JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.21.44

65.111.21.44 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.21.44

Whois 65.111.21.44

IP Abuse Reports for 65.111.21.44:

This IP address has been reported a total of 15 times from 10 distinct sources. 65.111.21.44 was first reported on June 27th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tilellit.pro	2026-02-24 02:03:31 (3 months ago)	Fail2Ban banned 65.111.21.44 for security violations in jail wp-armour. Log: 2026/02/24 02:03:30 [er ... show more Fail2Ban banned 65.111.21.44 for security violations in jail wp-armour. Log: 2026/02/24 02:03:30 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 65.111.21.44 \| Target: wplogin" , client: 65.111.21.44, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://espsformacion.com/wp-login.php" ... show less	Web Spam
🇵🇱 sefinek.net	2025-12-30 21:08:45 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from CA. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from CA. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 YaBrowser/22.7.0 Yowser/2.5 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-29 05:47:43 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.21.44 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.21.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:47:35.361267 2025] [security2:error] [pid 25428:tid 25428] [client 65.111.21.44:26537] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cayman-boat-registration.com"] [uri "/.svn/wc.db"] [unique_id "aVIV96PQQXhH7gDZ6Tvl5AAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:06:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.21.44 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.21.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:06:09.273180 2025] [security2:error] [pid 12087:tid 12087] [client 65.111.21.44:56325] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.genesis7.co.agenesis7.com"] [uri "/.env"] [unique_id "aSVVYUv6IB5KZtwep_RmyAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:27:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.21.44 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.21.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:27:53.824727 2025] [security2:error] [pid 24341:tid 24341] [client 65.111.21.44:25511] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "estellenussbaum.com"] [uri "/.svn/wc.db"] [unique_id "aSVMadSKEh7Y2ZiAstMutQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-02 19:49:34 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/02 07:17:07	Port Scan Brute-Force Exploited Host Web App Attack
🇮🇳 Shaik Sai Meera	2025-10-29 06:43:35 (7 months ago)	IM360 WAF: Failed WordPress login	Brute-Force
Anonymous	2025-01-14 10:22:09 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.01.14 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.01.14 is noted in report timestamp show less	Hacking Brute-Force
🇨🇦 wil.com	2025-01-01 05:54:09 (1 year ago)	GlobalProtect login attempts with user user3.	VPN IP Brute-Force
Anonymous	2024-10-13 05:39:10 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack
Anonymous	2024-10-12 03:27:42 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack
🇬🇧 SilverZippo	2024-09-26 07:21:59 (1 year ago)	Web App Attack	Web App Attack
Anonymous	2024-07-11 09:32:46 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-07-07 05:33:35 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-06-27 21:35:29 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 106.75.144.169

🇮🇳 103.174.102.204

🇷🇺 94.180.250.11

🇬🇧 94.156.250.197

🇳🇱 45.142.193.12

🇸🇬 43.156.136.152

🇩🇪 8.209.68.55

🇧🇬 79.124.49.174

🇳🇱 45.148.10.141

🇭🇰 144.48.241.162

🇷🇴 93.114.194.159

🇫🇷 91.231.89.179

🇺🇸 64.62.156.52

🇳🇱 45.153.34.114

🇺🇸 20.64.106.71

🇯🇵 8.216.8.195

🇺🇸 216.73.163.90

🇷🇺 213.234.5.66

🇰🇷 211.253.31.30

🇺🇸 172.253.86.113