JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 35.202.2.24

35.202.2.24 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 62%: ?

62%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	24.2.202.35.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	Council Bluffs, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 35.202.2.24

Whois 35.202.2.24

IP Abuse Reports for 35.202.2.24:

This IP address has been reported a total of 27 times from 13 distinct sources. 35.202.2.24 was first reported on June 8th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-09 22:00:36 (1 week ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08. show less	Web App Attack SSH Hacking
🇳🇱 homeshowdomain.nl	2026-06-08 22:00:15 (1 week ago)	Auto-ban: >3000 req/min op 2026-06-08	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-08 19:12:57 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.202.2.24 (24.2.202.35.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 35.202.2.24 (24.2.202.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 15:12:52.564846 2026] [security2:error] [pid 17094:tid 17094] [client 35.202.2.24:38544] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.hurricaneglassgaragedoors.glassgaragedoors.com"] [uri "/.git/config"] [unique_id "aicUNNuD8VBmk5W9yzDyHgAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 16:42:45 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.202.2.24 (24.2.202.35.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 35.202.2.24 (24.2.202.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 12:42:38.947129 2026] [security2:error] [pid 23788:tid 23788] [client 35.202.2.24:39582] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.communitybudgetcommittee.epscalltoaction.org"] [uri "/.git/config"] [unique_id "aibw_rYdjk_s5sNTobetsgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 16:22:52 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.202.2.24 (24.2.202.35.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 35.202.2.24 (24.2.202.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 12:22:44.971473 2026] [security2:error] [pid 13371:tid 13371] [client 35.202.2.24:46728] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lisalehmann.com"] [uri "/.git/config"] [unique_id "aibsVOL13e3UPt4lVOeXQgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 15:53:52 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.202.2.24 (24.2.202.35.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 35.202.2.24 (24.2.202.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 11:53:45.971451 2026] [security2:error] [pid 24710:tid 24710] [client 35.202.2.24:50166] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "carbtestingidaho.com"] [uri "/.git/config"] [unique_id "aibliWzGaGh_fswTb0SrhQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 4server	2026-06-08 15:11:46 (1 week ago)	[MonJun0817:11:40.1345772026][security2:error][pid1425707:tid1425831][client35.202.2.24:0]ModSecurit ... show more [MonJun0817:11:40.1345772026][security2:error][pid1425707:tid1425831][client35.202.2.24:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"farmaciaferrari.ch\"][uri\"/.git/config\"][unique_id\"aibbrMbCmTbmoBfCmMlphQAAAMs\"] show less	Port Scan Brute-Force Web App Attack
🇱🇻 garmtech.com	2026-06-08 13:07:25 (1 week ago)	IM360 WAF: Direct access to sensitive file or dotfile MV:/.git/config	Web App Attack
🇫🇮 as211431.net	2026-06-08 11:58:24 (1 week ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /.git/config UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.103 Safari/537.36 OPR/60.0.3255.59 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-08 11:53:33 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.202.2.24 (24.2.202.35.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 35.202.2.24 (24.2.202.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 07:53:28.310530 2026] [security2:error] [pid 10491:tid 10491] [client 35.202.2.24:59698] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "f40ph.org"] [uri "/.git/config"] [unique_id "aiatOGp5U0zuhDiRuA2c1wAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 11:09:55 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.202.2.24 (24.2.202.35.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 35.202.2.24 (24.2.202.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 07:09:48.981112 2026] [security2:error] [pid 11128:tid 11128] [client 35.202.2.24:58640] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "reconsideringfear.com"] [uri "/.git/config"] [unique_id "aiai_KFKcsuCCN2cF6XbawAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-08 11:05:03 (1 week ago)	Fail2Ban - [WEB]Exploit attempts (SQLi, RCE, path traversal) on webexploits ... [wa01]	Hacking SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 10:32:12 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.202.2.24 (24.2.202.35.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 35.202.2.24 (24.2.202.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 06:32:07.249244 2026] [security2:error] [pid 12336:tid 12336] [client 35.202.2.24:59506] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tedmccachren.com"] [uri "/.git/config"] [unique_id "aiaaJ251BOwB3MZYkd91cgAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-08 10:07:01 (1 week ago)	Fail2Ban - [WEB]Exploit attempts (SQLi, RCE, path traversal) on webexploits ... [wa02]	Hacking SQL Injection Web App Attack
🇫🇷 masterguru	2026-06-08 08:22:09 (1 week ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 35.202.2.24 (US/United States/24.2.20 ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 35.202.2.24 (US/United States/24.2.202.35.bc.googleusercontent.com): 1 in the last 3600 secs (0-195) show less	Hacking

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 159.89.106.240

🇩🇪 158.94.208.36

🇩🇪 130.12.182.66

🇮🇶 65.20.143.45

🇧🇪 195.238.7.4

🇩🇪 167.99.242.167

🇭🇰 152.32.135.217

🇭🇰 118.193.39.103

🇮🇩 103.210.35.122

🇺🇸 100.29.192.66

🇺🇸 85.239.151.34

🇪🇸 81.43.179.194

🇸🇬 20.153.140.50

🇺🇸 20.102.98.53

🇩🇪 5.253.246.55

🇳🇵 2405:acc0:1204:2e5a:25e9:e3b3:62f3:3578

🇪🇨 181.175.197.221

🇮🇳 168.144.181.170

🇺🇸 159.223.105.147

🇫🇷 85.217.140.50