JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.9.19

65.111.9.19 was found in our database!

This IP was reported 37 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.9.19

Whois 65.111.9.19

IP Abuse Reports for 65.111.9.19:

This IP address has been reported a total of 37 times from 13 distinct sources. 65.111.9.19 was first reported on June 28th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 oncord	2026-03-06 17:52:08 (2 months ago)	Form spam	Web Spam
🇦🇺 oncord	2025-12-25 08:17:31 (5 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2025-12-08 19:46:49 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.9.19 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.9.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 14:46:43.753541 2025] [security2:error] [pid 17217:tid 17217] [client 65.111.9.19:60379] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "atidysort.com"] [uri "/.svn/wc.db"] [unique_id "aTcrI9rpvn93MIIM4tLFZgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 09:13:28 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.9.19 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.9.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 04:13:21.099260 2025] [security2:error] [pid 6436:tid 6436] [client 65.111.9.19:40673] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lionheartpublications.com"] [uri "/.svn/wc.db"] [unique_id "aTaWsZH2_hR6j1kJkcn0SwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 06:21:11 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.9.19 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.9.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 01:20:48.885966 2025] [security2:error] [pid 28139:tid 28139] [client 65.111.9.19:22821] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nealandmichaeledesign.com"] [uri "/.svn/wc.db"] [unique_id "aTZuQE2SEpIUHFpOurMSrQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-06 17:53:12 (5 months ago)	botnet	DDoS Attack
🇸🇬 anotherwatcher	2025-12-05 07:02:09 (5 months ago)	bad bot	Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-05 00:31:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.9.19 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.9.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 19:31:25.904560 2025] [security2:error] [pid 25554:tid 25560] [client 65.111.9.19:34393] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "i-masmx.com"] [uri "/.git/HEAD"] [unique_id "aTIn3W9XIUilQo4cCInJNgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-04 23:42:04 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.9.19 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.9.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 18:41:58.091095 2025] [security2:error] [pid 6761:tid 6761] [client 65.111.9.19:41795] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "michaelward.com"] [uri "/.git/HEAD"] [unique_id "aTIcRn-Bd_GqZOjA1oXz-wAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 i-turnradio.nl	2025-11-24 13:30:27 (6 months ago)	2025-11-24 @ 14:30:27 (CET) ~ Blocked based on risk assessment and prior abuse reports	Web App Attack
Anonymous	2025-11-14 06:08:49 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
Anonymous	2025-11-01 03:10:58 (7 months ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.11.01 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.11.01 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-27 19:54:49 (7 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.27 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.27 is noted in report timestamp show less	Hacking Brute-Force
🇧🇷 hostseries	2025-10-25 00:33:19 (7 months ago)	Trigger: LF_DISTATTACK	Brute-Force
Anonymous	2025-10-23 19:35:02 (7 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.23 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.23 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 37 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 178.156.253.13

🇺🇸 147.185.132.100

🇮🇳 117.245.138.2

🇷🇺 46.191.163.43

🇹🇼 111.70.22.152

🇺🇸 47.251.167.155

🇳🇱 213.177.179.62

🇺🇿 185.203.236.212

🇷🇺 178.178.194.126

🇧🇷 152.32.200.243

🇰🇷 61.72.145.120

🇩🇪 207.154.230.149

🇳🇱 176.65.139.222

🇰🇷 175.119.225.68

🇺🇸 165.154.135.73

🇺🇸 74.196.127.84

🇺🇸 52.71.170.250

🇨🇳 36.41.173.197

🇲🇽 187.141.71.166

🇺🇸 172.253.2.17