AbuseIPDB » 35.198.152.172
35.198.152.172
This IP was reported 9 times. Confidence of
Abuse
is 59% : ?
ISP
Google LLC
Usage Type
Data Center/Web Hosting/Transit
ASN
AS396982
Hostname(s)
172.152.198.35.bc.googleusercontent.com
Domain Name
google.com
Country
๐ฉ๐ช
Germany
City
Frankfurt am Main, Hesse
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 35.198.152.172 :
This IP address has been reported a total of
9
times from
9 distinct
sources.
35.198.152.172 was first reported on
June 9th 2026 , and the most recent report was
2 hours ago
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐ซ๐ฎ
as211431.net
2026-06-10 02:00:25
(2 hours ago)
Triggered Cloudflare WAF (firewallCustom) from DE.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET metho ...
show more
Triggered Cloudflare WAF (firewallCustom) from DE.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET method)
Endpoint: /wp-json/gravitysmtp/v1/config
UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.67 Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐จ๐ญ
backslash
2026-06-09 20:03:03
(8 hours ago)
block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638
Bad Web Bot
๐ฉ๐ช
SCHAPPY
2026-06-09 19:28:19
(9 hours ago)
Mutliple attempts to access forbidden web resources, HTTP code 403.
Web App Attack
๐ฉ๐ช
filstal.org
2026-06-09 18:09:07
(10 hours ago)
Persistent bad bot: repeated automated abuse detected
Bad Web Bot
Web App Attack
๐บ๐ธ
xxkodedxx
2026-06-09 16:55:09
(12 hours ago)
[Zorvexus edge-defense] GET .env / WordPress honeypot probe
Trigger: 1ร honeypot-get in 10m window.
...
show more
[Zorvexus edge-defense] GET .env / WordPress honeypot probe
Trigger: 1ร honeypot-get in 10m window.
Active: 16:54:07 UTC
Volume: 5 honeypot probe(s)
Bait taken: /wp-json/gravitysmtp/v1/settings, /wp-json/wp/v2/settings, /wp-json/gravitysmtp/v1/tests/mock-data, /wp-json/gravitysmtp/v1/config, /wp-json/gravitysmtp/v1/tests/mock-data?page=gravitysmtp-settings
UA: "SonyEricssonW850i/R1ED Browser/NetFront/3.3 Profile/MIDP-2.0 Configuration/CLDC-1.1"
Auto-banned 30d. zorvexus-banner.
show less
Bad Web Bot
Web App Attack
๐ซ๐ท
Rom74
2026-06-09 07:20:05
(21 hours ago)
[Tue Jun 09 09:20:04.688870 2026] [security2:error] [pid 420735:tid 131905550804672] [client 35.198. ...
show more
[Tue Jun 09 09:20:04.688870 2026] [security2:error] [pid 420735:tid 131905550804672] [client 35.198.152.172:45346] [client 35.198.152.172] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "ton-espace.com"] [uri "/wp-json/gravitysmtp/v1/tests/mock-data"] [unique_id "aie-pDr9WMAcfHZ6y8mkiAAAAJE"]
[Tue Jun 09 09:20:04.692738 2026] [security2:error] [pid 420279:tid 131906112722624] [client 35.198.152.172:45362] [client 35.198.152.172] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "I
...
show less
Web App Attack
๐ฎ๐น
VHosting
2026-06-09 05:40:02
(23 hours ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐ฏ๐ต
Valhalla
2026-06-09 05:22:40
(23 hours ago)
/wp-json/gravitysmtp/v1/tests/mock-data
Hacking
Web App Attack
๐ฌ๐ง
consul.to
2026-06-09 02:39:06
(1 day ago)
Web attack/malicious scanning detected
Web App Attack
Showing 1 to
9
of 9 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: