AbuseIPDB » 166.1.131.77
166.1.131.77
This IP was reported 5 times. Confidence of
Abuse
is 0% : ?
ISP
Ace Data Centers, Inc.
Usage Type
Data Center/Web Hosting/Transit
ASN
AS35830
Domain Name
acedatacenter.com
Country
๐บ๐ธ
United States of America
City
Orem, Utah
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 166.1.131.77 :
This IP address has been reported a total of
5
times from
3 distinct
sources.
166.1.131.77 was first reported on
August 11th 2025 , and the most recent report was
1 month ago
Old Reports:
The most recent abuse report for this IP address is from
1 month ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐บ๐ธ
TPI-Abuse
2026-04-29 03:55:14
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 166.1.131.77 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210730) triggered by 166.1.131.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 28 23:55:09.710852 2026] [security2:error] [pid 30644:tid 30644] [client 166.1.131.77:16513] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||www.geriterry.com|F|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.geriterry.com"] [uri "/s3cmd.ini"] [unique_id "afGBHc5uF_sv_iIzuVucDgAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-26 02:01:59
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 166.1.131.77 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210730) triggered by 166.1.131.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 25 22:01:55.689613 2026] [security2:error] [pid 21941:tid 21941] [client 166.1.131.77:18085] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy||www.dbq.us|F|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.dbq.us"] [uri "/s3cmd.ini"] [unique_id "ae1yE4XrumO15-8CIVgUXAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
2026-02-12 21:55:47
(3 months ago)
wordpress-trap
Web App Attack
๐จ๐ฟ
lp
2025-08-14 10:51:00
(9 months ago)
Unauthorized VPN login attempts: 1 attempts were recorded from 166.1.131.77
2025-08-14T11:56:10+02:0 ...
show more
Unauthorized VPN login attempts: 1 attempts were recorded from 166.1.131.77
2025-08-14T11:56:10+02:00 vpn Access-Reject 'mvisel' station: 166.1.131.77 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>'
show less
Brute-Force
Web App Attack
๐จ๐ฟ
lp
2025-08-11 10:51:00
(9 months ago)
Unauthorized VPN login attempts: 1 attempts were recorded from 166.1.131.77
2025-08-11T11:31:36+02:0 ...
show more
Unauthorized VPN login attempts: 1 attempts were recorded from 166.1.131.77
2025-08-11T11:31:36+02:00 vpn Access-Reject 'juegos' station: 166.1.131.77 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>'
show less
Brute-Force
Web App Attack
Showing 1 to
5
of 5 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: