JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.10.16

65.111.10.16 was found in our database!

This IP was reported 42 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.10.16

Whois 65.111.10.16

IP Abuse Reports for 65.111.10.16:

This IP address has been reported a total of 42 times from 12 distinct sources. 65.111.10.16 was first reported on June 27th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇳 ThreatBook.io	2026-04-20 23:02:19 (1 month ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/65.111.10.16 2026-0 ... show more ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/65.111.10.16 2026-04-20 10:39:08 /swagger/v1/swagger.json 2026-04-20 10:39:09 /api/swagger.json 2026-04-20 10:39:09 /v3/api-docs 2026-04-20 10:39:07 /v2/api-docs 2026-04-20 10:39:08 /swagger/docs/v1 2026-04-20 10:39:07 /prod-api/v2/api-docs show less	Web App Attack
🇨🇳 ThreatBook.io	2026-04-18 22:55:56 (1 month ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/65.111.10.16 2026-0 ... show more ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/65.111.10.16 2026-04-18 19:04:24 /swagger/v1/swagger.json 2026-04-18 19:04:25 /api/swagger.json 2026-04-18 19:04:23 /v2/api-docs 2026-04-18 19:04:24 /swagger/docs/v1 2026-04-18 19:04:25 /v3/api-docs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 21:48:36 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.10.16 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.10.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:48:31.913944 2026] [security2:error] [pid 26077:tid 26077] [client 65.111.10.16:38411] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garysgates.com"] [uri "/app/.env"] [unique_id "aYpWL8qoiKpsCiKRUvB8JAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 21:22:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.10.16 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.10.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:22:20.937667 2026] [security2:error] [pid 1475703:tid 1475703] [client 65.111.10.16:32997] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garciadomingo.com"] [uri "/admin/.env"] [unique_id "aYpQDNelQL0Gdol5ksLOfwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 18:56:09 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.10.16 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.10.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 13:56:03.658254 2026] [security2:error] [pid 22354:tid 22354] [client 65.111.10.16:25243] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fydelitybags.com"] [uri "/new/.git/config"] [unique_id "aYotw8lGdDbMOKrlkRvnmAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 10:56:36 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.10.16 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.10.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 05:56:32.243042 2026] [security2:error] [pid 12266:tid 12266] [client 65.111.10.16:28267] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gainow.net"] [uri "/admin/.git/config"] [unique_id "aYm9YEER3Td4ySydNzyh7wAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 06:15:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.10.16 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.10.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 01:15:03.475660 2026] [security2:error] [pid 29716:tid 29716] [client 65.111.10.16:9369] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "furbabieslivesmatter.com"] [uri "/.env.local"] [unique_id "aYl7Z8KZLdpSCx_6zcYFVgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇳 ThreatBook.io	2025-12-09 22:40:56 (5 months ago)	ThreatBook Intelligence: Zombie,vpn_proxy more details on https://threatbook.io/ip/65.111.10.16 2025 ... show more ThreatBook Intelligence: Zombie,vpn_proxy more details on https://threatbook.io/ip/65.111.10.16 2025-12-09 03:47:14 /swagger/docs/v1 2025-12-09 03:47:15 /v3/api-docs 2025-12-09 20:10:52 /video/index.php?c=search&catid=23%20and%20(select%201%20from%20(select%20count(),concat(md5(1),floor(rand(0)2))x%20from%20information_schema.tables%20group%20by%20x)a) 2025-12-09 03:47:12 /prod-api/v2/api-docs 2025-12-09 03:47:14 /api/swagger.json 2025-12-09 03:47:12 /v2/api-docs 2025-12-09 03:47:13 /swagger/v1/swagger.json show less	Web App Attack
Anonymous	2025-12-04 21:31:52 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-24 09:26:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.10.16 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.10.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:26:33.745632 2025] [security2:error] [pid 31609:tid 31609] [client 65.111.10.16:16211] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.akmanoto.com"] [uri "/.svn/wc.db"] [unique_id "aSQkyaIW1aNaymPwQTddBwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Holger	2025-11-24 08:46:24 (6 months ago)	Bruteforce WebAttack	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:54:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.10.16 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.10.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:54:28.992546 2025] [security2:error] [pid 5395:tid 5395] [client 65.111.10.16:28567] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "alafiariverrendezvous.org"] [uri "/.env"] [unique_id "aSPzFN9BgQ0aICQYABDP4AAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:20:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.10.16 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.10.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:19:58.538970 2025] [security2:error] [pid 3965261:tid 3965299] [client 65.111.10.16:44459] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.deathbyaudio.com"] [uri "/.env"] [unique_id "aSPq_h7XGNzpCBYjvUv3NgAAAkE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:50:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.10.16 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.10.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:50:40.495643 2025] [security2:error] [pid 20582:tid 20582] [client 65.111.10.16:17381] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.gardenstateakitaclub.org"] [uri "/.env"] [unique_id "aSPkIDUsZdw2X3i_UwHP2wAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 03:26:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.10.16 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.10.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:26:22.526333 2025] [security2:error] [pid 17151:tid 17151] [client 65.111.10.16:18313] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.americanlegion935.com"] [uri "/.svn/wc.db"] [unique_id "aSPQXpKfytr6CKBf3ZaamwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 42 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 209.38.198.157

🇺🇸 172.234.218.245

🇸🇪 155.4.244.169

🇺🇸 144.2.12.32

🇻🇳 116.110.146.55

🇵🇰 115.186.149.42

🇳🇱 45.148.10.152

🇯🇵 207.56.229.243

🇰🇷 125.140.145.62

🇨🇳 117.173.77.121

🇺🇸 72.18.83.212

🇳🇱 45.148.10.157

🇨🇳 27.155.92.28

🇺🇸 198.54.128.232

🇺🇸 107.175.145.85

🇫🇷 91.171.145.117

🇱🇹 81.30.98.49

🇳🇱 64.89.162.33

🇺🇸 52.224.109.126

🇮🇪 52.209.180.86