JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 165.16.76.105

165.16.76.105 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 54%: ?

54%

ISP	Aljeel Aljadeed For Technology
Usage Type	Fixed Line ISP
ASN	AS37284
Domain Name	aljeel.ly
Country	🇱🇾 Libya
City	Tripoli, Tripoli

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 165.16.76.105

Whois 165.16.76.105

IP Abuse Reports for 165.16.76.105:

This IP address has been reported a total of 19 times from 9 distinct sources. 165.16.76.105 was first reported on May 28th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 dynamix	2026-06-18 21:15:38 (1 hour ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇫🇷 Yepngo	2026-06-17 20:29:22 (1 day ago)	165.16.76.105 - - [17/Jun/2026:22:29:12 +0200] "POST /xmlrpc.php HTTP/2.0" 200 410 "-" "Jetpack/12.1 ... show more 165.16.76.105 - - [17/Jun/2026:22:29:12 +0200] "POST /xmlrpc.php HTTP/2.0" 200 410 "-" "Jetpack/12.1; WordPress/6.1; http://site53101374.com" 165.16.76.105 - - [17/Jun/2026:22:29:22 +0200] "POST /xmlrpc.php HTTP/2.0" 200 410 "-" "Jetpack by WordPress.com" ... show less	Brute-Force Web App Attack
🇫🇮 YF	2026-06-17 19:00:51 (1 day ago)	xmlrpc.php Potential DDoS or brute force	DDoS Attack Brute-Force
🇫🇷 dynamix	2026-06-17 15:07:26 (1 day ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇬🇧 Apache	2026-06-16 00:30:07 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 165.16.76.105 (LY/Libya/-): 5 in the last 300 s ... show more (mod_security) mod_security (id:240335) triggered by 165.16.76.105 (LY/Libya/-): 5 in the last 300 secs show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 16:05:07 (4 days ago)	(mod_security) mod_security (id:240335) triggered by 165.16.76.105 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 165.16.76.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 12:05:00.734532 2026] [security2:error] [pid 21758:tid 21758] [client 165.16.76.105:55384] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 165.16.76.105 (+1 hits since last alert)\|certifiedfarmersmarkets.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "certifiedfarmersmarkets.org"] [uri "/xmlrpc.php"] [unique_id "ai7RLOFS6AIOIyHzFDcxCQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-13 15:14:42 (5 days ago)	[server.tmg.gr] httpd-xmlrpc-post: sites=bridgesofpneumonology2026.com; logs=/var/log/httpd/domains/ ... show more [server.tmg.gr] httpd-xmlrpc-post: sites=bridgesofpneumonology2026.com; logs=/var/log/httpd/domains/bridgesofpneumonology2026.com.log; samples=/xmlrpc.php show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 04:39:05 (6 days ago)	(mod_security) mod_security (id:240335) triggered by 165.16.76.105 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 165.16.76.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 00:38:55.565808 2026] [security2:error] [pid 15479:tid 15479] [client 165.16.76.105:61918] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 165.16.76.105 (+1 hits since last alert)\|losbarbarosdelnorte.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "losbarbarosdelnorte.com"] [uri "/xmlrpc.php"] [unique_id "aiuNX_ewz0R3YG6l8wqvtAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 04:04:04 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 165.16.76.105 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 165.16.76.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 00:03:59.524887 2026] [security2:error] [pid 25219:tid 25219] [client 165.16.76.105:50406] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 165.16.76.105 (+1 hits since last alert)\|adonamusic.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "adonamusic.com"] [uri "/xmlrpc.php"] [unique_id "aijiLxNJrOPD_X9Gv4vplAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 15:40:11 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 165.16.76.105 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 165.16.76.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 11:39:53.782394 2026] [security2:error] [pid 8401:tid 8401] [client 165.16.76.105:62488] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 165.16.76.105 (+1 hits since last alert)\|karenbernsteinlaw.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "karenbernsteinlaw.com"] [uri "/xmlrpc.php"] [unique_id "aigzyfIsXhs7wSoDGqgblAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-08 09:35:35 (1 week ago)		Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-08 04:19:35 (1 week ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
🇺🇸 TPI-Abuse	2026-06-06 20:11:07 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 165.16.76.105 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 165.16.76.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 16:11:01.172120 2026] [security2:error] [pid 6632:tid 6632] [client 165.16.76.105:59309] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 165.16.76.105 (+1 hits since last alert)\|cienmalos.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "cienmalos.com"] [uri "/xmlrpc.php"] [unique_id "aiR-1VjcUaXR5yCYYYc2nAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-06 19:26:28 (1 week ago)	[server.tmg.gr] httpd-xmlrpc-post: sites=ikee.gr; logs=/var/log/httpd/domains/ikee.gr.log; samples=/ ... show more [server.tmg.gr] httpd-xmlrpc-post: sites=ikee.gr; logs=/var/log/httpd/domains/ikee.gr.log; samples=/xmlrpc.php show less	Brute-Force Web App Attack
Anonymous	2026-06-05 14:01:11 (1 week ago)	Attac	Brute-Force

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇪 161.132.45.92

🇺🇸 74.7.228.17

🇺🇸 172.214.209.153

🇮🇶 169.224.94.253

🇨🇴 161.10.3.21

🇻🇳 160.250.187.3

🇫🇮 147.185.133.84

🇺🇸 147.185.132.226

🇺🇸 74.125.185.152

🇦🇪 43.96.64.129

🇺🇸 20.9.17.155

🇺🇸 173.61.77.43

🇻🇳 160.250.133.203

🇺🇸 160.153.180.179

🇮🇳 122.187.226.71

🇨🇳 49.72.111.25

🇺🇸 34.71.167.118

🇰🇷 222.239.251.12

🇹🇼 198.235.24.96

🇲🇽 187.191.48.4