Cautionary Risk
IP 155.94.155.105 is a medium-risk US address associated with email spam distribution, recorded with 19,539 total abuse reports in September 2025 across automated honeypot sensors. Despite the substantial historical report volume, its current activity frequency is rated at zero out of ten, indicating no detected ongoing campaigns at the time of reporting.
The IP originates from Railnet LLC operating under autonomous system AS214943, a US-based network provider. All 20 recent threat reports were classified under the Email Spam category and attributed exclusively to automated honeypot detection systems rather than direct victim reports or production mail-server telemetry. The first and last reported dates both fall within September 2025, suggesting the bulk of the historical reports accumulated over a short window. The confidence score of 55 percent reflects meaningful but not definitive attribution, likely due to the passive nature of honeypot-based detection limiting visibility into actual mail delivery outcomes.
Email spam abuse from a source IP represents a concrete risk to any exposed mail relay or SMTP listener. Compromised or poorly configured mail services on this network segment may be leveraged to send bulk unsolicited messages, distribute phishing content, or deliver malware-laden attachments. Even when messages do not reach inboxes, they consume server resources, trigger reputation damage with major email providers, and may trigger IP or domain-level blocklisting that affects legitimate services sharing the same reputation pool.
Site operators maintaining exposed SMTP services should enforce strict relay controls, implement SPF, DKIM and DMARC authentication to prevent spoofing, and route inbound mail through reputable filtering platforms. Monitoring for unusual outbound mail volume from internal hosts can catch compromise early. Implementing fail2ban or equivalent dynamic blocking rules tuned to SMTP abuse patterns provides an additional layer of automated defence without requiring manual intervention for every detected attempt.
BG 
UA 
CH 
GB 
SC