JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 35.194.191.253

35.194.191.253 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 71%: ?

71%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	253.191.194.35.bc.googleusercontent.com
Domain Name	google.com
Country	🇹🇼 Taiwan
City	Taipei, Taiwan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 35.194.191.253

Whois 35.194.191.253

IP Abuse Reports for 35.194.191.253:

This IP address has been reported a total of 19 times from 12 distinct sources. 35.194.191.253 was first reported on June 25th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-27 22:01:33 (1 day ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-26. show less	Web App Attack SSH Hacking
🇳🇱 homeshowdomain.nl	2026-06-26 22:01:51 (2 days ago)	Auto-ban: >3000 req/min op 2026-06-26	Web App Attack SSH Hacking
🇧🇪 cmbplf	2026-06-26 04:35:45 (3 days ago)	1.012 requests with url.path */.git/config	Brute-Force Bad Web Bot
🇺🇸 mnsf	2026-06-26 03:05:50 (3 days ago)	Scanning/Probing (30)	Brute-Force Web App Attack
🇨🇭 TheCoon	2026-06-26 03:00:01 (3 days ago)	Automated: Credential theft attempt - JSON bomb served	Web App Attack Hacking
Anonymous	2026-06-26 02:39:27 (3 days ago)	[osotir.org] httpd-suspicious-path: sites=drasimas.gr; logs=/var/log/httpd/domains/drasimas.gr.log; ... show more [osotir.org] httpd-suspicious-path: sites=drasimas.gr; logs=/var/log/httpd/domains/drasimas.gr.log; samples=/.git/config \| /www/.git/config \| /portal/.git/config show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 02:12:33 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 35.194.191.253 (253.191.194.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.194.191.253 (253.191.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 22:12:28.590096 2026] [security2:error] [pid 5476:tid 5549] [client 35.194.191.253:56424] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "livetalkusa.com"] [uri "/v2/.git/config"] [unique_id "aj3gDLH5jpMstfssrgyHzAAAAQ0"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-06-26 01:43:22 (3 days ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 Savvii	2026-06-26 00:26:23 (3 days ago)	20 attempts against mh-misbehave-ban on mist	Brute-Force Bad Web Bot Web App Attack
🇳🇱 i-turnradio.nl	2026-06-26 00:10:16 (3 days ago)	2026-06-26 @ 02:10:16 (CET) ~ Blocked for trying to access: /web/.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 00:04:32 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 35.194.191.253 (253.191.194.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.194.191.253 (253.191.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 20:04:25.027556 2026] [security2:error] [pid 22698:tid 22720] [client 35.194.191.253:50668] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.newleafpro.com"] [uri "/src/.git/config"] [unique_id "aj3CCRwUF1nU6wxU7b2CCQAAAM8"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-06-25 23:44:48 (3 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 23:32:52 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 35.194.191.253 (253.191.194.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.194.191.253 (253.191.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 19:32:46.364253 2026] [security2:error] [pid 16017:tid 16017] [client 35.194.191.253:33148] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.netcastcorp.com"] [uri "/wp-content/.git/config"] [unique_id "aj26ntGT1fysXvk8n-VKJQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 23:11:11 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 35.194.191.253 (253.191.194.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.194.191.253 (253.191.194.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 19:11:05.942231 2026] [security2:error] [pid 26866:tid 26866] [client 35.194.191.253:39538] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.thewritekellys.com"] [uri "/.git/config"] [unique_id "aj21iQamNy_3pnCdHravfAAAAEk"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Savvii	2026-06-25 22:47:33 (3 days ago)	20 attempts against mh_ha-misbehave-ban on ec102967	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.167.168.250

🇸🇪 171.25.158.87

🇵🇱 87.251.64.144

🇧🇬 78.128.113.46

🇺🇸 66.187.5.175

🇸🇬 43.156.69.191

🇺🇸 43.130.31.17

🇧🇷 189.6.6.114

🇻🇳 116.98.58.244

🇸🇬 114.119.152.32

🇭🇰 110.235.62.72

🇩🇪 92.246.91.224

🇮🇳 49.35.216.35

🇺🇸 45.156.129.95

🇺🇸 34.19.12.226

🇺🇸 195.184.76.181

🇵🇱 188.125.33.54

🇺🇸 172.253.91.150

🇸🇬 114.119.156.17

🇪🇸 80.24.1.119