JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 95.134.63.195

95.134.63.195 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 0%: ?

ISP	JSC Ukrtelecom
Usage Type	Unknown
ASN	Unknown
Domain Name	ukrtelecom.ua
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 95.134.63.195

Whois 95.134.63.195

IP Abuse Reports for 95.134.63.195:

This IP address has been reported a total of 19 times from 16 distinct sources. 95.134.63.195 was first reported on November 4th 2025, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇿 SeMPaI	2026-02-25 03:45:24 (4 months ago)	Suspicious activity on Minecraft server - server is not publicly advertised. Additional information ... show more Suspicious activity on Minecraft server - server is not publicly advertised. Additional information clientIp=95.134.63.195, clientPort=25565, clientProtocol=765 Generated DontListMyServer by https://github.com/S-MpAI show less	Port Scan
🇨🇿 HM	2026-02-25 03:45:24 (4 months ago)	Suspicious activity on Minecraft server - server is not publicly advertised. Additional information ... show more Suspicious activity on Minecraft server - server is not publicly advertised. Additional information clientIp=95.134.63.195, clientPort=25565, clientProtocol=765 Generated DontListMyServer by https://github.com/S-MpAI show less	Port Scan
🇳🇱 FREAKISH	2026-02-25 03:43:23 (4 months ago)	2026-02-25 04:43:23: Minecraft server scan detected from 95.134.63.195 on port 25565 of 127.0.0.1	Port Scan
🇩🇪 int8	2026-02-25 03:43:17 (4 months ago)	2026-02-25T03:43:17.803820597Z Minecraft server scanner: status request	Port Scan
🇺🇸 cpxducky	2026-02-25 03:43:04 (4 months ago)	2026-02-25 03:43:04: Minecraft server scan detected from 95.134.63.195 on port 25565 of mail.cpxduck ... show more 2026-02-25 03:43:04: Minecraft server scan detected from 95.134.63.195 on port 25565 of mail.cpxducky.com show less	Port Scan
🇮🇹 VHosting	2025-12-23 15:30:26 (6 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇹🇷 rtbh.com.tr	2025-12-13 20:10:26 (6 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇩🇪 ghostwarriors	2025-12-12 23:50:10 (6 months ago)	Unauthorized connection attempt detected, SSH Brute-Force	Port Scan Brute-Force SSH
🇦🇺 foobax	2025-12-06 21:32:30 (6 months ago)	connected to port 22 from port 9132 for over 2 seconds (> 0 bytes)	Port Scan SSH
🇺🇸 TPI-Abuse	2025-11-26 05:20:20 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 95.134.63.195 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 95.134.63.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:20:14.482253 2025] [security2:error] [pid 12058:tid 12058] [client 95.134.63.195:36804] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|alan-ip.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "alan-ip.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aSaODjR3S9eUg8_t5Ti8fwAAAAA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2025-11-26 02:54:34 (7 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 95.134.63.195 (DE/Germany/-): 1 in ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 95.134.63.195 (DE/Germany/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:07:47 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 95.134.63.195 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 95.134.63.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:07:42.256386 2025] [security2:error] [pid 3296143:tid 3296166] [client 95.134.63.195:20488] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|gtci.us\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gtci.us"] [uri "/wp-json/wp/v2/users"] [unique_id "aSZEzn8uvS_75eRGAWOB1gAAAZU"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 polycoda	2025-11-25 19:02:26 (7 months ago)	🔑 Wordpress login brute force attempt	Hacking Web App Attack
🇩🇪 kjaerulff	2025-11-25 13:45:44 (7 months ago)	Failed Wordpress login using wp-login.php	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:56:13 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 95.134.63.195 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 95.134.63.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:56:03.217612 2025] [security2:error] [pid 15687:tid 15687] [client 95.134.63.195:48102] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|massingale.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "massingale.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aSUo04zahp-SRG2FMGIgewAAAAo"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇴 200.10.29.235

🇸🇬 206.189.36.80

🇫🇷 185.177.72.29

🇨🇳 171.83.26.130

🇷🇴 141.98.83.240

🇯🇵 139.162.116.22

🇧🇬 79.124.56.210

🇿🇦 69.63.64.68

🇺🇸 65.49.20.101

🇫🇮 65.21.109.140

🇺🇸 64.225.17.153

🇻🇳 45.122.242.218

🇰🇿 37.151.58.74

🇬🇧 5.226.140.57

🇫🇷 185.177.72.24

🇸🇪 171.25.158.80

🇧🇷 170.80.65.140

🇺🇸 162.216.150.51

🇻🇳 116.110.209.148

🇨🇦 85.217.149.21