JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 35.238.169.162

35.238.169.162 was found in our database!

This IP was reported 37 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	162.169.238.35.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	Council Bluffs, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 35.238.169.162

Whois 35.238.169.162

IP Abuse Reports for 35.238.169.162:

This IP address has been reported a total of 37 times from 26 distinct sources. 35.238.169.162 was first reported on June 1st 2026, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 TheCoon	2026-06-05 02:45:02 (6 days ago)	Automated: Credential theft attempt - JSON bomb served	Web App Attack Hacking
🇳🇱 homeshowdomain.nl	2026-06-02 22:00:15 (1 week ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-01. show less	Web App Attack SSH Hacking
🇬🇧 openstrike.co.uk	2026-06-02 05:14:03 (1 week ago)	3 attacks on VC URLs: GET /.git/config HTTP/1.1	Hacking
Anonymous	2026-06-01 22:15:34 (1 week ago)	35.238.169.162 - - [02/Jun/2026:00:15:33 +0200] "GET /.git/config HTTP/1.1" 301 169 "-" "-"	Web App Attack
Anonymous	2026-06-01 22:10:02 (1 week ago)	suspicious request in access.log	Web App Attack
🇫🇮 oh.mg	2026-06-01 22:03:43 (1 week ago)	[Tue Jun 02 00:03:42.745383 2026] [security2:error] [pid 704612:tid 704633] [client 35.238.169.162:5 ... show more [Tue Jun 02 00:03:42.745383 2026] [security2:error] [pid 704612:tid 704633] [client 35.238.169.162:54320] [client 35.238.169.162] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.10.0-dev"] [tag "anomaly-evaluation"] [tag "OWASP_CRS"] [hostname "www.mrman.uk"] [uri "/.git/config"] [unique_id "ah4Bvs_NZuH82_2PrjBdygAAAMg"] [Tue Jun 02 00:03:43.591862 2026] [security2:error] [pid 704612:tid 704627] [client 35.238.169.162:54306] [client 35.238.169.162] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.10.0-dev"] ... show less	Web App Attack Bad Web Bot
🇳🇱 homeshowdomain.nl	2026-06-01 21:59:04 (1 week ago)	Auto-ban: >3000 req/min op 2026-06-01	Web App Attack SSH Hacking
🇩🇪 Ba-Yu	2026-06-01 21:52:26 (1 week ago)	General hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇦🇺 2000cn.com.au	2026-06-01 21:38:22 (1 week ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇩🇪 Kreapptivo	2026-06-01 21:29:47 (1 week ago)	[01/Jun/2026:23:29:45 +0200] Web-Request: "GET /.git/config", User-Agent: "-"	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-01 21:22:42 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.238.169.162 (162.169.238.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.238.169.162 (162.169.238.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 17:22:17.842935 2026] [security2:error] [pid 30153:tid 30153] [client 35.238.169.162:49452] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.moonfamilies.seizetheseason.com"] [uri "/.git/config"] [unique_id "ah34CbcAHTf-mShpo8nCQQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-01 20:55:27 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.238.169.162 (162.169.238.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.238.169.162 (162.169.238.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 16:55:21.554128 2026] [security2:error] [pid 1185:tid 1185] [client 35.238.169.162:59298] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mohawkmunicipalcommission.org.mohawk-ny.org"] [uri "/.git/config"] [unique_id "ah3xue5cz3L1FlV1yXGIcwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-01 20:27:23 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.238.169.162 (162.169.238.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.238.169.162 (162.169.238.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 16:27:21.030954 2026] [security2:error] [pid 14609:tid 14677] [client 35.238.169.162:37740] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mmr.omegaoak.com"] [uri "/.git/config"] [unique_id "ah3rKXLsEqSkEh7u6DNwiAAAAMc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-01 19:46:55 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.238.169.162 (162.169.238.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.238.169.162 (162.169.238.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 15:46:51.931016 2026] [security2:error] [pid 27980:tid 27980] [client 35.238.169.162:57066] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "xplustchad.com"] [uri "/.git/config"] [unique_id "ah3hq6UTIfCGzK2suuTv7wAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 cleverest.eu	2026-06-01 19:46:02 (1 week ago)	MimirWAF has 1 incident from 1 distinct domain => {"bad_request_uri / vcs_probe"}	Web App Attack

Showing 1 to 15 of 37 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 150.107.38.56

🇨🇳 106.13.222.229

🇷🇴 92.118.39.62

🇷🇴 80.94.92.152

🇯🇵 43.165.185.71

🇷🇺 5.101.64.6

🇪🇹 196.189.17.189

🇨🇳 101.42.41.164

🇹🇼 49.213.157.179

🇱🇺 46.151.182.191

🇳🇱 45.148.10.151

🇨🇳 14.103.118.248

🇧🇷 191.53.18.40

🇬🇹 190.104.124.101

🇫🇷 173.212.213.201

🇩🇪 167.94.145.18

🇮🇳 122.160.15.31

🇨🇦 65.111.20.3

🇧🇷 45.232.75.4

🇷🇴 2.57.121.25