JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.30.145

65.111.30.145 was found in our database!

This IP was reported 31 times. Confidence of Abuse is 14%: ?

14%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.30.145

Whois 65.111.30.145

IP Abuse Reports for 65.111.30.145:

This IP address has been reported a total of 31 times from 10 distinct sources. 65.111.30.145 was first reported on July 11th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 cmbplf	2026-05-23 08:25:10 (2 weeks ago)	1.848 requests with url.path //xmlrpc.php 1.537 POST requests with url.path */wp-login.php	Brute-Force Bad Web Bot
🇫🇷 masterguru	2026-05-06 17:04:26 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 65.111.30.145 (FR/France/-): 1 in the last 360 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 65.111.30.145 (FR/France/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇫🇷 masterguru	2026-05-02 00:51:57 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 65.111.30.145 (FR/France/-): 1 in the last 360 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 65.111.30.145 (FR/France/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇫🇷 masterguru	2026-04-26 17:45:09 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 65.111.30.145 (FR/France/-): 1 in the last 360 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 65.111.30.145 (FR/France/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇱🇻 garmtech.com	2026-04-19 12:36:23 (1 month ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇫🇷 masterguru	2026-04-18 14:46:56 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 65.111.30.145 (FR/France/-): 1 in the last 360 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 65.111.30.145 (FR/France/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇫🇷 masterguru	2026-04-14 01:26:09 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 65.111.30.145 (FR/France/-): 1 in the last 360 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 65.111.30.145 (FR/France/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇫🇷 masterguru	2026-04-13 11:18:47 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 65.111.30.145 (FR/France/-): 1 in the last 360 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 65.111.30.145 (FR/France/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇺🇸 TPI-Abuse	2025-12-09 10:10:00 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.30.145 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.30.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 05:09:52.605531 2025] [security2:error] [pid 19666:tid 19666] [client 65.111.30.145:33807] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gabver.com"] [uri "/.git/HEAD"] [unique_id "aTf1cD9OPZN_mcZIOfFOJAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 00:36:25 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.30.145 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.30.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 19:36:16.229758 2025] [security2:error] [pid 1587:tid 1587] [client 65.111.30.145:45063] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aktkaro.com"] [uri "/.git/HEAD"] [unique_id "aTdvAKRxkKPbiOivh91CawAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2025-12-08 18:31:52 (6 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 TPI-Abuse	2025-12-08 04:31:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.30.145 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.30.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 23:31:10.667526 2025] [security2:error] [pid 4930:tid 4930] [client 65.111.30.145:16121] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "title27.com"] [uri "/.git/HEAD"] [unique_id "aTZUjmVbZZUywf7pUm63LwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 13:42:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.30.145 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.30.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 08:42:44.416189 2025] [security2:error] [pid 22477:tid 22477] [client 65.111.30.145:22361] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jamessummers.org"] [uri "/.svn/wc.db"] [unique_id "aTWEVLrxXlf13E2fUngJZQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2025-12-06 23:02:29 (6 months ago)	Auto-ban: >3000 req/min op 2025-12-06	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2025-12-05 05:53:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.30.145 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.30.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 00:53:52.783482 2025] [security2:error] [pid 14406:tid 14424] [client 65.111.30.145:30821] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "moogoob.com"] [uri "/.env"] [unique_id "aTJzcDdNAJ7RuSitOYHLDQAAAEw"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 31 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇬 193.24.211.107

🇺🇦 178.158.192.25

🇫🇷 91.196.152.188

🇺🇸 38.77.211.98

🇨🇳 27.215.121.47

🇩🇪 217.154.208.69

🇧🇷 179.181.133.153

🇨🇳 123.158.51.99

🇮🇳 103.215.242.35

🇭🇰 101.32.1.25

🇺🇸 75.4.108.102

🇳🇱 45.148.10.151

🇺🇸 45.131.195.63

🇨🇳 45.117.10.134

🇷🇸 2400:cb00:120:1000:48fb:58c0:7387:8822

🇹🇭 202.29.236.76

🇮🇳 182.95.223.50

🇨🇴 181.204.199.46

🇺🇸 172.185.24.228

🇺🇸 142.251.37.98