JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.0.160

65.111.0.160 was found in our database!

This IP was reported 31 times. Confidence of Abuse is 12%: ?

12%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.0.160

Whois 65.111.0.160

IP Abuse Reports for 65.111.0.160:

This IP address has been reported a total of 31 times from 16 distinct sources. 65.111.0.160 was first reported on July 3rd 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 MatStef132	2026-05-19 20:57:53 (1 month ago)	MatShield L7: blocked on mathost.eu (click-id-direct-nav)	DDoS Attack
🇫🇷 MatStef132	2026-05-19 20:55:41 (1 month ago)	MatShield L7: blocked on mathost.eu (ua-quarantined)	Bad Web Bot
🇳🇱 MatStef132	2026-05-15 13:29:59 (1 month ago)	MatShield L7 blocked request to fivemtest.mathost.eu for reason ua-q	DDoS Attack Bad Web Bot Web App Attack
🇫🇷 MatStef132	2026-05-14 22:03:10 (1 month ago)	MatShield L7 blocked request to mathost.eu for reason ua-q	DDoS Attack Bad Web Bot Web App Attack
🇫🇷 MatStef132	2026-05-14 21:32:37 (1 month ago)	[mathost.eu] ua-q	DDoS Attack Bad Web Bot Web App Attack
🇪🇸 librebit	2026-05-13 23:56:18 (1 month ago)	Brute force	Brute-Force
🇸🇪 Juha Jurvanen	2026-05-11 15:15:29 (1 month ago)	RdpGuard detected brute-force attempt on RD-WEB	Brute-Force
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:07 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇦🇺 MAGIC	2025-12-24 05:07:29 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-26 11:05:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.0.160 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.0.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:05:00.634095 2025] [security2:error] [pid 9605:tid 9622] [client 65.111.0.160:15613] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.goodfridaygolf.com"] [uri "/.env"] [unique_id "aSbe3EcdiC1g4FeuCGPmygAAAEQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 10:17:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.0.160 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.0.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:17:07.100502 2025] [security2:error] [pid 5929:tid 5929] [client 65.111.0.160:15525] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.dginstruments.com"] [uri "/.env"] [unique_id "aSbTo6gL2KWGkXqqlFR7fgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 07:05:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.0.160 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.0.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 02:05:51.030819 2025] [security2:error] [pid 12418:tid 12418] [client 65.111.0.160:18253] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.netcastcorp.com"] [uri "/.env"] [unique_id "aSamz5X_5QhyI5POtWQi_wAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:31:24 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.0.160 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.0.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:31:19.564918 2025] [security2:error] [pid 30552:tid 30552] [client 65.111.0.160:24777] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.nekstlevel.com"] [uri "/.git/HEAD"] [unique_id "aSZYZ8j58piNWOnqCRw-YQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:40:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.0.160 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.0.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:40:31.531361 2025] [security2:error] [pid 26239:tid 26239] [client 65.111.0.160:45793] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.aethena.org"] [uri "/.env"] [unique_id "aSZMfx9SoQH25M3ofYgRJwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:39:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.0.160 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.0.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:39:24.828340 2025] [security2:error] [pid 1006:tid 1006] [client 65.111.0.160:17687] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.lucitania.com"] [uri "/.env"] [unique_id "aST6vInFb6kUfBEFQMacvQAAABc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 31 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.202.112.96

🇧🇪 207.175.96.215

🇬🇧 191.96.110.38

🇲🇽 187.251.123.104

🇸🇬 101.47.15.26

🇰🇿 92.47.46.174

🇺🇸 216.244.66.249

🇲🇽 201.110.99.31

🇸🇻 190.62.84.65

🇺🇸 170.187.163.117

🇿🇼 143.105.233.45

🇷🇴 141.98.83.240

🇪🇸 195.5.84.206

🇰🇷 125.130.224.61

🇮🇳 103.138.237.18

🇷🇺 91.144.187.151

🇮🇷 89.42.209.10

🇨🇳 36.135.93.37

🇻🇳 14.225.206.171

🇺🇦 5.58.52.148