JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.2.34

65.111.2.34 was found in our database!

This IP was reported 38 times. Confidence of Abuse is 11%: ?

11%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.2.34

Whois 65.111.2.34

IP Abuse Reports for 65.111.2.34:

This IP address has been reported a total of 38 times from 18 distinct sources. 65.111.2.34 was first reported on June 28th 2024, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 iNetWorker	2026-06-06 10:48:33 (3 days ago)	trolling for resource vulnerabilities	Web App Attack
Anonymous	2026-04-30 02:23:28 (1 month ago)	Forum/form spam	Web Spam
Anonymous	2026-02-27 22:16:37 (3 months ago)	Forum/form spam	Web Spam
🇩🇪 webanyone	2026-02-14 16:15:27 (3 months ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇳🇿 Antinson	2026-02-14 16:09:17 (3 months ago)	Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)	Bad Web Bot
🇺🇸 TPI-Abuse	2026-02-13 13:47:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.2.34 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.2.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:47:08.710405 2026] [security2:error] [pid 18805:tid 18805] [client 65.111.2.34:10993] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "leadinglogan.com"] [uri "/wp/.git/config"] [unique_id "aY8rXCyYmY1QauVuIAeNNgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 05:14:38 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.2.34 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.2.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 00:14:29.772383 2026] [security2:error] [pid 14975:tid 14975] [client 65.111.2.34:60465] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "matrixpercussiontrio.com"] [uri "/frontend/.env"] [unique_id "aY6zNVSsa8IdH4xP-9gIxQAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 2000cn.com.au	2026-02-13 04:51:24 (3 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:50:24 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.2.34 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.2.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:50:20.139847 2026] [security2:error] [pid 30502:tid 30502] [client 65.111.2.34:18169] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "market1st.com"] [uri "/.env"] [unique_id "aY6ffC0Iw2W9AqeQyWbj8gAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:21:50 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.2.34 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.2.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:21:44.793160 2026] [security2:error] [pid 15745:tid 15745] [client 65.111.2.34:56175] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marcosbarraza.net"] [uri "/new/.git/config"] [unique_id "aY6YyBUn9FO5fR06nNit-AAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:25:28 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.2.34 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.2.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:25:23.242064 2026] [security2:error] [pid 5050:tid 5050] [client 65.111.2.34:13273] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "magnawebinc.com"] [uri "/v2/.git/config"] [unique_id "aY59g-gHXbWcK9OfzvUQmQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-12 23:01:32 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-12	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-02-12 19:38:27 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.2.34 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.2.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 14:38:19.315978 2026] [security2:error] [pid 1872:tid 1872] [client 65.111.2.34:24031] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "honnwong.com"] [uri "/.git/config"] [unique_id "aY4sK47fSaYvRbZvEUaw6gAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 16:53:52 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.2.34 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.2.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 11:53:48.461676 2026] [security2:error] [pid 30313:tid 30313] [client 65.111.2.34:21769] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "coyotebytes.com"] [uri "/.env"] [unique_id "aY4FnPISvR60ihnfaX_QBwAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-10 16:53:20 (3 months ago)	Forum/form spam	Web Spam

Showing 1 to 15 of 38 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.224.63.129

🇺🇦 46.149.182.16

🇬🇧 2a06:4880:c000::e5

🇵🇱 185.241.208.74

🇺🇸 185.61.219.127

🇩🇪 167.94.146.54

🇬🇧 165.154.129.220

🇺🇸 147.185.132.45

🇨🇳 123.145.16.157

🇨🇳 118.196.64.66

🇨🇳 106.12.29.184

🇮🇳 103.123.226.138

🇸🇬 47.84.191.52

🇺🇸 45.79.82.114

🇺🇸 45.8.19.167

🇮🇩 2404:c0:c203:84a0:69cd:2e45:7dd6:6571

🇨🇴 179.1.131.6

🇫🇮 147.185.133.204

🇳🇱 45.148.10.151

🇺🇸 198.20.252.64