JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.13.75

65.111.13.75 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.13.75

Whois 65.111.13.75

IP Abuse Reports for 65.111.13.75:

This IP address has been reported a total of 28 times from 18 distinct sources. 65.111.13.75 was first reported on November 25th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
Anonymous	2026-03-24 17:25:05 (2 months ago)	Forum/form spam	Web Spam
🇧🇪 cmbplf	2025-12-31 08:26:52 (5 months ago)	1.661 requests with url.path */xmlrpc.php	Brute-Force Bad Web Bot
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:15 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 fbarela	2025-12-29 06:00:02 (5 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force
🇨🇭 backslash	2025-12-20 22:50:04 (5 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
Anonymous	2025-12-01 11:06:03 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-24 08:56:36 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.13.75 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.13.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:56:31.311076 2025] [security2:error] [pid 10733:tid 10733] [client 65.111.13.75:59691] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bews.com"] [uri "/.svn/wc.db"] [unique_id "aSQdvw2v8Y9uJOjY-O1-lAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:36:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.13.75 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.13.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:36:07.107511 2025] [security2:error] [pid 30365:tid 30365] [client 65.111.13.75:47413] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bearbeds.email"] [uri "/.git/HEAD"] [unique_id "aSQY9-12e_sSkmqgQ3ZELQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:51:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.13.75 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.13.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:50:06.073390 2025] [security2:error] [pid 715:tid 715] [client 65.111.13.75:15823] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.monkeyonabike.com"] [uri "/.env"] [unique_id "aSQOLnbYXTdWQ2ydIJG-SgAAADs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:48:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.13.75 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.13.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:48:33.082503 2025] [security2:error] [pid 18193:tid 18259] [client 65.111.13.75:11583] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.interludes.info"] [uri "/.svn/wc.db"] [unique_id "aSPjoZqABul9tZzps9keNgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 03:46:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.13.75 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.13.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:46:42.594146 2025] [security2:error] [pid 16941:tid 16941] [client 65.111.13.75:23131] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.zaril.com"] [uri "/.svn/wc.db"] [unique_id "aSPVIs5ZpfyS4-pSeCNGAwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-14 00:02:39 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
Anonymous	2025-11-02 15:56:36 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/02 07:01:01	Port Scan Brute-Force Exploited Host Web App Attack
Anonymous	2025-10-18 06:18:57 (7 months ago)	Attempted brute force login to web vpn 4 time(s); last attempt for 2025.10.18 is noted in report tim ... show more Attempted brute force login to web vpn 4 time(s); last attempt for 2025.10.18 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 191.102.179.148

🇺🇸 191.102.179.104

🇧🇷 185.100.215.213

🇧🇷 181.214.221.96

🇺🇸 172.202.118.10

🇳🇱 94.102.49.193

🇨🇦 85.217.149.23

🇹🇿 41.93.32.88

🇮🇩 36.78.105.219

🇺🇸 20.168.122.30

🇩🇪 3.72.222.211

🇳🇱 193.176.31.203

🇺🇸 191.102.179.102

🇺🇸 191.102.170.224

🇺🇸 172.235.41.44

🇺🇸 162.216.149.12

🇺🇸 147.185.132.138

🇨🇳 106.13.69.159

🇩🇪 103.160.59.61

🇷🇺 95.188.91.101