JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 35.197.143.215

35.197.143.215 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 94%: ?

94%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	215.143.197.35.bc.googleusercontent.com
Domain Name	google.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 35.197.143.215

Whois 35.197.143.215

IP Abuse Reports for 35.197.143.215:

This IP address has been reported a total of 36 times from 27 distinct sources. 35.197.143.215 was first reported on February 12th 2026, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 SpaceHost-Server	2026-06-15 22:31:23 (4 days ago)		Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-15 22:02:33 (4 days ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-14. show less	Web App Attack SSH Hacking
🇳🇱 ReyhZhao	2026-06-15 09:52:36 (5 days ago)	Bunkerweb ModSecurity alert: Potential Remote Command Execution (RCE) detected. Unix shell code was ... show more Bunkerweb ModSecurity alert: Potential Remote Command Execution (RCE) detected. Unix shell code was identified within the request arguments, triggering a security rule designed to prevent application attacks. show less	Brute-Force
🇺🇸 TPI-Abuse	2026-06-15 09:29:54 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 35.197.143.215 (215.143.197.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.197.143.215 (215.143.197.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 05:29:47.867158 2026] [security2:error] [pid 16609:tid 16609] [client 35.197.143.215:37130] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "web-sitebuilder.com"] [uri "/shop/.git/config"] [unique_id "ai_GC-pdUpNOvFHmY99uOQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-06-15 09:03:53 (5 days ago)	10.661 requests in 1 hour (3mos1d17h)	Brute-Force Bad Web Bot
🇯🇵 HeliJP	2026-06-15 08:45:37 (5 days ago)	2026-06-15T08:28:02Z - Recognized attacks\bad behavior from IP address 35.197.143.215 on port 443\80 ... show more 2026-06-15T08:28:02Z - Recognized attacks\bad behavior from IP address 35.197.143.215 on port 443\80 (30 daily hits): client denied by server configuration show less	Port Scan Hacking SQL Injection Brute-Force Web App Attack
Anonymous	2026-06-15 06:11:45 (5 days ago)	35.197.143.215 - - [15/Jun/2026:14:11:45 +0800] "GET /backend/.git/config HTTP/1.1" 404 196 "-" "Moz ... show more 35.197.143.215 - - [15/Jun/2026:14:11:45 +0800] "GET /backend/.git/config HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.35 Safari/537.36" 35.197.143.215 - - [15/Jun/2026:14:11:45 +0800] "GET /public/.git/config HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Linux; Android 9; Redmi Note 7 Pro Build/PKQ1.181203.001; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/66.0.3359.126 MQQBrowser/6.2 TBS/044807 Mobile Safari/537.36 MMWEBID/7272 MicroMessenger/7.0.6.1460(0x27000634) Process/tools NetType/WIFI Language/zh_CN" 35.197.143.215 - - [15/Jun/2026:14:11:45 +0800] "GET /static/.git/config HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Linux; Android 9; Pixel 2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36" 35.197.143.215 - - [15/Jun/2026:14:11:45 +0800] "GET /assets/.git/config HTTP/1.1" 404 196 "-" "Web Downloader/6.9" 35.197.143.215 - - [15/Jun/2026:14:11:45 +0800] "GET /dist/.git ... show less	Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-06-15 05:46:50 (5 days ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 04:54:15 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 35.197.143.215 (215.143.197.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.197.143.215 (215.143.197.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 00:54:07.424959 2026] [security2:error] [pid 12170:tid 12170] [client 35.197.143.215:60382] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "crockett.ws"] [uri "/code/.git/config"] [unique_id "ai-Fb6HoPd19UUkkR5StPwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-15 03:17:37 (5 days ago)	Excessive multi-domain requests	Brute-Force
🇺🇸 TPI-Abuse	2026-06-15 02:44:57 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 35.197.143.215 (215.143.197.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.197.143.215 (215.143.197.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 22:44:52.526995 2026] [security2:error] [pid 10054:tid 10054] [client 35.197.143.215:37768] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.ferienwohnungen-eva.com.ferienwohnung-buchen.com"] [uri "/backend/.git/config"] [unique_id "ai9nJP3nDYNlmClWWnsOVgAAAJM"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-15 02:07:17 (5 days ago)	Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-195)	Hacking Web App Attack
🇩🇪 macrob	2026-06-15 00:50:34 (5 days ago)	2026/06/15 00:50:32 [error] 2494093#2494093: 305952591 access forbidden by rule, client: 35.197.143 ... show more 2026/06/15 00:50:32 [error] 2494093#2494093: 305952591 access forbidden by rule, client: 35.197.143.215, server: binixo.pl, request: "GET /.git/config HTTP/2.0", host: "binixo.pl" 2026/06/15 00:50:32 [error] 2494093#2494093: 305958987 access forbidden by rule, client: 35.197.143.215, server: binixo.pl, request: "GET /src/.git/config HTTP/2.0", host: "binixo.pl" 2026/06/15 00:50:32 [error] 2494096#2494096: 305957832 access forbidden by rule, client: 35.197.143.215, server: binixo.pl, request: "GET /backend/.git/config HTTP/2.0", host: "binixo.pl" ... show less	Web App Attack
🇺🇸 mnsf	2026-06-15 00:17:18 (5 days ago)	Too many Status 40X (11) Scanning/Probing (30)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 23:34:14 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 35.197.143.215 (215.143.197.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.197.143.215 (215.143.197.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 19:34:09.808248 2026] [security2:error] [pid 10497:tid 10508] [client 35.197.143.215:45582] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hnssales.com"] [uri "/htdocs/.git/config"] [unique_id "ai86cdMGYCRLuXoEYcfiPwAAAEg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 36 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 201.234.106.215

🇳🇱 185.177.238.75

🇸🇬 103.250.10.18

🇨🇴 186.102.72.253

🇦🇷 138.118.215.192

🇨🇳 117.149.196.213

🇰🇷 110.15.180.184

🇩🇪 213.209.159.242

🇨🇳 120.239.0.239

🇬🇧 109.181.37.0

🇯🇵 101.36.104.242

🇳🇱 45.148.10.141

🇩🇪 207.154.230.149

🇨🇳 101.96.198.153

🇨🇦 96.30.129.156

🇺🇸 66.132.172.248

🇺🇸 47.189.182.17

🇮🇶 37.238.45.202

🇨🇴 209.61.59.6

🇹🇼 198.235.24.93