JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 77.81.65.66

77.81.65.66 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 20%: ?

20%

ISP	RCS Technologies FZE LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35830
Domain Name	rcstech.ae
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 77.81.65.66

Whois 77.81.65.66

IP Abuse Reports for 77.81.65.66:

This IP address has been reported a total of 14 times from 11 distinct sources. 77.81.65.66 was first reported on April 1st 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 FeG Deutschland	2026-06-03 06:30:04 (2 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇫🇷 masterguru	2026-05-28 17:23:45 (1 week ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 77.81.65.66 (DE/Germany/-): 1 in the last 3600 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 77.81.65.66 (DE/Germany/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇺🇸 TPI-Abuse	2026-05-13 20:57:22 (3 weeks ago)	(mod_security) mod_security (id:218580) triggered by 77.81.65.66 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:218580) triggered by 77.81.65.66 (-): 1 in the last 300 secs; Ports: ; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 13 16:57:17.958070 2026] [security2:error] [pid 26000:tid 26000] [client 77.81.65.66:15561] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:\\\\/\\\\[!+](?:[\\\\w\\\\s=_\\\\-()]+)?\\\\*\\\\/)" at ARGS:/category/394/start-156. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/22_SQL_SQLi.conf"] [line "76"] [id "218580"] [rev "1"] [msg "COMODO WAF: MySQL in-line comment detected.\|\|www.genesis-castle.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "SQLi"] [hostname "www.genesis-castle.com"] [uri "/gallery/index.php"] [unique_id "agTlrcUc3iJsBBXy3BWaegAAACY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-17 10:52:33 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 77.81.65.66 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 77.81.65.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 17 06:52:26.285807 2026] [security2:error] [pid 8604:tid 8604] [client 77.81.65.66:19953] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|caquintet.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "caquintet.com"] [uri "/wp-json/wp/v2/users"] [unique_id "abkyagkkzL9o0vyOI7w0ewAAAA4"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 kjaerulff	2026-03-11 15:34:31 (2 months ago)	Failed Wordpress login using wp-login.php	Web App Attack
🇱🇻 garmtech.com	2025-11-26 18:19:56 (6 months ago)	IM360 WAF: Attempt to upload malware	Hacking
🇪🇸 10dencehispahard SL	2025-11-21 07:58:48 (6 months ago)	WP probing for vulnerabilities	Hacking Exploited Host
Anonymous	2025-08-01 07:23:07 (10 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-07-31 01:02:02 (10 months ago)	(mod_security) mod_security (id:225170) triggered by 77.81.65.66 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 77.81.65.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 30 21:01:53.818335 2025] [security2:error] [pid 21829:tid 21829] [client 77.81.65.66:57253] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|passy.us\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "passy.us"] [uri "/wp-json/wp/v2/users"] [unique_id "aIrAgWqZ9_tOdpaBcYa2gAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nowyouknow	2025-06-16 19:31:24 (11 months ago)	(From [email protected]) While your competitors miss calls after hours, what if your business c ... show more (From [email protected]) While your competitors miss calls after hours, what if your business could serve customers and book appointments around the clock? Our voice AI technology does exactly this. You can even forward your current number, 850-897-1105, to the AI agent when you’re not open. I created a complimentary Voice AI demo for your business, all you have to do is click play and pretend to be someone calling your business. Want me to send it over? show less	Phishing Web Spam
🇩🇪 Hazzard	2025-06-04 08:08:53 (1 year ago)	(wordpress) Failed wordpress login from 77.81.65.66 (AE/United Arab Emirates/-/-/-/[redacted])	Brute-Force
Anonymous	2024-06-23 09:46:33 (1 year ago)	Ports: *; Direction: 0; Trigger: CT_LIMIT	Brute-Force SSH
🇺🇸 B U	2024-04-01 18:20:07 (2 years ago)	VPN Brute-Force attack. Distributed sources.	VPN IP Hacking Brute-Force
🇺🇸 B U	2024-04-01 18:20:07 (2 years ago)	VPN Brute-Force attack. Distributed sources.	VPN IP Hacking Brute-Force

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 187.39.84.26

🇳🇱 45.148.10.157

🇺🇸 45.79.115.117

🇬🇧 213.171.208.232

🇰🇿 212.46.56.22

🇷🇺 94.190.121.118

🇬🇭 41.139.28.99

🇺🇸 20.65.193.170

🇮🇷 5.237.90.160

🇩🇪 213.209.159.236

🇺🇸 185.238.231.120

🇧🇷 177.11.54.150

🇵🇰 103.162.148.190

🇳🇱 45.148.10.141

🇨🇳 221.228.203.3

🇺🇸 209.250.5.9

🇧🇷 177.104.171.149

🇧🇷 172.217.35.27

🇨🇳 118.145.238.60

🇻🇳 103.200.25.198