JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 165.16.42.211

165.16.42.211 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 18%: ?

18%

ISP	Organisation: Giga for telecommunication and technology ltd
Usage Type	Fixed Line ISP
ASN	AS37284
Domain Name	giga.ly
Country	🇱🇾 Libya
City	Zliten, Misratah

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 165.16.42.211

Whois 165.16.42.211

IP Abuse Reports for 165.16.42.211:

This IP address has been reported a total of 18 times from 16 distinct sources. 165.16.42.211 was first reported on August 22nd 2023, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 filstal.org	2026-06-16 11:25:31 (2 hours ago)	Automated bot: spoofed/impossible user-agent, web scraping or automated request patterns detected. U ... show more Automated bot: spoofed/impossible user-agent, web scraping or automated request patterns detected. UA: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.1) show less	Bad Web Bot Web App Attack
🇨🇦 polycoda	2026-06-03 11:43:16 (1 week ago)	🥶 Part of massive botnet scraping campaign that nearly turned into a DDoS on 2025-11-27	DDoS Attack
🇩🇪 filstal.org	2026-05-01 02:40:18 (1 month ago)	Bad web bot: Spoofed/obsolete UA (Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 5.01; Trident/5.1)). ... show more Bad web bot: Spoofed/obsolete UA (Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 5.01; Trident/5.1)). Mass-scanning WordPress plugin. Coordinated large-scale bot attack. show less	Bad Web Bot Web App Attack
🇩🇪 bescared	2026-04-20 02:32:00 (1 month ago)	Malicious activity detected: URL probing.	Bad Web Bot Web App Attack Hacking
🇳🇱 melroy89	2026-04-01 19:45:39 (2 months ago)	165.16.42.211 - - [01/Apr/2026:20:57:56 +0200] "GET /m/[email protected]/p/66754/oh-btw-at-bookst ... show more 165.16.42.211 - - [01/Apr/2026:20:57:56 +0200] "GET /m/[email protected]/p/66754/oh-btw-at-bookstodon-at-a-gup-pe-thoughts-on-Earthlings-I-just-finished-it HTTP/1.1" 302 282 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.36" "kbin.melroy.org" 0.018 ... show less	DDoS Attack
🇺🇸 gui-ying233	2026-03-19 00:01:43 (2 months ago)	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Sa ... show more Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36 show less	Bad Web Bot
🇦🇺 MAGIC	2026-02-18 01:06:01 (3 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2026-02-15 03:48:55 (4 months ago)	Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to ... show more Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to bypass firewall/robots.txt restrictions in thread-post.asp show less	Bad Web Bot Exploited Host
Anonymous	2026-01-16 18:24:42 (4 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇫🇷 security.rdmc.fr	2026-01-16 07:09:45 (5 months ago)	Port Scan Attack proto:TCP src:42216 dst:23	Port Scan
🇮🇹 VHosting	2025-12-23 15:25:16 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
Anonymous	2025-12-07 04:45:22 (6 months ago)	botnet	DDoS Attack
🇭🇺 ksol-hostmaster	2025-10-19 15:55:24 (7 months ago)	Massive botnet baited into scraping tarpit	Bad Web Bot
🇮🇩 hermawan	2025-08-28 05:14:54 (9 months ago)	[Thu Aug 28 11:52:51.062766 2025] [security2:error] [pid 926954:tid 139747744687808] [client 165.16. ... show more [Thu Aug 28 11:52:51.062766 2025] [security2:error] [pid 926954:tid 139747744687808] [client 165.16.42.211:36598] ModSecurity: Access denied with code 403 (phase 1). Match of "ipMatch 103.166.156.58" against "REMOTE_ADDR" required. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "372"] [id "440006"] [msg "Connection Close Header"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: close found within REMOTE_ADDR: 165.16.42.211 request_line = GET /index.php/profil/meteorologi/list-all-categories/113-meteorologi/prakiraan-meteorologi/555561507-prakiraan-harian-cuaca-wisata-di-jawa-timur-untuk-hari-ini-pada-pagi-siang-malam-dan-dini-hari-meliputi-gunung-semeru-lumajang-gunung-bromo-dan-gunung-ijen-banyuw HTTP/1.1 Request URI RAW = /index.php/profil/meteorologi/list-all-categories/..."] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-all-categories/113- ... show less	Hacking Web App Attack
🇳🇱 exxos	2025-08-26 05:03:01 (9 months ago)	Attacks with Bad user agents	Hacking

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2600:1900:4120:e3fb:0:7e::

🇰🇿 185.233.3.95

🇺🇸 173.234.227.6

🇮🇩 163.7.11.155

🇺🇸 157.245.0.54

🇩🇪 103.14.32.224

🇧🇬 95.42.54.132

🇳🇱 91.92.40.13

🇳🇱 91.92.40.10

🇷🇴 80.94.92.177

🇺🇸 65.49.1.152

🇸🇬 43.156.239.194

🇺🇸 20.64.106.19

🇺🇸 216.218.206.97

🇨🇳 180.102.110.150

🇭🇰 151.243.38.65

🇰🇷 140.238.10.203

🇬🇧 138.68.128.149

🇰🇷 121.141.243.81

🇨🇳 115.224.35.139