JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.9.33

65.111.9.33 was found in our database!

This IP was reported 40 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.9.33

Whois 65.111.9.33

IP Abuse Reports for 65.111.9.33:

This IP address has been reported a total of 40 times from 15 distinct sources. 65.111.9.33 was first reported on July 9th 2024, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-20 03:50:16 (3 days ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 01:57:55 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.9.33 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.9.33 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 20:57:50.791772 2026] [security2:error] [pid 1559593:tid 1559593] [client 65.111.9.33:20737] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "redtraffic.com"] [uri "/test/.git/config"] [unique_id "aZUcnss6xtETKO9IAVb4_gAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 00:47:00 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.9.33 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.9.33 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 19:46:56.149382 2026] [security2:error] [pid 32358:tid 32358] [client 65.111.9.33:25867] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pattymoorearmstrong.com"] [uri "/.env.staging"] [unique_id "aZUMAIc0f1v7WgYgnI0j-AAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-01-14 20:00:56 (5 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 TPI-Abuse	2026-01-13 12:34:27 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.9.33 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.9.33 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 13 07:34:23.386713 2026] [security2:error] [pid 17729:tid 17729] [client 65.111.9.33:44361] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jsommer.com"] [uri "/.git/HEAD"] [unique_id "aWY7zwhYIeCgMhlJERu-nAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2025-12-28 03:06:03 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇮🇹 VHosting	2025-12-23 10:48:31 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
Anonymous	2025-12-09 03:27:52 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-25 06:35:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.9.33 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.9.33 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:35:44.955966 2025] [security2:error] [pid 29036:tid 29036] [client 65.111.9.33:55121] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.sublimetiles.com"] [uri "/.git/HEAD"] [unique_id "aSVOQJDvVsRq2MJeDR6GggAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:14:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.9.33 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.9.33 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:14:54.797440 2025] [security2:error] [pid 22662:tid 22662] [client 65.111.9.33:16235] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "eastsidecellostudio.com"] [uri "/.svn/wc.db"] [unique_id "aSU7Tps9rh-kJkn0TlG64wAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 oncord	2025-11-20 16:47:17 (7 months ago)	Form spam	Web Spam
Anonymous	2025-11-17 11:59:03 (7 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.17 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.17 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-11-15 20:56:45 (7 months ago)	Attempted brute force login to web vpn 3 time(s); last attempt for 2025.11.15 is noted in report tim ... show more Attempted brute force login to web vpn 3 time(s); last attempt for 2025.11.15 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-11-13 21:57:02 (7 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
Anonymous	2025-11-02 19:17:33 (7 months ago)	Attempted brute force login to web vpn 4 time(s); last attempt for 2025.11.02 is noted in report tim ... show more Attempted brute force login to web vpn 4 time(s); last attempt for 2025.11.02 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 40 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 195.160.220.149

🇺🇸 172.253.2.26

🇭🇰 152.32.188.207

🇰🇷 106.251.244.178

🇮🇳 98.70.50.166

🇺🇸 40.124.174.155

🇺🇸 195.184.76.22

🇵🇾 181.127.193.50

🇺🇸 162.216.150.247

🇺🇸 162.216.150.86

🇩🇪 69.5.169.163

🇺🇸 50.6.248.168

🇳🇱 45.148.10.147

🇭🇰 43.132.227.251

🇸🇦 37.127.2.60

🇨🇳 203.25.208.110

🇺🇸 193.36.225.22

🇺🇸 162.216.150.199

🇺🇸 162.216.150.24

🇮🇳 152.59.152.64