JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.11.168

65.111.11.168 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.11.168

Whois 65.111.11.168

IP Abuse Reports for 65.111.11.168:

This IP address has been reported a total of 36 times from 17 distinct sources. 65.111.11.168 was first reported on July 9th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 relianoid.com	2026-03-13 21:03:49 (3 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
Anonymous	2026-03-09 15:29:28 (3 months ago)	Forum/form spam	Web Spam
🇨🇦 SSH-Admin	2026-02-07 17:12:28 (4 months ago)	Probing for Exploits	Exploited Host Web App Attack
Anonymous	2026-02-05 06:06:18 (4 months ago)	Forum/form spam	Web Spam
Anonymous	2026-01-20 23:43:20 (4 months ago)	Forum/form spam	Web Spam
🇨🇦 SSH-Admin	2025-12-27 13:45:08 (5 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇨🇭 backslash	2025-12-26 03:35:04 (5 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
Anonymous	2025-12-13 04:13:24 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-25 07:36:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.11.168 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.11.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:36:08.795001 2025] [security2:error] [pid 25874:tid 25874] [client 65.111.11.168:60351] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.pleaseaddbacon.com"] [uri "/.svn/wc.db"] [unique_id "aSVcaDv1OIePZ1pIEptLYgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:53:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.11.168 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.11.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:53:43.299305 2025] [security2:error] [pid 14884:tid 14884] [client 65.111.11.168:19565] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.zezel.com"] [uri "/.git/HEAD"] [unique_id "aSVEZ1jA-GBdYaLpzahOlQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:31:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.11.168 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.11.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:31:14.648497 2025] [security2:error] [pid 22161:tid 22161] [client 65.111.11.168:22151] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.stoughtonpipeandwelding.net"] [uri "/.env"] [unique_id "aSU_IvQ_ulkdoQKnNrVGMAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:57:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.11.168 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.11.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:57:05.525986 2025] [security2:error] [pid 7506:tid 7506] [client 65.111.11.168:47221] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.lognlumber.com"] [uri "/.env"] [unique_id "aSU3IZGMq5iE-NNZJ1FkbAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:35:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.11.168 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.11.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:35:18.060616 2025] [security2:error] [pid 25041:tid 25041] [client 65.111.11.168:38405] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.indoorsfinishing.com"] [uri "/.git/HEAD"] [unique_id "aSUV5ngFQYsP_QblyAKi7AAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:28:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.11.168 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.11.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:26:25.848591 2025] [security2:error] [pid 12004:tid 12015] [client 65.111.11.168:32585] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.ucamp.net"] [uri "/.git/HEAD"] [unique_id "aSQkwRG6waFzPooTm6nqswAAAQQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:33:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.11.168 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.11.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:33:44.655973 2025] [security2:error] [pid 1131:tid 1131] [client 65.111.11.168:52589] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.terryhildebrandprints.com"] [uri "/.svn/wc.db"] [unique_id "aSQKWPOphHYEBPMFfJ4wKAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 36 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇱 194.180.49.145

🇻🇳 171.244.141.86

🇳🇱 52.174.67.71

🇸🇬 47.128.125.115

🇷🇴 2.57.121.25

🇰🇷 1.238.106.229

🇺🇸 184.105.139.85

🇷🇺 132.243.18.24

🇨🇳 129.211.222.151

🇳🇱 45.142.193.125

🇫🇷 37.65.55.144

🇧🇪 35.233.14.57

🇭🇰 34.92.62.8

🇹🇼 34.80.151.179

🇩🇪 8.211.43.106

🇧🇪 207.175.43.244

🇲🇾 202.184.145.225

🇺🇸 172.68.25.201

🇺🇸 135.237.98.149

🇻🇳 103.161.170.12