35.216.144.195 — Google LLC, CH — Very High (97%)

Check an IP Address, Domain Name, Subnet, or ASN

35.216.144.195 was found in our database!

Confidence Level

97%

Very High?

Geolocation

🇨🇭

SwitzerlandZurich

ISPGoogle LLC

ASNAS15169

Activity Timeline

First seenJan 23, 2026, 02:57 PM

Last seen8h ago

First reportedFeb 25, 2026, 06:25 PM

Last reported5d ago

452Sessions

3,312Events

1Reports

Protocol Breakdown

FTP

304 / 3120

SSH

58 / 80

MYSQL

54 / 54

HTTP

11 / 33

HTTPS

25 / 25

35.216.144.195 has a very high threat confidence level of 97%, originating from Zurich, Switzerland, on the Google LLC network (15169). It has been observed across 452 sessions targeting FTP, SSH, MYSQL, HTTP, HTTPS, First observed on January 23, 2026, most recently active March 2, 2026.

Behaviors

Classified behavioral patterns observed

Ftp Control Channel Protocol Anomaly

low38x

FTP session where an empty control-channel command is observed in conjunction with non-printable binary data on the control channel. This pattern reflects malformed or non-FTP-compliant input, commonly seen during TLS handshake attempts on plaintext endpoints, protocol confusion, or automated scanner misfires.

Https Root Path Request

info10x

Identifies HTTPS requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration

Http Root Path Request

info1x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

Primitives

Individual actions observed

Ftp Enter Extended Passive Mode385 Ftp Machine List Directory376 Empty Ftp Command128 Ftp Control Channel Binary Payload99 Ftp Set Utf829 Ftp User Probe29 Ftp Help Request29 Ftp Set Binary Mode29 Ftp Feature List Request29 Ftp Session Quit17 Https Path Root10 Http Method Get1

User Reports

1 report from 1 contributor

Date	Category	Protocol	Comment
Feb 25, 2026	Brute Force	MONGODB	SikkerGuard: 2 blocked packets

Related Threats

Explore related threat intelligence

🇨🇭More threats fromSwitzerland ASMore threats fromGoogle LLC FTPMore threats targetingFTP SSHMore threats targetingSSH MYSQLMore threats targetingMYSQL HTTPMore threats targetingHTTP HTTPSMore threats targetingHTTPS { }Browse allAttack Patterns

WHOIS Lookup

IP Address	Confidence	Events
35.210.61.208	100%	937
35.216.195.77	100%	4,213
35.216.189.16	100%	3,594
66.249.73.12	7%	3
66.249.73.14	6%	4

IP Address	Confidence	Events
179.43.133.154	86%	10,642
46.14.24.50	54%	355
138.124.67.78	88%	24
193.32.127.196	60%	107
179.43.139.58	84%	5,376