JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.22.11

65.111.22.11 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 30%: ?

30%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.22.11

Whois 65.111.22.11

IP Abuse Reports for 65.111.22.11:

This IP address has been reported a total of 43 times from 17 distinct sources. 65.111.22.11 was first reported on June 27th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇴 ingentar	2026-05-29 17:51:00 (1 week ago)	2026-05-29T12:49:48.621878-05:00 web wordpress(ingentar.com)[699280]: Blocked authentication attempt ... show more 2026-05-29T12:49:48.621878-05:00 web wordpress(ingentar.com)[699280]: Blocked authentication attempt for root from 65.111.22.11 ... show less	Web App Attack Brute-Force
🇦🇺 HJ5Ss4Ju	2026-05-28 12:10:30 (1 week ago)	Blocked by Wordfence (SID 6)	Web App Attack
Anonymous	2026-05-26 08:48:33 (1 week ago)	[server.tmg.gr] httpd-login-spray-site: sites=add2021.gr; logs=/var/log/httpd/domains/add2021.gr.log ... show more [server.tmg.gr] httpd-login-spray-site: sites=add2021.gr; logs=/var/log/httpd/domains/add2021.gr.log; samples=site_wide=true \| distinct_ips=64 \| /wp-login.php show less	Hacking Web App Attack
🇲🇽 octageeks.com	2026-05-24 04:09:52 (1 week ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇺🇸 lostswordfish.com	2026-05-23 09:42:04 (2 weeks ago)	Wordfence waf block on secure	Web App Attack
🇩🇪 MusicLibrary	2026-03-18 20:31:06 (2 months ago)	Attempted access to non existent wordpress urls	Bad Web Bot
🇹🇷 rtbh.com.tr	2026-03-04 20:11:53 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 mnsf	2026-02-13 09:05:43 (3 months ago)	Scanning/Probing (23)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 09:00:07 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.22.11 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.22.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:59:56.713004 2026] [security2:error] [pid 2995:tid 2995] [client 65.111.22.11:55071] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lamineparke.com"] [uri "/wp/.git/config"] [unique_id "aY7oDB5say-ZWx_w6ZdVSgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 05:52:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.22.11 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.22.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 00:52:06.986923 2026] [security2:error] [pid 31360:tid 31360] [client 65.111.22.11:18309] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "konahawaiirealty.com"] [uri "/.env"] [unique_id "aY68BqDzcK2eE6nz51VvKgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:16:09 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.22.11 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.22.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:16:02.836862 2026] [security2:error] [pid 8831:tid 8831] [client 65.111.22.11:48671] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kinnerakhareedu.com"] [uri "/.env.staging"] [unique_id "aY6lgk5HYO42Y81YnYEJMwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:19:57 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.22.11 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.22.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:19:52.692102 2026] [security2:error] [pid 17445:tid 17456] [client 65.111.22.11:62009] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "khalessilaw.com"] [uri "/test/.git/config"] [unique_id "aY6YWNZkFVS7ynJ4gPRavAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 02:36:18 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.22.11 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.22.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:36:14.052515 2026] [security2:error] [pid 28934:tid 28934] [client 65.111.22.11:18243] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kendylcelina.com"] [uri "/wp/.git/config"] [unique_id "aY6OHmP5GBiBQsgvmBCqEgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:38:21 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.22.11 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.22.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:38:13.932465 2026] [security2:error] [pid 1413:tid 1413] [client 65.111.22.11:53533] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kathleenhazlett.com"] [uri "/app/.git/config"] [unique_id "aY6AhRoseA-hnRxSXl2rXgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-02-12 22:35:40 (3 months ago)	Try to access /.git/config	Web App Attack

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.93.103.2

🇮🇳 103.91.246.73

🇳🇱 85.121.127.144

🇪🇬 62.193.91.121

🇬🇧 35.203.211.128

🇺🇸 165.154.202.116

🇺🇸 139.144.235.132

🇷🇺 85.95.166.40

🇳🇱 81.19.216.107

🇨🇳 218.81.180.21

🇧🇷 177.61.137.26

🇹🇭 171.100.121.127

🇧🇷 164.152.250.192

🇩🇪 130.12.181.97

🇹🇼 111.70.33.165

🇨🇳 111.26.69.160

🇫🇷 85.217.140.53

🇸🇬 43.153.204.181

🇨🇳 223.199.169.67

🇦🇷 200.70.43.234