JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.1.99

65.111.1.99 was found in our database!

This IP was reported 55 times. Confidence of Abuse is 9%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.1.99

Whois 65.111.1.99

IP Abuse Reports for 65.111.1.99:

This IP address has been reported a total of 55 times from 19 distinct sources. 65.111.1.99 was first reported on October 12th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 backslash	2026-05-23 05:06:17 (2 weeks ago)		Bad Web Bot
🇱🇻 garmtech.com	2026-04-13 18:08:36 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 21-08.65.111.1.99.web-spammers ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 21-08.65.111.1.99.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇦🇺 nzhost.co.nz	2026-02-19 13:01:03 (3 months ago)	$f2bV_matches	Hacking Brute-Force
🇺🇸 mnsf	2026-02-16 01:05:29 (3 months ago)	Too many Status 40X (15) Scanning/Probing (15)	Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-15 22:59:31 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-15	Hacking Web App Attack SSH
🇦🇺 nzhost.co.nz	2026-02-15 12:25:59 (3 months ago)	$f2bV_matches	Hacking Brute-Force
🇳🇱 debestelapp	2026-02-15 12:15:05 (3 months ago)		Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:42:22 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.99 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:42:18.008187 2026] [security2:error] [pid 2804998:tid 2804998] [client 65.111.1.99:61539] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thomasgardner.com"] [uri "/dev/.git/config"] [unique_id "aZGxGrXtO55qRqk1meuHiQAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:34:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.99 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:34:29.191426 2026] [security2:error] [pid 8900:tid 8900] [client 65.111.1.99:31579] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "susansimmons.net"] [uri "/backend/.env"] [unique_id "aZFa5a4Aevnnc2LZhn86OgAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:24:21 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.99 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:24:15.426037 2026] [security2:error] [pid 23229:tid 23229] [client 65.111.1.99:48875] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stricklinphotography.com"] [uri "/v2/.git/config"] [unique_id "aZFKb3jH4we_CJguXeP95QAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:59:10 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.99 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:59:01.213541 2026] [security2:error] [pid 17917:tid 17917] [client 65.111.1.99:34955] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stmaarten-boatcharters.com"] [uri "/admin/.env"] [unique_id "aZFEhcySRP6pN9bSoh32tgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:25:50 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.99 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:25:45.225427 2026] [security2:error] [pid 22200:tid 22243] [client 65.111.1.99:15621] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stateabbreviationlist.com"] [uri "/admin/.env"] [unique_id "aZE8ufIf6G86OktE7M9frAAAAEE"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Mangelot Hosting	2026-02-15 03:06:31 (3 months ago)	(modsecurity) srv103 ModSecurity 65.111.1.99 (US/United States/-): 5 in the last 3600 secs; Ports: * ... show more (modsecurity) srv103 ModSecurity 65.111.1.99 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:57:58 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.99 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:57:50.933266 2026] [security2:error] [pid 19703:tid 19703] [client 65.111.1.99:27563] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "srsrestoration.net"] [uri "/.env.save"] [unique_id "aZE2Luble74Q4iL1E2ckAwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:32:53 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.99 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:32:49.361123 2026] [security2:error] [pid 303:tid 337] [client 65.111.1.99:23291] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "spiritualchristian.com"] [uri "/new/.git/config"] [unique_id "aZEwUeTjh-Dl8pGktnWuOwAAANE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 55 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 177.136.206.71

🇨🇱 170.82.129.8

🇩🇪 157.230.18.133

🇳🇱 141.11.32.54

🇹🇼 128.14.239.38

🇺🇸 45.156.129.170

🇺🇸 216.239.32.223

🇳🇱 176.65.148.215

🇦🇺 155.94.168.167

🇵🇭 126.209.74.221

🇨🇳 111.9.62.186

🇳🇱 91.92.42.61

🇮🇳 49.43.217.73

🇲🇾 47.250.46.113

🇸🇬 43.163.90.141

🇬🇧 31.171.130.17

🇺🇸 209.38.79.7

🇺🇸 195.184.76.143

🇩🇪 167.94.146.32

🇭🇰 152.32.252.65