JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.5.84

65.111.5.84 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.5.84

Whois 65.111.5.84

IP Abuse Reports for 65.111.5.84:

This IP address has been reported a total of 26 times from 13 distinct sources. 65.111.5.84 was first reported on June 27th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇮🇹 VHosting	2025-12-23 12:10:06 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇦🇺 MAGIC	2025-12-10 01:07:51 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-26 12:39:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.5.84 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.5.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 07:39:23.146355 2025] [security2:error] [pid 6134:tid 6134] [client 65.111.5.84:58991] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.artattackgraphics.com"] [uri "/.svn/wc.db"] [unique_id "aSb0-0Q6hvO0uA1sM-C4GQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 11:21:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.5.84 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.5.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:21:14.316915 2025] [security2:error] [pid 2786094:tid 2786094] [client 65.111.5.84:29335] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.ipostsocialmedia.com"] [uri "/.env"] [unique_id "aSbiqlIuw9h9x04m1lNNbgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 10:53:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.5.84 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.5.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:53:52.364953 2025] [security2:error] [pid 26902:tid 26902] [client 65.111.5.84:12141] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.virginiabeachlovebird.com"] [uri "/.svn/wc.db"] [unique_id "aSbcQIsvbgS2FIT6XxjZXAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:21:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.5.84 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.5.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:21:22.382737 2025] [security2:error] [pid 18300:tid 18300] [client 65.111.5.84:34499] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.yanchuk.org"] [uri "/.svn/wc.db"] [unique_id "aSacYgbk67B0RwYymGUpawAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:04:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.5.84 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.5.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:04:09.287181 2025] [security2:error] [pid 25049:tid 25049] [client 65.111.5.84:32883] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.southern-sin.cathrynn.com"] [uri "/.env"] [unique_id "aSaYWQ02RI5Vch2nhkk_VgAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:38:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.5.84 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.5.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:38:16.207443 2025] [security2:error] [pid 18318:tid 18318] [client 65.111.5.84:30221] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.usefulendeavors.org"] [uri "/.svn/wc.db"] [unique_id "aSZL-Hnzjgc0FVvcf1lZlgAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:41:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.5.84 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.5.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:41:50.766561 2025] [security2:error] [pid 19940:tid 19940] [client 65.111.5.84:15847] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.forkliftserviceatl.com"] [uri "/.env"] [unique_id "aSQaTlNLNwiGubuQjW4s8QAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:11:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.5.84 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.5.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:11:03.100269 2025] [security2:error] [pid 6309:tid 6309] [client 65.111.5.84:56033] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.osmanhc.com"] [uri "/.svn/wc.db"] [unique_id "aSP297Jx8Tsz-w_KEn0QugAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:53:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.5.84 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.5.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:53:32.643885 2025] [security2:error] [pid 24182:tid 24182] [client 65.111.5.84:10063] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.savingspools.com"] [uri "/.env"] [unique_id "aSPkzMPBI_hpC7_GuZNiQgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-14 07:22:58 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-11-13 04:21:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.5.84 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.5.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 12 23:21:01.861933 2025] [security2:error] [pid 10066:tid 10066] [client 65.111.5.84:46891] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jbaydeliveries.jbaycabs.com"] [uri "/config.php%7C/.env%7Csettings.py"] [unique_id "aRVcrWO6d6sveT8RvO7qDAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-02 16:06:21 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/02 06:57:24	Port Scan Brute-Force Exploited Host Web App Attack

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.56

🇧🇪 198.235.24.217

🇧🇪 198.235.24.209

🇳🇱 193.176.31.206

🇺🇸 172.185.24.228

🇺🇸 129.121.96.159

🇺🇸 104.131.33.210

🇵🇰 103.164.9.74

🇺🇸 23.254.178.52

🇰🇷 118.37.214.187

🇩🇪 62.133.60.87

🇺🇸 40.112.183.29

🇺🇦 37.221.149.95

🇺🇸 2a02:4780:b:743:0:2cc9:983b:1

🇬🇧 188.240.59.9

🇺🇸 147.185.132.52

🇻🇳 123.22.148.15

🇨🇳 121.4.103.225

🇷🇴 92.118.39.62

🇱🇹 45.227.254.170