JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.8.240

65.111.8.240 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.8.240

Whois 65.111.8.240

IP Abuse Reports for 65.111.8.240:

This IP address has been reported a total of 30 times from 14 distinct sources. 65.111.8.240 was first reported on June 28th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 masterguru	2026-04-03 11:00:33 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 65.111.8.240 (US/United States/-): 1 in the la ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 65.111.8.240 (US/United States/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇫🇷 masterguru	2026-03-27 10:24:54 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 65.111.8.240 (US/United States/-): 1 in the la ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 65.111.8.240 (US/United States/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇱🇻 garmtech.com	2026-03-20 17:52:10 (2 months ago)	IM360 WAF: Attempt to upload malware	Hacking
🇺🇸 TPI-Abuse	2026-02-18 00:48:27 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.240 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 19:48:21.407112 2026] [security2:error] [pid 23561:tid 23561] [client 65.111.8.240:23857] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "paulbihn.com"] [uri "/frontend/.env"] [unique_id "aZUMVa8s4Q93vAY-09jIpQAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2025-12-09 14:11:01 (5 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 65.111.8.240 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 65.111.8.240 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 19:52:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.240 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 14:52:18.322977 2025] [security2:error] [pid 11559:tid 11565] [client 65.111.8.240:15499] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marilynoakes.com"] [uri "/.svn/wc.db"] [unique_id "aTXa8g6LywxotVdtGr85hAAAAUQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 jjnxpct	2025-12-07 04:54:45 (6 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.env (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .env found within REQUEST_FILENAME: /.env] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 20:03:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.240 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 15:03:44.431004 2025] [security2:error] [pid 1666:tid 1666] [client 65.111.8.240:35927] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "websitesforauthors.design"] [uri "/.git/HEAD"] [unique_id "aTM6oKA2YQwpsiQ480pxbAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 16:22:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.240 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 11:22:08.079852 2025] [security2:error] [pid 21955:tid 21955] [client 65.111.8.240:30755] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brunerpamela.com"] [uri "/.git/HEAD"] [unique_id "aTMGsDKaL6dwtMfdhF51KwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 04:19:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.240 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 23:19:30.409046 2025] [security2:error] [pid 15292:tid 15292] [client 65.111.8.240:41719] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stitchguild.com"] [uri "/.env"] [unique_id "aTJdUjDBAIYCaEJAReFg1QAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:59:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.240 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:59:49.723637 2025] [security2:error] [pid 31914:tid 31914] [client 65.111.8.240:20057] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.soulwolf.com"] [uri "/.git/HEAD"] [unique_id "aSQCZb6vPC2cc5jtgGOK7AAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:06:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.240 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:06:20.218585 2025] [security2:error] [pid 7045:tid 7045] [client 65.111.8.240:28893] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.murpf.com"] [uri "/.git/HEAD"] [unique_id "aSP13MVhoMUnv-cZROAANwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:38:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.240 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:38:15.665419 2025] [security2:error] [pid 27402:tid 27402] [client 65.111.8.240:54263] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.j3pr.com"] [uri "/.env"] [unique_id "aSPhN8R0nheWievawz5XTwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 03:47:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.8.240 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.8.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:47:16.764911 2025] [security2:error] [pid 10902:tid 10902] [client 65.111.8.240:44795] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.perthdps.com"] [uri "/.git/HEAD"] [unique_id "aSPVRBVGBqoIVMGXLmLi2gAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-19 20:33:34 (6 months ago)	Attempted brute force login to web vpn 3 time(s); last attempt for 2025.11.19 is noted in report tim ... show more Attempted brute force login to web vpn 3 time(s); last attempt for 2025.11.19 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 195.184.76.136

🇹🇼 175.182.39.145

🇯🇵 172.253.236.17

🇺🇸 162.216.150.131

🇩🇪 156.236.31.85

🇺🇸 150.107.38.37

🇺🇸 147.185.132.67

🇮🇩 103.171.163.203

🇺🇸 103.168.67.107

🇸🇬 101.47.140.137

🇩🇪 69.5.169.167

🇪🇸 68.221.67.160

🇱🇹 62.60.130.129

🇫🇷 23.180.120.135

🇳🇱 2.27.7.107

🇳🇱 151.243.176.153

🇺🇸 103.168.66.237

🇺🇸 103.168.66.141

🇰🇪 102.216.154.6

🇱🇹 84.32.97.169