JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.1.47

65.111.1.47 was found in our database!

This IP was reported 38 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.1.47

Whois 65.111.1.47

IP Abuse Reports for 65.111.1.47:

This IP address has been reported a total of 38 times from 15 distinct sources. 65.111.1.47 was first reported on June 28th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-03-05 08:08:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 05 03:08:01.583494 2026] [security2:error] [pid 2915:tid 2929] [client 65.111.1.47:15801] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.howardhallis.com"] [uri "/.git/objects/0b/6273445a830ebbb45b3715a3e078c062858deb"] [unique_id "aak54Wbdh7c6FWT9QFVL_wAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Petros Stefanakis	2026-01-03 16:58:42 (5 months ago)	(mod_security) mod_security triggered on hostname [redacted] 65.111.1.47 (US/United States/-)	SQL Injection
Anonymous	2025-12-07 22:24:03 (5 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-12-04 16:03:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 11:02:56.616529 2025] [security2:error] [pid 19208:tid 19208] [client 65.111.1.47:18397] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "egret.us"] [uri "/.env"] [unique_id "aTGwsEa9PazV3KG373_E3wAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Swiptly	2025-12-04 09:27:25 (6 months ago)	Bot scanning for environment files .env .env/\* ...	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:12:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:12:09.042172 2025] [security2:error] [pid 12622:tid 12622] [client 65.111.1.47:56369] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "enzeder.com"] [uri "/.env"] [unique_id "aSVIueSpsODOzFhttBS-4gAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:42:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:42:01.893263 2025] [security2:error] [pid 4680:tid 4680] [client 65.111.1.47:10231] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.eckerberg.net"] [uri "/.svn/wc.db"] [unique_id "aSUzmWjlrVHiFEHzuu3lJgAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:12:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:12:01.125538 2025] [security2:error] [pid 795:tid 795] [client 65.111.1.47:58583] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.butterflymornings.com"] [uri "/.svn/wc.db"] [unique_id "aSUskS5Jlugm0AlKWLYnzAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:51:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:51:36.232209 2025] [security2:error] [pid 6042:tid 6042] [client 65.111.1.47:42795] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.spicymilk.com"] [uri "/.git/HEAD"] [unique_id "aSUnyKdgZEOhWjxnax8zFQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:52:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:52:19.654853 2025] [security2:error] [pid 4779:tid 4779] [client 65.111.1.47:23627] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.vffv.com"] [uri "/.svn/wc.db"] [unique_id "aSUZ49WmegT1vt8gl8tKiQAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:35:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:35:19.575604 2025] [security2:error] [pid 31348:tid 31348] [client 65.111.1.47:37111] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.christianconsulting.net"] [uri "/.svn/wc.db"] [unique_id "aSUV57BboTrOpBE0xaE6-QAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:10:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:10:43.280198 2025] [security2:error] [pid 1647077:tid 1647123] [client 65.111.1.47:35553] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.afxindustries.com"] [uri "/.env"] [unique_id "aSUQI9NHCagQpGvj6qO_-QAAAlA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:32:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:32:37.129615 2025] [security2:error] [pid 16539:tid 16539] [client 65.111.1.47:28297] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.goalsnet.net"] [uri "/.git/HEAD"] [unique_id "aSUHNbOb-P3GsFo9zhUFdAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:56:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.1.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:56:10.141145 2025] [security2:error] [pid 21775:tid 21775] [client 65.111.1.47:31859] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.goodfrequencies.com"] [uri "/.git/HEAD"] [unique_id "aST-qqDUOg06a7SspuSs-AAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 Shaik Sai Meera	2025-11-25 00:55:12 (6 months ago)	IM360 WAF: Hidden file access	Brute-Force

Showing 1 to 15 of 38 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.206

🇺🇸 216.73.216.158

🇺🇸 172.84.99.159

🇺🇸 135.119.96.21

🇰🇷 118.216.88.229

🇿🇦 102.219.41.253

🇭🇰 199.45.154.145

🇳🇱 195.26.87.217

🇧🇷 187.50.226.182

🇺🇸 184.72.84.154

🇹🇿 41.59.50.173

🇰🇷 222.98.122.37

🇳🇱 195.178.110.30

🇷🇺 94.190.15.13

🇺🇸 89.208.181.46

🇺🇸 74.48.105.66

🇰🇷 59.24.133.197

🇱🇹 45.227.254.170

🇬🇧 2.123.46.159

🇫🇷 2a02:4780:27:1036:0:15dd:228d:1