JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 35.252.64.193

35.252.64.193 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 50%: ?

50%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	193.64.252.35.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	The Dalles, Oregon

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 35.252.64.193

Whois 35.252.64.193

IP Abuse Reports for 35.252.64.193:

This IP address has been reported a total of 9 times from 8 distinct sources. 35.252.64.193 was first reported on June 25th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-06-26 03:06:44 (2 days ago)	Scanning/Probing (31) Request Overload (126)	Brute-Force Web App Attack
🇩🇪 LRob.fr	2026-06-26 02:00:10 (2 days ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇫🇷 ecode hosting	2026-06-26 01:43:04 (2 days ago)	Rule : DDOS Flood 38	DDoS Attack
🇺🇸 WellSpring	2026-06-25 23:52:47 (2 days ago)	generic probe on 714.today/bootstrap/cache/config.php — WellSpr.ing/NetSentinel civic-AI security la ... show more generic probe on 714.today/bootstrap/cache/config.php — WellSpr.ing/NetSentinel civic-AI security layer show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-25 23:13:51 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 35.252.64.193 (193.64.252.35.bc.googleuserconte ... show more (mod_security) mod_security (id:210730) triggered by 35.252.64.193 (193.64.252.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 19:13:43.254607 2026] [security2:error] [pid 3024:tid 3024] [client 35.252.64.193:58170] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|mx5.semisysteme.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mx5.semisysteme.com"] [uri "/backup/dump.sql"] [unique_id "aj22J05lcxfRUiINAxPFSQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-25 22:59:57 (2 days ago)	35.252.64.193 - - [26/Jun/2026:00:59:54 +0200] "GET /.config/gcloud/credentials.db HTTP/1.1" 403 552 ... show more 35.252.64.193 - - [26/Jun/2026:00:59:54 +0200] "GET /.config/gcloud/credentials.db HTTP/1.1" 403 5522 "-" "Vodafone/1.0/V802SE/SEJ001 Browser/SEMC-Browser/4.1" 35.252.64.193 - - [26/Jun/2026:00:59:54 +0200] "GET /.azure/credentials HTTP/1.1" 403 5522 "-" "Mozilla/5.0 (Linux; Android 9; Redmi Note 5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Mobile Safari/537.36" 35.252.64.193 - - [26/Jun/2026:00:59:54 +0200] "GET /aws_credentials.json HTTP/1.1" 403 5522 "-" "Mozilla/5.0 (iPad; CPU OS 13_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) GSA/79.0.259819395 Mobile/17A5556d Safari/604.1" 35.252.64.193 - - [26/Jun/2026:00:59:54 +0200] "GET /app/heapdump HTTP/1.1" 403 5522 "-" "Mozilla/5.0 (compatible; MSIE 10.6; Windows NT 6.1; Trident/5.0; InfoPath.2; SLCC1; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET CLR 2.0.50727) 3gpp-gba UNTRUSTED/1.0" 35.252.64.193 - - [26/Jun/2026:00:59:54 +0200] "GET /aws-credentials.json HTTP/1.1" 403 5522 "-" "Mozilla/5.0 (Linux; And ... show less	DDoS Attack
🇺🇸 jormaster3k	2026-06-25 19:53:53 (2 days ago)	Attack against Apache (too many 404s)	Web App Attack
🇵🇱 tomkolp	2026-06-25 17:00:02 (2 days ago)	CSF/LFD block: CT - IP 35.252.64.193 (US/United States/193.64.252.35.bc.googleusercontent.com) found ... show more CSF/LFD block: CT - IP 35.252.64.193 (US/United States/193.64.252.35.bc.googleusercontent.com) found to have 784 connections show less	Web App Attack Port Scan
🇵🇱 tomkolp	2026-06-25 16:04:34 (2 days ago)	CrowdSec - Scenario: crowdsecurity/http-probing. Duration: 4h.	Port Scan Web App Attack

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇷 213.153.174.20

🇨🇳 180.153.236.15

🇷🇴 151.242.191.232

🇺🇸 143.198.150.98

🇮🇳 140.238.254.59

🇭🇰 94.74.104.89

🇳🇱 91.92.40.17

🇧🇬 79.124.62.230

🇳🇱 45.142.193.161

🇰🇷 14.51.67.158

🇨🇳 222.244.170.208

🇬🇧 193.32.209.239

🇧🇷 177.11.139.80

🇸🇬 152.32.217.179

🇨🇳 150.255.44.169

🇫🇮 147.185.133.232

🇺🇸 108.237.167.207

🇧🇩 103.166.230.6

🇧🇩 103.112.131.46

🇧🇬 79.124.62.126