JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.23.234

65.111.23.234 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.23.234

Whois 65.111.23.234

IP Abuse Reports for 65.111.23.234:

This IP address has been reported a total of 13 times from 5 distinct sources. 65.111.23.234 was first reported on July 3rd 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-02-23 14:17:41 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.23.234 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.23.234 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 09:17:38.580212 2026] [security2:error] [pid 8594:tid 8600] [client 65.111.23.234:61989] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "med-spa.aafm.us"] [uri "/.git/config"] [unique_id "aZxhgpOeMuX08u-hHqg-VQAAAEE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-23 12:00:06 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.23.234 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.23.234 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 06:59:57.844115 2026] [security2:error] [pid 21180:tid 21180] [client 65.111.23.234:29507] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hk.handyrehab.com"] [uri "/.git/config"] [unique_id "aZxBPRzWosDQ-BGu1dNh6gAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-01-15 08:41:07 (4 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 TPI-Abuse	2026-01-15 01:12:10 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.23.234 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.23.234 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 14 20:12:02.240214 2026] [security2:error] [pid 10328:tid 10328] [client 65.111.23.234:58147] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lyounglaw.com"] [uri "/.svn/wc.db"] [unique_id "aWg-4o1BWxw4XzC5Mu0GNAAAACc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-12 23:30:16 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.23.234 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.23.234 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 12 18:30:08.232962 2026] [security2:error] [pid 24648:tid 24648] [client 65.111.23.234:59831] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cadimpressions.com"] [uri "/.git/HEAD"] [unique_id "aWWEAGjtl0zVsEV5sfowFwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 voormedia	2025-11-10 02:34:17 (7 months ago)	Accessed trap at '/.env'	Web App Attack
🇺🇸 TPI-Abuse	2025-11-07 14:42:24 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.23.234 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.23.234 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 07 09:42:21.257235 2025] [security2:error] [pid 7810:tid 7810] [client 65.111.23.234:43125] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "twilighthackers.com"] [uri "/.env"] [unique_id "aQ4FTaGgRJvwyqvTa5jMuAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-11-20 13:30:12 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack
Anonymous	2024-11-18 11:31:26 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack
Anonymous	2024-07-18 00:30:04 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-07-16 09:03:00 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-07-12 07:20:54 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-07-03 00:03:03 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 204.111.131.36

🇺🇸 165.154.172.57

🇨🇳 112.103.74.244

🇳🇱 91.92.40.8

🇮🇳 65.0.95.78

🇸🇬 47.128.122.139

🇸🇬 43.172.196.158

🇧🇷 43.164.192.38

🇹🇼 36.225.162.170

🇧🇷 189.51.32.195

🇵🇰 116.71.136.125

🇳🇱 91.92.40.10

🇹🇼 58.115.14.2

🇸🇬 47.245.108.220

🇳🇱 45.148.10.240

🇸🇬 43.173.180.117

🇧🇷 177.8.135.196

🇮🇳 152.59.180.125

🇻🇳 103.234.161.168

🇮🇩 103.76.120.87