JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.9.248

65.111.9.248 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 11%: ?

11%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.9.248

Whois 65.111.9.248

IP Abuse Reports for 65.111.9.248:

This IP address has been reported a total of 26 times from 15 distinct sources. 65.111.9.248 was first reported on July 11th 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 solution.it	2026-06-02 07:34:30 (4 days ago)	[Tue Jun 02 09:34:29.992877 2026] [php7:error] [pid 404881:tid 404881] [client 65.111.9.248:20009] s ... show more [Tue Jun 02 09:34:29.992877 2026] [php7:error] [pid 404881:tid 404881] [client 65.111.9.248:20009] script '/var/www/html/blog.solution.it/wp-login.php' not found or unable to stat show less	Web App Attack
Anonymous	2026-05-12 13:49:00 (3 weeks ago)	User rochelle failed to login	Brute-Force
Anonymous	2026-03-19 18:04:30 (2 months ago)	Forum/form spam	Web Spam
Anonymous	2026-02-28 18:08:57 (3 months ago)	Forum/form spam	Web Spam
🇬🇧 relianoid.com	2026-02-18 16:30:38 (3 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇬🇧 relianoid.com	2026-02-01 13:39:16 (4 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇺🇸 TPI-Abuse	2025-11-24 09:17:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.9.248 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.9.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:17:09.934805 2025] [security2:error] [pid 16784:tid 16784] [client 65.111.9.248:41875] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.darnorb.com"] [uri "/.svn/wc.db"] [unique_id "aSQilc_bgVTZ-3akhI5tWAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:00:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.9.248 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.9.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:00:10.380087 2025] [security2:error] [pid 13341:tid 13341] [client 65.111.9.248:42799] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.bajocamara.com"] [uri "/.env"] [unique_id "aSQQii20U8eepczopZ0-HAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:08:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.9.248 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.9.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:08:25.091099 2025] [security2:error] [pid 17059:tid 17059] [client 65.111.9.248:53517] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.christiannationalmilitia.com"] [uri "/.git/HEAD"] [unique_id "aSQEaRx-GjaoVUa0WJK71AAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:55:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.9.248 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.9.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:55:39.318921 2025] [security2:error] [pid 29421:tid 29421] [client 65.111.9.248:58145] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.flugstad.net"] [uri "/.git/HEAD"] [unique_id "aSPzWz1z6nTevMYSLbR9hQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:08:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.9.248 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.9.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:08:19.118688 2025] [security2:error] [pid 3965260:tid 3965356] [client 65.111.9.248:57887] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.seasonsgreeters.net"] [uri "/.env"] [unique_id "aSPaM6yiyKH59MCrZuH6DQAAAgQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 03:24:56 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 65.111.9.248 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 65.111.9.248 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:24:51.527232 2025] [security2:error] [pid 24465:tid 24465] [client 65.111.9.248:44777] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.virginiabeachlovebird.com"] [uri "/.env"] [unique_id "aSPQA7SZPo1RgiQVhBMj5wAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nowyouknow	2025-11-15 11:05:51 (6 months ago)	(From [email protected]) With Just 3 Clicks, You Will Be Able To Unlock All TOP AI Models with A ... show more (From [email protected]) With Just 3 Clicks, You Will Be Able To Unlock All TOP AI Models with All Versions + All Upcoming Future Versions… Without Spending A Penny … https://1x-slots.site/MultiverseAI to UNSUBSCRIBE: https://1x-slots.site/unsubscribe?domain=burlingtonfamilychiro.com Address: 209 West Street Comstock Park, MI 49321 show less	Phishing Web Spam
Anonymous	2025-11-14 17:08:45 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇩🇪 Marc	2025-10-29 21:18:27 (7 months ago)		Brute-Force

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.89

🇯🇵 207.56.225.202

🇹🇼 198.235.24.83

🇹🇼 198.235.24.80

🇬🇧 193.163.125.25

🇰🇷 183.104.220.84

🇺🇸 154.197.57.136

🇺🇸 151.240.93.164

🇺🇸 147.185.132.50

🇰🇷 114.199.37.129

🇨🇦 85.217.149.58

🇨🇳 81.69.97.55

🇺🇸 64.62.197.85

🇮🇩 36.73.185.29

🇬🇧 198.244.183.103

🇹🇼 198.235.24.77

🇬🇧 195.140.214.27

🇪🇨 186.4.240.226

🇺🇸 173.255.236.247

🇹🇼 165.154.227.8