JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 166.88.169.172

166.88.169.172 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 4%: ?

ISP	Ace Data Centers II, L.L.C.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS18779
Hostname(s)	166-88-169-172.ips.acedatacenter.com
Domain Name	acedatacenter.com
Country	🇺🇸 United States of America
City	San Jose, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 166.88.169.172

Whois 166.88.169.172

IP Abuse Reports for 166.88.169.172:

This IP address has been reported a total of 9 times from 4 distinct sources. 166.88.169.172 was first reported on February 9th 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-01 02:04:07 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 166.88.169.172 (166-88-169-172.ips.acedatacente ... show more (mod_security) mod_security (id:210492) triggered by 166.88.169.172 (166-88-169-172.ips.acedatacenter.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 22:03:16.804112 2026] [security2:error] [pid 17651:tid 17690] [client 166.88.169.172:55775] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.kettlehill.net"] [uri "/_.htaccess"] [unique_id "ahzoZP_LRWXZHAcYLZ09QgAAAFU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-08 21:01:38 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 166.88.169.172 (166-88-169-172.ips.acedatacente ... show more (mod_security) mod_security (id:210492) triggered by 166.88.169.172 (166-88-169-172.ips.acedatacenter.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 17:01:31.330544 2026] [security2:error] [pid 122097:tid 122097] [client 166.88.169.172:39449] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.nbcnewsradio.com"] [uri "/.env.old"] [unique_id "adbCK15VP-uEIvqTjGamsgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-02 16:19:24 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 166.88.169.172 (166-88-169-172.ips.acedatacente ... show more (mod_security) mod_security (id:210492) triggered by 166.88.169.172 (166-88-169-172.ips.acedatacenter.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 02 12:19:17.995874 2026] [security2:error] [pid 18155:tid 18196] [client 166.88.169.172:51991] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kettlehill.com"] [uri "/wp-config.php.html"] [unique_id "ac6XBYRDXvwztGqRaJt5XAAAAQs"], referer: https://www.kettlehill.com/wp-config.php.html show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-01 20:33:42 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 166.88.169.172 (166-88-169-172.ips.acedatacente ... show more (mod_security) mod_security (id:210492) triggered by 166.88.169.172 (166-88-169-172.ips.acedatacenter.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 01 15:33:33.775089 2026] [security2:error] [pid 26067:tid 26076] [client 166.88.169.172:48551] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kettlehill.com"] [uri "/wp-config.php.inc"] [unique_id "aaSinU5L5LRphzCVS7L3BAAAAQY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 22:31:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 166.88.169.172 (166-88-169-172.ips.acedatacente ... show more (mod_security) mod_security (id:210492) triggered by 166.88.169.172 (166-88-169-172.ips.acedatacenter.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 17:31:49.737554 2025] [security2:error] [pid 12724:tid 12724] [client 166.88.169.172:53973] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "whm.farmers123.com"] [uri "/sample.htaccess"] [unique_id "aS9o1Uy554xDG2PhrRlaUQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-08-22 08:42:18 (9 months ago)	Malicious activity detected	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-07-01 06:06:50 (11 months ago)	(mod_security) mod_security (id:212620) triggered by 166.88.169.172 (166-88-169-172.ips.acedatacente ... show more (mod_security) mod_security (id:212620) triggered by 166.88.169.172 (166-88-169-172.ips.acedatacenter.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 01 02:06:37.481383 2025] [security2:error] [pid 15241:tid 15294] [client 166.88.169.172:55787] ModSecurity: Access denied with code 403 (phase 2). Pattern match "<script\\\\b" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/07_XSS_XSS.conf"] [line "65"] [id "212620"] [rev "4"] [msg "COMODO WAF: Cross-site Scripting (XSS) Attack\|\|staging.kettlehill.com\|F\|2"] [data "Matched Data: <script found within REQUEST_URI: /does_not_exist\\x22\\x22><script>alert(document.domain)</script><imgsrc=x"] [severity "CRITICAL"] [tag "CWAF"] [tag "XSS"] [hostname "staging.kettlehill.com"] [uri "/does_not_exist\\"\\"><script>alert(document.domain)</script><img src=x"] [unique_id "aGN67XYF3eGjRiRZ58ZN7AAAAFA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-06-22 10:20:02 (11 months ago)	\| Common web attack.	Hacking SQL Injection Web App Attack
🇨🇭 backslash	2024-02-09 06:10:05 (2 years ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 191.240.37.46

🇷🇺 176.109.97.11

🇸🇪 155.4.12.206

🇺🇸 142.111.227.240

🇰🇷 121.142.87.218

🇦🇺 82.24.163.132

🇳🇱 45.128.199.68

🇿🇦 41.157.219.234

🇬🇧 35.203.210.197

🇫🇮 31.40.195.243

🇺🇸 216.25.89.88

🇩🇪 212.72.165.32

🇲🇺 197.227.14.33

🇧🇬 193.24.211.107

🇳🇱 185.223.235.32

🇬🇧 35.203.211.87

🇪🇸 23.90.188.184

🇩🇪 213.209.159.56

🇹🇷 185.226.93.242

🇮🇳 122.187.174.86