JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.10.247

65.111.10.247 was found in our database!

This IP was reported 50 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.10.247

Whois 65.111.10.247

IP Abuse Reports for 65.111.10.247:

This IP address has been reported a total of 50 times from 19 distinct sources. 65.111.10.247 was first reported on June 27th 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 backslash	2026-06-21 02:36:00 (2 days ago)	block ruleset 51D5331ECDCF70C2C6410C0D0EEB5F69B17B5F56	Bad Web Bot
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
Anonymous	2026-03-03 07:26:09 (3 months ago)	"GET /.svn/wc.db HTTP/1.1"	Hacking Web App Attack
🇩🇪 Vegascosmetics	2026-02-15 22:50:20 (4 months ago)	Kingcopy(AI-IDS):IP does Multiple AWS Environment Abuse	Hacking Web App Attack
🇬🇧 consul.to	2026-02-15 12:49:09 (4 months ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:47:21 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.10.247 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.10.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:47:14.491788 2026] [security2:error] [pid 13407:tid 13407] [client 65.111.10.247:38131] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "toddgoranson.com"] [uri "/.env"] [unique_id "aZHAUpUYG8aSZXeLMPCqeQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:10:14 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.10.247 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.10.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:10:06.345130 2026] [security2:error] [pid 25857:tid 25857] [client 65.111.10.247:23061] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tedmccachren.com"] [uri "/.env.save"] [unique_id "aZG3npMvkwszHKegBMDrAwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:57:21 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.10.247 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.10.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:57:15.784265 2026] [security2:error] [pid 1547:tid 1547] [client 65.111.10.247:36289] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "switkoprofiri.org"] [uri "/admin/.git/config"] [unique_id "aZFgO6bUYhKN6O09JfFumgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-15 05:34:31 (4 months ago)	Blocking for trying to access an exploit file: /.env.local	Hacking
🇺🇸 TPI-Abuse	2026-02-15 04:53:47 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.10.247 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.10.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:53:42.609579 2026] [security2:error] [pid 6615:tid 6615] [client 65.111.10.247:56521] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "suffolksystems.com"] [uri "/app/.git/config"] [unique_id "aZFRVtgTRiUZ8VVlR75KeQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:53:13 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.10.247 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.10.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:53:10.532433 2026] [security2:error] [pid 16971:tid 16971] [client 65.111.10.247:20035] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nancybarrera.com"] [uri "/app/.env"] [unique_id "aZE1FmO885lhDf_9h-M8XQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:43:37 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.10.247 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.10.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:43:33.039024 2026] [security2:error] [pid 18682:tid 18682] [client 65.111.10.247:60519] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "my-pitch.org"] [uri "/test/.git/config"] [unique_id "aZEkxbZBRadh7UW2XnNanQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-02-15 00:50:07 (4 months ago)	Try to access /new/.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:40:49 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.10.247 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.10.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:40:43.354383 2026] [security2:error] [pid 184123:tid 184259] [client 65.111.10.247:36757] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "movetodc.com"] [uri "/new/.git/config"] [unique_id "aZEWC4Mh4IJV0omYQjNWeAAAAlU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-15 00:30:11 (4 months ago)	HACK	Brute-Force

Showing 1 to 15 of 50 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇭 209.99.191.19

🇺🇬 196.0.124.62

🇦🇷 186.13.120.64

🇷🇴 185.158.71.170

🇨🇭 172.161.73.175

🇩🇪 167.94.146.54

🇯🇵 139.162.70.53

🇳🇬 102.89.32.69

🇺🇸 72.253.251.7

🇦🇺 52.62.65.98

🇳🇱 45.148.10.151

🇷🇺 37.110.142.162

🇧🇪 35.233.4.30

🇺🇸 20.65.192.71

🇺🇸 20.14.74.238

🇦🇷 206.85.42.136

🇨🇴 167.0.134.95

🇺🇸 162.216.150.186

🇮🇩 103.165.139.145

🇺🇸 72.241.202.216