JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.2.48

65.111.2.48 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 19%: ?

19%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.2.48

Whois 65.111.2.48

IP Abuse Reports for 65.111.2.48:

This IP address has been reported a total of 26 times from 16 distinct sources. 65.111.2.48 was first reported on June 28th 2024, and the most recent report was 20 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-23 04:18:13 (20 hours ago)	Web App Attack	Web App Attack
🇵🇾 armandosaucedo.me	2026-06-14 00:28:11 (1 week ago)	Threat Intelligence via ARMTI, Web Attack: GET /wp-sitemap.xml	Web App Attack
🇺🇸 mnsf	2026-05-28 22:06:30 (3 weeks ago)	Scanning/Probing (24)	Brute-Force Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇦🇺 oncord	2026-02-19 00:54:57 (4 months ago)	Form spam	Web Spam
🇮🇹 VHosting	2026-02-18 22:16:53 (4 months ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇦🇺 oncord	2026-02-15 04:34:19 (4 months ago)	Form spam	Web Spam
🇩🇪 Packets-Decreaser.NET	2026-01-16 19:02:43 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 myagent.site	2025-12-29 06:06:08 (5 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
Anonymous	2025-12-07 01:05:16 (6 months ago)	botnet	DDoS Attack
🇦🇺 MAGIC	2025-12-07 00:09:23 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2025-11-13 23:13:13 (7 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
Anonymous	2025-10-18 09:12:31 (8 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
Anonymous	2025-10-17 12:11:01 (8 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.17 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.17 is noted in report timestamp show less	Hacking Brute-Force
🇩🇪 bsoft.de	2025-10-16 06:11:56 (8 months ago)	65.111.2.48 - - [16/Oct/2025:08:11:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 426 "-" "Mozilla/4.0 (c ... show more 65.111.2.48 - - [16/Oct/2025:08:11:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 426 "-" "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)" 65.111.2.48 - - [16/Oct/2025:08:11:54 +0200] "POST /xmlrpc.php HTTP/1.1" 200 426 "-" "Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en) AppleWebKit/312.8 (KHTML, like Gecko) Safari/312.5" 65.111.2.48 - - [16/Oct/2025:08:11:53 +0200] "POST /xmlrpc.php HTTP/1.1" 200 426 "-" "Mozilla/5.0 (Linux; Android 4.4.2; G735-L03 Build/HuaweiG735-L03) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Mobile Safari/537.36" show less	Web App Attack

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.62.111.247

🇭🇰 194.187.178.221

🇳🇱 185.223.235.8

🇰🇼 94.187.171.125

🇱🇻 81.30.98.144

🇺🇸 50.190.89.138

🇺🇸 47.251.67.227

🇪🇸 45.85.137.159

🇺🇸 44.127.133.237

🇺🇸 205.210.31.64

🇲🇽 200.68.173.178

🇺🇦 176.36.146.80

🇺🇸 172.236.117.243

🇪🇸 139.47.51.52

🇨🇳 118.212.122.231

🇫🇷 91.231.89.114

🇮🇷 88.218.18.16

🇱🇻 81.30.98.49

🇳🇱 45.148.10.152

🇺🇸 44.184.33.121