JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 35.252.212.147

35.252.212.147 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 77%: ?

77%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	147.212.252.35.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	The Dalles, Oregon

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 35.252.212.147

Whois 35.252.212.147

IP Abuse Reports for 35.252.212.147:

This IP address has been reported a total of 14 times from 14 distinct sources. 35.252.212.147 was first reported on June 25th 2026, and the most recent report was 55 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 dynamix	2026-06-25 14:12:24 (55 minutes ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇳🇱 Savvii	2026-06-25 14:12:04 (56 minutes ago)	10 attempts against mh-misc-ban on frost	Web App Attack
Anonymous	2026-06-25 14:10:29 (57 minutes ago)	35.252.212.147 - - [25/Jun/2026:22:10:28 +0800] "GET //xmlrpc.php?rsd HTTP/1.1" 404 16 "-" "Mozilla/ ... show more 35.252.212.147 - - [25/Jun/2026:22:10:28 +0800] "GET //xmlrpc.php?rsd HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" ... show less	Bad Web Bot Web App Attack
🇫🇷 vtchost.com	2026-06-25 14:07:24 (1 hour ago)	minux.cc:80 35.252.212.147 - - [25/Jun/2026:16:07:23 +0200] "GET /wp-includes/ID3/license.txt HTTP/1 ... show more minux.cc:80 35.252.212.147 - - [25/Jun/2026:16:07:23 +0200] "GET /wp-includes/ID3/license.txt HTTP/1.1" 418 215 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" ... show less	Web App Attack
Anonymous	2026-06-25 14:03:52 (1 hour ago)	Automatically blocked after 7 security events. Observed repeated web application attack probes. Sour ... show more Automatically blocked after 7 security events. Observed repeated web application attack probes. Source: Cloudflare security controls. show less	Hacking Web App Attack
🇩🇪 big-cloud.nl	2026-06-25 14:00:21 (1 hour ago)	Try to access /xmlrpc.php?rsd	Web App Attack
🇨🇦 zXero	2026-06-25 13:35:26 (1 hour ago)	Fail2Ban automatic report - jail: no-wordpress	Brute-Force SSH DDoS Attack
Anonymous	2026-06-25 13:34:58 (1 hour ago)	35.252.212.147 - - [25/Jun/2026:15:34:54 +0200] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 1998 ... show more 35.252.212.147 - - [25/Jun/2026:15:34:54 +0200] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 1998 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 35.252.212.147 - - [25/Jun/2026:15:34:55 +0200] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 1998 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 35.252.212.147 - - [25/Jun/2026:15:34:57 +0200] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 1998 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 35.252.212.147 - - [25/Jun/2026:15:34:57 +0200] "GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 1998 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 35.252.212.147 - - [25/Jun/2026:15:34:58 +0200] "GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1 ... show less	Brute-Force Web App Attack
🇧🇪 cmbplf	2026-06-25 13:34:15 (1 hour ago)	3.757 requests with url.path //xmlrpc.php 3.741 requests with url.path /xmlrpc.php 564 requests ... show more 3.757 requests with url.path //xmlrpc.php 3.741 requests with url.path /xmlrpc.php 564 requests with url.path */wp-includes/wlwmanifest.xml show less	Brute-Force Bad Web Bot
🇩🇪 JLKnoch.com	2026-06-25 13:24:18 (1 hour ago)	CrowdSec crowdsecurity/http-probing	Brute-Force Web App Attack
🇨🇭 backslash	2026-06-25 13:12:00 (1 hour ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-25 13:08:43 (1 hour ago)	(mod_security) mod_security (id:225170) triggered by 35.252.212.147 (147.212.252.35.bc.googleusercon ... show more (mod_security) mod_security (id:225170) triggered by 35.252.212.147 (147.212.252.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 09:08:40.221229 2026] [security2:error] [pid 6531:tid 6531] [client 35.252.212.147:55029] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|answeringilliana.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "answeringilliana.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aj0oWF9eBm2fNf-chKMGJgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2026-06-25 13:05:03 (2 hours ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇺🇸 LotPhantom	2026-06-25 13:03:32 (2 hours ago)	35.252.212.147 - - [25/Jun/2026:13:02:35 +0000] "" 400 0 "-" "-" "0" 35.252.212.147 - - [25/Jun/2026 ... show more 35.252.212.147 - - [25/Jun/2026:13:02:35 +0000] "" 400 0 "-" "-" "0" 35.252.212.147 - - [25/Jun/2026:13:02:32 +0000] "" 400 0 "-" "-" "0" ... show less	Hacking Web App Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 195.178.110.188

🇻🇳 27.71.230.31

🇻🇳 14.228.102.250

🇩🇪 213.209.159.236

🇮🇳 202.142.127.74

🇬🇧 178.239.198.114

🇭🇰 121.202.198.98

🇻🇳 113.190.89.233

🇫🇷 91.231.89.138

🇵🇱 20.215.65.22

🇵🇱 2001:41d0:602:2eaa::1

🇵🇰 223.123.125.10

🇯🇵 194.5.48.115

🇪🇨 186.68.83.104

🇬🇧 178.239.198.143

🇬🇧 178.239.198.113

🇺🇸 162.216.149.40

🇨🇳 103.96.140.181

🇳🇱 91.92.40.4

🇺🇸 66.132.195.27