AbuseIPDB » 95.164.8.133

95.164.8.133 was found in our database!

This IP was reported 95 times. Confidence of Abuse is 99%: ?

99%

ISP	STARK INDUSTRIES SOLUTIONS LTD.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS44477
Hostname(s)	vm1243124.stark-industries.solutions
Domain Name	stark-industries.solutions
Country	Estonia
City	Tallinn, Harjumaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 95.164.8.133

Whois 95.164.8.133

IP Abuse Reports for 95.164.8.133:

This IP address has been reported a total of 95 times from 64 distinct sources. 95.164.8.133 was first reported on October 18th 2023, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
nNordic	2025-03-18 10:28:25 (1 week ago)	Connection attempt blocked by IDS/IPS from IP 95.164.8.133/32	Hacking
nNordic	2025-03-18 04:44:34 (1 week ago)	Connection attempt blocked by IDS/IPS from IP 95.164.8.133/32	Hacking
ThreatBook.io	2025-03-17 23:38:19 (1 week ago)	ThreatBook Intelligence: Zombie,Mobile more details on https://threatbook.io/ip/95.164.8.133 2 ... show moreThreatBook Intelligence: Zombie,Mobile more details on https://threatbook.io/ip/95.164.8.133 2025-03-17 01:27:30 /,{"body":"0x%5B%5D=androxgh0st","content_type":"application/x-www-form-urlencoded","header":{"Accept":["*/*"],"Accept-Encoding":["gzip, deflate"],"Connection":["close"],"Content-Length":["20"],"Content-Type":["application/x-www-form-urlencoded"],"User-Agent":["Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"],"X-Forwarded-For":["95.164.8.133"],"X-Real-Ip":["95.164.8.133"]},"host":"47.103.157.48","method":"POST","proto":"HTTP/1.0","remote_addr":"172.23.28.223:43480","status_code":200,"url":"/","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"} 2025-03-17 01:27:28 /.env show less	Web App Attack
TPI-Abuse	2025-03-17 14:17:37 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 95.164.8.133 (vm1243124.stark-industries.soluti ... show more(mod_security) mod_security (id:210492) triggered by 95.164.8.133 (vm1243124.stark-industries.solutions): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 17 10:17:32.582206 2025] [security2:error] [pid 5234:tid 5234] [client 95.164.8.133:55353] [client 95.164.8.133] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.215"] [uri "/.env"] [unique_id "Z9gu_EXQv1VrrXORShyeQgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Mr-Money	2025-03-17 14:03:30 (1 week ago)	95.164.8.133 - - [17/Mar/2025:15:03:30 +0100] "GET /.env HTTP/1.1" 404 413 "-" "Mozilla/5.0 (Linux; ... show more95.164.8.133 - - [17/Mar/2025:15:03:30 +0100] "GET /.env HTTP/1.1" 404 413 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" ... show less	Hacking SQL Injection Bad Web Bot Exploited Host Web App Attack
TPI-Abuse	2025-03-17 13:25:21 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 95.164.8.133 (vm1243124.stark-industries.soluti ... show more(mod_security) mod_security (id:210492) triggered by 95.164.8.133 (vm1243124.stark-industries.solutions): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 17 09:25:14.624253 2025] [security2:error] [pid 3349:tid 3349] [client 95.164.8.133:60945] [client 95.164.8.133] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.15"] [uri "/.env"] [unique_id "Z9giuqg-Xe_ovnWahhC6wAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
Bedios GmbH	2025-03-17 12:59:20 (1 week ago)	Login credentials theft attempt	Hacking
TPI-Abuse	2025-03-17 12:41:05 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 95.164.8.133 (vm1243124.stark-industries.soluti ... show more(mod_security) mod_security (id:210492) triggered by 95.164.8.133 (vm1243124.stark-industries.solutions): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 17 08:41:01.627556 2025] [security2:error] [pid 32322:tid 32322] [client 95.164.8.133:55624] [client 95.164.8.133] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.46"] [uri "/.env"] [unique_id "Z9gYXULSnF-84gnB2WcdxgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-03-17 12:19:00 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 95.164.8.133 (vm1243124.stark-industries.soluti ... show more(mod_security) mod_security (id:210492) triggered by 95.164.8.133 (vm1243124.stark-industries.solutions): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 17 08:18:53.252598 2025] [security2:error] [pid 8661:tid 8661] [client 95.164.8.133:59202] [client 95.164.8.133] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.230"] [uri "/.env"] [unique_id "Z9gTLS9DBchBJM9rQ4tQ9QAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-03-17 11:45:52 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 95.164.8.133 (vm1243124.stark-industries.soluti ... show more(mod_security) mod_security (id:210492) triggered by 95.164.8.133 (vm1243124.stark-industries.solutions): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 17 07:45:45.824997 2025] [security2:error] [pid 18558:tid 18558] [client 95.164.8.133:52574] [client 95.164.8.133] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.12"] [uri "/.env"] [unique_id "Z9gLaUqc-b8Vo8Rg6ApJ-wAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-03-17 11:28:23 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 95.164.8.133 (vm1243124.stark-industries.soluti ... show more(mod_security) mod_security (id:210492) triggered by 95.164.8.133 (vm1243124.stark-industries.solutions): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 17 07:28:17.113391 2025] [security2:error] [pid 27621:tid 27621] [client 95.164.8.133:53048] [client 95.164.8.133] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.169"] [uri "/.env"] [unique_id "Z9gHUVFy0p11rGADy1wL0gAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-03-17 11:07:10 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 95.164.8.133 (vm1243124.stark-industries.soluti ... show more(mod_security) mod_security (id:210492) triggered by 95.164.8.133 (vm1243124.stark-industries.solutions): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 17 07:07:04.172887 2025] [security2:error] [pid 30386:tid 30386] [client 95.164.8.133:60160] [client 95.164.8.133] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.73"] [uri "/.env"] [unique_id "Z9gCWIpWZETswDq0Bej_LgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-03-17 10:45:13 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 95.164.8.133 (vm1243124.stark-industries.soluti ... show more(mod_security) mod_security (id:210492) triggered by 95.164.8.133 (vm1243124.stark-industries.solutions): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 17 06:45:09.483534 2025] [security2:error] [pid 29193:tid 29193] [client 95.164.8.133:60867] [client 95.164.8.133] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.145"] [uri "/.env"] [unique_id "Z9f9NWaemN6qnsl7nUXzWgAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2025-03-17 10:24:24 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 95.164.8.133 (vm1243124.stark-industries.soluti ... show more(mod_security) mod_security (id:210492) triggered by 95.164.8.133 (vm1243124.stark-industries.solutions): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 17 06:24:19.199852 2025] [security2:error] [pid 16271:tid 16271] [client 95.164.8.133:65477] [client 95.164.8.133] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.144"] [uri "/.env"] [unique_id "Z9f4U4RkSWJUcjJcdqEqlwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
Evag Touf	2025-03-17 10:24:01 (1 week ago)	(mod_security) mod_security triggered on hostname [redacted] 95.164.8.133 (EE/Estonia/-): (CF_ENABL ... show more(mod_security) mod_security triggered on hostname [redacted] 95.164.8.133 (EE/Estonia/-): (CF_ENABLE) show less	SQL Injection

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩