JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.5.243

65.111.5.243 was found in our database!

This IP was reported 37 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.5.243

Whois 65.111.5.243

IP Abuse Reports for 65.111.5.243:

This IP address has been reported a total of 37 times from 16 distinct sources. 65.111.5.243 was first reported on July 11th 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 kosada.com	2026-06-14 21:12:18 (2 days ago)	Web password guessing	Brute-Force
🇺🇸 TPI-Abuse	2026-02-13 13:42:12 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.5.243 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.5.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:42:05.897000 2026] [security2:error] [pid 26732:tid 26732] [client 65.111.5.243:54053] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mindbodyrestored.com"] [uri "/wp/.git/config"] [unique_id "aY8qLV9TQ3G1sGv9Mp-COwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 13:13:10 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.5.243 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.5.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:13:06.140938 2026] [security2:error] [pid 29214:tid 29214] [client 65.111.5.243:27247] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lavozdominicana.com"] [uri "/dev/.git/config"] [unique_id "aY8jYiv2AEEHT--kIlJoiAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 08:00:51 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.5.243 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.5.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:00:47.436401 2026] [security2:error] [pid 14423:tid 14423] [client 65.111.5.243:29487] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "melsjukeboxes.com"] [uri "/test/.git/config"] [unique_id "aY7aL8a7TXzmTAMWXEEmKQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 mauri64	2026-02-13 05:30:13 (4 months ago)	lfd - (mod_security) mod_security (id:949110) triggered by 65.111.5.243 (-): 5 in the last 3600 secs	Brute-Force
🇺🇸 TPI-Abuse	2026-02-13 03:37:44 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.5.243 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.5.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:37:39.729888 2026] [security2:error] [pid 19395:tid 19395] [client 65.111.5.243:57341] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marijuanajoint.com"] [uri "/site/.git/config"] [unique_id "aY6cg3dJ6cMw3DLiPdnpjgAAADU"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇴 directorioeducativo.com	2026-02-12 17:47:53 (4 months ago)	GET URL: "/.env"Agent: "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"	Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 05:19:06 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.5.243 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.5.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 00:19:03.028107 2026] [security2:error] [pid 27592:tid 27592] [client 65.111.5.243:53235] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gbaker.us"] [uri "/.env.production"] [unique_id "aY1ixy1rVtg3BRGP3WskZQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 afleventoffice.com.au	2026-02-11 03:56:37 (4 months ago)	GET /admin/.git/config HTTP/1.1	Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 01:51:02 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.5.243 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.5.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 20:50:55.178068 2026] [security2:error] [pid 22716:tid 22716] [client 65.111.5.243:62881] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fusteriafontane.com"] [uri "/admin/.env"] [unique_id "aYvgf7h9PQqjrbaYLJMBjAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2025-12-23 17:20:25 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇺🇸 TPI-Abuse	2025-12-09 20:11:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.5.243 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.5.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 15:11:26.177266 2025] [security2:error] [pid 10099:tid 10099] [client 65.111.5.243:29753] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jacksonpropertyrentals.com"] [uri "/.svn/wc.db"] [unique_id "aTiCbusNR92CJsTAD50iAQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 13:14:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.5.243 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.5.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 08:13:59.259767 2025] [security2:error] [pid 22512:tid 22512] [client 65.111.5.243:57835] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ramabahama.net"] [uri "/.git/HEAD"] [unique_id "aTQsF73XAtTtmGB5rx0NbQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 11:43:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.5.243 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.5.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 06:43:00.638302 2025] [security2:error] [pid 18508:tid 18530] [client 65.111.5.243:44261] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dhsandberg.com"] [uri "/.git/HEAD"] [unique_id "aTLFRE6QxcYcOHsrjFUFYwAAAMg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 10:16:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.5.243 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.5.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 05:16:20.129628 2025] [security2:error] [pid 30511:tid 30511] [client 65.111.5.243:51065] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "poohippie.com"] [uri "/.git/HEAD"] [unique_id "aTKw9MnJXcXPiaP5SOzH0wAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 37 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 182.95.111.170

🇸🇦 172.70.203.142

🇺🇸 162.216.149.128

🇨🇳 122.190.152.163

🇨🇳 112.239.67.76

🇨🇳 112.49.47.108

🇺🇸 107.150.1.208

🇮🇳 103.199.202.184

🇺🇸 71.6.233.2

🇮🇳 66.116.224.161

🇳🇱 45.156.128.8

🇰🇷 220.124.208.27

🇧🇷 172.70.236.142

🇩🇿 172.69.238.150

🇨🇳 123.173.76.46

🇩🇪 69.5.169.63

🇺🇸 195.184.76.115

🇲🇽 187.191.48.24

🇮🇳 172.69.178.30

🇮🇸 172.69.144.172