JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 95.215.0.145

95.215.0.145 was found in our database!

This IP was reported 306 times. Confidence of Abuse is 100%: ?

100%

ISP	Petersburg Internet Network ltd.
Usage Type	Fixed Line ISP
ASN	AS44050
Hostname(s)	scan.f6.security
Domain Name	pindc.ru
Country	🇷🇺 Russian Federation
City	Saint Petersburg, St.-Petersburg

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 95.215.0.145

Whois 95.215.0.145

IP Abuse Reports for 95.215.0.145:

This IP address has been reported a total of 306 times from 159 distinct sources. 95.215.0.145 was first reported on September 18th 2025, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 heyzg	2026-06-11 16:44:33 (2 hours ago)	HTTP honeypot \| Defense Evasion \| 9 cmds, 11 HTTP, 17s \| tactics: command obfuscation	Hacking SSH
🇫🇷 Feelautom	2026-06-11 14:26:08 (5 hours ago)	[FeelAutom Auto-Ban] AI Analyst: Score de menace 100/200, comportement malveillant (Score: 200)	Hacking
🇯🇵 jay hung	2026-06-11 13:56:23 (5 hours ago)	2026-06-11T13:56:22.941624+00:00 quarktech kernel: [1021025.647900] [UFW BLOCK] IN=eth0 OUT= MAC=22: ... show more 2026-06-11T13:56:22.941624+00:00 quarktech kernel: [1021025.647900] [UFW BLOCK] IN=eth0 OUT= MAC=22:00:92:2e:84:93:fe:ff:ff:ff:ff:ff:08:00 SRC=95.215.0.145 DST=172.237.20.248 LEN=40 TOS=0x00 PREC=0x00 TTL=237 ID=11291 PROTO=TCP SPT=60000 DPT=45281 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇩🇪 banankicks	2026-06-11 12:35:56 (6 hours ago)	Unauthorized connection attempt detected from IP address 95.215.0.145 to port 5432 (banankicks-serve ... show more Unauthorized connection attempt detected from IP address 95.215.0.145 to port 5432 (banankicks-server) [P] show less	Brute-Force Exploited Host
🇫🇷 security.rdmc.fr	2026-06-11 11:53:56 (7 hours ago)	Port Scan Attack proto:TCP src:60000 dst:21	Port Scan
🇺🇸 chronos	2026-06-11 11:51:24 (7 hours ago)	[AUTORAVALT][[11/06/2026 - 08:51:23 -03:00 UTC] Attack from [95.215.0.145][scan.f6.security] Action ... show more [AUTORAVALT][[11/06/2026 - 08:51:23 -03:00 UTC] Attack from [95.215.0.145][scan.f6.security] Action: BLocKed Phishing -> Phishing websites and/or email. Email Spam -> Spam email content, infected attachments, and phishing emails. Hacking... Unauthorized attempts to access the server. Spoofing -> Email sender spoofing. Brute-Force -> Credential brute-force att] ... show less	Brute-Force Email Spam Spoofing Phishing Hacking
🇵🇱 nfsec.pl	2026-06-11 11:51:08 (7 hours ago)	Detected: TCP scan on port: 21 with flags: SYN	Port Scan
Anonymous	2026-06-11 11:01:36 (8 hours ago)	2026-06-11T07:01:31.533152-04:00 mail postfix/smtpd[1532246]: improper command pipelining after CONN ... show more 2026-06-11T07:01:31.533152-04:00 mail postfix/smtpd[1532246]: improper command pipelining after CONNECT from scan.f6.security[95.215.0.145]: \026\003\001\000u\001\000\000q\003\003g\b\242\303\026~\256\263\n\265e-\236`\341:P4\334\b\271\300\032\277\004\305\342\267\307\3554\342\000\000\032\300/\300+\300\021\300\a\300\023\300\t\300\024\300\n\000\005\000/\0005\300\022\000\n\001\000\000.\000\005\000\005\001\000\000\000\000\000\n\000\b\000\006\000\027\000\030\000\031\000\v\000 2026-06-11T07:01:31.772437-04:00 mail postfix/smtpd[1532246]: improper command pipelining after CONNECT from scan.f6.security[95.215.0.145]: SSH-2.0-Go\r\n 2026-06-11T07:01:35.831398-04:00 mail postfix/smtpd[1832360]: improper command pipelining after CONNECT from scan.f6.security[95.215.0.145]: EHLO\r\n ... show less	Email Spam Brute-Force
🇺🇸 shaunc	2026-06-11 10:19:31 (9 hours ago)	Jun 11 05:19:27 mailman sshd[17228]: Bad protocol version identification '026003001' from 95.215.0.1 ... show more Jun 11 05:19:27 mailman sshd[17228]: Bad protocol version identification '026003001' from 95.215.0.145 port 48784 Jun 11 05:19:28 mailman sshd[17247]: Connection reset by 95.215.0.145 port 48785 [preauth] Jun 11 05:19:28 mailman sshd[17269]: Bad protocol version identification 'EHLO' from 95.215.0.145 port 48786 show less	Brute-Force SSH
🇳🇱 WinnieHoneypots	2026-06-11 05:41:44 (13 hours ago)	📡 TCP port scanner, 5 or more hits, last seen on port 8083 8080 38580	Port Scan
Anonymous	2026-06-11 04:59:42 (14 hours ago)	95.215.0.145 - - [11/Jun/2026:04:59:42 +0000] "\x16\x03\x01" 400 432 "-" "-" ...	Bad Web Bot Web App Attack
🇦🇺 wooper	2026-06-11 04:51:22 (14 hours ago)	SMTP	Email Spam Brute-Force
🇦🇺 specializedtom	2026-06-11 04:48:00 (14 hours ago)	Fail2Ban triggered a ban on 95.215.0.145 for postfix-sasl	Phishing Email Spam Spoofing
Anonymous	2026-06-11 04:40:50 (14 hours ago)	$f2bV_matches	Brute-Force SSH
🇺🇸 mnsf	2026-06-11 04:05:39 (15 hours ago)	Too many Status 40X (12)	Brute-Force Web App Attack

Showing 1 to 15 of 306 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 185.223.235.42

🇷🇺 176.116.174.23

🇺🇸 173.194.97.28

🇺🇸 162.216.150.158

🇩🇪 150.241.76.42

🇳🇱 45.198.224.138

🇸🇳 154.124.49.134

🇫🇮 147.185.133.83

🇺🇸 128.24.161.16

🇩🇪 78.111.67.112

🇭🇰 74.125.179.149

🇮🇳 49.204.112.118

🇺🇸 216.59.173.21

🇬🇧 193.163.125.43

🇮🇩 163.7.8.178

🇻🇳 113.166.127.6

🇫🇷 109.123.249.184

🇺🇸 66.132.195.44

🇺🇸 34.228.104.231

🇨🇳 221.208.113.51