JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 95.129.101.144

95.129.101.144 was found in our database!

This IP was reported 94 times. Confidence of Abuse is 34%: ?

34%

ISP	FASTER CZ spol. s r.o.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS24641
Hostname(s)	hyla3.sketchengine.eu
Domain Name	faster.cz
Country	🇨🇿 Czechia
City	Brno, South Moravian

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 95.129.101.144

Whois 95.129.101.144

IP Abuse Reports for 95.129.101.144:

This IP address has been reported a total of 94 times from 20 distinct sources. 95.129.101.144 was first reported on November 28th 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 MAGIC	2026-06-11 01:43:51 (3 days ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇧🇪 cmbplf	2026-06-10 12:10:10 (4 days ago)	2.258 requests to many distinct domains in 1 hour (2w6d3h)	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-10 10:32:39 (4 days ago)	(mod_security) mod_security (id:210730) triggered by 95.129.101.144 (hyla3.sketchengine.eu): 1 in th ... show more (mod_security) mod_security (id:210730) triggered by 95.129.101.144 (hyla3.sketchengine.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 06:32:34.417837 2026] [security2:error] [pid 21948:tid 21948] [client 95.129.101.144:55830] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.raintechgutters.com\|F\|2"] [data ".raintechgutters.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.raintechgutters.com"] [uri "/are-gutter-installation-tax-deductible/www.raintechgutters.com"] [unique_id "aik9QkGyWJ-nruNy_IOOcAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 11:45:07 (5 days ago)	(mod_security) mod_security (id:210730) triggered by 95.129.101.144 (hyla3.sketchengine.eu): 1 in th ... show more (mod_security) mod_security (id:210730) triggered by 95.129.101.144 (hyla3.sketchengine.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 07:45:00.183958 2026] [security2:error] [pid 25108:tid 25108] [client 95.129.101.144:52224] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.peterjohnsonauthor.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.peterjohnsonauthor.com"] [uri "/another-visit-to-delasalle-middle-school-at-the-end-of-march/[email protected]"] [unique_id "aif8vPSOEt5UVGDUCKPjeQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 08:32:03 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 95.129.101.144 (hyla3.sketchengine.eu): 1 in th ... show more (mod_security) mod_security (id:210730) triggered by 95.129.101.144 (hyla3.sketchengine.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 04:31:58.883060 2026] [security2:error] [pid 31291:tid 31291] [client 95.129.101.144:56652] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.usaangelinvestors.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.usaangelinvestors.com"] [uri "/resource-real-estate-diversified-income-fund/[email protected]"] [unique_id "ah_mfkRGLX4vJKWs29qvugAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 04:55:02 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 95.129.101.144 (hyla3.sketchengine.eu): 1 in th ... show more (mod_security) mod_security (id:210730) triggered by 95.129.101.144 (hyla3.sketchengine.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 00:54:58.696691 2026] [security2:error] [pid 13843:tid 13843] [client 95.129.101.144:42672] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.nwtree.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.nwtree.com"] [uri "/tree-services/[email protected]"] [unique_id "ah-zomXe-V7euyTIeJ5TWAAAACQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 03:30:35 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 95.129.101.144 (hyla3.sketchengine.eu): 1 in th ... show more (mod_security) mod_security (id:210730) triggered by 95.129.101.144 (hyla3.sketchengine.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 23:30:31.010344 2026] [security2:error] [pid 23880:tid 23880] [client 95.129.101.144:54906] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.kerrywood.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.kerrywood.com"] [uri "/books-fake-news/[email protected]"] [unique_id "ah-f12-N3V3eN1PfM4aoRAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 21:53:56 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 95.129.101.144 (hyla3.sketchengine.eu): 1 in th ... show more (mod_security) mod_security (id:210730) triggered by 95.129.101.144 (hyla3.sketchengine.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 17:53:51.975184 2026] [security2:error] [pid 18477:tid 18477] [client 95.129.101.144:50706] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|maidsinmalta.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "maidsinmalta.com"] [uri "/2015/03/16/hello-world-2/[email protected]"] [unique_id "ah9Q75jz95lFd6FscLupcwAAAC4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 21:09:50 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 95.129.101.144 (hyla3.sketchengine.eu): 1 in th ... show more (mod_security) mod_security (id:210730) triggered by 95.129.101.144 (hyla3.sketchengine.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 17:09:43.183113 2026] [security2:error] [pid 13936:tid 13936] [client 95.129.101.144:51892] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|davidocchino.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "davidocchino.com"] [uri "/designservices/[email protected]"] [unique_id "ah9Gl01lIZxpH_iGpkJmngAAADY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 20:41:24 (1 week ago)	(mod_security) mod_security (id:949110) triggered by 95.129.101.144 (hyla3.sketchengine.eu): 1 in th ... show more (mod_security) mod_security (id:949110) triggered by 95.129.101.144 (hyla3.sketchengine.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 16:41:16.192309 2026] [security2:error] [pid 13676:tid 13676] [client 95.129.101.144:36384] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "akistech.com"] [uri "/company-about/[email protected]"] [unique_id "ah8_7LVEYCvkN7emfcXx2gAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 afleventoffice.com.au	2026-06-02 10:42:32 (1 week ago)	GET /grand_final_packages.asp HTTP/1.1	Web App Attack
🇬🇧 AvonleaConsulting	2026-04-22 22:57:53 (1 month ago)	Attempts to probe web pages for vulnerable PHP or other applications	Web App Attack
🇬🇧 AvonleaConsulting	2026-04-22 22:31:40 (1 month ago)	Scanning unused Default website or suspicious access to valid sites from IP marked as abusive	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-20 14:28:19 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 95.129.101.144 (hyla3.sketchengine.eu): 1 in th ... show more (mod_security) mod_security (id:210730) triggered by 95.129.101.144 (hyla3.sketchengine.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 20 10:28:12.854812 2026] [security2:error] [pid 132494:tid 132494] [client 95.129.101.144:44502] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.clcmillvale.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.clcmillvale.com"] [uri "/grow/[email protected]"] [unique_id "aeY3_I-O4D5qBaDL73YpSQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Matthew Ping	2026-04-15 19:15:02 (1 month ago)	ModSecurity rule 949110 triggered on dedicated. Web application attack blocked by CSF/LFD.	Web App Attack Hacking

Showing 1 to 15 of 94 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 222.90.212.247

🇮🇶 169.224.32.143

🇨🇳 115.190.44.249

🇮🇳 49.36.83.94

🇩🇪 213.209.159.158

🇫🇷 173.212.204.196

🇰🇷 129.154.62.115

🇮🇩 103.164.57.37

🇸🇬 101.32.242.137

🇰🇼 94.129.167.13

🇫🇷 88.189.212.163

🇷🇺 82.202.247.130

🇨🇳 59.45.229.41

🇸🇬 43.160.233.2

🇮🇩 36.78.110.142

🇰🇷 211.180.105.241

🇺🇸 186.241.75.118

🇸🇬 165.154.205.128

🇩🇿 105.111.114.8

🇮🇹 93.92.76.17