JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.14.203

65.111.14.203 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 7%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.14.203

Whois 65.111.14.203

IP Abuse Reports for 65.111.14.203:

This IP address has been reported a total of 30 times from 17 distinct sources. 65.111.14.203 was first reported on July 7th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-05-17 03:39:03 (1 month ago)	Brute force	Brute-Force
Anonymous	2026-05-12 12:50:00 (1 month ago)	brute force user portal	Brute-Force
Anonymous	2026-03-21 02:54:11 (3 months ago)	Web App Attack	Brute-Force Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-31 00:59:11 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇮🇹 VHosting	2025-12-23 21:35:31 (6 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇺🇸 TPI-Abuse	2025-11-25 04:57:19 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.203 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:56:55.330057 2025] [security2:error] [pid 7332:tid 7332] [client 65.111.14.203:54275] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.vincetronics.com"] [uri "/.svn/wc.db"] [unique_id "aSU3FyR2Y0j7SWS_VIYwdAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:26:29 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.203 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:26:24.577638 2025] [security2:error] [pid 1647141:tid 1647220] [client 65.111.14.203:54173] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.aafm.us"] [uri "/.svn/wc.db"] [unique_id "aSUT0NffCdpZ5cNrCNdtcQAAAU8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:11:11 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.203 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:11:03.521700 2025] [security2:error] [pid 18538:tid 18538] [client 65.111.14.203:26363] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.richardhellis-sculptor.com"] [uri "/.env"] [unique_id "aSUQN0ZzhuNZFdy359TSEwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:24:34 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.203 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:24:29.032312 2025] [security2:error] [pid 24855:tid 24855] [client 65.111.14.203:52091] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.gogitzit.com"] [uri "/.git/HEAD"] [unique_id "aSUFTXLuDegZlL8JwOHkdAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:04:24 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.203 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:04:06.270150 2025] [security2:error] [pid 15293:tid 15293] [client 65.111.14.203:26067] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.supaskills.com"] [uri "/.svn/wc.db"] [unique_id "aSTydjSsLsU6etUG3q6pqQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2025-11-19 08:40:42 (7 months ago)	WP probing for vulnerabilities	Hacking Exploited Host
Anonymous	2025-10-29 19:06:33 (7 months ago)	wordpress-trap	Web App Attack
🇨🇦 wil.com	2025-10-29 08:32:54 (7 months ago)	GlobalProtect login attempts with user wtuominen.	VPN IP Brute-Force
🇨🇦 wil.com	2025-10-29 05:21:16 (7 months ago)	GlobalProtect login attempts with user ckaufman.	VPN IP Brute-Force
🇩🇪 ps-center	2025-10-25 12:59:15 (8 months ago)	C1: Web Attack GET /wp-login.php	Web Spam Hacking Bad Web Bot Web App Attack

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 200.97.1.246

🇬🇧 193.176.29.2

🇳🇱 176.65.149.178

🇸🇮 176.65.134.3

🇰🇷 150.109.241.177

🇻🇳 103.172.236.241

🇧🇩 103.153.110.190

🇨🇦 67.71.55.209

🇺🇸 44.54.169.151

🇬🇧 35.203.210.228

🇨🇳 180.76.105.165

🇺🇸 66.132.172.98

🇸🇬 47.84.134.237

🇩🇪 46.224.207.253

🇺🇸 44.128.205.244

🇺🇸 40.77.179.214

🇮🇩 34.34.223.108

🇺🇸 20.169.107.26

🇺🇸 147.185.132.157

🇺🇸 135.237.125.174