JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 166.88.169.2

166.88.169.2 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 14%: ?

14%

ISP	Ace Data Centers II, L.L.C.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS18779
Hostname(s)	166-88-169-2.ips.acedatacenter.com
Domain Name	acedatacenter.com
Country	🇺🇸 United States of America
City	San Jose, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 166.88.169.2

Whois 166.88.169.2

IP Abuse Reports for 166.88.169.2:

This IP address has been reported a total of 10 times from 6 distinct sources. 166.88.169.2 was first reported on April 24th 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 bigorre.org	2026-06-18 16:53:48 (2 days ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇨🇭 backslash	2026-06-10 09:27:29 (1 week ago)	too many request	Bad Web Bot
Anonymous	2025-12-31 09:10:51 (5 months ago)	[Wed Dec 31 10:10:50.929400 2025] [:error] [pid 3947401:tid 3947401] [client 166.88.169.2:58925] Mod ... show more [Wed Dec 31 10:10:50.929400 2025] [:error] [pid 3947401:tid 3947401] [client 166.88.169.2:58925] ModSecurity: Warning. Matched "Operator `PmFromFile' with parameter `restricted-files.data' against variable `REQUEST_FILENAME' (Value: `/_profiler/phpinfo.php' ) [file "/usr/local/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "126"] [id "930130"] [rev ""] [msg "Restricted File Access Attempt"] [data "Matched Data: phpinfo.php found within REQUEST_FILENAME: /_profiler/phpinfo.php"] [severity "2"] [ver "OWASP_CRS/4.22.0-dev"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "OWASP_CRS/ATTACK-LFI"] [tag "capec/1000/255/153/126"] [uri "/_profiler/phpinfo.php"] [unique_id "176717225030.930367"] [ref "o11,11v4,22t:utf8toUnicode,t:urlDecodeUni,t:normalizePathWin"] [Wed Dec 31 10:10:50.930625 2025] [:error] [pid 3947401:tid 3947401] ... show less	Web App Attack
🇺🇸 TPI-Abuse	2025-10-28 22:48:18 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 166.88.169.2 (166-88-169-2.ips.acedatacenter.co ... show more (mod_security) mod_security (id:210492) triggered by 166.88.169.2 (166-88-169-2.ips.acedatacenter.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Oct 28 18:48:12.199178 2025] [security2:error] [pid 1263:tid 1263] [client 166.88.169.2:35787] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.nbcnewsradio.com"] [uri "/.env.prod"] [unique_id "aQFILOr_7579M8FjDN2c4gAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-01 20:20:05 (8 months ago)	\| Common web attack.	Hacking SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2025-10-01 17:22:50 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 166.88.169.2 (166-88-169-2.ips.acedatacenter.co ... show more (mod_security) mod_security (id:210730) triggered by 166.88.169.2 (166-88-169-2.ips.acedatacenter.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 01 13:22:44.716863 2025] [security2:error] [pid 28909:tid 28928] [client 166.88.169.2:36709] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.kettlehill.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.kettlehill.com"] [uri "/404.php.bak"] [unique_id "aN1jZMqzZow6xCeNbL7yuQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-08-01 08:22:30 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 166.88.169.2 (166-88-169-2.ips.acedatacenter.co ... show more (mod_security) mod_security (id:210492) triggered by 166.88.169.2 (166-88-169-2.ips.acedatacenter.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 01 04:22:26.053046 2025] [security2:error] [pid 3705323:tid 3705357] [client 166.88.169.2:59797] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kettlehill.kettlehill.com"] [uri "/_.htaccess"] [unique_id "aIx5QlSqWoxQtnj67bcsAQAAAFI"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 oncord	2024-04-28 23:08:56 (2 years ago)	Form spam	Web Spam
🇦🇺 oncord	2024-04-27 22:54:08 (2 years ago)	Form spam	Web Spam
🇦🇺 oncord	2024-04-24 23:14:21 (2 years ago)	Form spam	Web Spam

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 165.154.36.229

🇬🇧 90.252.102.27

🇳🇱 45.156.87.166

🇮🇳 45.40.57.23

🇧🇪 34.14.8.150

🇰🇷 119.209.12.20

🇵🇰 119.157.65.185

🇮🇶 65.20.250.244

🇳🇱 62.164.177.224

🇧🇪 35.241.133.108

🇻🇳 14.191.65.220

🇸🇪 158.174.210.161

🇸🇬 43.160.233.207

🇳🇱 5.255.98.113

🇺🇸 205.210.31.52

🇺🇸 185.180.141.42

🇸🇬 152.42.240.74

🇺🇸 104.248.235.37

🇺🇸 69.178.63.105

🇮🇷 5.190.135.82