JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 35.241.111.48

35.241.111.48 was found in our database!

This IP was reported 33 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	48.111.241.35.bc.googleusercontent.com
Domain Name	google.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 35.241.111.48

Whois 35.241.111.48

IP Abuse Reports for 35.241.111.48:

This IP address has been reported a total of 33 times from 20 distinct sources. 35.241.111.48 was first reported on June 8th 2026, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-09 22:00:31 (8 hours ago)	Auto-ban: >3000 req/min op 2026-06-09	Web App Attack SSH Hacking
Anonymous	2026-06-09 14:27:39 (16 hours ago)	[09/Jun/2026:14:27:38 +0000] host=test.lovelyrender.com server=test.lovelyrender.com ip=35.241.111.4 ... show more [09/Jun/2026:14:27:38 +0000] host=test.lovelyrender.com server=test.lovelyrender.com ip=35.241.111.48 method=GET req=/.git/config uri=/index.php status=404 bytes=13032 rt=0.139 urt=0.140 ref="-" ua="Microsoft URL Control - 6.00.8862" ... show less	Web App Attack Bad Web Bot
🇨🇭 4server	2026-06-09 13:58:02 (16 hours ago)	[TueJun0915:57:55.8710602026][security2:error][pid1344522:tid1344754][client35.241.111.48:0]ModSecur ... show more [TueJun0915:57:55.8710602026][security2:error][pid1344522:tid1344754][client35.241.111.48:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"autodiscover.mondialtrade.ch\"][uri\"/.git/config\"][unique_id\"aigb4wYBNGyiw1yCJtgOogAAAI0\"] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 13:04:49 (17 hours ago)	(mod_security) mod_security (id:210492) triggered by 35.241.111.48 (48.111.241.35.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 35.241.111.48 (48.111.241.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 09:04:42.214944 2026] [security2:error] [pid 17376:tid 17376] [client 35.241.111.48:51020] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.envision-realty.com"] [uri "/.git/config"] [unique_id "aigPatCM_y8P_6qHrHqBCQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 inlink.ltd	2026-06-09 12:47:07 (17 hours ago)	dot file probe	Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 08:01:59 (22 hours ago)	(mod_security) mod_security (id:210492) triggered by 35.241.111.48 (48.111.241.35.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 35.241.111.48 (48.111.241.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 04:01:55.775415 2026] [security2:error] [pid 19508:tid 19508] [client 35.241.111.48:50290] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.desarrollosdecolima.com"] [uri "/.git/config"] [unique_id "aifIc1uQRrz4pz2DC9HpEQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 07:46:07 (22 hours ago)	(mod_security) mod_security (id:210492) triggered by 35.241.111.48 (48.111.241.35.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 35.241.111.48 (48.111.241.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 03:45:59.817669 2026] [security2:error] [pid 25687:tid 25687] [client 35.241.111.48:38500] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.cashnowcarbuyers.com.specialtywebservice.com"] [uri "/.git/config"] [unique_id "aifEtwUwAt9_NakcGbBtagAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-09 07:05:39 (23 hours ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇬🇧 foxxelabs	2026-06-09 05:54:14 (1 day ago)	Automated report from FoxxeLabs Sentinel. Path probed: /.git/config \| Project: anseo \| Reason(s): Kn ... show more Automated report from FoxxeLabs Sentinel. Path probed: /.git/config \| Project: anseo \| Reason(s): Known exploit path: /.git/config; AbuseIPDB score: 99/100 \| User-Agent: MOTORIZR-Z8/46.00.00 Mozilla/4.0 (compatible; MSIE 6.0; Symbian OS; 356) Opera 8.65 [it] UP.Link/6.3 show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 05:48:28 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 35.241.111.48 (48.111.241.35.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 35.241.111.48 (48.111.241.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 01:48:20.108099 2026] [security2:error] [pid 11062:tid 11062] [client 35.241.111.48:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "english.cloudex.click"] [uri "/.git/config"] [unique_id "aiepJLx-z1XZ8C86g9QxmAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 04:17:41 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 35.241.111.48 (48.111.241.35.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 35.241.111.48 (48.111.241.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 00:17:38.205206 2026] [security2:error] [pid 6813:tid 6813] [client 35.241.111.48:35880] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "magacine.tv"] [uri "/.git/config"] [unique_id "aieT4it2LsAlSlTUOoVLYAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 03:55:17 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 35.241.111.48 (48.111.241.35.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 35.241.111.48 (48.111.241.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 23:55:14.022897 2026] [security2:error] [pid 9248:tid 9264] [client 35.241.111.48:33606] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.agriclean.net"] [uri "/.git/config"] [unique_id "aieOogC9ZM5nwnNJX3LpZQAAAQ0"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-09 03:52:30 (1 day ago)	35.241.111.48 - - [09/Jun/2026:05:52:30 +0200] "GET /.git/config HTTP/1.1" 403 183 "-" "Mozilla/5.0 ... show more 35.241.111.48 - - [09/Jun/2026:05:52:30 +0200] "GET /.git/config HTTP/1.1" 403 183 "-" "Mozilla/5.0 (Linux; Android 9; SAMSUNG SM-G970F Build/PPR1.180610.011) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/9.4 Chrome/67.0.3396.87 Mobile Safari/537.36" show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 02:01:23 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 35.241.111.48 (48.111.241.35.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 35.241.111.48 (48.111.241.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 22:01:19.008961 2026] [security2:error] [pid 7343:tid 7354] [client 35.241.111.48:44472] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lagifthouse.com"] [uri "/.git/config"] [unique_id "aidz7xxR_valCUIZ2JhRmQAAAIs"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 4server	2026-06-09 01:54:47 (1 day ago)	[TueJun0903:54:44.5459092026][security2:error][pid2157251:tid2157339][client35.241.111.48:0]ModSecur ... show more [TueJun0903:54:44.5459092026][security2:error][pid2157251:tid2157339][client35.241.111.48:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"rs-gaming.net.136-243-54-122.cpanel.site\"][uri\"/.git/config\"][unique_id\"aidyZGXs6D9eq2wvs3IMlgAAAMI\"] show less	Port Scan Brute-Force Web App Attack

Showing 1 to 15 of 33 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 172.71.93.194

🇫🇮 147.185.133.144

🇺🇸 147.185.132.89

🇺🇸 138.197.123.153

🇨🇳 121.227.152.250

🇮🇩 103.98.176.164

🇺🇸 72.18.83.212

🇩🇪 69.5.169.159

🇩🇪 69.5.169.130

🇺🇸 66.132.172.47

🇮🇩 36.74.104.216

🇺🇸 34.74.242.206

🇸🇬 2401:f6a0:3da2:273a:4fab:916e:9bc0:b90e

🇻🇳 203.162.188.56

🇹🇼 198.235.24.26

🇧🇷 177.128.224.122

🇻🇳 171.243.63.196

🇸🇪 122.8.92.138

🇨🇳 121.227.152.171

🇲🇾 121.122.119.48