JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.111.29.132

65.111.29.132 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 3%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.111.29.132

Whois 65.111.29.132

IP Abuse Reports for 65.111.29.132:

This IP address has been reported a total of 14 times from 12 distinct sources. 65.111.29.132 was first reported on June 27th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇽 octageeks.com	2026-06-18 04:23:47 (1 week ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (3 months ago)	"DDoS against public endpoint"	DDoS Attack
🇪🇸 10dencehispahard SL	2026-01-26 12:17:17 (5 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇫🇷 solution.it	2026-01-09 20:05:10 (5 months ago)	[Fri Jan 09 21:05:09.585057 2026] [php7:error] [pid 2739076:tid 2739076] [client 65.111.29.132:27105 ... show more [Fri Jan 09 21:05:09.585057 2026] [php7:error] [pid 2739076:tid 2739076] [client 65.111.29.132:27105] script '/var/www/html/internetriders.org/wp-login.php' not found or unable to stat, referer: https://www.internetriders.org/wp-login.php show less	Web App Attack
🇱🇹 Evag Touf	2025-11-04 06:32:58 (7 months ago)	(mod_security) mod_security triggered on hostname [redacted] 65.111.29.132 (FR/France/-)	SQL Injection
🇺🇸 TPI-Abuse	2025-10-12 15:22:46 (8 months ago)	(mod_security) mod_security (id:225170) triggered by 65.111.29.132 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 65.111.29.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Oct 12 11:22:39.180224 2025] [security2:error] [pid 20991:tid 20991] [client 65.111.29.132:24689] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|wies.name\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "wies.name"] [uri "/wp-json/wp/v2/users"] [unique_id "aOvHv4tSLqnr-8lSRPe9vQAAAAQ"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Hazzard	2025-03-22 09:16:56 (1 year ago)	(imapd) Failed IMAP login from 65.111.29.132 (US/United States/Virginia/Ashburn/-/[redacted])	Brute-Force
Anonymous	2025-01-23 15:23:07 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.01.23 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.01.23 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-01-23 06:32:32 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 65.111.29.132 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 65.111.29.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 23 01:32:28.983673 2025] [security2:error] [pid 17540:tid 17540] [client 65.111.29.132:43997] [client 65.111.29.132] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|seeingblue.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "seeingblue.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z5HifPmAhEf8crQjeZsNJAAAAA8"], referer: https://seeingblue.com show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2024-10-26 11:00:08 (1 year ago)	block ruleset Badbot using very old user-agents 5CF3CDB778C7D82564405B86B9242E612F378C68	Bad Web Bot
Anonymous	2024-08-28 09:45:30 (1 year ago)	BruteForce IMAP/POP3	Brute-Force
🇨🇦 Julio Covolato	2024-08-21 19:25:01 (1 year ago)	Imap or Submission login brute-force attacks.	Brute-Force
Anonymous	2024-07-17 00:03:17 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-06-27 00:02:25 (2 years ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 103.175.49.165

🇳🇱 45.148.10.239

🇺🇸 20.171.206.176

🇸🇬 165.154.200.214

🇩🇪 139.59.146.150

🇮🇩 125.166.94.73

🇸🇬 103.189.234.57

🇺🇸 66.132.172.117

🇮🇩 49.0.24.107

🇺🇸 192.3.53.240

🇺🇸 172.86.119.208

🇺🇸 148.105.15.200

🇩🇪 116.203.72.76

🇭🇰 114.111.52.109

🇺🇸 64.62.197.125

🇳🇱 45.148.10.152

🇬🇭 41.242.115.83

🇸🇬 13.212.75.158

🇮🇹 4.232.93.183

🇺🇸 209.141.43.146