JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.8.165

65.111.8.165 was found in our database!

This IP was reported 52 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.8.165

Whois 65.111.8.165

IP Abuse Reports for 65.111.8.165:

This IP address has been reported a total of 52 times from 22 distinct sources. 65.111.8.165 was first reported on June 27th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 inlink.ltd	2026-05-23 18:21:18 (1 week ago)	Known malicious PHP file or CMS probe	Web App Attack
🇱🇻 garmtech.com	2026-03-19 15:48:40 (2 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇩🇪 stinpriza	2026-02-13 06:30:23 (3 months ago)	Web App Attack	Web App Attack
🇨🇭 backslash	2026-01-20 14:05:08 (4 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 inspectorgdgt	2025-12-24 22:00:00 (5 months ago)	VPN brute-force login attempts observed (bulk report).	Brute-Force
🇺🇸 TPI-Abuse	2025-12-10 01:56:58 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.165 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 20:56:54.915593 2025] [security2:error] [pid 22924:tid 22924] [client 65.111.8.165:22989] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "eatcakecup.com"] [uri "/.git/HEAD"] [unique_id "aTjTZkYuLmqrfwqTUs_dMQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 20:11:34 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.165 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 15:11:24.778774 2025] [security2:error] [pid 10100:tid 10100] [client 65.111.8.165:33195] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jacksonpropertyrentals.com"] [uri "/.env"] [unique_id "aTiCbDv9l0jf1fJvyT-ZZgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2025-12-07 20:13:15 (5 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 TPI-Abuse	2025-12-07 16:59:12 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.165 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 11:59:05.145345 2025] [security2:error] [pid 15450:tid 15450] [client 65.111.8.165:34121] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nsdorganogram.org"] [uri "/.env"] [unique_id "aTWyWb5F-2bJrBpFEjCJGgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 15:34:19 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.165 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 10:34:15.891401 2025] [security2:error] [pid 3210:tid 3210] [client 65.111.8.165:13263] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vekk.org"] [uri "/.git/HEAD"] [unique_id "aTWed986iYw0jQvpaaupuQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 11:53:07 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.165 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 06:53:00.431193 2025] [security2:error] [pid 31364:tid 31364] [client 65.111.8.165:10997] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sircain.net"] [uri "/.git/HEAD"] [unique_id "aTQZHHgFD2fmg9l_Wr7dQAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 02:46:05 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.165 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 21:45:58.568223 2025] [security2:error] [pid 16860:tid 16860] [client 65.111.8.165:59459] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "anthraxbook.info"] [uri "/.git/HEAD"] [unique_id "aTOY5jwcG_cP5RBYQ57EbwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 09:14:42 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.165 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 04:14:34.883808 2025] [security2:error] [pid 22379:tid 22379] [client 65.111.8.165:13071] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "daretownkindling.com"] [uri "/.svn/wc.db"] [unique_id "aTKieudZTwNj0jONzseEvQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 03:46:28 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.165 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 22:46:23.478478 2025] [security2:error] [pid 17077:tid 17077] [client 65.111.8.165:41059] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "savoiapower.com"] [uri "/.env"] [unique_id "aTJVj6lUS6mwZoj1Y3tfnwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 02:28:05 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.165 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 21:28:00.500022 2025] [security2:error] [pid 24566:tid 24586] [client 65.111.8.165:28467] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jojocreative.com"] [uri "/.git/HEAD"] [unique_id "aTJDMNYi_dj3HxJDlx4dPQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 52 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 112.47.192.46

🇱🇹 81.30.98.44

🇺🇸 67.205.174.45

🇺🇸 52.206.124.26

🇫🇷 51.210.146.129

🇺🇸 5.78.215.95

🇨🇳 223.94.107.43

🇳🇱 204.137.14.92

🇲🇽 186.96.145.241

🇨🇳 123.12.181.96

🇨🇳 112.49.235.57

🇨🇳 60.167.123.216

🇳🇱 45.148.10.240

🇬🇧 35.203.211.197

🇨🇳 223.15.243.62

🇺🇸 216.180.246.192

🇫🇷 194.163.167.152

🇳🇱 185.223.235.34

🇸🇬 168.138.174.104

🇨🇳 120.230.87.241