This IP address has been reported a total of
18
times from
13 distinct
sources.
95.164.159.237 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Unauthorized VPN login attempts: 1 attempts were recorded from 95.164.159.237
2026-06-30T19:19:25+02 ...
show moreUnauthorized VPN login attempts: 1 attempts were recorded from 95.164.159.237
2026-06-30T19:19:25+02:00 vpn Access-Reject 'biloilo' station: 95.164.159.237 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>'
show less
Unauthorized VPN login attempts: 1 attempts were recorded from 95.164.159.237
2026-06-29T14:48:15+02 ...
show moreUnauthorized VPN login attempts: 1 attempts were recorded from 95.164.159.237
2026-06-29T14:48:15+02:00 vpn Access-Reject 'tcrane' station: 95.164.159.237 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>'
show less
Unauthorized VPN login attempts: 1 attempts were recorded from 95.164.159.237
2026-06-24T16:08:58+02 ...
show moreUnauthorized VPN login attempts: 1 attempts were recorded from 95.164.159.237
2026-06-24T16:08:58+02:00 vpn Access-Reject 'sayers' station: 95.164.159.237 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>'
show less
Unauthorized VPN login attempts: 2 attempts were recorded from 95.164.159.237
2026-05-27T06:45:44+02 ...
show moreUnauthorized VPN login attempts: 2 attempts were recorded from 95.164.159.237
2026-05-27T06:45:44+02:00 vpn Access-Reject 'kristinek' station: 95.164.159.237 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>'
2026-05-27T10:36:37+02:00 vpn Access-Reject 'cblair' station: 95.164.159.237 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>'
show less
Brute-Force
Web App Attack
Anonymous
This IP was involved in a brute force and password spray attack.
Brute-Force
Web App Attack
Anonymous
Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.18 is noted in report tim ...
show moreAttempted brute force login to web vpn 1 time(s); last attempt for 2025.11.18 is noted in report timestamp
show less
(mod_security) mod_security (id:210730) triggered by 95.164.159.237 (-): 1 in the last 300 secs; Por ...
show more(mod_security) mod_security (id:210730) triggered by 95.164.159.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 17 21:00:41.968048 2025] [security2:error] [pid 26827:tid 26827] [client 95.164.159.237:24006] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||cnprcertificationreviews.org|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "cnprcertificationreviews.org"] [uri "/twitter.com"] [unique_id "aPLmuQeA_7G0aBaENlm7ewAAAAY"], referer: https://cnprcertificationreviews.org/
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
Attempted brute force login to web vpn 2 time(s); last attempt for 2025.05.27 is noted in report tim ...
show moreAttempted brute force login to web vpn 2 time(s); last attempt for 2025.05.27 is noted in report timestamp
show less
spam or other hacking activities reported by webbfabriken security servers
Attack reported by Webbf ...
show morespam or other hacking activities reported by webbfabriken security servers
Attack reported by Webbfabriken Security API - WFSecAPI
show less