JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 70.166.65.160

70.166.65.160 was found in our database!

This IP was reported 117 times. Confidence of Abuse is 57%: ?

57%

ISP	Cox Communications Inc.
Usage Type	Fixed Line ISP
ASN	AS22773
Domain Name	cox.com
Country	🇺🇸 United States of America
City	Fairfax, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 70.166.65.160

Whois 70.166.65.160

IP Abuse Reports for 70.166.65.160:

This IP address has been reported a total of 117 times from 66 distinct sources. 70.166.65.160 was first reported on October 4th 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇮 administrator	2026-06-02 22:12:14 (2 days ago)	2026-06-02 00:03:10,904 fail2ban.actions [1162]: NOTICE [ninjafirewall] Ban 70.166.65.160 20 ... show more 2026-06-02 00:03:10,904 fail2ban.actions [1162]: NOTICE [ninjafirewall] Ban 70.166.65.160 2026-06-02 00:03:10,904 fail2ban.actions [1162]: NOTICE [ninjafirewall] Ban 70.166.65.160 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇧🇪 Saec	2026-06-01 03:00:18 (4 days ago)	Jarvis auto-ban: CF honeypot path /xmlrpc.php (3× on saec.me)	Port Scan Web App Attack
🇨🇦 Peter Chargen	2026-05-29 12:32:19 (1 week ago)	PHP email form abuse/SPAM attempt	Email Spam
🇬🇧 Oakley	2026-05-28 04:34:28 (1 week ago)	(mod_security) mod_security (id:900178) triggered by 70.166.65.160 (US/United States/-): 5 in the la ... show more (mod_security) mod_security (id:900178) triggered by 70.166.65.160 (US/United States/-): 5 in the last 900 secs show less	Web App Attack Hacking
🇮🇹 Progetto1	2026-05-24 12:33:02 (1 week ago)	Mail - Multiple failed login attempts	Brute-Force Exploited Host
🇦🇺 oncord	2026-05-23 08:40:34 (1 week ago)	Form spam	Web Spam
🇩🇪 BestFans.com	2026-05-22 11:23:17 (2 weeks ago)	Credential brute-force attacks on webpage logins	Brute-Force
🇨🇿 ptlab	2026-05-22 00:45:55 (2 weeks ago)	Detected php_null_array_access attack from WP-host.	Hacking Web App Attack
🇫🇷 masterguru	2026-05-11 07:52:25 (3 weeks ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 70.166.65.160 (US/United States/-): 1 in the l ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 70.166.65.160 (US/United States/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇺🇸 cheatmaster.store	2026-05-08 11:34:51 (4 weeks ago)	Proxy parsed from 70.166.65.160:4145	Brute-Force SSH
🇦🇺 oncord	2026-05-07 19:41:20 (4 weeks ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2026-05-07 18:54:46 (4 weeks ago)	(mod_security) mod_security (id:210492) triggered by 70.166.65.160 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 70.166.65.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 07 14:54:32.607609 2026] [security2:error] [pid 13301:tid 13301] [client 70.166.65.160:42057] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.campconcerto.com"] [uri "/.git/config"] [unique_id "afzf6P-kXhLTHTJoMN6UAQAAAAU"], referer: https://www.google.com/search?q=webdisk.campconcerto.com show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 LRob.fr	2026-05-06 05:45:02 (4 weeks ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇸🇮 administrator	2026-05-04 16:57:10 (1 month ago)	2026-04-08 08:37:14,424 fail2ban.actions [1117]: NOTICE [apache-badbots] Ban 70.166.65.160 2 ... show more 2026-04-08 08:37:14,424 fail2ban.actions [1117]: NOTICE [apache-badbots] Ban 70.166.65.160 2026-04-08 08:37:14,424 fail2ban.actions [1117]: NOTICE [apache-badbots] Ban 70.166.65.160 2026-04-08 08:37:14,424 fail2ban.actions [1117]: NOTICE [apache-badbots] Ban 70.166.65.160 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇩🇪 FeG Deutschland	2026-04-16 16:42:14 (1 month ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2	Exploited Host Web App Attack

Showing 1 to 15 of 117 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.158

🇵🇰 72.255.3.154

🇨🇴 45.175.20.14

🇳🇱 185.223.235.22

🇺🇸 162.241.192.24

🇦🇺 162.158.164.181

🇺🇸 162.144.35.244

🇭🇰 152.32.252.113

🇨🇳 117.187.180.20

🇱🇹 81.30.98.144

🇺🇸 64.23.142.130

🇨🇳 27.222.219.179

🇩🇪 164.92.161.148

🇸🇬 146.190.105.93

🇺🇸 132.148.142.226

🇹🇼 114.34.106.146

🇦🇺 114.31.74.23

🇺🇸 108.181.2.217

🇺🇸 108.179.220.174

🇺🇸 98.84.169.122