JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.14.149

65.111.14.149 was found in our database!

This IP was reported 38 times. Confidence of Abuse is 9%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.14.149

Whois 65.111.14.149

IP Abuse Reports for 65.111.14.149:

This IP address has been reported a total of 38 times from 16 distinct sources. 65.111.14.149 was first reported on June 27th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Hazzard	2026-05-16 08:26:57 (3 weeks ago)	(wordpress) Failed wordpress login from 65.111.14.149 (US/United States/Virginia/Ashburn/-/[redacted ... show more (wordpress) Failed wordpress login from 65.111.14.149 (US/United States/Virginia/Ashburn/-/[redacted]): (CF_ENABLE) show less	Brute-Force
🇫🇷 masterguru	2026-05-12 05:37:20 (1 month ago)	(modsec_2000110) ModSec 2000110: Malicious username admlnlx from 65.111.14.149 (US/United States/-): ... show more (modsec_2000110) ModSec 2000110: Malicious username admlnlx from 65.111.14.149 (US/United States/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:49 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇮🇹 VHosting	2025-12-22 23:38:28 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇺🇸 TPI-Abuse	2025-11-26 10:12:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:12:17.237179 2025] [security2:error] [pid 3738190:tid 3738223] [client 65.111.14.149:23935] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "georgementzorg.aafm.us"] [uri "/.svn/wc.db"] [unique_id "aSbSgdynXzP7IZS7N5_MXwAAAMI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 04:47:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 23:47:46.237056 2025] [security2:error] [pid 5392:tid 5403] [client 65.111.14.149:28529] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.moogoob.com"] [uri "/.env"] [unique_id "aSaGcjE9pbPJjmUZUrRgvwAAAEk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:51:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:51:33.884120 2025] [security2:error] [pid 26926:tid 26926] [client 65.111.14.149:28711] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "troop698.org.nilestree.com"] [uri "/.git/HEAD"] [unique_id "aSVR9QB04jjwaIVvwfqtWQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:14:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:14:10.190189 2025] [security2:error] [pid 25424:tid 25424] [client 65.111.14.149:25129] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "archaiusmusic.com"] [uri "/.git/HEAD"] [unique_id "aSQFwmpvuVCRM809S3j1fgAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:33:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:33:09.929440 2025] [security2:error] [pid 3355183:tid 3355183] [client 65.111.14.149:26143] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.tiley.net"] [uri "/.env"] [unique_id "aSPuFZKJp8iadaTClkZvswAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:47:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:47:15.303140 2025] [security2:error] [pid 13051:tid 13051] [client 65.111.14.149:49255] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "letceteradesign.kathrynmcbride.com"] [uri "/.git/HEAD"] [unique_id "aSPjU-PJWiiFb5sr_8hPvwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:15:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:15:06.442019 2025] [security2:error] [pid 11017:tid 11017] [client 65.111.14.149:43535] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.pierrebastin.com"] [uri "/.svn/wc.db"] [unique_id "aSPbysbVtiHF7-1nuECyCgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 techboy117	2025-11-14 00:41:07 (6 months ago)	Blocking due to password spraying.	Brute-Force
🇺🇸 TPI-Abuse	2025-11-13 23:47:25 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 65.111.14.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 65.111.14.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 13 18:47:17.377530 2025] [security2:error] [pid 28990:tid 28990] [client 65.111.14.149:9235] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.yankeetownfishing.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.yankeetownfishing.com"] [uri "/s3cmd.ini"] [unique_id "aRZuBZrkUbNSv0yq2WB5-gAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-13 22:07:29 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-11-13 09:55:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 13 04:55:40.088932 2025] [security2:error] [pid 23741:tid 23765] [client 65.111.14.149:54285] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.sitetest.coldwave.net"] [uri "/config.php%7C/.env%7Csettings.py"] [unique_id "aRWrHNST4-udBQuTAb2YnQAAANY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 38 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 2400:8901::f03c:92ff:fe4c:4ec8

🇨🇳 101.206.107.245

🇵🇰 39.56.121.193

🇮🇳 223.233.85.110

🇸🇦 176.45.76.83

🇺🇸 162.141.167.39

🇹🇭 118.27.146.111

🇸🇦 85.195.134.10

🇪🇸 85.53.53.156

🇸🇪 79.138.90.195

🇩🇪 77.91.66.1

🇺🇸 74.235.84.135

🇧🇴 38.246.59.18

🇰🇭 36.37.228.57

🇮🇹 217.202.28.94

🇺🇸 207.241.173.41

🇷🇺 193.232.104.233

🇪🇨 186.121.165.101

🇧🇷 177.126.26.233

🇨🇳 171.36.7.175