JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.108.48.211

65.108.48.211 was found in our database!

This IP was reported 40 times. Confidence of Abuse is 100%: ?

100%

ISP	Hetzner Online GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS24940
Hostname(s)	static.211.48.108.65.clients.your-server.de
Domain Name	hetzner.com
Country	🇫🇮 Finland
City	Helsinki, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.108.48.211

Whois 65.108.48.211

IP Abuse Reports for 65.108.48.211:

This IP address has been reported a total of 40 times from 33 distinct sources. 65.108.48.211 was first reported on June 20th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇽 octageeks.com	2026-06-22 04:07:46 (1 day ago)	Wordpress malicious attack:[octawp]	Web App Attack
🇫🇷 tecnicorioja	2026-06-21 22:01:20 (1 day ago)	wp-login attack [21/Jun/2026:15:40:07	Brute-Force Web App Attack
🇬🇧 spamverify.com	2026-06-21 17:41:17 (1 day ago)	Honeypot Hit: WordPress Login	Web Spam Blog Spam Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-21 17:05:00 (1 day ago)	(PERMBLOCK) 65.108.48.211 (FI/Finland/static.211.48.108.65.clients.your-server.de) has had more than ... show more (PERMBLOCK) 65.108.48.211 (FI/Finland/static.211.48.108.65.clients.your-server.de) has had more than 4 temp blocks in the last 86400 secs (0-193) show less	Hacking
🇵🇱 bmino.pl	2026-06-21 16:58:28 (1 day ago)	Autoban IP(2): 65.108.48.211 - Hostname: Hetzner Online GmbH - City: Helsinki - Region: Uusimaa - Co ... show more Autoban IP(2): 65.108.48.211 - Hostname: Hetzner Online GmbH - City: Helsinki - Region: Uusimaa - Country: Finland - Location: 60.1719,24.9347 - Organization: Hetzner Online GmbH - failed attempts. show less	Web App Attack
Anonymous	2026-06-21 15:20:42 (1 day ago)	Web attack blocked by Wordfence on kunstkringhenrijonas.nl (1 hit). Reported by CRMON.	Web App Attack
🇬🇷 setupgr	2026-06-21 13:11:11 (1 day ago)	(mod_security) mod_security (id:900001) triggered by 65.108.48.211 (FI/Finland/Uusimaa/Helsinki/-/[A ... show more (mod_security) mod_security (id:900001) triggered by 65.108.48.211 (FI/Finland/Uusimaa/Helsinki/-/[AS24940 HETZNER-AS]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sun Jun 21 16:11:07.890330 2026] [security2:error] [pid 1109141:tid 1109286] [remote 65.108.48.211:44762] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "75"] [id "900001"] [msg "Blocked WP Login attempt on domain: ftiaxtomonosou.gr"] [severity "CRITICAL"] [tag "security"] [hostname "ftiaxtomonosou.gr"] [uri "/wp-login.php"] [unique_id "ajfi6yXd52GCp6daGPrV_gAA1xc"] show less	Port Scan
🇨🇿 plzenskypruvodce.cz	2026-06-21 12:38:17 (1 day ago)	2026-06-21T14:38:15.960866+02:00 web wordpress(varhanykolin.cz)[369352]: Immediately block connectio ... show more 2026-06-21T14:38:15.960866+02:00 web wordpress(varhanykolin.cz)[369352]: Immediately block connections from 65.108.48.211 ... show less	Brute-Force
🇩🇪 Marc	2026-06-21 12:20:04 (1 day ago)	65.108.48.211 - - [21/Jun/2026:12:23:38 +0200] "GET /wp-login.php HTTP/2.0" 200 3457 "https://als-ar ... show more 65.108.48.211 - - [21/Jun/2026:12:23:38 +0200] "GET /wp-login.php HTTP/2.0" 200 3457 "https://als-arnsberg.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 65.108.48.211 - - [21/Jun/2026:12:23:39 +0200] "GET /wp-login.php HTTP/2.0" 200 3153 "https://als-arnsberg.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 65.108.48.211 - - [21/Jun/2026:12:45:59 +0200] "GET /wp-login.php HTTP/1.1" 200 4230 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 65.108.48.211 - - [21/Jun/2026:14:20:03 +0200] "GET /wp-login.php HTTP/2.0" 200 4082 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 65.108.48.211 - - [21/Jun/2026:14:20:03 +0200] "POST /wp-login.php HTTP/2.0" 403 11116 "https://saatschule.de/wp-login.php" "Mozilla/5.0 (Wind show less	Brute-Force Web App Attack
🇮🇹 eliosbrocchi	2026-06-21 12:16:25 (1 day ago)	2026-06-21T14:16:20.740947+02:00 thunderchild wordpress(www.crislio.com)[2583]: Immediately block co ... show more 2026-06-21T14:16:20.740947+02:00 thunderchild wordpress(www.crislio.com)[2583]: Immediately block connections from 65.108.48.211 ... show less	VPN IP
🇷🇴 SpamStopper	2026-06-21 11:45:47 (1 day ago)	Fail2Ban - WP Spoofing	Port Scan Brute-Force Web App Attack
🇺🇸 etu brutus	2026-06-21 11:33:06 (1 day ago)	65.108.48.211 Blocked by [Attack Vector List] ...	Hacking Brute-Force Exploited Host
🇨🇿 plzenskypruvodce.cz	2026-06-21 11:26:06 (1 day ago)	2026-06-21T13:26:05.349697+02:00 web wordpress(varhanykolin.cz)[361199]: Immediately block connectio ... show more 2026-06-21T13:26:05.349697+02:00 web wordpress(varhanykolin.cz)[361199]: Immediately block connections from 65.108.48.211 ... show less	Brute-Force
🇨🇦 KIsmay	2026-06-21 10:36:54 (1 day ago)	Jun 21 01:06:13 www4 WPAudit[2643655]: 65.108.48.211 siscobc.com "Mozilla/5.0 (Windows NT 10.0; Win6 ... show more Jun 21 01:06:13 www4 WPAudit[2643655]: 65.108.48.211 siscobc.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" sbd-admin:sbd-admin123@@ FAIL Jun 21 05:01:11 www4 WPAudit[2689082]: 65.108.48.211 hvrhaulers.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" hvr:hvr786 FAIL Jun 21 06:29:06 www4 WPAudit[2695817]: 65.108.48.211 www.amandasrestaurant.ca "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" gina:amandasrestaurant.ca FAIL Jun 21 06:35:46 www4 WPAudit[2696347]: 65.108.48.211 www.cottonwoodc.ca "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" elyena:@cottonwoodc.ca@ FAIL Jun 21 06:36:53 www4 WPAudit[2696370]: 65.108.48.211 www.westkootenayrentals.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like ... show less	Brute-Force Web App Attack
🇨🇦 polycoda	2026-06-21 10:28:33 (1 day ago)	📄 Probes for wp-login.php and other inexistent URLs	Hacking Web App Attack

Showing 1 to 15 of 40 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 31.14.254.21

🇮🇳 2401:4900:be87:8795:6c9d:3ab:e3fc:a452

🇭🇰 165.154.40.10

🇬🇧 162.158.216.117

🇺🇸 147.185.132.12

🇹🇼 128.14.226.125

🇰🇷 110.14.190.221

🇳🇱 77.83.39.31

🇳🇱 45.198.224.5

🇷🇴 2.57.122.238

🇺🇸 2607:f8b0:400e:c05::123

🇨🇳 221.12.37.6

🇩🇪 213.209.159.227

🇿🇦 105.245.164.113

🇵🇰 103.244.172.235

🇮🇩 103.42.205.115

🇺🇸 100.54.141.171

🇫🇷 91.231.89.188

🇩🇪 69.5.169.228

🇩🇪 69.5.169.174