This IP address has been reported a total of
39
times from
24 distinct
sources.
47.95.198.252 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
monitor: on ser162528253480 | port: 50002 | ttl: 235 script: github.com/sefinek/UFW-AbuseIPDB-Repor ...
show moremonitor: on ser162528253480 | port: 50002 | ttl: 235 script: github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
Anonymous
2026-07-12T12:49:28.574989+00:00 nbg01-02-mail postfix/submission/smtpd[143274]: lost connection aft ...
show more2026-07-12T12:49:28.574989+00:00 nbg01-02-mail postfix/submission/smtpd[143274]: lost connection after CONNECT from unknown[47.95.198.252]
2026-07-12T12:49:29.747571+00:00 nbg01-02-mail postfix/submission/smtpd[143274]: lost connection after CONNECT from unknown[47.95.198.252]
2026-07-12T12:49:30.088663+00:00 nbg01-02-mail postfix/submission/smtpd[143274]: lost connection after CONNECT from unknown[47.95.198.252]
...
show less
IP 47.95.198.252 在过去24小时内进行了 2 次攻击。详细信息: 攻击类型: Found User-Agent associated with security scanner, 攻击 ...
show moreIP 47.95.198.252 在过去24小时内进行了 2 次攻击。详细信息: 攻击类型: Found User-Agent associated with security scanner, 攻击信息: Matched Data: nmap scripting engine found within REQUEST_HEADERS:User-Agent: mozilla/5.0 (compatible; nmap scripting engine; https://nmap.org/book/nse.html)"] (Severity: 2); 攻击类型: Found User-Agent associated with security scanner, 攻击信息: Matched Data: nmap scripting engine found within REQUEST_HEADERS:User-Agent: mozilla/5.0 (compatible; nmap scripting engine; https://nmap.org/book/nse.html)"] (Severity: 2)
show less
Honeypot detection: SIP / VoIP scanning or unauthorized registration attempt on port 5060. Severity: ...
show moreHoneypot detection: SIP / VoIP scanning or unauthorized registration attempt on port 5060. Severity: LOW. Aaran.cloud
show less
Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ...
show moreHoneypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud
show less
Hacking
Exploited Host
Showing 1 to
15
of 39 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown 🚩