JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.0.78

65.111.0.78 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 21%: ?

21%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.0.78

Whois 65.111.0.78

IP Abuse Reports for 65.111.0.78:

This IP address has been reported a total of 43 times from 18 distinct sources. 65.111.0.78 was first reported on June 27th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 georgengelmann	2026-05-22 04:34:29 (2 weeks ago)	Failed login attempt for supe1User10	Brute-Force Web App Attack
🇳🇱 MatStef132	2026-05-19 20:59:02 (2 weeks ago)	MatShield L7: blocked on dstat.selify.io (click-id-direct-nav)	DDoS Attack
🇫🇷 MatStef132	2026-05-19 20:55:42 (2 weeks ago)	MatShield L7: blocked on mathost.eu (ua-quarantined)	Bad Web Bot
🇳🇱 MatStef132	2026-05-15 13:30:00 (3 weeks ago)	MatShield L7 blocked request to fivemtest.mathost.eu for reason ua-q	DDoS Attack Bad Web Bot Web App Attack
🇫🇷 MatStef132	2026-05-14 21:32:37 (3 weeks ago)	[mathost.eu] ua-q	DDoS Attack Bad Web Bot Web App Attack
🇦🇺 oncord	2026-05-12 18:59:04 (3 weeks ago)	Form spam	Web Spam
🇪🇸 el-brujo	2026-04-28 15:44:20 (1 month ago)	Cloudflare WAF: Request Path: /123456 Request Query: ?utm_term=EpLk1777391060256 Host: elhacker.net ... show more Cloudflare WAF: Request Path: /123456 Request Query: ?utm_term=EpLk1777391060256 Host: elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Action: block Source: ratelimit ASN Description: 3xK Tech GmbH Country: US Method: GET Timestamp: 2026-04-28T15:44:20Z ruleId: 11a71ad4659e48b29b5173e3bcc61b4a. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇦🇺 MAGIC	2026-03-11 01:26:35 (2 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-02-11 20:58:48 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.0.78 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.0.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 15:58:42.525181 2026] [security2:error] [pid 15187:tid 15237] [client 65.111.0.78:37327] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ardentsi.com"] [uri "/config/.env"] [unique_id "aYztgtE-upNczeVY_cokMQAAAUQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-02-10 19:33:17 (3 months ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 15:09:44 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.0.78 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.0.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 10:09:41.428130 2026] [security2:error] [pid 1155085:tid 1155085] [client 65.111.0.78:57043] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "anthonyvanstyn.com"] [uri "/frontend/.env"] [unique_id "aYtKNUc-as8GsD6nnFZwbgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 06:15:24 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.0.78 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.0.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 01:15:17.933433 2026] [security2:error] [pid 20039:tid 20039] [client 65.111.0.78:55751] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ik3co.com"] [uri "/.env.staging"] [unique_id "aYrM9ROoRQ4ZZuxVzFTbPAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:12:50 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.0.78 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.0.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:12:45.194719 2026] [security2:error] [pid 24201:tid 24201] [client 65.111.0.78:40085] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kinnairdenterprisesllc.com"] [uri "/backup/.git/config"] [unique_id "aYqiLYe4eEAVG1NBmYSY6wAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:04:34 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.0.78 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.0.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:04:26.436643 2026] [security2:error] [pid 14156:tid 14156] [client 65.111.0.78:63777] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kentuckianacordcutters.com"] [uri "/.env"] [unique_id "aYp2CrnWQGff_LTHJQQWOwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 195.201.140.251

🇺🇦 185.66.88.88

🇵🇰 153.117.50.177

🇦🇿 62.217.147.203

🇬🇧 35.203.211.81

🇬🇧 35.203.211.60

🇨🇳 222.241.250.128

🇨🇦 184.68.64.98

🇮🇳 182.95.43.50

🇧🇷 170.80.65.140

🇰🇷 106.251.244.178

🇲🇾 47.250.121.46

🇹🇿 41.59.229.33

🇰🇷 222.108.39.109

🇿🇦 197.79.50.153

🇺🇸 172.253.2.26

🇩🇪 94.134.88.157

🇪🇸 79.117.115.43

🇭🇰 45.196.236.141

🇧🇾 45.128.205.130