JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 35.228.220.203

35.228.220.203 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 67%: ?

67%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	203.220.228.35.bc.googleusercontent.com
Domain Name	google.com
Country	🇫🇮 Finland
City	Lappeenranta, South Karelia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 35.228.220.203

Whois 35.228.220.203

IP Abuse Reports for 35.228.220.203:

This IP address has been reported a total of 19 times from 11 distinct sources. 35.228.220.203 was first reported on June 8th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 sid3windr	2026-06-10 10:49:49 (1 day ago)	GET /.git/config (Tarpitted for 1d15h8m28s, wasted 8.06MB)	Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-09 22:00:17 (2 days ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08. show less	Web App Attack SSH Hacking
🇫🇷 masterguru	2026-06-09 02:06:47 (3 days ago)	Too much 404 requests in 1 minute. Operator GE matched 10 at IP:block_script. (46020-201)	Hacking
🇳🇱 homeshowdomain.nl	2026-06-08 22:07:05 (3 days ago)	Auto-ban: >3000 req/min op 2026-06-08	Web App Attack SSH Hacking
🇺🇸 Lezetho	2026-06-08 21:00:22 (3 days ago)	DDoS, WebSpam, Web Attack, and Brute-force blocked by Cloudflare	DDoS Attack Email Spam Hacking Brute-Force
🇺🇸 TPI-Abuse	2026-06-08 18:49:11 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 35.228.220.203 (203.220.228.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.228.220.203 (203.220.228.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 14:49:04.675804 2026] [security2:error] [pid 16588:tid 16607] [client 35.228.220.203:56556] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "digitaltalkingbible.com"] [uri "/.git/config"] [unique_id "aicOoLuxGeZai4rLnfGO1QAAAQ4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 16:02:45 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 35.228.220.203 (203.220.228.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.228.220.203 (203.220.228.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 12:02:38.001064 2026] [security2:error] [pid 4161:tid 4161] [client 35.228.220.203:57704] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "searchaprice.com"] [uri "/.git/config"] [unique_id "aibnnmPPgm8tBooBbLVJMAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 12:46:59 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 35.228.220.203 (203.220.228.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.228.220.203 (203.220.228.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 08:46:54.869182 2026] [security2:error] [pid 19186:tid 19186] [client 35.228.220.203:51402] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "method-one.net"] [uri "/.git/config"] [unique_id "aia5vu9KIU0QurghjzWxywAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 08:36:58 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 35.228.220.203 (203.220.228.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.228.220.203 (203.220.228.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 04:36:54.885115 2026] [security2:error] [pid 18877:tid 18877] [client 35.228.220.203:54366] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jessiedavison.com"] [uri "/.git/config"] [unique_id "aiZ_JtGf2hR10LIhjWi0gAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 07:37:30 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 35.228.220.203 (203.220.228.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.228.220.203 (203.220.228.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 03:37:25.928505 2026] [security2:error] [pid 10838:tid 10943] [client 35.228.220.203:33188] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "trinketjar.com"] [uri "/.git/config"] [unique_id "aiZxNYEIzUo_sHBIfuRlcgAAAdU"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 as211431.net	2026-06-08 07:37:25 (4 days ago)	Triggered Cloudflare WAF (firewallCustom) from FI. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from FI. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /.git/config UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.119 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-08 07:19:11 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 35.228.220.203 (203.220.228.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.228.220.203 (203.220.228.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 03:19:04.520070 2026] [security2:error] [pid 6764:tid 6764] [client 35.228.220.203:54712] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.genevaleasing.com.bamedica.com"] [uri "/.git/config"] [unique_id "aiZs6EP2ZX40Qf1_X2c2-AAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-06-08 06:00:06 (4 days ago)	Try to access /.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 05:47:51 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 35.228.220.203 (203.220.228.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.228.220.203 (203.220.228.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 01:47:45.045743 2026] [security2:error] [pid 24707:tid 24707] [client 35.228.220.203:57640] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chinakingdom.hk"] [uri "/.git/config"] [unique_id "aiZXgUy9Pu4-ABVZ3I5yjAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 2000cn.com.au	2026-06-08 04:31:24 (4 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 182.242.169.14

🇺🇸 162.216.150.98

🇧🇷 152.32.200.117

🇫🇮 147.185.133.179

🇸🇾 109.224.242.38

🇫🇷 91.231.89.158

🇺🇸 76.173.193.235

🇩🇪 69.5.169.209

🇧🇪 34.34.178.22

🇻🇳 27.79.43.150

🇺🇸 172.234.221.84

🇬🇧 118.193.64.186

🇨🇳 116.147.102.174

🇩🇪 69.5.169.81

🇺🇸 66.132.172.235

🇫🇮 62.238.22.252

🇳🇱 45.148.10.151

🇺🇸 40.121.200.75

🇯🇵 8.216.91.204

🇺🇸 216.250.113.218