JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 202.148.1.35

202.148.1.35 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 17%: ?

17%

ISP	PT. Core Mediatech (DNET)
Usage Type	Data Center/Web Hosting/Transit
ASN	AS9794
Hostname(s)	device.dnet.net.id
Domain Name	dnet.net.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 202.148.1.35

Whois 202.148.1.35

IP Abuse Reports for 202.148.1.35:

This IP address has been reported a total of 27 times from 23 distinct sources. 202.148.1.35 was first reported on July 11th 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 k1nzu	2026-06-19 18:02:32 (3 days ago)	RDP brute-force login attempts (Windows event 4625) against our VPS. Auto-banned by firewall.	SSH Brute-Force
🇳🇱 ByeByte API	2026-05-18 02:52:27 (1 month ago)	Port scan from this IP. Firewall dropped every packet. Targeted TCP ports: 135. Single burst at 2026 ... show more Port scan from this IP. Firewall dropped every packet. Targeted TCP ports: 135. Single burst at 2026-05-18 02:52 UTC. show less	Port Scan
🇫🇷 EDSL	2026-05-12 04:24:44 (1 month ago)	[SRV-VPN1] Blocked by SysWarden Firewall (Port Scan / Probing Port 135)	Port Scan
🇺🇸 thororen	2026-05-07 03:01:35 (1 month ago)	Blocked by UFW [135/tcp] Source port: 56441 TTL: 116 Packet length: 52 TOS: 0x00 This report was ge ... show more Blocked by UFW [135/tcp] Source port: 56441 TTL: 116 Packet length: 52 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇭 SOC [GOLINE SA]	2026-05-06 22:46:03 (1 month ago)	[RoutePulse \| 2026-05-06T22:46:03Z] ATTACK: port scan horizontal (port 135) TARGET: 3 subnets: 185.5 ... show more [RoutePulse \| 2026-05-06T22:46:03Z] ATTACK: port scan horizontal (port 135) TARGET: 3 subnets: 185.54.80.0/24, 185.54.81.0/24, 185.54.82.0/24 SOURCE: 202.148.1.35 EVIDENCE: severity=warning · 569 flows · 34 KB · 569 distinct targets · port 135 MITRE: T1018 Remote System Discovery, T1046 Network Service Scanning DETECTION: sFlow/IPFIX flow analysis + 18-model ML ensemble + threat-intel correlation ACTION: Pre-blackhole intelligence report (live monitoring continues) show less	Port Scan
🇷🇺 Agrohim	2026-04-22 10:33:04 (2 months ago)	Gate B blocked for categories:	DDoS Attack Ping of Death Port Scan Hacking Brute-Force
🇬🇧 gbzret4d	2026-04-19 14:57:10 (2 months ago)	Honeypot [uk-production01]: Unauthorized traffic on 135/epmapper	Port Scan
Anonymous	2026-04-18 19:07:32 (2 months ago)	PROTO=TCP DPT=135	Port Scan Hacking
🇹🇷 rtbh.com.tr	2026-04-07 16:12:22 (2 months ago)	list.rtbh.com.tr report: tcp/135	Brute-Force
🇹🇷 0xi	2026-04-05 01:30:56 (2 months ago)	Malicious scanning and attack activity detected (573 attempts). Targeted ports: 135. Triggered senso ... show more Malicious scanning and attack activity detected (573 attempts). Targeted ports: 135. Triggered sensors: Suricata, P0f, Dionaea. Observed via distributed honeypot network. show less	Port Scan
🇫🇷 ✨	2026-04-03 01:39:14 (2 months ago)	Rule : Security UserAccount : Administrator S-1-0-0 - - 0x0 S-1-0-0 Administrator DUDE35PC 0xc00000 ... show more Rule : Security UserAccount : Administrator S-1-0-0 - - 0x0 S-1-0-0 Administrator DUDE35PC 0xc000006d %#13 0xc000006a 3 NtLmSsp NTLM DUDE35PC - - 0 0x0 - 202.148.1.35 60165 show less	Port Scan Hacking Brute-Force
🇩🇪 Tamsweb	2026-03-25 07:00:04 (2 months ago)	Unauthorized connection attempt or scan from 202.148.1.35 on port 53453 ...	Port Scan
🇹🇷 rtbh.com.tr	2026-03-23 20:12:13 (2 months ago)	list.rtbh.com.tr report: tcp/135	Brute-Force
🇨🇭 MLCloud	2026-03-15 10:13:42 (3 months ago)	Honeypot hit: Unauthorized traffic on 135/epmapper	Port Scan
🇹🇷 rtbh.com.tr	2026-03-03 12:11:50 (3 months ago)	list.rtbh.com.tr report: tcp/135	Brute-Force

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2604:a880:400:d1:0:4:6c7b:f001

🇭🇰 223.197.178.95

🇷🇴 141.98.83.240

🇨🇳 125.77.73.145

🇰🇷 112.217.188.122

🇳🇱 64.89.162.139

🇺🇸 34.233.208.81

🇳🇱 34.6.65.221

🇲🇦 160.172.3.230

🇲🇾 121.120.42.31

🇷🇴 92.118.39.229

🇲🇽 78.12.145.214

🇧🇩 43.224.118.34

🇬🇧 35.203.210.171

🇳🇱 34.158.109.207

🇳🇱 34.7.6.98

🇳🇱 34.6.209.119

🇮🇪 20.93.43.181

🇯🇵 8.216.12.108

🇫🇮 2a00:1450:4010:c01::129