JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 35.189.25.69

35.189.25.69 was found in our database!

This IP was reported 38 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	69.25.189.35.bc.googleusercontent.com
Domain Name	google.com
Country	🇦🇺 Australia
City	Sydney, New South Wales

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 35.189.25.69

Whois 35.189.25.69

IP Abuse Reports for 35.189.25.69:

This IP address has been reported a total of 38 times from 28 distinct sources. 35.189.25.69 was first reported on June 14th 2026, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 ludarkstar99	2026-06-15 10:05:54 (9 hours ago)	Blocked by os-abuseipdb; 346 hits, proto=tcp, ports=443,80	Port Scan Hacking
🇺🇸 TPI-Abuse	2026-06-15 08:38:32 (10 hours ago)	(mod_security) mod_security (id:210492) triggered by 35.189.25.69 (69.25.189.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.189.25.69 (69.25.189.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 04:38:29.194222 2026] [security2:error] [pid 2838:tid 2848] [client 35.189.25.69:52982] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.ntv.myrasnyder.com"] [uri "/src/.git/config"] [unique_id "ai-6BcAV3tQA5vHXjWNs3QAAAIY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 08:20:21 (11 hours ago)	(mod_security) mod_security (id:210492) triggered by 35.189.25.69 (69.25.189.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.189.25.69 (69.25.189.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 04:20:18.003425 2026] [security2:error] [pid 20733:tid 20733] [client 35.189.25.69:32804] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.starktigers75.sophcomp.com"] [uri "/wp-content/.git/config"] [unique_id "ai-1wprFWB8uvkbT0ZzStwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Kreapptivo	2026-06-15 07:37:02 (11 hours ago)	[15/Jun/2026:09:37:00 +0200] Web-Request: "GET /.git/config", User-Agent: "Mozilla/5.0 (Linux; webOS ... show more [15/Jun/2026:09:37:00 +0200] Web-Request: "GET /.git/config", User-Agent: "Mozilla/5.0 (Linux; webOS/2.2.4; U; en-US) AppleWebKit/534.6 (KHTML, like Gecko) webOSBrowser/221.56 Safari/534.6 Pre/3.0" show less	Bad Web Bot Web App Attack
🇩🇪 KiekerJan	2026-06-15 06:51:58 (12 hours ago)	35.189.25.69 - - [15/Jun/2026:08:51:58 +0200] "GET /shop/.git/config HTTP/1.1" 301 162 "-" "Mozilla/ ... show more 35.189.25.69 - - [15/Jun/2026:08:51:58 +0200] "GET /shop/.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:25.0) Gecko/20100101 Firefox/25.0" 35.189.25.69 - - [15/Jun/2026:08:51:58 +0200] "GET /htdocs/.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) snap Chromium/76.0.3809.100 Chrome/76.0.3809.100 Safari/537.36" ... show less	Web App Attack
🇩🇪 FeG Deutschland	2026-06-15 06:25:26 (13 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇩🇪 big-cloud.nl	2026-06-15 06:19:39 (13 hours ago)	Try to access /frontend/.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 05:59:36 (13 hours ago)	(mod_security) mod_security (id:210492) triggered by 35.189.25.69 (69.25.189.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.189.25.69 (69.25.189.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 01:59:28.878454 2026] [security2:error] [pid 28625:tid 28625] [client 35.189.25.69:40512] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.teguer.com"] [uri "/site/.git/config"] [unique_id "ai-UwFPWX3-9le5vnCNt7wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-15 05:59:05 (13 hours ago)	Bot / scanning and/or hacking attempts: GET /code/.git/config HTTP/1.1, GET /symfony/.git/config HTT ... show more Bot / scanning and/or hacking attempts: GET /code/.git/config HTTP/1.1, GET /symfony/.git/config HTTP/1.1, GET /static/.git/config HTTP/1.1, GET /v1/.git/config HTTP/1.1, GET /shop/.git/config HTTP/1.1, GET /web/.git/config HTTP/1.1, GET /laravel/.git/config HTTP/1.1, GET /v3/.git/config HTTP/1.1, GET /public/.git/config HTTP/1.1, GET /api/.git/config HTTP/1.1, GET /build/.git/config HTTP/1.1, GET /project/.git/config HTTP/1.1, GET /assets/.git/config HTTP/1.1, GET /site/.git/config HTTP/1.1, GET /frontend/.git/config HTTP/1.1, GET /wp-content/.git/config HTTP/1.1, GET /app/.git/config HTTP/1.1, GET /src/.git/config HTTP/1.1, GET /v2/.git/config HTTP/1.1, GET /portal/.git/config HTTP/1.1, GET /wordpress/.git/config HTTP/1.1, GET /dist/.git/config HTTP/1.1, GET /htdocs/.git/config HTTP/1.1, GET /backend/.git/config HTTP/1.1, GET /dashboard/.git/config HTTP/1.1, GET /www/.git/config HTTP/1.1, GET /.git/config HTTP/1.1, GET /blog/.git/config HTTP/1.1, GET /admin/.git/config HTTP/1.1 show less	Hacking Web App Attack
🇧🇪 cmbplf	2026-06-15 05:32:24 (13 hours ago)	1.481 requests with url.path */.git/config	Brute-Force Bad Web Bot
🇳🇱 Mangelot Hosting	2026-06-15 05:05:46 (14 hours ago)	(modsecurity) srv104 ModSecurity 35.189.25.69 (AU/Australia/69.25.189.35.bc.googleusercontent.com): ... show more (modsecurity) srv104 ModSecurity 35.189.25.69 (AU/Australia/69.25.189.35.bc.googleusercontent.com): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇳🇱 Savvii	2026-06-15 05:01:45 (14 hours ago)	20 attempts against mh-misbehave-ban on chive	Brute-Force Bad Web Bot Web App Attack
🇨🇦 Anytech	2026-06-15 03:51:56 (15 hours ago)	Blocked by Conn-Monitor: Automated bot activity	Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-15 03:51:54 (15 hours ago)	Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-195)	Hacking Web App Attack
🇳🇱 wlt-blocker	2026-06-15 03:46:36 (15 hours ago)	Unauthorized access to webpage admin	Web App Attack

Showing 1 to 15 of 38 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 187.191.48.5

🇺🇸 136.114.28.21

🇪🇸 82.223.68.64

🇺🇸 66.132.172.232

🇺🇸 34.172.93.158

🇺🇸 2607:f8b0:400e:c05::127

🇲🇾 2001:d08:e4:4926:8191:4cca:fab8:ac06

🇮🇹 212.35.194.215

🇺🇸 172.208.48.177

🇨🇳 120.246.18.220

🇨🇳 113.57.5.139

🇺🇸 91.230.168.8

🇩🇪 78.46.92.235

🇬🇧 77.97.139.57

🇺🇸 69.171.249.112

🇺🇸 20.163.16.228

🇨🇳 223.76.158.107

🇬🇧 193.163.125.154

🇰🇷 175.209.156.146

🇺🇸 162.216.150.35