JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 35.220.152.208

35.220.152.208 was found in our database!

This IP was reported 31 times. Confidence of Abuse is 94%: ?

94%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	208.152.220.35.bc.googleusercontent.com
Domain Name	google.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 35.220.152.208

Whois 35.220.152.208

IP Abuse Reports for 35.220.152.208:

This IP address has been reported a total of 31 times from 17 distinct sources. 35.220.152.208 was first reported on August 27th 2025, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-09 22:02:07 (8 hours ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08. show less	Web App Attack SSH Hacking
🇺🇸 interbiznw.com	2026-06-09 16:07:12 (14 hours ago)	malicious-web-requests-vulnerability-scanning	Hacking Brute-Force Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 13:23:38 (17 hours ago)	(mod_security) mod_security (id:210492) triggered by 35.220.152.208 (208.152.220.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.220.152.208 (208.152.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 09:23:32.302609 2026] [security2:error] [pid 20558:tid 20558] [client 35.220.152.208:41538] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "partybuseslansing.com"] [uri "/.git/config"] [unique_id "aigT1D0aRDTu-30xTa6_GgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-06-09 11:27:35 (19 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇩🇪 4server	2026-06-09 11:09:15 (19 hours ago)	[TueJun0913:09:11.5447532026][security2:error][pid2816943:tid2817011][client35.220.152.208:0]ModSecu ... show more [TueJun0913:09:11.5447532026][security2:error][pid2816943:tid2817011][client35.220.152.208:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"manuclean.ch\"][uri\"/.git/config\"][unique_id\"aif0V5n4gukDyzlSTTIFSwAAAVA\"] show less	Port Scan Brute-Force Web App Attack
🇮🇩 Burayot	2026-06-09 07:38:38 (23 hours ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 35.220.152.208 (HK/Hong Kong/208.15 ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 35.220.152.208 (HK/Hong Kong/208.152.220.35.bc.googleusercontent.com): 2 in the last 3600 secs show less	Web App Attack
🇩🇪 strxmpp	2026-06-09 03:23:53 (1 day ago)	35.220.152.208 - - [09/Jun/2026:05:23:52 +0200] "GET /.git/config HTTP/1.1" 404 4554 "-" "SonyEricss ... show more 35.220.152.208 - - [09/Jun/2026:05:23:52 +0200] "GET /.git/config HTTP/1.1" 404 4554 "-" "SonyEricssonW950i/R100 Mozilla/4.0 (compatible; MSIE 6.0; Symbian OS; 323) Opera 8.60 [en-US]" ... show less	Bad Web Bot
🇫🇮 as211431.net	2026-06-09 02:56:49 (1 day ago)	Triggered Cloudflare WAF (firewallCustom) from HK. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from HK. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /.git/config UA: Mozilla/5.0 (Linux; Android 4.4.4; Nexus 7 Build/KTU84P) AppleWebKit/537.36 (KHTML like Gecko) Chrome/36.0.1985.135 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇳🇱 homeshowdomain.nl	2026-06-08 22:07:54 (1 day ago)	Auto-ban: >3000 req/min op 2026-06-08	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-08 20:28:22 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 35.220.152.208 (208.152.220.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.220.152.208 (208.152.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 16:28:16.742437 2026] [security2:error] [pid 21136:tid 21136] [client 35.220.152.208:39508] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.customdatasolutions.net.pjvcds.com"] [uri "/.git/config"] [unique_id "aicl4OLNpM3vRD5zNiUo4gAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 19:34:41 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 35.220.152.208 (208.152.220.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.220.152.208 (208.152.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 15:34:36.435136 2026] [security2:error] [pid 6320:tid 6320] [client 35.220.152.208:40842] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "assec.org"] [uri "/.git/config"] [unique_id "aicZTKyGBBcOcQi14dYb6AAAAC4"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-06-08 18:33:01 (1 day ago)	block ruleset WAF detection and high score on abuseIPDB 149EB1B42C242111FADBBC2EF8F90219570691E1	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-08 18:31:13 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 35.220.152.208 (208.152.220.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.220.152.208 (208.152.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 14:31:07.197048 2026] [security2:error] [pid 32740:tid 32740] [client 35.220.152.208:52738] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.awcadvocate.com"] [uri "/.git/config"] [unique_id "aicKa8uLhnbhryR_Iwun2gAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 17:41:52 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 35.220.152.208 (208.152.220.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.220.152.208 (208.152.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 13:41:44.851133 2026] [security2:error] [pid 4527:tid 4540] [client 35.220.152.208:43484] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lasertagmetairie.com"] [uri "/.git/config"] [unique_id "aib-2KeOR4kl4LMDLNv-RgAAAUY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 17:13:39 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 35.220.152.208 (208.152.220.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.220.152.208 (208.152.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 13:13:34.145018 2026] [security2:error] [pid 8635:tid 8635] [client 35.220.152.208:49596] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "levaraluxe.com"] [uri "/.git/config"] [unique_id "aib4PiUJQ1dbLNThJ4xnmgAAABI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 31 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.105.129.57

🇳🇱 192.42.116.57

🇨🇳 121.41.116.31

🇨🇳 120.196.66.80

🇩🇪 69.5.169.197

🇧🇪 35.205.11.152

🇴🇲 2001:1670:26:1ad:cd1a:2e9f:8736:f8ae

🇰🇷 210.90.155.178

🇸🇪 195.178.191.5

🇨🇳 182.43.235.218

🇨🇳 180.76.174.141

🇸🇬 161.118.211.142

🇺🇸 152.32.183.13

🇫🇮 147.185.133.140

🇨🇳 121.40.131.152

🇨🇳 120.46.204.235

🇨🇳 118.145.233.177

🇨🇳 118.145.161.30

🇺🇸 107.175.114.16

🇮🇳 106.192.100.107