JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.11.83

65.111.11.83 was found in our database!

This IP was reported 49 times. Confidence of Abuse is 21%: ?

21%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.11.83

Whois 65.111.11.83

IP Abuse Reports for 65.111.11.83:

This IP address has been reported a total of 49 times from 19 distinct sources. 65.111.11.83 was first reported on July 10th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 alferez	2026-06-03 21:43:30 (1 day ago)	Searching hacked php files	Hacking Exploited Host Web App Attack
🇦🇺 2000cn.com.au	2026-05-19 15:56:45 (2 weeks ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇨🇭 4server	2026-05-04 11:38:58 (1 month ago)	[MonMay0413:38:54.3907362026][security2:error][pid1212284:tid1212453][client65.111.11.83:0]ModSecuri ... show more [MonMay0413:38:54.3907362026][security2:error][pid1212284:tid1212453][client65.111.11.83:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"www.4-server.com\"][uri\"/.env\"][unique_id\"afiFTlwl0LzL3e_tye9QZAAAAAg\"] show less	Hacking Web App Attack
🇩🇪 big-cloud.nl	2026-05-01 05:47:41 (1 month ago)	Try to access /.aws/credentials	Web App Attack
🇦🇺 MAGIC	2026-04-03 01:18:52 (2 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2026-03-24 02:52:26 (2 months ago)	Forum/form spam	Web Spam
Anonymous	2026-03-05 04:10:22 (3 months ago)	Forum/form spam	Web Spam
Anonymous	2026-03-04 09:50:09 (3 months ago)	XMLRPC BRUTEFORCE - HTTP (Request)	Hacking
🇺🇸 TPI-Abuse	2026-02-13 09:10:26 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.11.83 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.11.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 04:10:20.201230 2026] [security2:error] [pid 7197:tid 7242] [client 65.111.11.83:54421] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "metropaint.net"] [uri "/admin/.git/config"] [unique_id "aY7qfPIjH9zi8vN_SqEqngAAAcw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 08:44:00 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.11.83 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.11.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:43:51.938105 2026] [security2:error] [pid 9787:tid 9787] [client 65.111.11.83:46273] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "meshbagsandmore.com"] [uri "/frontend/.env"] [unique_id "aY7kR7wb1Ct4ETZKKNiZUwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 06:45:53 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.11.83 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.11.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:45:44.762840 2026] [security2:error] [pid 11737:tid 11737] [client 65.111.11.83:30471] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "medgi.co"] [uri "/frontend/.env"] [unique_id "aY7ImLg0KYeUR5ZhF_asiQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 05:19:57 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.11.83 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.11.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 00:19:49.918155 2026] [security2:error] [pid 24838:tid 24838] [client 65.111.11.83:56923] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "matthewhestad.help"] [uri "/app/.env"] [unique_id "aY60dfQiQl6zJuu4AjPDHgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:39:16 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.11.83 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.11.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:39:08.650948 2026] [security2:error] [pid 2403886:tid 2403886] [client 65.111.11.83:11797] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "masalamadrid.com"] [uri "/app/.git/config"] [unique_id "aY6q7I8aPsLEywYoYoo_fwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:20:22 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.11.83 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.11.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:20:15.398786 2026] [security2:error] [pid 20236:tid 20236] [client 65.111.11.83:32697] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "martaaizenman.com"] [uri "/admin/.git/config"] [unique_id "aY6mf-RVxkh99eLRnqcCJgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 02:47:44 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.11.83 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.11.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:47:41.899121 2026] [security2:error] [pid 2670:tid 2670] [client 65.111.11.83:13647] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "manichri.com"] [uri "/config/.env"] [unique_id "aY6QzUh4igWgmpbf-CePjwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 49 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4004:c23::120

🇧🇷 191.53.132.93

🇧🇷 189.90.239.87

🇵🇱 185.105.141.233

🇳🇱 176.65.139.56

🇰🇷 122.35.192.61

🇮🇳 103.237.57.100

🇮🇷 94.101.184.145

🇷🇺 91.215.85.193

🇦🇹 85.255.154.199

🇳🇱 77.174.233.98

🇩🇪 69.5.169.189

🇩🇪 69.5.169.153

🇩🇪 69.5.169.145

🇺🇸 68.64.170.2

🇺🇸 66.132.172.245

🇧🇪 34.156.191.5

🇷🇴 2.57.122.177

🇨🇳 211.159.151.224

🇧🇪 198.235.24.200