JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.8.237

65.111.8.237 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.8.237

Whois 65.111.8.237

IP Abuse Reports for 65.111.8.237:

This IP address has been reported a total of 27 times from 14 distinct sources. 65.111.8.237 was first reported on July 3rd 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-04-22 15:21:49 (1 month ago)	Attempt to scan vulnerabilities	Hacking
🇺🇸 TPI-Abuse	2026-02-18 03:48:03 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.237 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 22:47:55.727474 2026] [security2:error] [pid 3485:tid 3500] [client 65.111.8.237:32797] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "robertbellamystudio.com"] [uri "/site/.git/config"] [unique_id "aZU2a30HEozRRO51JQcXKwAAAI0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 01:00:41 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.237 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 20:00:37.008428 2026] [security2:error] [pid 17487:tid 17487] [client 65.111.8.237:15859] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pbeyer.org"] [uri "/.env.local"] [unique_id "aZUPNbCx06B5Nb738h2eZAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 i-turnradio.nl	2026-01-28 23:50:48 (4 months ago)	2026-01-29 00:50:48 (CET) ~ Blocked by abusescan risk assessment	Web App Attack
🇬🇧 Apache	2026-01-17 03:29:59 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.237 (US/United States/-): 5 in the las ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.237 (US/United States/-): 5 in the last 300 secs show less	Brute-Force Web App Attack
🇦🇺 screwlooseit.com.au	2026-01-08 18:20:07 (5 months ago)	Blocked by CSF 13 firewall - Rule: WPLOGIN US/United States/-	Web App Attack
🇦🇺 MAGIC	2025-12-19 00:11:01 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2025-12-01 23:23:20 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-24 07:24:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.237 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:24:17.048813 2025] [security2:error] [pid 3466657:tid 3466657] [client 65.111.8.237:17253] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.jacksonholetim.individualhealth.com"] [uri "/.env"] [unique_id "aSQIIcJA4gE4oHA_PSWAdQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:00:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.237 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:00:26.163115 2025] [security2:error] [pid 32729:tid 32729] [client 65.111.8.237:44811] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "alianzallc.com"] [uri "/.svn/wc.db"] [unique_id "aSP0eoF2ChIsIawdhEb56QAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:44:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.237 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:44:18.282187 2025] [security2:error] [pid 1060:tid 1060] [client 65.111.8.237:58185] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.demodexcure.com"] [uri "/.svn/wc.db"] [unique_id "aSPwssjgoX95CrsIxQP8RwAAADs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:19:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.237 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:19:52.571302 2025] [security2:error] [pid 9459:tid 9459] [client 65.111.8.237:42335] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.evelia.com"] [uri "/.env"] [unique_id "aSPq-MFlhiMS7py35yfiVwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 03:44:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.237 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:44:46.405785 2025] [security2:error] [pid 19349:tid 19349] [client 65.111.8.237:54529] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "2ezgroup.com"] [uri "/.git/HEAD"] [unique_id "aSPUrtidenOrRDIc3lm5MgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-14 01:27:28 (7 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇺🇸 fbarela	2025-11-07 23:01:42 (7 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 168.196.31.42

🇷🇴 80.94.92.168

🇬🇧 45.148.10.217

🇬🇧 35.203.210.240

🇺🇸 2a04:c300:400::1ec

🇨🇴 200.118.63.41

🇺🇸 162.216.149.174

🇬🇧 144.126.203.73

🇰🇷 119.203.231.121

🇧🇩 114.130.157.60

🇸🇬 94.231.206.205

🇮🇷 79.175.176.177

🇺🇸 65.49.20.66

🇵🇱 54.38.52.18

🇸🇬 47.82.15.206

🇺🇸 216.218.206.68

🇸🇬 213.35.108.147

🇧🇷 205.210.31.175

🇧🇷 186.235.132.227

🇳🇱 176.65.148.81