JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.26.113

65.111.26.113 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 36%: ?

36%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.26.113

Whois 65.111.26.113

IP Abuse Reports for 65.111.26.113:

This IP address has been reported a total of 18 times from 15 distinct sources. 65.111.26.113 was first reported on July 11th 2024, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 bpolson	2026-06-15 17:12:05 (4 hours ago)	WordPress Hacking/Scanning. (s1)	Hacking Web App Attack
🇱🇻 garmtech.com	2026-06-12 16:57:46 (3 days ago)	IM360 WAF: Prohibited WordPress username login/registration	Web App Attack
🇫🇷 ELYAZ	2026-06-12 02:37:29 (3 days ago)	(y4) Failed scan -byebye- from 65.111.26.113 (ES/Spain/-): (CF_ENABLE)	Hacking
Anonymous	2026-06-11 18:24:47 (4 days ago)	2026-06-11T20:24:47.115773+02:00 zanati wp(bikeschool.co.za)[1043138]: Blocked authentication attemp ... show more 2026-06-11T20:24:47.115773+02:00 zanati wp(bikeschool.co.za)[1043138]: Blocked authentication attempt for administrator from 65.111.26.113 ... show less	Web App Attack
🇬🇷 setupgr	2026-06-11 05:46:53 (4 days ago)	(mod_security) mod_security (id:900001) triggered by 65.111.26.113: 1 in the last 86400 secs; Ports: ... show more (mod_security) mod_security (id:900001) triggered by 65.111.26.113: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Thu Jun 11 08:46:48.830751 2026] [security2:error] [pid 2066467:tid 2066671] [client 65.111.26.113:62339] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|alloweddomain2\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: mail.cpanagiotou.gr"] [severity "CRITICAL"] [tag "security"] [hostname "mail.cpanagiotou.gr"] [uri "/wp-login.php"] [unique_id "aipLyHN0xdA8CUhjxYDzTQAAAVQ"], referer: https://mail.cpanagiotou.gr/wp-login.php show less	Port Scan
🇳🇱 homeshowdomain.nl	2026-05-18 21:59:12 (3 weeks ago)	Auto-ban: >3000 req/min op 2026-05-18	Web App Attack SSH Hacking
🇫🇷 Sklurk	2026-05-07 00:27:39 (1 month ago)	Web App Attack	Web App Attack
Anonymous	2026-01-03 13:42:45 (5 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.03 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.03 is noted in report timestamp show less	Hacking Brute-Force
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:14 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 COMPLEX	2025-12-14 23:07:46 (6 months ago)	Triggered Cloudflare WAF (l7ddos) from DE. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH) Protoc ... show more Triggered Cloudflare WAF (l7ddos) from DE. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH) Protocol: HTTP/2 (GET method) Endpoint: / show less	DDoS Attack Bad Web Bot
Anonymous	2025-11-21 18:31:03 (6 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/21 12:22:13	Port Scan Brute-Force Exploited Host Web App Attack
🇱🇻 garmtech.com	2025-10-26 07:06:28 (7 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 09-06.65.111.26.113.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 09-06.65.111.26.113.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇨🇿 lp	2024-11-25 10:37:46 (1 year ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 65.111.26.113 2024-11-25T10:57:46+01: ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 65.111.26.113 2024-11-25T10:57:46+01:00 vpn Access-Reject 'boksova' station: 65.111.26.113 auth-type: PAP realm: vse.cz nas: <redacted> called: <redacted> => address-pool: pacioli_pool msg: '<redacted>' show less	Brute-Force Web App Attack
Anonymous	2024-10-30 13:29:19 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack
Anonymous	2024-08-19 23:35:22 (1 year ago)	BruteForce IMAP/POP3	Brute-Force

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 195.178.110.30

🇳🇱 176.65.139.94

🇩🇪 165.22.82.165

🇺🇸 147.185.132.79

🇺🇸 66.132.224.30

🇮🇹 188.241.66.227

🇸🇬 165.22.254.227

🇺🇸 165.22.180.136

🇨🇳 111.228.10.226

🇩🇪 82.165.109.70

🇸🇿 69.63.77.146

🇩🇪 69.5.169.117

🇬🇧 62.60.130.234

🇱🇹 62.60.130.186

🇱🇹 62.60.130.82

🇳🇱 45.148.10.152

🇨🇦 34.118.184.123

🇺🇸 34.86.192.214

🇨🇳 14.29.214.161

🇨🇳 222.186.68.153