JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.26.248

65.111.26.248 was found in our database!

This IP was reported 50 times. Confidence of Abuse is 93%: ?

93%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.26.248

Whois 65.111.26.248

IP Abuse Reports for 65.111.26.248:

This IP address has been reported a total of 50 times from 31 distinct sources. 65.111.26.248 was first reported on July 9th 2024, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇹 Malta	2026-06-26 23:54:24 (8 hours ago)	65.111.26.248 - - [27/Jun/2026:01:54:24 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows N ... show more 65.111.26.248 - - [27/Jun/2026:01:54:24 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:118.0) Gecko/20100101 Firefox/118.0" show less	Hacking Web App Attack
🇲🇹 Malta	2026-06-24 16:07:37 (2 days ago)	65.111.26.248 - - [24/Jun/2026:18:07:37 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows N ... show more 65.111.26.248 - - [24/Jun/2026:18:07:37 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Hacking Web App Attack
🇬🇧 poundawebsiteltd	2026-06-23 18:03:09 (3 days ago)	WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 65.111.26.248 - - [23/Jun/2026:19:03:05 +0100] P ... show more WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 65.111.26.248 - - [23/Jun/2026:19:03:05 +0100] POST /wp-login.php HTTP/1.1 200 7361 https://[REDACTED_DOMAIN]/wp-login.php Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36 show less	Web App Attack
🇩🇪 Spiderpiggy	2026-06-23 17:26:31 (3 days ago)	Automatically reported via Blackhole honeypot on games4you.be. Attempted access to restricted endpoi ... show more Automatically reported via Blackhole honeypot on games4you.be. Attempted access to restricted endpoint: /wp-login.php show less	Brute-Force Bad Web Bot SSH
🇫🇷 ELYAZ	2026-06-23 15:12:11 (3 days ago)	(y4) Failed scan -byebye- from 65.111.26.248 (ES/Spain/-): (CF_ENABLE)	Hacking
Anonymous	2026-06-22 22:54:44 (4 days ago)	[ns67.kdns.gr] httpd-login-spray-site: sites=kapaweb.gr; logs=/var/www/vhosts/kapaweb.gr/logs/access ... show more [ns67.kdns.gr] httpd-login-spray-site: sites=kapaweb.gr; logs=/var/www/vhosts/kapaweb.gr/logs/access_ssl_log,/var/www/vhosts/system/kapaweb.gr/logs/access_ssl_log; samples=site_wide=true \| distinct_ips=38 \| /wp-login.php show less	Hacking Web App Attack
🇲🇹 Malta	2026-06-22 16:53:46 (4 days ago)	65.111.26.248 - - [22/Jun/2026:18:53:45 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh ... show more 65.111.26.248 - - [22/Jun/2026:18:53:45 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:119.0) Gecko/20100101 Firefox/119.0" show less	Hacking Web App Attack
🇩🇪 london2038.com	2026-06-22 10:44:59 (4 days ago)	Attacking WordPress 65.111.26.248 - - [22/Jun/2026:12:44:55 +0200] "POST /wp-login.php HTTP/1.1" 503 ... show more Attacking WordPress 65.111.26.248 - - [22/Jun/2026:12:44:55 +0200] "POST /wp-login.php HTTP/1.1" 503 19311 "https://<REDACTED>/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" show less	Brute-Force Web App Attack
🇭🇳 unph	2026-06-22 10:41:20 (4 days ago)	Intento de acceso sospechoso bloqueado por AbuseIPDB Blocker Plugin	Brute-Force
🇫🇷 ELYAZ	2026-06-20 21:48:04 (6 days ago)	(y4) Failed scan -byebye- from 65.111.26.248 (ES/Spain/-): (CF_ENABLE)	Hacking
🇮🇩 zam	2026-06-20 21:10:31 (6 days ago)	65.111.26.248 - - [20/Jun/2026:21:10:22 +0000] "POST /wp-login.php HTTP/1.1" 404 81174	Web App Attack
🇬🇷 setupgr	2026-06-20 01:02:34 (1 week ago)	(mod_security) mod_security (id:900001) triggered by 65.111.26.248 (ES/Spain/Madrid/Madrid/-/[AS2003 ... show more (mod_security) mod_security (id:900001) triggered by 65.111.26.248 (ES/Spain/Madrid/Madrid/-/[AS200373 DREI-K-TECH-GMBH]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sat Jun 20 04:02:33.090821 2026] [security2:error] [pid 202885:tid 202915] [client 65.111.26.248:40673] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "75"] [id "900001"] [msg "Blocked WP Login attempt on domain: villa-izabela.com"] [severity "CRITICAL"] [tag "security"] [hostname "villa-izabela.com"] [uri "/wp-login.php"] [unique_id "ajXmqUrlp52aw72Tw8d70QAAAQM"], referer: https://villa-izabela.com/wp-login.php show less	Port Scan
Anonymous	2026-06-20 00:55:18 (1 week ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Web App Attack Brute-Force Bad Web Bot
🇬🇧 poundawebsiteltd	2026-06-19 23:52:24 (1 week ago)	WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 65.111.26.248 - - [20/Jun/2026:00:52:19 +0100] P ... show more WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 65.111.26.248 - - [20/Jun/2026:00:52:19 +0100] POST /wp-login.php HTTP/1.1 200 7364 https://[REDACTED_DOMAIN]/wp-login.php Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 show less	Web App Attack
🇦🇺 QT	2026-06-19 08:11:57 (1 week ago)	Unauthorised WordPress admin login attempted at 2026-06-19 18:11:51 +1000	Web App Attack

Showing 1 to 15 of 50 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 195.178.110.30

🇬🇧 35.203.210.174

🇺🇸 2607:f8b0:4001:c6a::129

🇲🇽 187.192.86.153

🇦🇲 185.150.164.109

🇫🇮 147.185.133.99

🇵🇰 125.209.101.122

🇨🇳 124.131.128.105

🇨🇳 123.52.49.135

🇧🇩 103.66.168.69

🇷🇺 85.30.212.23

🇬🇧 35.203.211.46

🇬🇧 35.203.211.34

🇬🇧 35.203.211.33

🇨🇳 27.8.44.168

🇷🇴 2.57.121.112

🇸🇬 188.166.183.133

🇳🇱 176.65.139.102

🇨🇳 123.191.155.238

🇨🇳 123.191.147.115