JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 35.199.4.228

35.199.4.228 was found in our database!

This IP was reported 105 times. Confidence of Abuse is 75%: ?

75%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	228.4.199.35.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	Washington, District of Columbia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 35.199.4.228

Whois 35.199.4.228

IP Abuse Reports for 35.199.4.228:

This IP address has been reported a total of 105 times from 58 distinct sources. 35.199.4.228 was first reported on August 11th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-09 22:03:10 (1 week ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08. show less	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-09 14:40:58 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.199.4.228 (228.4.199.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.199.4.228 (228.4.199.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 10:40:52.639119 2026] [security2:error] [pid 11588:tid 11708] [client 35.199.4.228:44216] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "siraceservices.com"] [uri "/.git/config"] [unique_id "aigl9IpfdIqB_CiRpSsUIQAAANM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 14:06:54 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.199.4.228 (228.4.199.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.199.4.228 (228.4.199.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 10:06:50.742152 2026] [security2:error] [pid 18356:tid 18356] [client 35.199.4.228:40320] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jpfamilyllc.com"] [uri "/.git/config"] [unique_id "aigd-pmTXjQfEY8w9KOcsAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇴 Abuse Buster	2026-06-09 13:48:05 (1 week ago)	35.199.4.228 - - [09/Jun/2026:15:48:00 +0200] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (X1 ... show more 35.199.4.228 - - [09/Jun/2026:15:48:00 +0200] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Firefox/38.0" 35.199.4.228 - - [09/Jun/2026:15:48:03 +0200] "GET /.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-A510F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.101 Mobile Safari/537.36" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 12:55:52 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.199.4.228 (228.4.199.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.199.4.228 (228.4.199.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 08:55:44.694237 2026] [security2:error] [pid 17010:tid 17010] [client 35.199.4.228:37508] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "10bestrealtors.com"] [uri "/.git/config"] [unique_id "aigNULXSPeU29h--AxFJ5QAAAEk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 11:28:32 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.199.4.228 (228.4.199.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.199.4.228 (228.4.199.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 07:28:29.114332 2026] [security2:error] [pid 22269:tid 22269] [client 35.199.4.228:41496] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.jasonharveydesign.dianogah.com"] [uri "/.git/config"] [unique_id "aif43RCqiTJwk3n-Oh_UYgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-06-09 10:10:33 (1 week ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇧🇪 cmbplf	2026-06-09 09:40:18 (1 week ago)	10.087 requests with url.path .git/	Brute-Force Bad Web Bot
🇺🇸 OceanTreasure	2026-06-09 07:45:07 (1 week ago)	tcp/443; Git configuration exposure attempt: "GET /.git/config" @ 2026-06-09T07:42:18Z [proxy]	Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 06:39:16 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.199.4.228 (228.4.199.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.199.4.228 (228.4.199.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 02:39:09.602427 2026] [security2:error] [pid 10889:tid 10889] [client 35.199.4.228:57352] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.paulomiranda.infinite-e.com"] [uri "/.git/config"] [unique_id "aie1Da7LM5Cn5lAyCsq3mQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 02:01:50 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.199.4.228 (228.4.199.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.199.4.228 (228.4.199.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 22:01:44.225005 2026] [security2:error] [pid 12696:tid 12696] [client 35.199.4.228:42016] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pete-n-sheila.net"] [uri "/.git/config"] [unique_id "aid0CLNmLKbpVXYNUUOnWgAAAGU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 01:16:27 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.199.4.228 (228.4.199.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.199.4.228 (228.4.199.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 21:16:19.793770 2026] [security2:error] [pid 17921:tid 17956] [client 35.199.4.228:46732] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "okorganicgardening.org"] [uri "/.git/config"] [unique_id "aidpY2rOLJLrTm_5SSZesAAAAMw"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-08 22:02:31 (1 week ago)	Auto-ban: >3000 req/min op 2026-06-08	Web App Attack SSH Hacking
🇩🇪 ghostwarriors	2026-06-08 19:50:21 (1 week ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 19:35:00 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.199.4.228 (228.4.199.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.199.4.228 (228.4.199.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 15:34:53.702828 2026] [security2:error] [pid 16489:tid 16489] [client 35.199.4.228:50014] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "web87.dnchosting.com"] [uri "/.git/config"] [unique_id "aicZXcOZHZDv2o9P3Wl_gAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 105 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 54.180.88.136

🇸🇦 37.106.107.125

🇻🇳 14.167.127.4

🇧🇷 205.210.31.252

🇫🇮 147.185.133.122

🇭🇰 143.92.40.151

🇨🇳 124.160.236.170

🇨🇳 118.196.51.94

🇧🇬 79.124.56.254

🇮🇳 74.225.21.96

🇺🇸 74.7.243.245

🇩🇪 46.236.220.195

🇺🇸 45.156.129.87

🇺🇸 35.196.244.246

🇻🇳 14.191.154.141

🇺🇸 205.210.31.86

🇨🇦 195.242.214.37

🇧🇷 186.251.163.81

🇯🇵 153.193.220.245

🇰🇷 152.70.95.145