JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 35.201.245.21

35.201.245.21 was found in our database!

This IP was reported 35 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	21.245.201.35.bc.googleusercontent.com
Domain Name	google.com
Country	🇹🇼 Taiwan
City	Taipei, Taiwan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 35.201.245.21

Whois 35.201.245.21

IP Abuse Reports for 35.201.245.21:

This IP address has been reported a total of 35 times from 31 distinct sources. 35.201.245.21 was first reported on June 8th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 cwytech	2026-06-11 17:11:18 (1 week ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: crowdsecurity/http-sensitive-files.	Bad Web Bot Web App Attack
🇩🇪 paissangroup	2026-06-11 02:30:09 (1 week ago)	Multiple WAF Violations	Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-10 22:02:04 (1 week ago)	Auto-ban: >3000 req/min op 2026-06-10	Web App Attack SSH Hacking
🇫🇮 inlink.ltd	2026-06-10 21:59:19 (1 week ago)	dot file probe	Web App Attack
🇳🇱 e.fierstra	2026-06-10 20:43:13 (1 week ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇳🇱 wlt-blocker	2026-06-10 20:39:27 (1 week ago)	Unauthorized access to webpage admin	Web App Attack
🇲🇾 Rizzy	2026-06-10 17:03:56 (2 weeks ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇳🇱 Cloud86 B.V.	2026-06-10 14:13:06 (2 weeks ago)	categories: DDoS Attack	DDoS Attack
Anonymous	2026-06-10 10:51:20 (2 weeks ago)	Bot / scanning and/or hacking attempts: GET /.env.testing HTTP/1.1, GET /packages/api/.env HTTP/1.1, ... show more Bot / scanning and/or hacking attempts: GET /.env.testing HTTP/1.1, GET /packages/api/.env HTTP/1.1, GET /.env.live HTTP/1.1, GET /apps/frontend/.env HTTP/1.1, GET /config/.env.production HTTP/1.1, GET /symfony/.env HTTP/1.1, GET /wordpress/.env HTTP/1.1, GET /public/.env HTTP/1.1, GET /www/.env HTTP/1.1, GET /web/.env HTTP/1.1, GET /.env.backup HTTP/1.1, GET /api/.env.staging HTTP/1.1, GET /html/.env HTTP/1.1, GET /data/.env HTTP/1.1, GET /.env.copy HTTP/1.1, GET /storage/.env HTTP/1.1 show less	Hacking Web App Attack
🇩🇪 4server	2026-06-10 02:35:13 (2 weeks ago)	[WedJun1004:35:08.4301042026][security2:error][pid3846255:tid3846298][client35.201.245.21:0]ModSecur ... show more [WedJun1004:35:08.4301042026][security2:error][pid3846255:tid3846298][client35.201.245.21:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"mail.vivereiltrentino.it\"][uri\"/.env.dev\"][unique_id\"aijNXC5s1d03sXrVQIS_rQAAAA4\"] show less	Port Scan Brute-Force Web App Attack
🇩🇪 updown.io	2026-06-10 02:31:34 (2 weeks ago)	{"level":"info","ts":1781058692.8732681,"logger":"http.log.access.log1","msg":"handled request","req ... show more {"level":"info","ts":1781058692.8732681,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"35.201.245.21","remote_port":"57184","client_ip":"35.201.245.21","proto":"HTTP/1.1","method":"GET","host":"cbaupdate.yxupdate.tsrqponqponmlkjihgc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io","uri":"/.env.uat","headers":{"User-Agent":["Mozilla/5.0 (X11; Linux i686; rv:28.0) Gecko/20100101 Firefox/28.0"],"Accept-Charset":["utf-8"],"Accept-Encoding":["gzip"],"Connection":["close"]}},"bytes_read":0,"user_id":"","duration":0.000056579,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://cbaupdate.yxupdate.tsrqponqponmlkjihgc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io/.env.uat"],"Content-Type":[]}} {"level":"info","ts":1781058692.8739111,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"35.201.245.21","remote_port":"57172","client_ip":"35.201.245.21","proto":"H ... show less	DDoS Attack Web App Attack
🇬🇧 andypiper	2026-06-10 01:01:38 (2 weeks ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇨🇦 polycoda	2026-06-10 00:14:15 (2 weeks ago)	AutoBlock: 🎯 Vulnerability Scanner (Non Decay-Based)	Hacking Web App Attack
🇩🇪 grassau.com	2026-06-09 17:43:28 (2 weeks ago)	Port Scan detected from 35.201.245.21 (TW/Taiwan/Taipei City/Taipei/21.245.201.35.bc.googleusercon ... show more Port Scan detected from 35.201.245.21 (TW/Taiwan/Taipei City/Taipei/21.245.201.35.bc.googleusercontent.com). show less	Port Scan
🇳🇿 Tripwire	2026-06-09 14:13:28 (2 weeks ago)	Scanning for exploits - /.env.example	Web App Attack

Showing 1 to 15 of 35 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 66.132.172.148

🇮🇳 2404:6800:4000:1003::124

🇬🇧 193.176.29.27

🇧🇷 190.89.136.251

🇸🇬 148.66.142.9

🇻🇳 113.172.124.25

🇸🇬 101.32.240.31

🇺🇸 50.6.248.168

🇸🇬 43.134.35.72

🇦🇷 181.225.195.70

🇳🇱 176.65.149.31

🇫🇷 136.244.114.183

🇮🇳 103.123.226.138

🇨🇳 183.252.22.21

🇩🇪 213.209.159.108

🇨🇳 211.95.159.159

🇳🇱 195.178.110.42

🇬🇧 193.163.125.166

🇨🇳 183.252.250.102

🇪🇪 158.173.75.101