JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.6.36

65.111.6.36 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.6.36

Whois 65.111.6.36

IP Abuse Reports for 65.111.6.36:

This IP address has been reported a total of 28 times from 14 distinct sources. 65.111.6.36 was first reported on July 3rd 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-01 12:26:48 (1 month ago)	Forum/form spam	Web Spam
Anonymous	2026-03-08 07:47:27 (2 months ago)	Forum/form spam	Web Spam
🇫🇮 Shaik Sai Meera	2026-03-07 07:40:07 (3 months ago)	IM360 WAF: Request indicates a Headless browser	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 00:47:43 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.36 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 19:47:37.324914 2026] [security2:error] [pid 18336:tid 18336] [client 65.111.6.36:52265] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "paulaperez.com"] [uri "/.env.production"] [unique_id "aZUMKUiKPl4sKqLsf2T91QAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 20:58:46 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.36 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:58:37.893212 2026] [security2:error] [pid 17468:tid 17468] [client 65.111.6.36:54403] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gandmaquatics.com"] [uri "/test/.git/config"] [unique_id "aYpKfeDAsS_j9F7S0skoqAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 20:33:52 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.36 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:33:44.341873 2026] [security2:error] [pid 24049:tid 24049] [client 65.111.6.36:34201] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gamedayincentives.com"] [uri "/api/.env"] [unique_id "aYpEqDRHz5JJnf77QJfHHAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 relianoid.com	2026-02-09 19:10:10 (3 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇺🇸 TPI-Abuse	2026-02-09 12:41:05 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.36 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 07:41:01.336988 2026] [security2:error] [pid 9480:tid 9480] [client 65.111.6.36:34963] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gamepart.com"] [uri "/.git/config"] [unique_id "aYnV3TBNnvtig9q9kJ7j7wAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 09:02:23 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.36 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 04:02:17.309197 2026] [security2:error] [pid 6712:tid 6712] [client 65.111.6.36:60693] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "g-drome.com"] [uri "/v2/.git/config"] [unique_id "aYmimenEy2LUtej8KEw5PQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 05:44:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.6.36 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.6.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 00:44:47.548484 2026] [security2:error] [pid 13995:tid 13995] [client 65.111.6.36:63847] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "funkerecords.com"] [uri "/.git/config"] [unique_id "aYl0T__xNSdS6rrPPq9AxAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 inspectorgdgt	2025-12-26 22:00:33 (5 months ago)	Credential brute-force login attempts observed (e.g., SSLVPN/auth failures).	Brute-Force
Anonymous	2025-12-15 21:44:22 (5 months ago)	botnet	DDoS Attack
Anonymous	2025-11-14 13:52:37 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
Anonymous	2025-10-18 02:06:23 (7 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
Anonymous	2025-10-17 16:37:52 (7 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.17 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.17 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.176.29.8

🇬🇧 188.240.59.25

🇭🇰 185.239.85.154

🇨🇳 114.220.238.30

🇸🇬 114.119.163.52

🇨🇳 113.249.112.188

🇩🇪 94.16.17.141

🇩🇪 68.183.77.51

🇷🇺 46.147.195.11

🇬🇧 37.10.113.211

🇬🇧 31.14.254.60

🇺🇸 17.33.208.5

🇻🇳 14.225.253.26

🇰🇷 211.253.9.49

🇮🇳 182.95.47.2

🇺🇸 144.172.94.169

🇺🇸 66.228.40.100

🇺🇸 49.51.34.20

🇳🇱 2620:171:f9:f0:9999::233

🇺🇸 165.154.172.249