JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.2.69

65.111.2.69 was found in our database!

This IP was reported 42 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.2.69

Whois 65.111.2.69

IP Abuse Reports for 65.111.2.69:

This IP address has been reported a total of 42 times from 19 distinct sources. 65.111.2.69 was first reported on July 9th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ManagedStack	2026-04-27 14:00:03 (1 month ago)	Probing access to unauthorized locations	Hacking Exploited Host Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:07 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2025-12-22 18:59:08 (5 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.12.22 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.12.22 is noted in report timestamp show less	Hacking Brute-Force
🇭🇺 bcsaba	2025-12-15 01:21:41 (5 months ago)	Joomla spam 65.111.2.69 - - [15/Dec/2025:02:21:41 +0100] "GET /index.php?option=com_easyblog&view=da ... show more Joomla spam 65.111.2.69 - - [15/Dec/2025:02:21:41 +0100] "GET /index.php?option=com_easyblog&view=dashboard&layout=write HTTP/1.1" 404 789 "https://REDACTED" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:114.0) Gecko/20100101 Firefox/114.0" show less	Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 18:42:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.2.69 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.2.69 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 13:42:13.374587 2025] [security2:error] [pid 30062:tid 30062] [client 65.111.2.69:24843] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jaglady.com"] [uri "/.git/HEAD"] [unique_id "aS8zBX1FcPKbsUBNQTjbOAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 07:32:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.2.69 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.2.69 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 02:32:21.650560 2025] [security2:error] [pid 4504:tid 4504] [client 65.111.2.69:36269] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "memorylanemovies.com"] [uri "/.svn/wc.db"] [unique_id "aS6WBVIaJ4DqPoCCRHf_zwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 07:02:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.2.69 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.2.69 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 02:02:38.896704 2025] [security2:error] [pid 11367:tid 11367] [client 65.111.2.69:57085] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ageiron.com"] [uri "/.env"] [unique_id "aS6PDqEqRr-o_fKfbhTptAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇳 ThreatBook.io	2025-11-27 01:56:10 (6 months ago)	ThreatBook Intelligence: Zombie,vpn_proxy more details on https://threatbook.io/ip/65.111.2.69 2025- ... show more ThreatBook Intelligence: Zombie,vpn_proxy more details on https://threatbook.io/ip/65.111.2.69 2025-11-26 17:25:02 /.git/HEAD show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 12:47:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.2.69 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.2.69 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 07:46:59.397854 2025] [security2:error] [pid 17241:tid 17241] [client 65.111.2.69:12191] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.scinet.ws"] [uri "/.svn/wc.db"] [unique_id "aSb2w4X2zpRqYNb2wWGA8AAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 12:19:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.2.69 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.2.69 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 07:19:33.283390 2025] [security2:error] [pid 17422:tid 17422] [client 65.111.2.69:17871] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.shelbynash.com"] [uri "/.env"] [unique_id "aSbwVaLcyalpabg6XfC3NwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 07:02:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.2.69 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.2.69 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 02:02:23.619672 2025] [security2:error] [pid 30963:tid 30963] [client 65.111.2.69:11231] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.thebronsons.com"] [uri "/.git/HEAD"] [unique_id "aSal_6A_a_zRkVYywglymgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 jjnxpct	2025-11-26 04:56:41 (6 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.git/HEAD (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .git/ found within REQUEST_FILENAME: /.git/HEAD] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:57:29 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.2.69 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.2.69 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:57:22.324995 2025] [security2:error] [pid 8666:tid 8666] [client 65.111.2.69:14325] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aschmitz.ewingmissouri.com"] [uri "/.env"] [unique_id "aSZQcgb3ukDNb1aK9FYnKQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-11-25 22:28:19 (6 months ago)	Attempted access to sensitive endpoint (/.git/HEAD) detected. Automated scan or unauthorized probing ... show more Attempted access to sensitive endpoint (/.git/HEAD) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:24:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.2.69 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.2.69 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:24:25.066445 2025] [security2:error] [pid 6703:tid 6703] [client 65.111.2.69:31235] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "domainexecs.com"] [uri "/.git/HEAD"] [unique_id "aSUvedyQLdqOgeZzeDYMpwAAABg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 42 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇹 217.129.236.231

🇺🇸 207.90.244.12

🇺🇸 198.41.227.188

🇱🇹 194.165.16.166

🇷🇴 194.102.73.93

🇮🇳 182.69.70.201

🇧🇷 181.218.172.74

🇺🇸 172.71.170.18

🇧🇷 167.250.172.204

🇺🇸 162.159.106.194

🇭🇰 161.81.147.62

🇳🇱 160.119.76.81

🇪🇸 158.158.76.105

🇻🇳 117.5.182.53

🇺🇸 74.82.47.59

🇺🇸 67.220.180.90

🇩🇪 47.245.133.99

🇯🇵 47.91.29.58

🇧🇷 20.206.185.109

🇸🇬 8.219.190.201