JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.27.51

65.111.27.51 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 14%: ?

14%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.27.51

Whois 65.111.27.51

IP Abuse Reports for 65.111.27.51:

This IP address has been reported a total of 18 times from 12 distinct sources. 65.111.27.51 was first reported on July 9th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Flo Flo	2026-06-07 17:08:08 (2 weeks ago)	65.111.27.51 - - - [07/Jun/2026:19:08:07 +0200] "flad.xyz" "GET /robots.txt HTTP/1.1" 444 0 "-" "Moz ... show more 65.111.27.51 - - - [07/Jun/2026:19:08:07 +0200] "flad.xyz" "GET /robots.txt HTTP/1.1" 444 0 "-" "Mozilla/5.0" 0.000 ... show less	Web App Attack
🇵🇱 Roper123	2026-06-05 10:38:09 (2 weeks ago)	Web app exploits	Web App Attack
🇨🇳 ThreatBook.io	2026-05-05 00:14:15 (1 month ago)	ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/65.111.27.51 2026-05-04 13: ... show more ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/65.111.27.51 2026-05-04 13:06:33 / 2026-05-04 12:32:12 / 2026-05-04 12:29:30 / show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-24 01:58:14 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.27.51 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.27.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 20:58:08.386167 2026] [security2:error] [pid 27911:tid 27923] [client 65.111.27.51:58097] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "alessandromachi.credit-card-cap.com"] [uri "/.git/config"] [unique_id "aZ0FsOM_FbEIgWLEiGHBIQAAAQg"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-01-16 14:30:03 (5 months ago)	wordpress-trap	Web App Attack
🇨🇭 backslash	2026-01-05 23:00:24 (5 months ago)	block ruleset 486D2EE5E731CC049D1E480D68D04DFFE28AADF1	Bad Web Bot
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:17 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-24 07:32:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.27.51 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.27.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:32:36.718741 2025] [security2:error] [pid 27641:tid 27641] [client 65.111.27.51:44683] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.5995.us"] [uri "/.env"] [unique_id "aSQKFB8er03Wy59zXWlPZAAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:29:36 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.27.51 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.27.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:29:32.653796 2025] [security2:error] [pid 27937:tid 27937] [client 65.111.27.51:43317] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.alosi.us"] [uri "/.svn/wc.db"] [unique_id "aSP7TOLJlIVEVwQKA-YtgAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:29:04 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.27.51 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.27.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:28:57.870909 2025] [security2:error] [pid 26590:tid 26590] [client 65.111.27.51:37187] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.therennas.com"] [uri "/.svn/wc.db"] [unique_id "aSPfCXPsIU35z6_kQym1KQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-19 16:38:11 (8 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇮🇹 Rosh	2025-10-17 01:47:50 (8 months ago)	[10/17/25 03:47:50] SSH: illegal login attempts	Brute-Force SSH
🇩🇪 LRob.fr	2025-10-08 09:33:57 (8 months ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇺🇸 [email protected]	2024-12-16 06:00:00 (1 year ago)	Invalid username or password - 1 times	Brute-Force
🇺🇸 [email protected]	2024-12-16 00:00:00 (1 year ago)	2024 @ 06:57:21.250	Brute-Force

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 183.96.62.29

🇫🇮 178.20.210.208

🇷🇺 95.47.246.223

🇩🇪 69.5.169.93

🇲🇾 47.250.160.119

🇺🇸 20.168.120.44

🇨🇳 175.7.224.67

🇨🇳 123.249.126.59

🇺🇸 107.167.34.125

🇻🇳 103.124.94.144

🇩🇪 94.26.106.90

🇨🇦 51.79.67.63

🇺🇸 44.250.151.206

🇳🇱 34.32.148.179

🇭🇰 210.6.24.6

🇧🇷 187.85.145.206

🇵🇹 181.214.6.76

🇳🇱 146.103.1.15

🇺🇸 107.173.36.187

🇺🇸 96.69.66.101