AbuseIPDB » 166.1.131.147
166.1.131.147
This IP was reported 9 times. Confidence of
Abuse
is 0% : ?
ISP
Ace Data Centers, Inc.
Usage Type
Data Center/Web Hosting/Transit
ASN
AS35830
Domain Name
acedatacenter.com
Country
๐ซ๐ฎ
Finland
City
Helsinki, Uusimaa
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 166.1.131.147 :
This IP address has been reported a total of
9
times from
7 distinct
sources.
166.1.131.147 was first reported on
July 19th 2023 , and the most recent report was
4 months ago
Old Reports:
The most recent abuse report for this IP address is from
4 months ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐บ๐ธ
TPI-Abuse
2026-01-28 06:56:14
(4 months ago)
(mod_security) mod_security (id:240335) triggered by 166.1.131.147 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:240335) triggered by 166.1.131.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 28 01:56:06.852190 2026] [security2:error] [pid 6537:tid 6537] [client 166.1.131.147:62369] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 166.1.131.147 (+1 hits since last alert)|thestardance.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "thestardance.com"] [uri "/xmlrpc.php"] [unique_id "aXmzBso30v55cQFpcggtZwAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
2026-01-22 07:26:41
(4 months ago)
[redacted] 166.1.131.147 - - [22/Jan/2026:08:26:39 +0100] "POST /xmlrpc.php HTTP/1.1" 403 239 "-" "W ...
show more
[redacted] 166.1.131.147 - - [22/Jan/2026:08:26:39 +0100] "POST /xmlrpc.php HTTP/1.1" 403 239 "-" "Wget/1.21.4"
[redacted] 166.1.131.147 - - [22/Jan/2026:08:26:39 +0100] "POST /xmlrpc.php HTTP/1.1" 403 239 "-" "curl/8.6.0"
[redacted] 166.1.131.147 - - [22/Jan/2026:08:26:40 +0100] "POST /xmlrpc.php HTTP/1.1" 403 239 "-" "Wget/1.21.4"
[redacted] 166.1.131.147 - - [22/Jan/2026:08:26:40 +0100] "POST /xmlrpc.php HTTP/1.1" 403 239 "-" "Wget/1.21.4"
[redacted] 166.1.131.147 - - [22/Jan/2026:08:26:41 +0100] "POST /xmlrpc.php HTTP/1.1" 403 239 "-" "curl/8.6.0"
...
show less
Hacking
Web App Attack
2025-08-10 00:16:02
(9 months ago)
attempts to hack passwords
Brute-Force
Web App Attack
๐ฌ๐ง
oncord
2025-07-19 17:45:50
(10 months ago)
Form spam
Web Spam
2025-07-14 10:20:55
(10 months ago)
attempts to hack passwords
Brute-Force
Web App Attack
๐ท๐บ
sms.ru
2024-09-21 10:00:07
(1 year ago)
SMS pumping attack from foreign country
DDoS Attack
๐ฉ๐ช
NxtGenIT
2024-06-03 20:32:05
(2 years ago)
166.1.131.147 has been observed attacking Port 1812. Observed Threat: RADIUS Login Brute Force Attem ...
show more
166.1.131.147 has been observed attacking Port 1812. Observed Threat: RADIUS Login Brute Force Attempt
show less
Brute-Force
๐ฉ๐ช
NxtGenIT
2024-05-31 20:47:37
(2 years ago)
166.1.131.147 has been observed attacking Port 1812. Observed Threat: RADIUS Login Brute Force Attem ...
show more
166.1.131.147 has been observed attacking Port 1812. Observed Threat: RADIUS Login Brute Force Attempt
show less
Brute-Force
2023-07-19 19:06:49
(2 years ago)
Web Spam
Email Spam
Blog Spam
Bad Web Bot
Web App Attack
Showing 1 to
9
of 9 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: