JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.7.130

65.111.7.130 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.7.130

Whois 65.111.7.130

IP Abuse Reports for 65.111.7.130:

This IP address has been reported a total of 28 times from 16 distinct sources. 65.111.7.130 was first reported on June 27th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 nowyouknow	2026-05-02 04:11:14 (1 month ago)	(From [email protected]) Hey there, I’m handing out something actually valuable for free No ... show more (From [email protected]) Hey there, I’m handing out something actually valuable for free No catch. Hit this link to enter now before it fills: https://suniljaindvg.systeme.io/6850adaf Takes 10 seconds. Might be yours. Jump in now. If you no longer wish to receive messages from me, please submit the form on my website show less	Phishing Web Spam
🇺🇸 nowyouknow	2026-04-30 07:39:42 (1 month ago)	(From [email protected]) Hi, Real quick… I recently launched a FREE giveaway, and kept on ... show more (From [email protected]) Hi, Real quick… I recently launched a FREE giveaway, and kept one open for you. Lock your entry here before it wraps up: https://suniljaindvg.systeme.io/6850adaf Someone will win this… why can’t it be you? If you’d rather stop receiving additional emails from me, please complete the form on my site show less	Phishing Web Spam
Anonymous	2026-03-29 12:27:06 (2 months ago)	Forum/form spam	Web Spam
🇫🇷 LRob.fr	2026-02-26 23:45:03 (3 months ago)	Repeated 403 errors, blocked by Fail2ban in custom-403 jail	Bad Web Bot
🇺🇸 TPI-Abuse	2026-01-21 19:14:14 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.130 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 21 14:14:03.442982 2026] [security2:error] [pid 26382:tid 26382] [client 65.111.7.130:11241] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdub.com"] [uri "/.svn/wc.db"] [unique_id "aXEle_o09ILxSm79O0yl9QAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-01-20 21:45:08 (4 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
Anonymous	2026-01-15 16:07:20 (4 months ago)	Forum/form spam	Web Spam
🇧🇷 hostseries	2025-12-24 05:54:40 (5 months ago)	Trigger: LF_DISTATTACK	Brute-Force
Anonymous	2025-12-06 12:48:03 (6 months ago)	botnet	DDoS Attack
🇩🇪 Packets-Decreaser.NET	2025-11-30 13:09:57 (6 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-25 04:48:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.130 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:48:13.373446 2025] [security2:error] [pid 14382:tid 14382] [client 65.111.7.130:52959] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.madisonflyers.com"] [uri "/.git/HEAD"] [unique_id "aSU1DRRSkHOnFqQ770epDwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:08:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.130 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:08:28.604637 2025] [security2:error] [pid 8035:tid 8035] [client 65.111.7.130:59443] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.stamford.org"] [uri "/.git/HEAD"] [unique_id "aSUrvLWtz935ubP3IXLUmQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:29:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.130 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:29:46.331210 2025] [security2:error] [pid 19320:tid 19320] [client 65.111.7.130:9063] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.grayhost.net"] [uri "/.svn/wc.db"] [unique_id "aSUiqsyv3ic0Ih1b34rSJAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:59:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.130 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:58:57.084950 2025] [security2:error] [pid 4717:tid 4717] [client 65.111.7.130:31061] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.chrisbilder.com"] [uri "/.svn/wc.db"] [unique_id "aSUbcUy8_vWnHdKOYhj7VgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:12:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.130 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:12:51.004341 2025] [security2:error] [pid 12055:tid 12055] [client 65.111.7.130:36633] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.ellavandeven.com"] [uri "/.git/HEAD"] [unique_id "aSUQoy-j7GJZre8lUjUIuAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 20.64.106.117

🇺🇸 198.98.62.211

🇻🇪 190.97.236.222

🇫🇷 94.176.161.167

🇱🇺 64.89.160.167

🇺🇸 2620:171:fd:f0::236

🇴🇲 206.167.33.157

🇧🇪 198.235.24.205

🇺🇸 173.255.242.196

🇨🇳 115.190.171.196

🇨🇳 111.39.206.23

🇳🇱 88.151.33.24

🇬🇧 81.19.219.224

🇷🇺 46.188.119.26

🇺🇸 2603:3026:20b:7500:7dab:2a7c:f5d4:6319

🇨🇳 222.176.201.45

🇺🇸 172.202.118.72

🇨🇳 115.195.215.222

🇳🇱 85.121.127.24

🇳🇱 85.11.167.30