JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.8.32

65.111.8.32 was found in our database!

This IP was reported 47 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.8.32

Whois 65.111.8.32

IP Abuse Reports for 65.111.8.32:

This IP address has been reported a total of 47 times from 21 distinct sources. 65.111.8.32 was first reported on June 27th 2024, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 backslash	2025-12-10 04:10:02 (5 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-08 20:38:03 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.32 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 15:37:56.555778 2025] [security2:error] [pid 26850:tid 26850] [client 65.111.8.32:60523] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lanistandifer.com"] [uri "/.env"] [unique_id "aTc3JPOph1DAWJkBOFoykAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2025-12-08 20:21:49 (5 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇳🇱 homeshowdomain.nl	2025-12-06 23:01:17 (5 months ago)	Auto-ban: >3000 req/min op 2025-12-06	Hacking Web App Attack SSH
🇫🇮 Shaik Sai Meera	2025-12-06 02:25:12 (5 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 TPI-Abuse	2025-12-05 13:24:45 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.32 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 08:24:40.995306 2025] [security2:error] [pid 7580:tid 7580] [client 65.111.8.32:35737] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "personalized-holiday-cards.com"] [uri "/.git/HEAD"] [unique_id "aTLdGOFybgO3ORB6HD0wDwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 03:35:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.32 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 22:35:12.970010 2025] [security2:error] [pid 18581:tid 18581] [client 65.111.8.32:60521] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "djbadger.com"] [uri "/.svn/wc.db"] [unique_id "aTJS8NNyjPPzJhO78K76pAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:26:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.32 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:26:35.916624 2025] [security2:error] [pid 4018:tid 4018] [client 65.111.8.32:53045] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.frickandfracks.com"] [uri "/.svn/wc.db"] [unique_id "aSQWu7gKzG_GBbI0ThsWAAAAACw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:31:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.32 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:30:54.668117 2025] [security2:error] [pid 21632:tid 21632] [client 65.111.8.32:30945] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.bvidisplay.com"] [uri "/.svn/wc.db"] [unique_id "aSP7nuPA-bUfWIsNJtBKNAAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:42:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.32 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:42:05.031860 2025] [security2:error] [pid 23441:tid 23441] [client 65.111.8.32:13131] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.primedancer.com"] [uri "/.env"] [unique_id "aSPwLSsjwrN_yhcNsAnpUwAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-23 21:55:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.32 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 16:55:04.992412 2025] [security2:error] [pid 11748:tid 11748] [client 65.111.8.32:40905] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.peregrineproject.com"] [uri "/.env"] [unique_id "aSOCuLGmJliMhWFxjcMKsQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-14 02:46:49 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇧🇪 madeit	2025-11-04 16:55:00 (7 months ago)		Web App Attack
Anonymous	2025-11-02 18:53:48 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/02 07:39:44	Port Scan Brute-Force Exploited Host Web App Attack
🇫🇷 applemooz	2025-11-01 11:35:23 (7 months ago)	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack

Showing 1 to 15 of 47 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇬 196.0.120.211

🇮🇳 182.76.66.186

🇮🇩 180.247.56.166

🇻🇳 103.186.101.237

🇺🇸 64.94.156.227

🇬🇧 185.216.145.164

🇩🇪 178.104.240.0

🇨🇳 111.47.243.219

🇧🇩 103.112.54.86

🇭🇺 84.1.34.242

🇨🇳 58.19.140.111

🇫🇷 45.154.138.179

🇨🇳 14.103.112.42

🇵🇹 2a01:11:221:1530:bdd2:8f61:fc05:e8f2

🇺🇸 2607:f8b0:4004:c1d::126

🇩🇪 213.209.159.228

🇺🇸 140.186.219.179

🇨🇳 139.199.57.228

🇸🇬 114.119.148.4

🇩🇪 78.111.67.247