JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 178.20.29.45

178.20.29.45 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 13%: ?

13%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS59651
Domain Name	finegroupservers.com
Country	🇫🇮 Finland
City	Helsinki, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 178.20.29.45

Whois 178.20.29.45

IP Abuse Reports for 178.20.29.45:

This IP address has been reported a total of 36 times from 20 distinct sources. 178.20.29.45 was first reported on June 22nd 2022, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ghostwarriors	2026-06-17 12:20:21 (1 day ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-25 13:40:09 (3 weeks ago)	(mod_security) mod_security (id:225170) triggered by 178.20.29.45 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 178.20.29.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 25 09:40:03.124637 2026] [security2:error] [pid 29621:tid 29621] [client 178.20.29.45:22891] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|opere.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "opere.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ahRRM96A6B4GXWQtpAS-VAAAAAs"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-24 19:53:20 (3 weeks ago)	(mod_security) mod_security (id:225170) triggered by 178.20.29.45 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 178.20.29.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 24 15:53:14.672987 2026] [security2:error] [pid 1027:tid 1027] [client 178.20.29.45:43575] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|no504.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "no504.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ahNXKoZPRPNylUpOvl-h7AAAABc"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-24 19:06:45 (3 weeks ago)	(mod_security) mod_security (id:225170) triggered by 178.20.29.45 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 178.20.29.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 24 15:06:38.111773 2026] [security2:error] [pid 7830:tid 7830] [client 178.20.29.45:23439] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|leadek.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "leadek.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ahNMPqXnlk3QmOnO__MRzwAAAD8"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 SSH-Admin	2026-02-07 17:12:28 (4 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇫🇷 masterguru	2026-01-24 11:03:24 (4 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 178.20.29.45 (FI/Finland/-): 1 in the last 360 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 178.20.29.45 (FI/Finland/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇺🇸 TPI-Abuse	2026-01-23 03:26:43 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 178.20.29.45 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 178.20.29.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 22:26:37.608877 2026] [security2:error] [pid 19118:tid 19118] [client 178.20.29.45:31309] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|inquisitivequincie.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "inquisitivequincie.com"] [uri "/wp-json/wp/v2/users/2"] [unique_id "aXLqbSn9NAPMZ0W4ibX-8AAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-01-23 02:49:14 (4 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 178.20.29.45 (FI/Finland/-): 1 in the last 360 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 178.20.29.45 (FI/Finland/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇺🇸 TPI-Abuse	2026-01-22 10:37:51 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 178.20.29.45 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 178.20.29.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 05:37:46.068100 2026] [security2:error] [pid 3102455:tid 3102520] [client 178.20.29.45:21365] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|eceinal.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "eceinal.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "aXH9-ho_oD2mottyqN5JxQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-01-19 15:46:07 (4 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 178.20.29.45 (FI/Finland/-): 1 in the last 360 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 178.20.29.45 (FI/Finland/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇫🇷 masterguru	2026-01-13 20:33:41 (5 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 178.20.29.45 (NL/The Netherlands/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 178.20.29.45 (NL/The Netherlands/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇫🇷 masterguru	2026-01-07 16:32:42 (5 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 178.20.29.45 (NL/The Netherlands/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 178.20.29.45 (NL/The Netherlands/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇨🇦 SSH-Admin	2025-12-27 13:45:08 (5 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-11-17 16:50:37 (7 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 skycodee	2025-10-05 12:49:19 (8 months ago)	Repeated TLS handshake abuse against Pterodactyl Wings (port 8080)	DDoS Attack

Showing 1 to 15 of 36 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 159.203.188.43

🇨🇦 85.217.149.25

🇷🇺 81.23.173.32

🇷🇴 2.57.122.98

🇳🇱 2a14:7c1:498a::1

🇨🇭 209.99.191.19

🇳🇱 176.65.148.229

🇩🇪 164.92.161.148

🇺🇸 159.203.136.205

🇨🇦 159.203.14.213

🇨🇳 120.212.21.11

🇿🇦 105.28.108.165

🇱🇹 81.30.98.62

🇺🇸 74.235.120.62

🇳🇱 45.148.10.141

🇳🇱 45.142.193.131

🇺🇸 40.124.174.245

🇨🇳 14.18.122.240

🇩🇪 213.209.159.227

🇰🇷 211.178.247.182