JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.7.39

65.111.7.39 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 10%: ?

10%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.7.39

Whois 65.111.7.39

IP Abuse Reports for 65.111.7.39:

This IP address has been reported a total of 28 times from 13 distinct sources. 65.111.7.39 was first reported on June 27th 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 TheSaint	2026-05-31 13:52:27 (4 days ago)	PrestaShop Security Module: Calls WordPress paths probing known vulnerabilities	Web App Attack
🇬🇧 PeravixGroup	2026-05-07 11:03:36 (4 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: CRITICAL. Aaran.cloud show less	Hacking Exploited Host
🇦🇺 MAGIC	2026-03-15 00:18:35 (2 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇬🇧 relianoid.com	2026-02-24 09:06:05 (3 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇺🇸 TPI-Abuse	2026-02-10 05:28:20 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.39 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 00:28:12.579426 2026] [security2:error] [pid 21676:tid 21676] [client 65.111.7.39:40649] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "knowledgepreservationalliance.com"] [uri "/v2/.git/config"] [unique_id "aYrB7DOQE98clwaS21IypwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 04:30:09 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.39 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 23:30:05.324391 2026] [security2:error] [pid 13554:tid 13554] [client 65.111.7.39:35755] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "icro.net"] [uri "/backend/.env"] [unique_id "aYq0TaSZwdKJoZ3A_5TGoQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:21:38 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.39 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:21:32.597729 2026] [security2:error] [pid 23088:tid 23088] [client 65.111.7.39:22813] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "maerynray.com"] [uri "/new/.git/config"] [unique_id "aYqkPIoB1QTMV7Q5_kdOQgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 02:58:40 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.39 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 21:58:33.819212 2026] [security2:error] [pid 9829:tid 9856] [client 65.111.7.39:56419] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "i-masmx.com"] [uri "/.env.production"] [unique_id "aYqe2U2gXiz6axLwsMS62AAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-09 22:59:04 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-09	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-02-09 22:20:45 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.39 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:20:37.477144 2026] [security2:error] [pid 23947:tid 23947] [client 65.111.7.39:13857] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hotspringstips.com"] [uri "/api/.env"] [unique_id "aYpdtXQ5RsDurDUOyG2DygAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 21:09:03 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.39 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:08:46.255287 2026] [security2:error] [pid 22892:tid 22892] [client 65.111.7.39:14179] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "karenbernsteinlaw.net"] [uri "/new/.git/config"] [unique_id "aYpM3sVrwF3fp39CeCblfQAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 20:52:10 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.39 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:52:03.241441 2026] [security2:error] [pid 1442593:tid 1442593] [client 65.111.7.39:56555] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hookedupfishing.net"] [uri "/site/.git/config"] [unique_id "aYpI88MOzXRRh_Y74rfvnwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:49 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇦🇺 MAGIC	2025-12-23 02:10:26 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-25 02:35:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.7.39 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 65.111.7.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:35:19.129469 2025] [security2:error] [pid 19304:tid 19304] [client 65.111.7.39:37207] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.tonysargbook.com"] [uri "/.env"] [unique_id "aSUV5ytadceqH3xP6bGRkwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 160.250.186.97

🇩🇪 54.36.108.162

🇬🇧 195.140.214.23

🇧🇷 170.238.160.191

🇩🇪 151.243.11.34

🇺🇸 150.136.58.42

🇨🇳 118.250.39.153

🇻🇳 116.110.218.41

🇨🇳 106.53.88.57

🇺🇸 91.193.232.244

🇺🇸 34.223.46.205

🇺🇸 34.134.237.244

🇺🇸 216.180.246.236

🇬🇧 193.163.125.254

🇬🇧 152.32.198.93

🇵🇰 39.57.69.65

🇰🇷 1.214.214.114

🇬🇧 193.163.125.175

🇮🇳 171.61.26.173

🇭🇰 152.32.171.213