JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.14.54

65.111.14.54 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 10%: ?

10%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.14.54

Whois 65.111.14.54

IP Abuse Reports for 65.111.14.54:

This IP address has been reported a total of 29 times from 15 distinct sources. 65.111.14.54 was first reported on July 9th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-05-17 04:56:02 (2 weeks ago)	Brute force	Brute-Force
🇫🇮 inlink.ltd	2026-05-15 12:07:18 (3 weeks ago)	Known malicious PHP file or CMS probe	Web App Attack
🇪🇸 librebit	2026-05-13 22:48:19 (3 weeks ago)	RDWeb scan	Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-24 07:23:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.54 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:23:39.017335 2025] [security2:error] [pid 3848:tid 3848] [client 65.111.14.54:29065] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.cajunpicasso.com"] [uri "/.env"] [unique_id "aSQH-1rZT0AV54-_dyjOPQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:32:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.54 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:31:04.782697 2025] [security2:error] [pid 8207:tid 8207] [client 65.111.14.54:54589] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.vplow.com"] [uri "/.env"] [unique_id "aSPfiOEOCBVZOCzPz6wz1AAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-14 01:34:57 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
Anonymous	2025-11-02 13:15:55 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/02 07:14:49	Port Scan Brute-Force Exploited Host Web App Attack
Anonymous	2025-10-30 19:48:07 (7 months ago)	wordpress-trap	Web App Attack
Anonymous	2025-10-30 04:43:14 (7 months ago)	wordpress-trap	Web App Attack
Anonymous	2025-10-28 08:02:54 (7 months ago)	wordpress-trap	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-10-28 01:12:13 (7 months ago)	WP Admin Scan Activities	Web App Attack
Anonymous	2025-10-20 14:36:12 (7 months ago)	wordpress-trap	Web App Attack
Anonymous	2025-10-18 06:01:57 (7 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇨🇦 wil.com	2025-10-14 14:42:19 (7 months ago)	GlobalProtect login attempts with user crosa.	VPN IP Brute-Force

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 172.98.168.253

🇺🇸 71.6.199.87

🇺🇸 47.253.205.161

🇨🇳 203.56.198.45

🇧🇪 198.235.24.255

🇬🇧 193.176.29.27

🇬🇧 193.176.29.22

🇨🇳 182.42.93.139

🇩🇪 167.94.146.48

🇫🇮 147.185.133.192

🇫🇮 147.185.133.165

🇨🇳 117.146.110.78

🇷🇴 80.94.92.182

🇺🇸 47.42.131.93

🇳🇱 45.148.10.183

🇬🇧 35.203.210.75

🇬🇧 31.14.254.115

🇨🇳 27.153.157.138

🇩🇪 213.209.159.236

🇩🇪 213.209.159.231