JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 35.247.28.64

35.247.28.64 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	64.28.247.35.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	The Dalles, Oregon

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 35.247.28.64

Whois 35.247.28.64

IP Abuse Reports for 35.247.28.64:

This IP address has been reported a total of 21 times from 20 distinct sources. 35.247.28.64 was first reported on June 22nd 2026, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇿 Antinson	2026-06-22 09:36:11 (3 hours ago)	High error rate and elevated request volume targeting cPanel servers	Bad Web Bot
🇨🇭 zynex	2026-06-22 09:27:08 (3 hours ago)	URL Probing: /xmlrpc.php	Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 09:21:14 (3 hours ago)	(mod_security) mod_security (id:225170) triggered by 35.247.28.64 (64.28.247.35.bc.googleusercontent ... show more (mod_security) mod_security (id:225170) triggered by 35.247.28.64 (64.28.247.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 05:21:09.475034 2026] [security2:error] [pid 9675:tid 9675] [client 35.247.28.64:64053] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.nekstlevel.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.nekstlevel.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ajj-hc8YADxtmlPMz_qrVQAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-22 09:15:45 (3 hours ago)	Web attack blocked by Wordfence on www.museumvalkenburg.nl (1 hit). Reported by CRMON.	Web App Attack
🇧🇪 cmbplf	2026-06-22 09:11:09 (3 hours ago)	34.089 requests in 1 hour (2mos2w6d)	Brute-Force Bad Web Bot
🇺🇸 mnsf	2026-06-22 09:07:49 (3 hours ago)	Abuse Detected (10)	Brute-Force Web App Attack
🇧🇪 taivas.nl	2026-06-22 09:02:11 (3 hours ago)	Bad_requests	Bad Web Bot
🇩🇪 Viveronese	2026-06-22 09:02:01 (3 hours ago)	HTTP vulnerability scanning	Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 08:58:47 (3 hours ago)	(mod_security) mod_security (id:225170) triggered by 35.247.28.64 (64.28.247.35.bc.googleusercontent ... show more (mod_security) mod_security (id:225170) triggered by 35.247.28.64 (64.28.247.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 04:58:39.449640 2026] [security2:error] [pid 15791:tid 15791] [client 35.247.28.64:64426] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.n4fh.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.n4fh.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ajj5P2AFkkPoSpS5pvSNKwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 NihiliousMonk	2026-06-22 08:56:05 (3 hours ago)	Fail2Ban report from jail npm-scanners	Bad Web Bot Web App Attack
🇨🇭 Origon	2026-06-22 08:55:33 (3 hours ago)	http-probing - IP: 35.247.28.64 - time="2026-06-22T10:55:33+02:00" level=info msg="(555f66b4f6a7455 ... show more http-probing - IP: 35.247.28.64 - time="2026-06-22T10:55:33+02:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-probing by ip 35.247.28.64 (US/396982) : 4h ban on Ip 35.247.28.64" module=db show less	Web App Attack
🇦🇱 router.al	2026-06-22 08:53:48 (3 hours ago)	06/22/2026-08:53:48.377002 35.247.28.64 Protocol: 6 ET SCAN WordPress Scanner Performing Multiple Re ... show more 06/22/2026-08:53:48.377002 35.247.28.64 Protocol: 6 ET SCAN WordPress Scanner Performing Multiple Requests to Windows Live Writer XML show less	Hacking
🇺🇸 masterguru	2026-06-22 08:50:47 (3 hours ago)	WordPress: User enumeration. Pattern match "(author\\\\= (88030-147)	Hacking
🇺🇸 OceanTreasure	2026-06-22 08:35:07 (4 hours ago)	tcp/80; WordPress XML-RPC brute force attempt: "GET //xmlrpc.php?rsd" @ 2026-06-22T08:29:33Z [azure]	Brute-Force
🇮🇹 VHosting	2026-06-22 08:35:03 (4 hours ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 201.149.53.243

🇨🇳 116.179.37.227

🇮🇩 103.165.139.145

🇮🇳 172.253.226.50

🇦🇫 149.54.40.222

🇨🇳 120.253.18.245

🇵🇭 120.72.25.112

🇨🇳 116.179.37.188

🇮🇳 106.207.226.60

🇮🇳 106.51.105.77

🇷🇺 92.255.196.185

🇧🇬 79.124.49.194

🇺🇸 52.230.250.68

🇮🇳 49.37.113.185

🇦🇺 45.134.20.123

🇧🇩 45.64.134.75

🇨🇦 15.156.229.22

🇮🇷 5.117.158.18

🇫🇷 2001:41d0:33d:9200::400

🇰🇷 222.98.122.37