JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.28.202

65.111.28.202 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 26%: ?

26%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.28.202

Whois 65.111.28.202

IP Abuse Reports for 65.111.28.202:

This IP address has been reported a total of 17 times from 12 distinct sources. 65.111.28.202 was first reported on July 9th 2024, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 pm33	2026-06-03 16:18:18 (3 days ago)	Wordpress login attempts	Brute-Force
🇫🇷 ELYAZ	2026-05-30 17:46:30 (1 week ago)	(y4) Failed scan -byebye- from 65.111.28.202 (IT/Italy/-): (CF_ENABLE)	Hacking
🇲🇹 Malta	2026-05-29 18:15:36 (1 week ago)	65.111.28.202 - - [29/May/2026:20:15:35 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh ... show more 65.111.28.202 - - [29/May/2026:20:15:35 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇺🇸 lostswordfish.com	2026-05-22 20:28:03 (2 weeks ago)	Wordfence waf block on wp20190711M4	Web App Attack
🇨🇦 SSH-Admin	2026-02-07 17:12:28 (3 months ago)	Probing for Exploits	Exploited Host Web App Attack
Anonymous	2026-01-05 19:59:37 (5 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.05 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.05 is noted in report timestamp show less	Hacking Brute-Force
🇨🇦 SSH-Admin	2025-12-27 13:45:08 (5 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-11-29 22:52:07 (6 months ago)	WP Login Scan Activities	Web App Attack
🇮🇩 Burayot	2025-11-05 22:56:43 (7 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 65.111.28.202 (IT/Italy/-): 2 in th ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 65.111.28.202 (IT/Italy/-): 2 in the last 3600 secs show less	Web App Attack
Anonymous	2025-10-29 23:12:37 (7 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇮🇩 BPS-StatisticsIndonesia	2025-10-10 10:49:15 (7 months ago)	WP Login Scan Activities	Web App Attack
🇺🇸 TTWebhosting	2025-03-21 06:05:20 (1 year ago)	(imapd) Failed IMAP login from 65.111.28.202 (US/United States/Virginia/Ashburn/-/[AS200373 3xK Tech ... show more (imapd) Failed IMAP login from 65.111.28.202 (US/United States/Virginia/Ashburn/-/[AS200373 3xK Tech GmbH]): 2 in the last 3600 secs show less	Port Scan Hacking Brute-Force
Anonymous	2025-01-14 08:38:06 (1 year ago)	Spoofing detected	Hacking Brute-Force
Anonymous	2024-11-18 02:35:09 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack
Anonymous	2024-10-30 13:32:06 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 120.33.126.224

🇨🇦 54.39.203.12

🇺🇸 52.128.53.134

🇭🇰 45.142.154.43

🇺🇸 45.79.98.252

🇧🇷 189.6.79.65

🇮🇳 122.173.28.61

🇺🇸 66.132.224.15

🇮🇳 49.43.92.166

🇭🇰 45.249.246.196

🇩🇪 43.228.157.204

🇦🇪 20.203.42.204

🇳🇱 2.26.20.64

🇳🇱 195.178.110.30

🇧🇷 187.110.238.50

🇮🇶 185.24.61.171

🇧🇷 179.61.154.206

🇸🇬 143.198.204.165

🇨🇳 106.75.222.86

🇺🇸 97.107.133.213