JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.9.60

65.111.9.60 was found in our database!

This IP was reported 37 times. Confidence of Abuse is 17%: ?

17%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.9.60

Whois 65.111.9.60

IP Abuse Reports for 65.111.9.60:

This IP address has been reported a total of 37 times from 21 distinct sources. 65.111.9.60 was first reported on July 3rd 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-20 15:30:02 (3 weeks ago)	suspicious request in access.log	Web App Attack
🇨🇭 backslash	2026-05-11 16:48:01 (4 weeks ago)	block ruleset Badbot using very old user-agents 5CF3CDB778C7D82564405B86B9242E612F378C68	Bad Web Bot
🇨🇭 4server	2026-05-01 11:05:17 (1 month ago)	[FriMay0113:05:10.4211032026][security2:error][pid3238931:tid3239736][client65.111.9.60:0]ModSecurit ... show more [FriMay0113:05:10.4211032026][security2:error][pid3238931:tid3239736][client65.111.9.60:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"www.ristrutturazione-case.ch.xn--walter-wrndli-pmb.ch\"][uri\"/\"][unique_id\"afSI5sGqoVKnP-N9J8tz_gAAAQk\"] show less	Hacking Web App Attack
🇺🇸 Mundo Bueno	2026-04-27 03:35:04 (1 month ago)	[ISILIA Protection v2.1] Tentative d'accès: /s3cmd.ini \| Pays: US \| UA: Mozilla/5.0 (Linux; Android ... show more [ISILIA Protection v2.1] Tentative d'accès: /s3cmd.ini \| Pays: US \| UA: Mozilla/5.0 (Linux; Android 9; POT-LX1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.89 M show less	Hacking Web App Attack
🇸🇪 KIDOS	2026-03-05 12:57:51 (3 months ago)	malicious activity	Web App Attack
🇳🇱 i-turnradio.nl	2026-02-25 06:14:42 (3 months ago)	2026-02-25 07:14:42 (CET) ~ Blocked by abusescan risk assessment	Web App Attack
🇬🇧 Swiptly	2026-01-21 21:46:32 (4 months ago)	Bot scanning for environment files .env .env/\* ...	Web App Attack
🇺🇸 TPI-Abuse	2026-01-21 05:57:09 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.9.60 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.9.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 21 00:57:05.633846 2026] [security2:error] [pid 29292:tid 29292] [client 65.111.9.60:18939] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "askthetarotcards.com"] [uri "/.env"] [unique_id "aXBqsY6gH2fLLTxnv08VRwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:49 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇧🇷 hostseries	2025-12-24 06:33:46 (5 months ago)	Trigger: LF_DISTATTACK	Brute-Force
Anonymous	2025-12-13 20:56:27 (5 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-27 19:34:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.9.60 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.9.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 14:34:18.194074 2025] [security2:error] [pid 31336:tid 31336] [client 65.111.9.60:32793] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "badconsultingllc.com"] [uri "/.svn/wc.db"] [unique_id "aSinuoLkOZxnTNq7le14DgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2025-11-26 10:23:44 (6 months ago)	Bot scanning for environment files .env	Web Spam Web App Attack
🇿🇦 Tokolosh Hunters	2025-11-25 12:29:45 (6 months ago)	AutoBlockWindow-Known bad useragent query-2025-11-25 12:29:44	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-25 06:24:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.9.60 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.9.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:24:49.147703 2025] [security2:error] [pid 20417:tid 20417] [client 65.111.9.60:10863] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.aarce.me"] [uri "/.svn/wc.db"] [unique_id "aSVLsYH4ADf5Oxe-Si1MwgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 37 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 34.30.28.196

🇺🇸 205.210.31.98

🇺🇸 172.245.11.15

🇺🇸 147.135.114.224

🇭🇰 118.193.44.184

🇧🇷 45.205.1.241

🇸🇬 43.163.4.156

🇺🇸 34.20.227.51

🇺🇸 205.210.31.96

🇺🇸 205.210.31.89

🇬🇧 204.217.245.175

🇩🇪 193.36.84.88

🇺🇸 192.155.81.124

🇮🇩 144.79.241.10

🇵🇰 139.135.43.5

🇺🇸 138.219.123.27

🇱🇹 81.30.98.44

🇨🇳 61.141.113.229

🇨🇳 60.191.137.103

🇳🇱 45.148.10.147