JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.14.3

65.111.14.3 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 34%: ?

34%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.14.3

Whois 65.111.14.3

IP Abuse Reports for 65.111.14.3:

This IP address has been reported a total of 32 times from 20 distinct sources. 65.111.14.3 was first reported on July 4th 2024, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tecnicorioja	2026-06-17 22:01:27 (7 hours ago)	wp-login attack [17/Jun/2026:07:38:19	Brute-Force Web App Attack
🇫🇷 pm33	2026-06-17 13:50:13 (15 hours ago)	Wordpress login attempts	Brute-Force
🇫🇷 ELYAZ	2026-06-16 13:28:10 (1 day ago)	(y4) Failed scan -byebye- from 65.111.14.3 (US/United States/-): (CF_ENABLE)	Hacking
🇬🇷 setupgr	2026-06-13 09:52:41 (4 days ago)	(mod_security) mod_security (id:900001) triggered by 65.111.14.3: 1 in the last 86400 secs; Ports: * ... show more (mod_security) mod_security (id:900001) triggered by 65.111.14.3: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sat Jun 13 12:52:39.773756 2026] [security2:error] [pid 705244:tid 705375] [client 65.111.14.3:9909] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: mail.setworldup.com"] [severity "CRITICAL"] [tag "security"] [hostname "mail.setworldup.com"] [uri "/wp-login.php"] [unique_id "ai0oZ8JfU53COhMBEC1--gAAAFI"], referer: https://mail.setworldup.com/wp-login.php show less	Port Scan
🇬🇷 setupgr	2026-06-12 15:39:09 (5 days ago)	(mod_security) mod_security (id:900001) triggered by 65.111.14.3: 1 in the last 86400 secs; Ports: * ... show more (mod_security) mod_security (id:900001) triggered by 65.111.14.3: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Fri Jun 12 18:39:07.356818 2026] [security2:error] [pid 351317:tid 351497] [client 65.111.14.3:55755] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: mail.pankoskal.gr"] [severity "CRITICAL"] [tag "security"] [hostname "mail.pankoskal.gr"] [uri "/wp-login.php"] [unique_id "aiwoG9MUiHpGKlaNgvQxVQAAAZU"], referer: https://mail.pankoskal.gr/wp-login.php show less	Port Scan
🇲🇽 octageeks.com	2026-06-11 04:22:58 (1 week ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇫🇷 ELYAZ	2026-06-09 18:08:21 (1 week ago)	(y4) Failed scan -byebye- from 65.111.14.3 (US/United States/-): (CF_ENABLE)	Hacking
🇳🇱 debestelapp	2026-05-01 16:30:03 (1 month ago)		Exploited Host
Anonymous	2026-03-18 17:06:36 (2 months ago)	Forum/form spam	Web Spam
Anonymous	2026-02-07 20:09:15 (4 months ago)	Forum/form spam	Web Spam
Anonymous	2026-01-19 12:59:26 (4 months ago)	Forum/form spam	Web Spam
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:38 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2025-12-11 09:38:26 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-27 22:22:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.3 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 17:22:23.406948 2025] [security2:error] [pid 15061:tid 15061] [client 65.111.14.3:34203] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ibeautyexchange.com"] [uri "/.env"] [unique_id "aSjPHy1aZcCmOMiVgcKd6AAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:02:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.3 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:02:37.269627 2025] [security2:error] [pid 1816810:tid 1816979] [client 65.111.14.3:16569] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.councilofforeignministers.com"] [uri "/.env"] [unique_id "aSVUjZGZcKt2mCqV6A_YpAAAAlc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2600:1f14:1285:4501:5973:25fc:5b18:84cf

🇧🇪 198.235.24.165

🇪🇨 186.43.219.97

🇭🇰 156.238.232.64

🇺🇸 143.198.173.25

🇫🇷 75.119.146.252

🇫🇷 62.210.142.21

🇧🇿 45.227.254.154

🇳🇱 45.142.193.70

🇺🇸 40.124.186.155

🇺🇸 20.168.121.167

🇭🇰 220.246.42.222

🇵🇾 181.94.227.32

🇩🇪 167.71.54.24

🇺🇸 162.216.150.171

🇺🇸 162.216.150.55

🇺🇸 156.238.224.43

🇮🇳 154.84.216.147

🇲🇴 125.31.2.160

🇮🇳 117.193.225.14