JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 178.20.30.64

178.20.30.64 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 11%: ?

11%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS59651
Domain Name	finegroupservers.com
Country	🇫🇮 Finland
City	Vantaa, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 178.20.30.64

Whois 178.20.30.64

IP Abuse Reports for 178.20.30.64:

This IP address has been reported a total of 16 times from 9 distinct sources. 178.20.30.64 was first reported on August 12th 2022, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-05-31 11:16:14 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 178.20.30.64 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 178.20.30.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 07:15:43.433656 2026] [security2:error] [pid 14781:tid 14781] [client 178.20.30.64:48379] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.txt" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.evolute.io"] [uri "/wp-config.txt"] [unique_id "ahwYX3osPGQvyPV7q_CPUQAAACs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 21:42:42 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 178.20.30.64 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 178.20.30.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 17:42:35.978954 2026] [security2:error] [pid 15505:tid 15505] [client 178.20.30.64:14121] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|coroneta.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "coroneta.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ahdlS1sE5BUBaTm1CZthPAAAAAM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 sefinek.net	2026-04-09 00:46:59 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from FI. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (G ... show more Triggered Cloudflare WAF (firewallCustom) from FI. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (GET) \| Endpoint: /genshin-stella-mod \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Xbox; Xbox One) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Edge/44.18363.8131 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇱🇻 garmtech.com	2026-03-30 22:56:48 (2 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 01-56.178.20.30.64.web-spammer ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 01-56.178.20.30.64.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇵🇱 sefinek.net	2026-03-27 07:14:38 (2 months ago)	Triggered Cloudflare WAF (firewallCustom) from FI. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (G ... show more Triggered Cloudflare WAF (firewallCustom) from FI. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (GET) \| Endpoint: /genshin-stella-mod \| UA: Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:114.0) Gecko/20100101 Firefox/114.0 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇱🇻 garmtech.com	2026-03-19 05:10:16 (2 months ago)	IM360 WAF: Old style account creation and modification in Joomla! MV:registration	Web App Attack
🇵🇱 sefinek.net	2025-12-25 23:33:24 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from FI. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from FI. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 OPR/89.0.4447.51 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇵🇱 sefinek.net	2025-12-16 16:41:32 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from FI. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from FI. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇵🇱 sefinek.net	2025-12-10 06:33:23 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from FI. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from FI. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 12.5; rv:114.0) Gecko/20100101 Firefox/114.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇦 wil.com	2025-03-28 08:33:04 (1 year ago)	GlobalProtect login attempts with user wtarrosa.	VPN IP Brute-Force
🇻🇳 Xuan Can	2025-01-31 06:00:28 (1 year ago)	(mod_security) mod_security (id:6) triggered by 178.20.30.64 (US/United States/-): 1 in the last 360 ... show more (mod_security) mod_security (id:6) triggered by 178.20.30.64 (US/United States/-): 1 in the last 3600 secs; Ports: 80,443; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 31 13:00:20.893786 2025] [security2:error] [pid 31974:tid 32023] [client 178.20.30.64:0] [client 178.20.30.64] ModSecurity: Access denied with connection close (phase 2). Pattern match "wp-login.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "62"] [id "6"] [severity "CRITICAL"] [hostname "kb.sieuthimaychu.vn"] [uri "/wp-login.php"] [unique_id "Z5xm9PKolKGVX0qXGnQ83QAAABY"] show less	Brute-Force SSH
🇻🇳 Xuan Can	2025-01-31 01:29:14 (1 year ago)	(mod_security) mod_security (id:6) triggered by 178.20.30.64 (US/United States/-): 1 in the last 360 ... show more (mod_security) mod_security (id:6) triggered by 178.20.30.64 (US/United States/-): 1 in the last 3600 secs; Ports: 80,443; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 31 08:29:05.901069 2025] [security2:error] [pid 16797:tid 16947] [client 178.20.30.64:0] [client 178.20.30.64] ModSecurity: Access denied with connection close (phase 2). Pattern match "wp-login.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "62"] [id "6"] [severity "CRITICAL"] [hostname "kb.sieuthimaychu.vn"] [uri "/wp-login.php"] [unique_id "Z5wnYYWaMVKAHNIh2DpP-QAAAIU"] show less	Brute-Force SSH
🇨🇦 polycoda	2024-12-30 09:43:03 (1 year ago)	📄 Probes for wp-login.php and other inexistent URLs	Hacking Web App Attack
Anonymous	2024-12-25 04:30:46 (1 year ago)	apache-wordpress-login	Brute-Force Web App Attack
🇹🇼 joy.lin	2023-01-16 01:49:22 (3 years ago)	The following critical firewall event was detected: SSL VPN login fail.	VPN IP Hacking

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 213.211.137.51

🇳🇱 176.65.149.203

🇦🇪 132.243.122.204

🇳🇱 45.148.10.147

🇻🇳 14.248.82.157

🇺🇸 2602:80d:1007::7c

🇭🇰 223.197.178.95

🇧🇷 205.210.31.228

🇩🇴 200.88.111.224

🇭🇰 185.227.153.56

🇺🇸 184.105.247.254

🇳🇱 176.65.148.58

🇺🇸 172.203.149.63

🇩🇪 167.172.104.91

🇵🇰 154.57.216.142

🇭🇰 152.32.129.154

🇯🇵 104.234.155.104

🇻🇳 103.228.36.70

🇭🇰 103.210.21.242

🇳🇱 89.125.56.145