JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.1.150

65.111.1.150 was found in our database!

This IP was reported 41 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.1.150

Whois 65.111.1.150

IP Abuse Reports for 65.111.1.150:

This IP address has been reported a total of 41 times from 15 distinct sources. 65.111.1.150 was first reported on June 27th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 big-cloud.nl	2026-04-01 00:54:10 (2 months ago)	Try to access /xmlrpc.php	Web App Attack
🇦🇺 MAGIC	2026-02-23 00:45:55 (3 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇬🇧 Shadymint	2026-02-15 12:37:53 (3 months ago)	url probing from IP marked as abusive	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:31:38 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.150 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.150 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:31:30.611905 2026] [security2:error] [pid 17580:tid 17580] [client 65.111.1.150:60593] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "partiklezoo.com"] [uri "/.env.staging"] [unique_id "aZG8ovkhDLmSrr423vWYGQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:01:50 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.150 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.150 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:01:45.196582 2026] [security2:error] [pid 17484:tid 17484] [client 65.111.1.150:63457] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pamplonaserviciotecnico.com"] [uri "/.env.save"] [unique_id "aZG1qQX7W0JJPjZSbnyOIAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:17:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.150 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.150 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:17:51.101206 2026] [security2:error] [pid 2949:tid 2956] [client 65.111.1.150:19593] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sellarsmail.com"] [uri "/.git/config"] [unique_id "aZGrX6H-YWXwc7rtx7xj6QAAAIU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 10:59:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.150 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.150 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 05:59:06.947292 2026] [security2:error] [pid 23824:tid 23824] [client 65.111.1.150:57675] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "osmansirel.com"] [uri "/api/.git/config"] [unique_id "aZGm-sGy0N4xxzwS3dL4hwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 DocNetzwerk	2026-02-15 06:43:24 (3 months ago)	(mod_security) mod_security triggered on hostname [redacted] 65.111.1.150 (US/United States/-)	SQL Injection
🇩🇪 big-cloud.nl	2026-02-15 06:30:34 (3 months ago)	Try to access /backup/.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:29:16 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.150 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.150 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:29:10.333288 2026] [security2:error] [pid 5086:tid 5086] [client 65.111.1.150:30523] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ohiokaisers.com"] [uri "/test/.git/config"] [unique_id "aZFZprRAqY42wh4m0KBTrwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:06:23 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.150 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.150 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:06:17.058092 2026] [security2:error] [pid 31034:tid 31034] [client 65.111.1.150:61089] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ocmtx.org"] [uri "/admin/.env"] [unique_id "aZFUSUmRT7ls1OBTYDqzZAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:03:29 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.150 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.150 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:03:23.561258 2026] [security2:error] [pid 31865:tid 31865] [client 65.111.1.150:62589] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pourier.net"] [uri "/.env.staging"] [unique_id "aZFFi8hUVrGWrhz_utRJAAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 OceanTreasure	2026-02-15 03:45:45 (3 months ago)	tcp/80; Git configuration exposure attempt: "GET /v2/.git/config" @ 2026-02-15T03:36:34Z [proxy]	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:44:42 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.150 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.150 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:44:37.115605 2026] [security2:error] [pid 25839:tid 25839] [client 65.111.1.150:31001] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "portalvasco.com"] [uri "/wp/.git/config"] [unique_id "aZFBJaDvWfu5-3mzRARGxwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:59:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.150 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.150 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:59:32.402301 2026] [security2:error] [pid 1220395:tid 1220395] [client 65.111.1.150:49047] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rygg.biz"] [uri "/app/.git/config"] [unique_id "aZE2lN8Oe3byoJyumohu7QAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 41 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 185.226.197.15

🇩🇪 167.94.146.47

🇭🇰 152.32.135.217

🇫🇮 147.185.133.230

🇬🇧 35.203.210.16

🇩🇪 172.86.92.75

🇺🇸 162.216.149.63

🇩🇰 158.173.74.40

🇺🇸 152.32.235.107

🇺🇸 147.185.132.209

🇧🇩 103.171.69.74

🇩🇪 54.37.74.179

🇳🇱 213.152.161.54

🇳🇱 195.178.110.30

🇸🇬 161.118.200.99

🇺🇸 152.53.81.25

🇺🇸 139.144.239.98

🇰🇷 211.221.2.119

🇮🇷 188.213.197.169

🇷🇴 92.118.39.236