JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.27.212

65.111.27.212 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 20%: ?

20%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.27.212

Whois 65.111.27.212

IP Abuse Reports for 65.111.27.212:

This IP address has been reported a total of 26 times from 13 distinct sources. 65.111.27.212 was first reported on July 19th 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-20 04:05:17 (2 days ago)	Web App Attack	Web App Attack
🇦🇺 MAGIC	2026-06-15 00:05:56 (1 week ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇫🇷 Sklurk	2026-06-11 10:46:20 (1 week ago)	Web App Attack	Web App Attack
Anonymous	2026-05-29 03:52:37 (3 weeks ago)	PSCSERV WPSCAN 65.111.27.212	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 08:48:48 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.27.212 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.27.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:48:44.578091 2026] [security2:error] [pid 28512:tid 28512] [client 65.111.27.212:23591] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lakesideshelving.com"] [uri "/.env.local"] [unique_id "aY7lbL_VJV5eSMi88PYfMwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:12:30 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.27.212 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.27.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:12:25.197600 2026] [security2:error] [pid 30023:tid 30023] [client 65.111.27.212:59843] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kuddlkat.com"] [uri "/app/.git/config"] [unique_id "aY7O2aeTt-BcOIRTdbfPcQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:23:53 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.27.212 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.27.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:23:48.044937 2026] [security2:error] [pid 3539:tid 3539] [client 65.111.27.212:19435] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kircali.net"] [uri "/api/.git/config"] [unique_id "aY6nVIQefi16nkbf8-FsBQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 02:56:38 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.27.212 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.27.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:56:34.163129 2026] [security2:error] [pid 11199:tid 11352] [client 65.111.27.212:30493] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kettlehill.com"] [uri "/api/.env"] [unique_id "aY6S4mNevODDHiaXVgFj2gAAAsM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:15:02 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.27.212 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.27.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:14:54.458591 2026] [security2:error] [pid 30515:tid 30515] [client 65.111.27.212:62873] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "karieva.com"] [uri "/.env.staging"] [unique_id "aY57Dl1oWT5rxCfn5O7PvAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 18:27:39 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.27.212 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.27.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 13:27:34.239156 2026] [security2:error] [pid 1222101:tid 1222134] [client 65.111.27.212:14805] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "emjayentertainmentdj.com"] [uri "/.git/config"] [unique_id "aY4blp0IlbWkChRIkdSU5wAAAJI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-12 13:16:07 (4 months ago)	"GET http://bstechnologieslub.com/backup/.git/config HTTP/1.1"	Hacking Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-11 22:59:54 (4 months ago)	Auto-ban: >3000 req/min op 2026-02-11	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-02-10 23:28:17 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.27.212 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.27.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 18:28:10.971659 2026] [security2:error] [pid 2779374:tid 2779374] [client 65.111.27.212:20329] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "coolingfanmanufacturers.com.cn"] [uri "/v2/.git/config"] [unique_id "aYu_Ck0Gfg8ekCijszxtUAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 21:48:50 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.27.212 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.27.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 16:48:42.571583 2026] [security2:error] [pid 16408:tid 16408] [client 65.111.27.212:42783] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "conversationtalentnetwork.com"] [uri "/wp/.git/config"] [unique_id "aYunuo3o7T_CkwC972d56wAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 02:53:35 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.27.212 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.27.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 21:53:27.528003 2026] [security2:error] [pid 23382:tid 23382] [client 65.111.27.212:16335] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "geofreightint.com"] [uri "/site/.git/config"] [unique_id "aYqdp528inAZ6u3VoD13WwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.103

🇭🇰 199.45.154.133

🇩🇪 130.12.180.174

🇭🇰 118.193.32.119

🇰🇪 102.205.85.11

🇮🇹 79.61.137.68

🇺🇸 50.123.92.130

🇧🇷 45.190.251.143

🇮🇷 2.183.128.9

🇩🇪 213.209.159.228

🇭🇰 199.45.155.105

🇹🇼 198.235.24.57

🇺🇸 162.216.150.166

🇺🇸 162.216.150.39

🇳🇿 130.216.116.252

🇲🇦 105.154.163.245

🇺🇸 65.49.1.161

🇺🇸 20.65.193.54

🇺🇸 13.221.76.26

🇳🇱 5.61.209.43