JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 35.204.135.142

35.204.135.142 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 80%: ?

80%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	142.135.204.35.bc.googleusercontent.com
Domain Name	google.com
Country	🇳🇱 Netherlands
City	Groningen, Groningen

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 35.204.135.142

Whois 35.204.135.142

IP Abuse Reports for 35.204.135.142:

This IP address has been reported a total of 13 times from 13 distinct sources. 35.204.135.142 was first reported on June 26th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 cmbplf	2026-06-26 14:08:14 (2 hours ago)	131.927 requests in 1 hour (1mo3w6d)	Brute-Force Bad Web Bot
🇺🇸 Charlesiv	2026-06-26 14:02:44 (2 hours ago)	Triggered Cloudflare WAF (firewallCustom) from NL. Action taken: BLOCK ASN: 396982 (Google LLC) Prot ... show more Triggered Cloudflare WAF (firewallCustom) from NL. Action taken: BLOCK ASN: 396982 (Google LLC) Protocol: HTTP/1.1 (GET method) Endpoint: /2021/wp-includes/wlwmanifest.xml Timestamp: 2026-06-26T13:10:31Z Ray ID: a11c73dbefdbb894 UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36 show less	Bad Web Bot
🇵🇱 Roper123	2026-06-26 13:59:48 (2 hours ago)	Web app exploits	Web App Attack
🇺🇸 lostswordfish.com	2026-06-26 13:48:04 (2 hours ago)	Wordfence waf block on ohrsol	Web App Attack
🇫🇷 Baking333	2026-06-26 13:42:58 (2 hours ago)	[redacted] 35.204.135.142 - - [26/Jun/2026:14:42:55 +0100] "GET //wp-includes/ID3/[redacted] HTTP/1. ... show more [redacted] 35.204.135.142 - - [26/Jun/2026:14:42:55 +0100] "GET //wp-includes/ID3/[redacted] HTTP/1.1" 302 6753 0/171885 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" [redacted] 35.204.135.142 - - [26/Jun/2026:14:42:56 +0100] "GET /[redacted]?rsd HTTP/1.1" 302 1534 0/91482 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" show less	Bad Web Bot Web App Attack
🇧🇬 HighWay	2026-06-26 13:36:06 (2 hours ago)	35.204.135.142 - - [26/Jun/2026:13:36:04 +0000] "GET //wp-includes/ID3/license.txt HTTP/1.1" 404 540 ... show more 35.204.135.142 - - [26/Jun/2026:13:36:04 +0000] "GET //wp-includes/ID3/license.txt HTTP/1.1" 404 5403 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 35.204.135.142 - - [26/Jun/2026:13:36:04 +0000] "GET //xmlrpc.php?rsd HTTP/1.1" 404 579 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" ... show less	Web App Attack Bad Web Bot
🇮🇹 VHosting	2026-06-26 13:35:09 (2 hours ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇷🇺 DZBOT	2026-06-26 13:33:50 (2 hours ago)	DZBOT: Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇩🇪 KiekerJan	2026-06-26 13:33:20 (2 hours ago)	35.204.135.142 - - [26/Jun/2026:15:33:19 +0200] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 40 ... show more 35.204.135.142 - - [26/Jun/2026:15:33:19 +0200] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 35.204.135.142 - - [26/Jun/2026:15:33:19 +0200] "GET //web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" ... show less	Web App Attack
🇳🇱 ipoac.nl	2026-06-26 13:23:01 (3 hours ago)	-:443 35.204.135.142 - - [26/Jun/2026:15:23:00 +0200] - "GET //xmlrpc.php?rsd HTTP/1.1" 403 1971 "-" ... show more -:443 35.204.135.142 - - [26/Jun/2026:15:23:00 +0200] - "GET //xmlrpc.php?rsd HTTP/1.1" 403 1971 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" show less	Bad Web Bot
🇺🇦 URAN Publishing Service	2026-06-26 13:22:57 (3 hours ago)	35.204.135.142 - - [26/Jun/2026:16:22:56 +0300] "GET //wp-includes/ID3/license.txt HTTP/1.1" 404 452 ... show more 35.204.135.142 - - [26/Jun/2026:16:22:56 +0300] "GET //wp-includes/ID3/license.txt HTTP/1.1" 404 4523 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 35.204.135.142 - - [26/Jun/2026:16:22:56 +0300] "GET //xmlrpc.php?rsd HTTP/1.1" 404 712 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" ... show less	Web App Attack
🇺🇸 aks4226	2026-06-26 13:16:37 (3 hours ago)	Attacking common web applications. (n01)	Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 13:08:16 (3 hours ago)	(mod_security) mod_security (id:225170) triggered by 35.204.135.142 (142.135.204.35.bc.googleusercon ... show more (mod_security) mod_security (id:225170) triggered by 35.204.135.142 (142.135.204.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 09:08:12.377870 2026] [security2:error] [pid 6388:tid 6388] [client 35.204.135.142:50292] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|oakvillenaturopathicclinic.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "oakvillenaturopathicclinic.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aj55vFcUBkhlNZL3VOctIQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 183.36.177.189

🇰🇷 175.45.204.121

🇨🇳 118.145.214.235

🇰🇷 112.171.133.147

🇰🇷 110.15.180.165

🇺🇸 91.230.168.2

🇧🇬 91.191.209.98

🇱🇹 62.60.130.219

🇺🇸 44.115.212.231

🇰🇪 41.215.8.202

🇺🇸 20.65.195.105

🇺🇸 2607:f8b0:4004:1002::126

🇨🇱 201.222.47.42

🇭🇰 154.219.108.152

🇺🇸 147.185.132.208

🇮🇳 113.193.234.210

🇦🇴 105.168.156.134

🇧🇩 103.152.103.85

🇬🇪 93.177.157.179

🇩🇪 79.218.187.79