AbuseIPDB » 119.2.41.16

119.2.41.16 was found in our database!

This IP was reported 46 times. Confidence of Abuse is 99%: ?

99%

ISP	PT Laxo Global Akses
Usage Type	Fixed Line ISP
ASN	AS38524
Domain Name	laxo.net.id
Country	Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 119.2.41.16

Whois 119.2.41.16

IP Abuse Reports for 119.2.41.16:

This IP address has been reported a total of 46 times from 31 distinct sources. 119.2.41.16 was first reported on June 18th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
boxed-it	2025-06-26 21:13:33 (2 weeks ago)	GET /.env (Tarpitted for 1d15h8m24s, wasted 8.06MB)	Web App Attack
geot	2025-06-26 12:46:40 (2 weeks ago)	GET /sendgrid/.env HTTP/1.1 GET /.env HTTP/1.1 POST / HTTP/1.1	Port Scan Hacking Bad Web Bot Web App Attack
Hazzard	2025-06-25 21:45:50 (2 weeks ago)	(mod_security) mod_security triggered on hostname [redacted])	SQL Injection
Mr-Money	2025-06-25 21:31:39 (2 weeks ago)	119.2.41.16 - - [25/Jun/2025:23:31:36 +0200] "GET /.env HTTP/1.1" 404 489 "-" "Mozilla/5.0 (X11; Lin ... show more119.2.41.16 - - [25/Jun/2025:23:31:36 +0200] "GET /.env HTTP/1.1" 404 489 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 119.2.41.16 - - [25/Jun/2025:23:31:37 +0200] "GET /sendgrid/.env HTTP/1.1" 404 489 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 119.2.41.16 - - [25/Jun/2025:23:31:38 +0200] "GET /.env HTTP/1.1" 404 489 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" ... show less	Hacking SQL Injection Bad Web Bot Exploited Host Web App Attack
geot	2025-06-25 15:55:08 (2 weeks ago)	GET /sendgrid/.env HTTP/1.1 POST / HTTP/1.1 GET /.env HTTP/1.1	Port Scan Hacking Bad Web Bot Web App Attack
Anonymous	2025-06-25 15:31:46 (2 weeks ago)		DNS Compromise DDoS Attack
webbfabriken	2025-06-25 09:43:38 (2 weeks ago)	spam or other hacking activities reported by webbfabriken security servers Attack reported by ... show morespam or other hacking activities reported by webbfabriken security servers Attack reported by Webbfabriken Security API - WFSecAPI show less	Web Spam
LRNP	2025-06-25 08:56:35 (2 weeks ago)	_:80 119.2.41.16 - - [25/Jun/2025:08:56:34 +0000] "GET /.env HTTP/1.1" 404 181 "-" "Mozilla/5.0 (X11 ... show more_:80 119.2.41.16 - - [25/Jun/2025:08:56:34 +0000] "GET /.env HTTP/1.1" 404 181 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" ... show less	Bad Web Bot Web App Attack
jfz-abuse	2025-06-25 07:45:12 (2 weeks ago)	fail2ban: apache-filepath-recon ...	Web App Attack
boxed-it	2025-06-25 03:08:45 (2 weeks ago)	GET /.env (Tarpitted for 1d15h8m29s, wasted 8.06MB)	Web App Attack
SimonB	2025-06-24 23:57:02 (2 weeks ago)	HTTP vulnerability scan	Web App Attack
2000cn.com.au	2025-06-24 21:48:39 (2 weeks ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-bad-user-agent	Bad Web Bot Web App Attack
stypr	2025-06-24 16:45:52 (2 weeks ago)	Malicious activity detected on HTTP/HTTPS	Hacking Brute-Force Web App Attack
Study Bitcoin 🤗	2025-06-24 14:51:39 (2 weeks ago)	Port probe to tcp/80 (http) [srv136]	Port Scan Bad Web Bot Web App Attack
VXG-NET	2025-06-24 14:39:12 (2 weeks ago)	port=80, indicator_type=info-leak	Hacking

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩