IP address 5.181.87.35 has been flagged in 24 abuse reports across 16 independent threat intelligence sources, resulting in a threat score of 100.0/100 (critical risk). The primary activity associated with this IP is aggressive scanner, along with attacks, brute force, malware c2, scanning, ssh brute force, ssh bruteforce, suspicious activity, voip attack, web attack, web brute force.
This IP is geolocated in Türkiye (Bursa) and belongs to the network Yigit Hosting Bilisim E-Ticaret Gida Sanayi Ticaret Limited Sirketi (AS47585). Reports span from 2026-02-27 to 2026-04-05.
Assessment: Despite a lower report volume, the severity and nature of activity from 5.181.87.35 has triggered critical-level alerts across our threat detection network. The IP has been observed conducting automated SSH login attempts against internet-facing servers, a technique commonly used to gain unauthorized access to systems.