JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.10.189

65.111.10.189 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 11%: ?

11%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.10.189

Whois 65.111.10.189

IP Abuse Reports for 65.111.10.189:

This IP address has been reported a total of 34 times from 15 distinct sources. 65.111.10.189 was first reported on July 19th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-09 21:19:35 (1 week ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇳🇱 MatStef132	2026-05-19 21:05:47 (4 weeks ago)	MatShield L7: blocked on anonymous (ua-quarantined)	Bad Web Bot
🇳🇱 MatStef132	2026-05-19 20:59:02 (4 weeks ago)	MatShield L7: blocked on dstat.selify.io (ua-quarantined)	Bad Web Bot
🇫🇷 MatStef132	2026-05-19 20:55:41 (4 weeks ago)	MatShield L7: blocked on mathost.eu (ua-quarantined)	Bad Web Bot
🇳🇱 MatStef132	2026-05-15 13:29:59 (1 month ago)	MatShield L7 blocked request to fivemtest.mathost.eu for reason ua-q	DDoS Attack Bad Web Bot Web App Attack
🇫🇷 MatStef132	2026-05-14 21:32:37 (1 month ago)	[mathost.eu] clic	DDoS Attack Bad Web Bot Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇬🇧 Swiptly	2026-01-08 16:08:01 (5 months ago)	Bot scanning for environment files .env .env/\* ...	Web App Attack
🇺🇸 TPI-Abuse	2026-01-07 18:55:38 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.10.189 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.10.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 07 13:55:34.331995 2026] [security2:error] [pid 28561:tid 28561] [client 65.111.10.189:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "southernbroadcast.com"] [uri "/.git/HEAD"] [unique_id "aV6sJjdMOoU5QOc3DGkGagAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 ALPHANET	2025-12-30 11:27:49 (5 months ago)	web exploits	Hacking Exploited Host Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:02:01 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-12-29 06:12:54 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.10.189 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.10.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 01:12:48.211507 2025] [security2:error] [pid 29211:tid 29211] [client 65.111.10.189:17003] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cougarcrusade.com"] [uri "/.git/HEAD"] [unique_id "aVIb4Ah0VFUap_MpsXCUlAAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:10:52 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.10.189 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.10.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:10:49.330835 2025] [security2:error] [pid 18307:tid 18307] [client 65.111.10.189:52557] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "beachweddinginvites.com"] [uri "/.git/HEAD"] [unique_id "aVH_SS8Q2EUULd8Hctvt2wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 03:54:01 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.10.189 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.10.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 22:53:58.553903 2025] [security2:error] [pid 17690:tid 17703] [client 65.111.10.189:29081] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "barnett-ranch.com"] [uri "/.git/HEAD"] [unique_id "aVH7Vgn5DxCYi8l58KTfwgAAAMs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-01 04:32:09 (6 months ago)	botnet	DDoS Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 104.28.161.41

🇰🇷 59.14.22.154

🇮🇳 203.145.143.163

🇭🇰 199.45.154.145

🇸🇬 152.42.227.173

🇮🇩 113.212.70.89

🇭🇰 103.229.126.95

🇺🇸 51.81.223.238

🇳🇱 45.148.10.240

🇨🇳 43.139.53.45

🇪🇬 41.128.181.199

🇨🇳 1.192.61.19

🇩🇪 213.209.159.238

🇹🇼 198.235.24.108

🇨🇳 123.12.59.106

🇫🇷 91.231.89.13

🇱🇹 62.60.130.169

🇳🇱 45.148.10.147

🇮🇩 2406:da19:776:6e01:689b:b288:c991:27f8

🇧🇷 205.210.31.197