JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 35.228.114.189

35.228.114.189 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	189.114.228.35.bc.googleusercontent.com
Domain Name	google.com
Country	🇫🇮 Finland
City	Lappeenranta, South Karelia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 35.228.114.189

Whois 35.228.114.189

IP Abuse Reports for 35.228.114.189:

This IP address has been reported a total of 34 times from 23 distinct sources. 35.228.114.189 was first reported on June 13th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-15 21:59:50 (1 week ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-14. show less	Web App Attack SSH Hacking
🇧🇪 cmbplf	2026-06-15 11:33:15 (1 week ago)	1.163 requests with url.path /.git/config 1.163 requests with url.path .git/*	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-15 10:14:36 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.228.114.189 (189.114.228.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.228.114.189 (189.114.228.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 06:14:31.696991 2026] [security2:error] [pid 7334:tid 7334] [client 35.228.114.189:38748] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.credit.ic1.biz"] [uri "/src/.git/config"] [unique_id "ai_Qh6O5LTo17MX9LxibTQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 09:20:05 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.228.114.189 (189.114.228.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.228.114.189 (189.114.228.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 05:20:00.309623 2026] [security2:error] [pid 3628:tid 3628] [client 35.228.114.189:42232] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "qosmexico.com"] [uri "/src/.git/config"] [unique_id "ai_DwJpRM9t5Jv8_gPYKTwAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 07:51:13 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.228.114.189 (189.114.228.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.228.114.189 (189.114.228.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 03:51:08.674957 2026] [security2:error] [pid 28519:tid 28519] [client 35.228.114.189:43018] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ancientleather.com"] [uri "/app/.git/config"] [unique_id "ai-u7JJ6cJTlaGRpUuLP1gAAAEY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 06:19:34 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.228.114.189 (189.114.228.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.228.114.189 (189.114.228.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 02:19:28.959369 2026] [security2:error] [pid 20559:tid 20559] [client 35.228.114.189:49748] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "silvermoonherbals.com"] [uri "/web/.git/config"] [unique_id "ai-ZcKhG0Ttmo0pCIBj1OwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 05:49:09 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.228.114.189 (189.114.228.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.228.114.189 (189.114.228.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 01:49:05.658784 2026] [security2:error] [pid 8176:tid 8201] [client 35.228.114.189:43838] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "themarketplacelb.com"] [uri "/backend/.git/config"] [unique_id "ai-SUbYVxKUs1KJAWrY2mQAAAJU"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 e.fierstra	2026-06-15 02:38:02 (1 week ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
Anonymous	2026-06-15 02:20:03 (1 week ago)	suspicious request in access.log	Web App Attack
🇩🇪 YF	2026-06-14 23:10:10 (1 week ago)	Git config exposure probe	Web App Attack
🇳🇱 wlt-blocker	2026-06-14 22:44:29 (1 week ago)	Unauthorized access to webpage admin	Web App Attack
🇷🇴 iulianh	2026-06-14 22:28:30 (1 week ago)	*	Brute-Force SSH
🇳🇱 homeshowdomain.nl	2026-06-14 22:00:50 (1 week ago)	Auto-ban: >3000 req/min op 2026-06-14	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-14 20:55:22 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.228.114.189 (189.114.228.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.228.114.189 (189.114.228.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 16:55:14.930762 2026] [security2:error] [pid 15763:tid 15763] [client 35.228.114.189:38996] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "anythingsoldworldwide.com"] [uri "/.git/config"] [unique_id "ai8VMlKWu2uZW8nlAYsL2wAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 hackthetime	2026-06-14 16:03:06 (1 week ago)	Tried to access .git/config file (`/.git/config`)	Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.150.75

🇸🇪 155.212.37.57

🇺🇸 109.105.210.57

🇮🇩 182.253.64.11

🇮🇳 159.65.149.131

🇰🇷 121.159.71.249

🇨🇳 111.61.177.3

🇮🇳 106.219.122.166

🇫🇮 62.238.15.231

🇨🇳 61.147.209.31

🇰🇷 59.21.37.60

🇳🇱 48.209.223.79

🇫🇷 45.154.138.166

🇮🇹 4.232.80.255

🇰🇷 1.238.106.229

🇸🇬 2a09:bac5:55f8:1d05::2e4:a0

🇨🇳 223.109.252.141

🇺🇸 205.210.31.45

🇦🇷 200.80.43.223

🇬🇧 188.240.59.42