JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 95.134.63.191

95.134.63.191 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 0%: ?

ISP	JSC Ukrtelecom
Usage Type	Unknown
ASN	Unknown
Domain Name	ukrtelecom.ua
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 95.134.63.191

Whois 95.134.63.191

IP Abuse Reports for 95.134.63.191:

This IP address has been reported a total of 12 times from 9 distinct sources. 95.134.63.191 was first reported on November 8th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-04-23 07:04:55 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 celestialcity	2026-04-13 08:36:58 (2 months ago)	Blocked by UFW on celestialcityeu [25999/tcp] \| SPT: 2129 \| TTL: 58 \| LEN: 60 \| TOS: 0x08 • Reported ... show more Blocked by UFW on celestialcityeu [25999/tcp] \| SPT: 2129 \| TTL: 58 \| LEN: 60 \| TOS: 0x08 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 int8	2026-04-13 08:34:12 (2 months ago)	2026-04-13T08:34:12.081513502Z Minecraft server scanner: status request	Port Scan
🇳🇱 FREAKISH	2026-04-13 08:33:27 (2 months ago)	2026-04-13 10:33:27: Minecraft server scan detected from 95.134.63.191 on port 25565 of 127.0.0.1	Port Scan
🇩🇪 zUnlegit	2026-04-13 08:33:08 (2 months ago)	2026-04-13 08:33:07: Minecraft server scan detected from 95.134.63.191 on port 25565 of mailserver	Port Scan
🇺🇸 LockBlock	2026-04-13 08:32:58 (2 months ago)	2026-04-13 08:32:58: Minecraft server scan detected from 95.134.63.191 on port 25565 of racknerd-e7e ... show more 2026-04-13 08:32:58: Minecraft server scan detected from 95.134.63.191 on port 25565 of racknerd-e7e1a9 show less	Port Scan
🇬🇧 consul.to	2026-03-28 00:22:49 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2025-11-08 22:08:57 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 95.134.63.191 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 95.134.63.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 08 17:08:53.966614 2025] [security2:error] [pid 20944:tid 20944] [client 95.134.63.191:59733] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|gepteszt.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gepteszt.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aQ-_dR1JkfX3Z-C5DOg_6gAAAA0"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-08 21:46:00 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 95.134.63.191 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 95.134.63.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 08 16:45:57.151531 2025] [security2:error] [pid 18774:tid 18774] [client 95.134.63.191:1385] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|abbysue.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "abbysue.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aQ-6Fbwnsrh88V8AyVQRWQAAAAA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 gurnip	2025-11-08 19:27:03 (7 months ago)	Vulnerability probe of page /wp-json/wp/v2/users, not found on server.	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-11-08 16:18:33 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 95.134.63.191 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 95.134.63.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 08 11:18:28.308194 2025] [security2:error] [pid 6845:tid 6845] [client 95.134.63.191:63466] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|linearconceptsllc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "linearconceptsllc.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aQ9tVDLxFC_ZQzeZIsi4VwAAACM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 SilverZippo	2025-11-08 06:39:50 (7 months ago)	Web App Attack	Web App Attack

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 194.88.98.89

🇳🇱 193.176.31.197

🇳🇱 176.65.148.142

🇧🇷 129.121.47.136

🇨🇳 118.122.147.195

🇧🇷 20.226.88.145

🇺🇸 20.9.39.209

🇩🇪 217.160.255.92

🇻🇳 203.205.37.233

🇭🇰 199.45.155.81

🇺🇸 162.254.36.150

🇦🇫 149.54.62.62

🇮🇳 122.185.176.126

🇨🇳 120.48.34.72

🇯🇵 101.36.104.242

🇵🇰 59.103.104.55

🇳🇱 45.148.10.151

🇺🇸 34.227.99.60

🇧🇬 193.24.211.107

🇮🇳 154.84.242.115