JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 35.220.189.146

35.220.189.146 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 76%: ?

76%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	146.189.220.35.bc.googleusercontent.com
Domain Name	google.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 35.220.189.146

Whois 35.220.189.146

IP Abuse Reports for 35.220.189.146:

This IP address has been reported a total of 32 times from 22 distinct sources. 35.220.189.146 was first reported on June 8th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-10 21:59:43 (2 weeks ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-09. show less	Web App Attack SSH Hacking
🇳🇱 homeshowdomain.nl	2026-06-09 22:01:22 (2 weeks ago)	Auto-ban: >3000 req/min op 2026-06-09	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-09 13:45:27 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 35.220.189.146 (146.189.220.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.220.189.146 (146.189.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 09:45:23.685246 2026] [security2:error] [pid 24239:tid 24239] [client 35.220.189.146:47942] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "meta24.vip"] [uri "/.git/config"] [unique_id "aigY800b_flDLhqAXmld_AAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 ReyhZhao	2026-06-09 10:50:14 (2 weeks ago)	Bunkerweb ModSecurity alert: Potential Remote Command Execution (RCE) detected. Unix shell code was ... show more Bunkerweb ModSecurity alert: Potential Remote Command Execution (RCE) detected. Unix shell code was identified within the request arguments, triggering a security rule designed to prevent application attacks. show less	Brute-Force
🇺🇸 TPI-Abuse	2026-06-09 10:48:12 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 35.220.189.146 (146.189.220.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.220.189.146 (146.189.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 06:48:06.885981 2026] [security2:error] [pid 22623:tid 22623] [client 35.220.189.146:48194] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tylercomputing.com"] [uri "/.git/config"] [unique_id "aifvZsH2pGwFDH8OvzbgZQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-09 10:19:40 (2 weeks ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 35.220.189.146 (HK/Hong Kong/146.189. ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 35.220.189.146 (HK/Hong Kong/146.189.220.35.bc.googleusercontent.com): 1 in the last 3600 secs (0-195) show less	Hacking
🇨🇭 4server	2026-06-09 09:24:38 (2 weeks ago)	[TueJun0911:24:32.5093432026][security2:error][pid428976:tid429199][client35.220.189.146:0]ModSecuri ... show more [TueJun0911:24:32.5093432026][security2:error][pid428976:tid429199][client35.220.189.146:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"webmail.gsdsagl.ch\"][uri\"/.git/config\"][unique_id\"aifb0DjtyToF3A35_Vit0gAAAQs\"] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 08:14:20 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 35.220.189.146 (146.189.220.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.220.189.146 (146.189.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 04:14:12.412263 2026] [security2:error] [pid 32601:tid 32601] [client 35.220.189.146:35492] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "carteraccountingandtax.com"] [uri "/.git/config"] [unique_id "aifLVGXOmDUmRjxtdqTL0gAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Lino Project	2026-06-09 08:05:55 (2 weeks ago)	35.220.189.146 - - [09/Jun/2026:10:05:51 +0200] "GET /.git/config HTTP/1.1" 403 3768 "-" "Mozilla/5. ... show more 35.220.189.146 - - [09/Jun/2026:10:05:51 +0200] "GET /.git/config HTTP/1.1" 403 3768 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3798.0 Safari/537.36" ... show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 iNetWorker	2026-06-09 06:30:53 (2 weeks ago)	trolling for resource vulnerabilities	Web App Attack
🇩🇪 big-cloud.nl	2026-06-09 06:10:05 (2 weeks ago)	Try to access /.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 04:57:25 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 35.220.189.146 (146.189.220.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.220.189.146 (146.189.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 00:57:18.246879 2026] [security2:error] [pid 13499:tid 13499] [client 35.220.189.146:42226] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.geno-med.com"] [uri "/.git/config"] [unique_id "aiedLiN0EScqiXtBc3VD7gAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-09 03:30:02 (2 weeks ago)	suspicious request in access.log	Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 03:08:37 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 35.220.189.146 (146.189.220.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.220.189.146 (146.189.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 23:08:30.842791 2026] [security2:error] [pid 15889:tid 15889] [client 35.220.189.146:59944] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "belgiophar.net"] [uri "/.git/config"] [unique_id "aieDrna292QFGCJcscfT1wAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 01:15:18 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 35.220.189.146 (146.189.220.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.220.189.146 (146.189.220.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 21:15:15.006066 2026] [security2:error] [pid 23783:tid 23802] [client 35.220.189.146:34936] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dasperformance.com"] [uri "/.git/config"] [unique_id "aidpI7I1v61Wt9NDp9MbtgAAANE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇭 202.29.236.76

🇧🇷 189.5.186.56

🇩🇪 167.94.146.70

🇺🇸 141.11.88.5

🇮🇳 125.20.210.182

🇸🇬 114.119.150.154

🇷🇺 92.101.74.75

🇷🇺 46.183.130.145

🇺🇸 138.197.204.198

🇩🇿 129.45.76.162

🇬🇧 89.37.172.157

🇺🇸 204.48.20.148

🇩🇪 194.187.176.59

🇷🇴 193.46.255.86

🇩🇪 46.101.222.209

🇳🇱 45.148.10.157

🇮🇳 20.197.57.67

🇬🇧 2a06:4880:6000::7e

🇫🇷 195.154.40.137

🇬🇧 193.163.125.248