JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.7.16

65.111.7.16 was found in our database!

This IP was reported 41 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.7.16

Whois 65.111.7.16

IP Abuse Reports for 65.111.7.16:

This IP address has been reported a total of 41 times from 17 distinct sources. 65.111.7.16 was first reported on June 28th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 MAGIC	2026-04-09 03:17:56 (1 month ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇧🇪 voormedia	2026-03-22 15:00:19 (2 months ago)	Accessed trap at '/.env'	Web App Attack
🇮🇹 VHosting	2025-12-23 14:05:11 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇺🇸 TPI-Abuse	2025-12-10 10:17:56 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.16 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 05:17:47.599685 2025] [security2:error] [pid 30964:tid 30964] [client 65.111.7.16:42543] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garanzuayrec.com"] [uri "/.git/HEAD"] [unique_id "aTlIy313lWBPEjAaZeCZowAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2025-12-07 23:02:14 (6 months ago)	Auto-ban: >3000 req/min op 2025-12-07	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2025-12-05 11:47:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.16 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 06:47:16.916337 2025] [security2:error] [pid 30248:tid 30248] [client 65.111.7.16:22167] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rondeal.com"] [uri "/.env"] [unique_id "aTLGRAh_hixcMWjqWPqWUgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 04:40:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.16 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 23:40:19.904461 2025] [security2:error] [pid 12346:tid 12346] [client 65.111.7.16:42483] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thegoldreserve.com"] [uri "/.svn/wc.db"] [unique_id "aTJiM-Iar39iQc_1INItWAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-12-04 23:59:21 (6 months ago)	IM360 WAF: Laravel .env file access	Web App Attack
🇺🇸 TPI-Abuse	2025-11-27 20:20:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.16 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 15:20:49.284079 2025] [security2:error] [pid 25694:tid 25742] [client 65.111.7.16:12425] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "busybeerestaurant.com"] [uri "/.git/HEAD"] [unique_id "aSiyoZfXD7sZGRc9q_M9_gAAAIw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 18:36:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.16 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 13:36:01.526739 2025] [security2:error] [pid 13141:tid 13141] [client 65.111.7.16:43967] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "manaplas.com"] [uri "/.git/HEAD"] [unique_id "aSdIkYE6gzdSKSG3io_-zAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:39:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.16 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:39:43.896211 2025] [security2:error] [pid 6649:tid 6697] [client 65.111.7.16:31451] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.thesdgriffingroup.com"] [uri "/.git/HEAD"] [unique_id "aSZMT_CQPT6s-IHquRxfBgAAAU0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:02:01 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.16 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:01:54.668363 2025] [security2:error] [pid 9053:tid 9053] [client 65.111.7.16:30699] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.karieva.com"] [uri "/.env"] [unique_id "aSVGUs6qEUx9stuescPrtgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:56:36 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.16 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:56:29.106593 2025] [security2:error] [pid 27398:tid 27398] [client 65.111.7.16:32283] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.bb103.us"] [uri "/.env"] [unique_id "aSU2_fCwGDuSpqoVsbEv8wAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:53:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.16 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:53:08.219737 2025] [security2:error] [pid 28863:tid 28863] [client 65.111.7.16:17811] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.icoinedthewordironesty.com"] [uri "/.env"] [unique_id "aSUoJAfO7xA0TnXqR7yAjwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 41 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 222.186.13.130

🇺🇸 147.185.132.79

🇺🇸 216.218.206.71

🇹🇷 213.43.9.218

🇳🇱 176.65.149.203

🇳🇱 147.45.50.147

🇺🇸 107.175.223.183

🇧🇪 35.205.234.129

🇧🇪 34.62.110.125

🇩🇪 139.59.214.194

🇷🇴 92.118.39.236

🇷🇴 80.94.92.187

🇧🇪 34.38.93.241

🇰🇷 3.36.74.8

🇺🇸 203.161.63.6

🇬🇧 195.140.214.23

🇻🇳 180.93.245.203

🇧🇷 177.53.133.151

🇺🇸 172.237.150.22

🇺🇸 165.154.36.71