JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.14.98

65.111.14.98 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 8%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.14.98

Whois 65.111.14.98

IP Abuse Reports for 65.111.14.98:

This IP address has been reported a total of 34 times from 19 distinct sources. 65.111.14.98 was first reported on July 7th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-05-09 15:01:56 (3 weeks ago)	Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severit ... show more Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-04-24 09:30:29 (1 month ago)	Multiple failed login attemps RDS-Web-Access-Server	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-23 22:40:19 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.98 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.98 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 17:40:15.392299 2026] [security2:error] [pid 29960:tid 29992] [client 65.111.14.98:51279] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "priyomhaider.priyom.us"] [uri "/.git/config"] [unique_id "aZzXT_n0N03j4tSxVuirfQAAAM0"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-23 16:40:14 (3 months ago)	Probing to gain illegal access	Web App Attack
🇵🇱 sefinek.net	2026-02-15 14:37:37 (3 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (G ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (GET) \| Endpoint: /genshin-stella-mod \| UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 YaBrowser/22.7.0 Yowser/2.5 Safari/537.36 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇱🇺 conseilgouz	2026-01-20 13:39:20 (4 months ago)	arw-Joomla User : try to access forms...	Hacking
🇺🇸 oncord	2025-12-13 09:32:06 (5 months ago)	Form spam	Web Spam
Anonymous	2025-12-12 20:51:04 (5 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-27 16:28:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.98 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.98 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 11:28:07.436908 2025] [security2:error] [pid 22915:tid 22915] [client 65.111.14.98:32059] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.angelicatrombo.gregorii.com"] [uri "/.env"] [unique_id "aSh8FwOTHLSQ0rBkfreVSwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-27 15:05:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.98 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.98 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 10:05:25.399201 2025] [security2:error] [pid 24707:tid 24707] [client 65.111.14.98:38179] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.baileylabovitz.com"] [uri "/.env"] [unique_id "aShotb_WpWCYpLqUzfJkCQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 18:55:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.98 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.98 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 13:54:55.343481 2025] [security2:error] [pid 19663:tid 19663] [client 65.111.14.98:46621] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.lollytalk.com"] [uri "/.git/HEAD"] [unique_id "aSdM_1iMfwLPbUs8-1rRrQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 18:29:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.98 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.98 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 13:29:50.378406 2025] [security2:error] [pid 28636:tid 28636] [client 65.111.14.98:48705] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.darkhorseyachting.com"] [uri "/.git/HEAD"] [unique_id "aSdHHmemtPSvvbrxLUvEFwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:30:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.98 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.98 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:30:04.167120 2025] [security2:error] [pid 1816810:tid 1816975] [client 65.111.14.98:59633] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "callaplusfirst.uoexpanse.com"] [uri "/.env"] [unique_id "aSVM7JGZcKt2mCqV6A_R0AAAAlU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:11:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.98 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.98 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:10:49.297004 2025] [security2:error] [pid 21122:tid 21122] [client 65.111.14.98:31257] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.deluxeexpress.com"] [uri "/.svn/wc.db"] [unique_id "aSVIaRdPV60JbH2MeCBcQgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:10:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.14.98 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.14.98 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:10:20.210499 2025] [security2:error] [pid 6391:tid 6391] [client 65.111.14.98:55777] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.mprise.com"] [uri "/.env"] [unique_id "aSU6PDmTcebrvrvPIxPRwgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 15.237.182.124

🇩🇪 195.63.31.78

🇺🇸 192.227.131.77

🇧🇷 152.32.199.20

🇮🇪 108.129.114.179

🇩🇪 91.98.70.204

🇺🇸 74.235.121.84

🇺🇸 66.132.186.127

🇺🇸 64.62.156.15

🇩🇪 52.58.48.215

🇳🇱 45.142.193.53

🇺🇸 18.221.179.104

🇺🇸 12.156.67.18

🇮🇷 5.239.153.35

🇦🇺 3.24.124.117

🇳🇱 64.225.81.189

🇸🇬 8.222.216.230

🇨🇳 1.15.52.154

🇺🇸 162.216.150.107

🇺🇸 162.216.150.40