JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.13.253

65.111.13.253 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.13.253

Whois 65.111.13.253

IP Abuse Reports for 65.111.13.253:

This IP address has been reported a total of 24 times from 10 distinct sources. 65.111.13.253 was first reported on June 27th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 nowyouknow	2026-04-22 04:47:36 (1 month ago)	(From [email protected]) Hi Bompiani Chiropractic Center, I’ve built and trained an AI ... show more (From [email protected]) Hi Bompiani Chiropractic Center, I’ve built and trained an AI employee specifically for Bompiani Chiropractic Center. It’s already been trained on 6+ hours worth of your publicly available data — your website, Google Business Profile, and more. It knows how to answer customer questions, capture leads, and even follow up — just like a team member would. This isn’t a sales call. It’s a 20-minute demo where you can actually interact with the AI employee and see what it can do. Would today or tomorrow work for a quick walkthrough? Schedule a time on my calendar to meet the agent I trained for you and see what she can do here: getdandy.com/schedule-a-call/ or call me at (949)-755-7782 Talk soon, Thank you, Jennifer O'Brien \| Director of Operations GetDandy getdandy.com/schedule-a-call/ Unsubscribe here: bit.ly/42wnUsa show less	Phishing Web Spam
🇺🇸 TPI-Abuse	2026-02-11 20:41:06 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.13.253 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.13.253 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 15:41:00.108426 2026] [security2:error] [pid 5291:tid 5291] [client 65.111.13.253:22939] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arctic-sea.com"] [uri "/backup/.git/config"] [unique_id "aYzpXGxe1If3UsS7wHT2_QAAACY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:55:08 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.13.253 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.13.253 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:54:57.703600 2026] [security2:error] [pid 14875:tid 14875] [client 65.111.13.253:51767] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kiubo.net"] [uri "/frontend/.env"] [unique_id "aYqsEaVtKwzFOj25bRZhrwAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:28:21 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.13.253 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.13.253 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:28:13.396236 2026] [security2:error] [pid 10478:tid 10478] [client 65.111.13.253:47579] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kirklandhighlands.org"] [uri "/.env.local"] [unique_id "aYqlzfGlj1YCInLip4khyAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 02:09:28 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.13.253 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.13.253 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 21:09:23.252551 2026] [security2:error] [pid 5379:tid 5379] [client 65.111.13.253:9973] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hydrogenplus.net"] [uri "/config/.env"] [unique_id "aYqTUyfCbD3P6mIrCLZDlQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 01:02:09 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.13.253 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.13.253 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 20:02:04.113871 2026] [security2:error] [pid 7424:tid 7424] [client 65.111.13.253:30051] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "humbliaslaw.com"] [uri "/app/.git/config"] [unique_id "aYqDjDJWjj-W7-3NmPeuqQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 21:13:06 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.13.253 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.13.253 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:12:59.563029 2026] [security2:error] [pid 22637:tid 22637] [client 65.111.13.253:44877] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "horizonsoundchicago.com"] [uri "/v2/.git/config"] [unique_id "aYpN200UpDGTjxTZlDzxDQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-04 04:29:53 (6 months ago)	botnet	DDoS Attack
🇳🇱 jjnxpct	2025-11-25 04:54:14 (6 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.aws/credentials (Rule ID: 930130) - Restricted File Access Attempt show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:23:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.13.253 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.13.253 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:23:09.296589 2025] [security2:error] [pid 10696:tid 10790] [client 65.111.13.253:34601] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.sylvestconsulting.com"] [uri "/.svn/wc.db"] [unique_id "aSPrvSJafRnFKTiRloolRwAAAUA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:52:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.13.253 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.13.253 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:52:34.883067 2025] [security2:error] [pid 22091:tid 22091] [client 65.111.13.253:53683] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.hayrun.com"] [uri "/.env"] [unique_id "aSPkkhErLld2OTHGkovVtwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-14 16:08:40 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
Anonymous	2025-11-02 16:34:17 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/02 07:00:26	Port Scan Brute-Force Exploited Host Web App Attack
Anonymous	2025-10-16 23:34:15 (7 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇦🇺 AWW-Admin	2025-10-16 15:38:29 (7 months ago)	(wordpress) Failed wordpress login from 65.111.13.253 (US/United States/-)	Brute-Force

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.149.128

🇻🇳 116.99.249.238

🇺🇸 76.137.61.138

🇺🇸 71.6.239.251

🇳🇱 45.148.10.157

🇺🇸 20.171.25.181

🇭🇰 119.28.9.170

🇺🇸 104.237.150.211

🇸🇪 81.226.129.67

🇨🇳 58.144.223.69

🇺🇸 34.174.195.202

🇨🇦 20.220.34.26

🇨🇴 190.108.77.124

🇮🇷 185.179.223.141

🇰🇷 183.104.26.197

🇨🇳 182.151.25.56

🇨🇳 124.77.168.125

🇺🇸 64.227.99.138

🇺🇸 20.29.22.204

🇺🇸 18.191.211.131