JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 35.189.52.239

35.189.52.239 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	239.52.189.35.bc.googleusercontent.com
Domain Name	google.com
Country	🇦🇺 Australia
City	Sydney, New South Wales

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 35.189.52.239

Whois 35.189.52.239

IP Abuse Reports for 35.189.52.239:

This IP address has been reported a total of 29 times from 25 distinct sources. 35.189.52.239 was first reported on June 13th 2026, and the most recent report was 10 seconds ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇬 Cloudkul Cloudkul	2026-06-15 04:41:20 (10 seconds ago)	Attempted Not Found (404 status code) requests on our application, more than 30% of their total requ ... show more Attempted Not Found (404 status code) requests on our application, more than 30% of their total requests. show less	Brute-Force Web App Attack
🇩🇪 Teufel100	2026-06-15 04:41:15 (15 seconds ago)	Bruteforce gegen Einstellungsdateien wie .env oder .git	Brute-Force Hacking Web App Attack
🇺🇸 mnsf	2026-06-15 04:06:21 (35 minutes ago)	Abuse Detected (30)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 03:43:39 (57 minutes ago)	(mod_security) mod_security (id:210492) triggered by 35.189.52.239 (239.52.189.35.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 35.189.52.239 (239.52.189.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 23:43:33.108025 2026] [security2:error] [pid 3848:tid 3848] [client 35.189.52.239:55742] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "walkerweb.com"] [uri "/api/.git/config"] [unique_id "ai905dI4_tb49HNpvc9XUgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ghostwarriors	2026-06-15 02:20:07 (2 hours ago)	Attempts against non-existent wp-login	Brute-Force Web App Attack
🇺🇸 Matthew Ping	2026-06-15 02:15:02 (2 hours ago)	ModSecurity rule 949110 triggered on wp2. Web application attack blocked by CSF/LFD.	Web App Attack Hacking
🇺🇸 TPI-Abuse	2026-06-15 01:58:37 (2 hours ago)	(mod_security) mod_security (id:210492) triggered by 35.189.52.239 (239.52.189.35.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 35.189.52.239 (239.52.189.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 21:58:32.619917 2026] [security2:error] [pid 30773:tid 30773] [client 35.189.52.239:51358] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cubicearth.com"] [uri "/.git/config"] [unique_id "ai9cSO1aJQ261JurOXRbeAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 01:38:25 (3 hours ago)	(mod_security) mod_security (id:210492) triggered by 35.189.52.239 (239.52.189.35.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 35.189.52.239 (239.52.189.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 21:38:20.404069 2026] [security2:error] [pid 5928:tid 5928] [client 35.189.52.239:54992] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lahamradio.com"] [uri "/build/.git/config"] [unique_id "ai9XjOUbMgDvvnc3zEif6QAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Oakley	2026-06-15 01:09:36 (3 hours ago)	(confirmed_bot_sig) Confirmed bot	Hacking
🇳🇱 e.fierstra	2026-06-15 00:47:38 (3 hours ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇫🇷 Dechavanne	2026-06-15 00:00:14 (4 hours ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇳🇱 Mangelot Hosting	2026-06-14 23:59:22 (4 hours ago)	(modsecurity) srv103 ModSecurity 35.189.52.239 (AU/Australia/239.52.189.35.bc.googleusercontent.com) ... show more (modsecurity) srv103 ModSecurity 35.189.52.239 (AU/Australia/239.52.189.35.bc.googleusercontent.com): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
Anonymous	2026-06-14 23:25:01 (5 hours ago)	suspicious request in access.log	Web App Attack
🇳🇿 Antinson	2026-06-14 22:45:10 (5 hours ago)	Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-14 22:35:05 (6 hours ago)	(mod_security) mod_security (id:210492) triggered by 35.189.52.239 (239.52.189.35.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 35.189.52.239 (239.52.189.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 18:34:56.323976 2026] [security2:error] [pid 21234:tid 21234] [client 35.189.52.239:34262] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.newlifeworshipcentre-gc.intnlc.org"] [uri "/html/.git/config"] [unique_id "ai8skP8GkbXTlqh_-wuBsAAAACA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.38

🇺🇸 162.216.150.88

🇹🇼 198.235.24.93

🇷🇴 151.242.30.224

🇰🇷 122.35.192.61

🇻🇳 103.186.101.231

🇻🇳 103.9.206.54

🇵🇱 87.251.64.146

🇮🇹 87.4.214.94

🇮🇹 79.51.48.124

🇬🇧 35.203.210.27

🇸🇬 20.6.35.235

🇮🇳 223.237.157.214

🇨🇳 218.13.26.42

🇩🇴 200.125.170.154

🇦🇷 186.39.87.116

🇺🇸 184.56.169.255

🇷🇺 178.177.40.170

🇺🇸 152.32.208.9

🇺🇸 151.241.122.63