finegroupservers.com
Country	🇫🇮 Finland
City	Helsinki, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 178.20.29.201

Whois 178.20.29.201

IP Abuse Reports for 178.20.29.201:

This IP address has been reported a total of 13 times from 8 distinct sources. 178.20.29.201 was first reported on October 12th 2024, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tilellit.pro	2026-06-29 09:48:48 (9 hours ago)	Fail2Ban banned 178.20.29.201 for security violations in jail wp-armour. Log: 2026/06/29 09:48:48 [e ... show more Fail2Ban banned 178.20.29.201 for security violations in jail wp-armour. Log: 2026/06/29 09:48:48 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 178.20.29.201 \| Target: wplogin" , client: 178.20.29.201, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇫🇷 tilellit.pro	2026-06-27 09:05:04 (2 days ago)	Fail2Ban banned 178.20.29.201 for security violations in jail wp-armour. Log: 2026/06/27 09:05:04 [e ... show more Fail2Ban banned 178.20.29.201 for security violations in jail wp-armour. Log: 2026/06/27 09:05:04 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 178.20.29.201 \| Target: wplogin" , client: 178.20.29.201, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇫🇷 tilellit.pro	2026-05-21 07:49:44 (1 month ago)	Fail2Ban banned 178.20.29.201 for security violations in jail wp-armour. Log: 2026/05/21 07:49:43 [e ... show more Fail2Ban banned 178.20.29.201 for security violations in jail wp-armour. Log: 2026/05/21 07:49:43 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 178.20.29.201 \| Target: wplogin" , client: 178.20.29.201, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇩🇪 LRob.fr	2026-04-27 11:00:04 (2 months ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇬🇧 Bytemark	2026-04-21 05:48:36 (2 months ago)	178.20.29.201 - - [21/Apr/2026:06:48:35 +0100] "POST /xmlrpc.php HTTP/1.1" 404 47 "-" "curl/7.88.1" ... show more 178.20.29.201 - - [21/Apr/2026:06:48:35 +0100] "POST /xmlrpc.php HTTP/1.1" 404 47 "-" "curl/7.88.1" 178.20.29.201 - - [21/Apr/2026:06:48:35 +0100] "POST /xmlrpc.php HTTP/1.1" 404 47 "-" "Wget/1.21.4" 178.20.29.201 - - [21/Apr/2026:06:48:35 +0100] "POST /xmlrpc.php HTTP/1.1" 404 47 "-" "curl/7.88.1" show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-04-13 22:50:07 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 178.20.29.201 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 178.20.29.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 13 18:50:03.611694 2026] [security2:error] [pid 1496502:tid 1496502] [client 178.20.29.201:60287] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|directcch.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "directcch.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ad1zG2-fOr-x56X2WJIkUAAAAAc"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 kjaerulff	2026-04-10 06:49:46 (2 months ago)	Failed Wordpress login using wp-login.php	Web App Attack
🇩🇪 LRob.fr	2026-01-31 19:51:10 (4 months ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇫🇷 tilellit.pro	2026-01-30 14:10:54 (4 months ago)	Fail2Ban banned 178.20.29.201 for security violations in jail wp-armour. Log: 2026/01/30 14:10:53 [e ... show more Fail2Ban banned 178.20.29.201 for security violations in jail wp-armour. Log: 2026/01/30 14:10:53 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 178.20.29.201 \| Target: wplogin" , client: 178.20.29.201, server: [REDACTED], request: "POST /wp-login.php HTTP/2.0", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇨🇿 lp	2025-03-19 13:24:44 (1 year ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 178.20.29.201 2025-03-19T13:44:49+01: ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 178.20.29.201 2025-03-19T13:44:49+01:00 vpn Access-Reject 'grambow' station: 178.20.29.201 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇨🇿 lp	2025-03-16 04:21:37 (1 year ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 178.20.29.201 2025-03-16T03:55:48+01: ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 178.20.29.201 2025-03-16T03:55:48+01:00 vpn Access-Reject 'goldberg' station: 178.20.29.201 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇸🇪 OnTheEdge	2025-02-07 16:46:53 (1 year ago)	Password spraying. Multiple unauthorized login attempts	Hacking Web App Attack
🇷🇴 INTEQ	2024-10-12 13:07:37 (1 year ago)	Web attack from 178.20.29.201	Web App Attack

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 195.178.110.227

🇫🇷 185.208.207.227

🇮🇷 185.204.197.17

🇭🇰 165.154.1.18

🇩🇿 154.241.63.196

🇱🇾 154.127.69.28

🇺🇸 152.32.208.169

🇺🇸 147.189.174.15

🇷🇺 128.0.140.191

🇮🇳 115.96.205.101

🇳🇱 45.148.10.200

🇳🇱 45.148.10.147

🇹🇿 41.59.202.241

🇧🇷 170.238.160.191

🇩🇪 167.94.146.33

🇺🇸 147.124.198.176

🇺🇸 146.88.241.61

🇨🇳 139.199.182.94

🇺🇸 137.184.112.192

🇺🇸 132.148.26.66