JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.6.211

65.111.6.211 was found in our database!

This IP was reported 41 times. Confidence of Abuse is 8%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.6.211

Whois 65.111.6.211

IP Abuse Reports for 65.111.6.211:

This IP address has been reported a total of 41 times from 20 distinct sources. 65.111.6.211 was first reported on June 27th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-05-13 23:44:37 (3 weeks ago)	RDWeb scan	Web App Attack
Anonymous	2026-04-26 15:13:05 (1 month ago)	Forum/form spam	Web Spam
Anonymous	2026-03-23 06:19:29 (2 months ago)	Forum/form spam	Web Spam
🇹🇷 rtbh.com.tr	2026-03-04 20:11:53 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
Anonymous	2026-02-20 01:05:40 (3 months ago)	Forum/form spam	Web Spam
🇹🇷 rtbh.com.tr	2026-02-15 20:11:35 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇬🇧 myintarweb	2026-02-15 12:25:16 (3 months ago)	65.111.6.211 - - [15/Feb/2026:12:25:15 +0000] 80 "GET /.env.local HTTP/1.1" 301 1676 "-" "Mozilla/5. ... show more 65.111.6.211 - - [15/Feb/2026:12:25:15 +0000] 80 "GET /.env.local HTTP/1.1" 301 1676 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" ... show less	Hacking Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-15 12:05:29 (3 months ago)	Scanning/Probing (25)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:57:49 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.211 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.211 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:57:43.830598 2026] [security2:error] [pid 10421:tid 10421] [client 65.111.6.211:34487] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "palmatrader.com"] [uri "/frontend/.env"] [unique_id "aZG0twD3fVB6dV43C9y8GwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:29:39 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.211 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.211 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:29:35.343860 2026] [security2:error] [pid 18978:tid 18978] [client 65.111.6.211:24841] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ozarkshousing.com"] [uri "/.env"] [unique_id "aZGuH6kTKIE-bCyn4ANQxgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:08:40 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.211 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.211 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:08:36.481698 2026] [security2:error] [pid 26893:tid 26893] [client 65.111.6.211:24673] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oualierealty.com"] [uri "/config/.env"] [unique_id "aZGpNOIrgV6YfwavBdcJZAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:42:44 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.211 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.211 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:42:37.332427 2026] [security2:error] [pid 22106:tid 22182] [client 65.111.6.211:12387] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oldpl8s.com"] [uri "/.env.staging"] [unique_id "aZFczchSZQInS4HdHIcM2gAAAY8"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Mario Silber	2026-02-15 04:42:17 (3 months ago)	(mod_security) mod_security triggered on hostname [redacted] 65.111.6.211 (US/United States/-)	SQL Injection
🇺🇸 TPI-Abuse	2026-02-15 04:13:00 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.211 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.211 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:12:52.090907 2026] [security2:error] [pid 586:tid 586] [client 65.111.6.211:57953] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "npeme.com"] [uri "/backup/.git/config"] [unique_id "aZFHxLkTbG-K00e9oVm0MwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ghostwarriors	2026-02-15 03:50:50 (3 months ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 41 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 221.233.69.217

🇸🇪 176.10.197.168

🇵🇰 153.117.9.143

🇺🇸 107.167.122.22

🇮🇳 106.221.253.14

🇮🇳 43.251.172.3

🇧🇷 186.238.210.226

🇳🇱 185.242.226.97

🇭🇰 185.227.153.56

🇺🇸 184.105.139.94

🇨🇳 122.224.240.99

🇹🇭 110.49.146.23

🇳🇱 45.148.10.151

🇯🇵 43.165.170.19

🇺🇸 20.64.105.238

🇺🇸 195.214.120.171

🇧🇷 191.54.80.93

🇳🇱 176.65.139.210

🇺🇿 144.124.192.129

🇨🇳 123.14.82.243