JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.6.137

65.111.6.137 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 8%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.6.137

Whois 65.111.6.137

IP Abuse Reports for 65.111.6.137:

This IP address has been reported a total of 29 times from 12 distinct sources. 65.111.6.137 was first reported on June 27th 2024, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-05-28 23:11:31 (4 weeks ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 02-11.65.111.6.137.web-spammer ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 02-11.65.111.6.137.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-05-24 16:10:25 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 19-10.65.111.6.137.web-spammer ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 19-10.65.111.6.137.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇪🇸 sshtmp	2026-05-20 19:02:34 (1 month ago)	[AbuseIPDB auto-report] Attack: WordPress wp-login brute-force Hits: 1 \| First: 2026-05-20T21:02:34+ ... show more [AbuseIPDB auto-report] Attack: WordPress wp-login brute-force Hits: 1 \| First: 2026-05-20T21:02:34+02:00 \| Last: 2026-05-20T21:02:34+02:00 Samples: GET /wp-login.php [302] show less	Brute-Force Web App Attack
🇺🇸 lavnet.net	2026-02-13 13:12:22 (4 months ago)	65.111.6.137 - - [13/Feb/2026:13:12:18 +0000] "GET /config/.env HTTP/1.1" 404 2110 "-" "Mozilla/5.0 ... show more 65.111.6.137 - - [13/Feb/2026:13:12:18 +0000] "GET /config/.env HTTP/1.1" 404 2110 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 65.111.6.137 - - [13/Feb/2026:13:12:21 +0000] "GET /.git/config HTTP/1.1" 404 2083 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 65.111.6.137 - - [13/Feb/2026:13:12:21 +0000] "GET /dev/.git/config HTTP/1.1" 404 2083 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 65.111.6.137 - - [13/Feb/2026:13:12:21 +0000] "GET /admin/.git/config HTTP/1.1" 404 2083 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 65.111.6.137 - - [13/Feb/2026:13:12:21 +0000] "GET /v2/.git/config HTTP/1.1" 404 2083 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 65.111.6.137 - - [13/Feb/2026:13:12:21 +0000] "GET /wp/.git/config HTTP/1.1" 404 2083 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" ... show less	Brute-Force
🇺🇸 TPI-Abuse	2026-02-13 13:06:24 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:06:19.197733 2026] [security2:error] [pid 30720:tid 30757] [client 65.111.6.137:46143] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lauricella.us"] [uri "/backend/.env"] [unique_id "aY8hy3LiWKzp-rMQ30Lw-wAAAMU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 08:47:59 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:47:55.277729 2026] [security2:error] [pid 1007:tid 1007] [client 65.111.6.137:52923] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "messengersforchrist.com"] [uri "/wp/.git/config"] [unique_id "aY7lOw42wKrncNdkDY1rgAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 06:34:47 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:34:41.837748 2026] [security2:error] [pid 3680:tid 3704] [client 65.111.6.137:51745] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "meanmouse.com"] [uri "/config/.env"] [unique_id "aY7GATAiE7jPsJJDVnOoYwAAANY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 05:10:17 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 00:10:09.843052 2026] [security2:error] [pid 1348447:tid 1348447] [client 65.111.6.137:54639] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mathieu.bouville.name"] [uri "/new/.git/config"] [unique_id "aY6yMW2dQTcPYpGiKxFd1QAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:26:42 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:26:37.622344 2026] [security2:error] [pid 2595242:tid 2595242] [client 65.111.6.137:12035] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "martinsgenser.com"] [uri "/api/.env"] [unique_id "aY6n_Th61ei1uPm0vLlwnAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:46:48 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:46:40.158552 2026] [security2:error] [pid 21956:tid 21956] [client 65.111.6.137:38921] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marjorierosenberg.com"] [uri "/api/.env"] [unique_id "aY6eoOJVHR-gny964W7SmQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 02:24:00 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:23:55.037082 2026] [security2:error] [pid 2188:tid 2188] [client 65.111.6.137:34107] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "malta-boat-registration.com"] [uri "/app/.git/config"] [unique_id "aY6LOzI5oMRNrLe5HfTV3gAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:07:22 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:07:17.383688 2026] [security2:error] [pid 21312:tid 21312] [client 65.111.6.137:54521] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "madronabluff.com"] [uri "/api/.env"] [unique_id "aY55RZbqKxOfNUAHxmZN1gAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 09:31:41 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 04:31:33.634506 2026] [security2:error] [pid 13215:tid 13215] [client 65.111.6.137:60505] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gdpeters.com"] [uri "/.env"] [unique_id "aY2d9Rx-0BoA-7eYb2G-pgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 23:09:13 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 18:09:08.032325 2026] [security2:error] [pid 29547:tid 29547] [client 65.111.6.137:15429] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garyandthegroove.com"] [uri "/api/.env"] [unique_id "aY0MFPH7emXR0G3IdMMyzwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 22:16:44 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 17:16:40.714893 2026] [security2:error] [pid 10412:tid 10412] [client 65.111.6.137:22659] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garrettkirkland.com"] [uri "/site/.git/config"] [unique_id "aYz_yMPtNTqpcaAzn6tmrAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 167.94.146.38

🇯🇵 161.33.210.117

🇺🇸 141.11.88.4

🇳🇱 91.92.40.24

🇧🇷 45.164.251.106

🇺🇸 44.87.98.134

🇵🇾 200.123.36.21

🇺🇸 172.172.186.3

🇩🇪 167.94.145.26

🇱🇹 91.224.92.19

🇺🇸 44.48.134.139

🇫🇷 172.71.134.184

🇨🇳 115.215.10.211

🇷🇴 92.118.39.77

🇧🇬 79.124.58.22

🇦🇺 74.91.200.217

🇺🇸 51.81.85.130

🇺🇸 44.212.119.119

🇵🇱 185.186.153.68

🇯🇵 172.104.115.186