This IP address has been reported a total of
25
times from
24 distinct
sources.
35.195.139.145 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Unsolicited TCP connection from 35.195.139.145 to port 0 at 2026-07-09T08:55:26Z. Source IP complete ...
show moreUnsolicited TCP connection from 35.195.139.145 to port 0 at 2026-07-09T08:55:26Z. Source IP completed three-way handshake to non-public service on this host. Detected by automated intrusion monitoring.
show less
Unsolicited TCP connection from 35.195.139.145 to port 0 at 2026-07-02T14:57:36Z. Source IP complete ...
show moreUnsolicited TCP connection from 35.195.139.145 to port 0 at 2026-07-02T14:57:36Z. Source IP completed three-way handshake to non-public service on this host. Detected by automated intrusion monitoring.
show less
2026-07-02T15:54:38.191739+02:00 mx postfix/dnsblog[207828]: addr 35.195.139.145 listed by domain ze ...
show more2026-07-02T15:54:38.191739+02:00 mx postfix/dnsblog[207828]: addr 35.195.139.145 listed by domain zen.spamhaus.org as 127.0.0.4
2026-07-02T15:54:38.201313+02:00 mx postfix/dnsblog[207828]: addr 35.195.139.145 listed by domain zen.spamhaus.org as 127.0.0.4
2026-07-02T15:54:38.269139+02:00 mx postfix/dnsblog[207830]: addr 35.195.139.145 listed by domain zen.spamhaus.org as 127.0.0.4
...
show less
Telnet credential brute-force observed by honeypot.
Source IP: 35.195.139.145
Targeted device: Ubunt ...
show moreTelnet credential brute-force observed by honeypot.
Source IP: 35.195.139.145
Targeted device: Ubuntu server
First seen: 02 Jul 2026 12:53:40 UTC
Last seen: 02 Jul 2026 12:53:40 UTC
Attempts: 1
Sample credentials: *1:$4
show less
Honeypot hit: Unauthorized traffic on 21/ftpd
Reported by: https://github.com/sefinek/T-Pot-To-Abuse ...
show moreHoneypot hit: Unauthorized traffic on 21/ftpd
Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB
show less
Honeypot [uk-production01]: Brute-force attack detected on 23/TELNET
โข Credentials: GET / HTTP/1.1:H ...
show moreHoneypot [uk-production01]: Brute-force attack detected on 23/TELNET
โข Credentials: GET / HTTP/1.1:Host: [SOME-IP]:23, User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36:Accept-Encoding: gzip, *1:$4, OPTIONS rtsp://example.com RTSP/1.0:Cseq: 8142
โข Number of login attempts: 4
show less
Honeypot hit: Brute-force attack detected on 23/TELNET
โข Credentials: GET / HTTP/1.1:Host: [SOME-IP] ...
show moreHoneypot hit: Brute-force attack detected on 23/TELNET
โข Credentials: GET / HTTP/1.1:Host: [SOME-IP]:23, User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36:Accept-Encoding: gzip, *1:$4, OPTIONS rtsp://example.com RTSP/1.0:Cseq: 3756
โข Number of login attempts: 4
โข 1 command(s) were executed during the session
show less