JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 35.189.52.64

35.189.52.64 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	64.52.189.35.bc.googleusercontent.com
Domain Name	google.com
Country	🇦🇺 Australia
City	Sydney, New South Wales

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 35.189.52.64

Whois 35.189.52.64

IP Abuse Reports for 35.189.52.64:

This IP address has been reported a total of 43 times from 26 distinct sources. 35.189.52.64 was first reported on June 14th 2026, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 cmbplf	2026-06-15 10:46:00 (5 days ago)	1.899 requests with url.path .git/	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-15 09:02:08 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 35.189.52.64 (64.52.189.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.189.52.64 (64.52.189.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 05:02:03.089085 2026] [security2:error] [pid 6459:tid 6459] [client 35.189.52.64:36102] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "united-kingdom-boat-registration.com"] [uri "/app/.git/config"] [unique_id "ai-_ixFAvMuAuDJ4BXv9OQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 debestelapp	2026-06-15 08:30:10 (5 days ago)		Web App Attack
🇩🇪 4server	2026-06-15 08:18:57 (5 days ago)	[MonJun1510:18:53.0338572026][security2:error][pid4004233:tid4004251][client35.189.52.64:0]ModSecuri ... show more [MonJun1510:18:53.0338572026][security2:error][pid4004233:tid4004251][client35.189.52.64:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof\"rx\(windows-live-social-object-extractor-engine\\|nutch-\)\"against\"REQUEST_HEADERS:User-Agent\"required.[file\"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf\"][line\"236\"][id\"330056\"][rev\"10\"][msg\"Atomicorp.comWAFRules:EmailHarvesterSpambotUseragentdetected\"][severity\"CRITICAL\"][hostname\"ponzellini.ch\"][uri\"/code/.git/config\"][unique_id\"ai-1bQ5ZtYNOZvoiJcJdogAAAAc\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 07:52:11 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 35.189.52.64 (64.52.189.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.189.52.64 (64.52.189.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 03:52:03.468995 2026] [security2:error] [pid 19691:tid 19891] [client 35.189.52.64:51396] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.gavinblair.com"] [uri "/api/.git/config"] [unique_id "ai-vI2P9MJEDhbHGivjr8QAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇿 Antinson	2026-06-15 06:15:41 (5 days ago)	Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-15 05:33:06 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 35.189.52.64 (64.52.189.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.189.52.64 (64.52.189.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 01:32:58.648477 2026] [security2:error] [pid 18635:tid 18635] [client 35.189.52.64:58350] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "drgracetomastolentino.com"] [uri "/project/.git/config"] [unique_id "ai-Oik6SRTvLr_eEptoojgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-06-15 04:24:56 (5 days ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 04:11:06 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 35.189.52.64 (64.52.189.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.189.52.64 (64.52.189.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 00:11:01.812105 2026] [security2:error] [pid 1362:tid 1362] [client 35.189.52.64:46482] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "blazezito.com"] [uri "/.git/config"] [unique_id "ai97Vdb3n07TpDTv0_qMtwAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 02:48:12 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 35.189.52.64 (64.52.189.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.189.52.64 (64.52.189.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 22:48:05.500703 2026] [security2:error] [pid 15630:tid 15630] [client 35.189.52.64:57038] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "limobusrichmond.com"] [uri "/backend/.git/config"] [unique_id "ai9n5baueFWSaG8PzqGyUAAAAEU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 02:17:27 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 35.189.52.64 (64.52.189.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.189.52.64 (64.52.189.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 22:17:23.635010 2026] [security2:error] [pid 17369:tid 17369] [client 35.189.52.64:52190] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "edenberg.com"] [uri "/.git/config"] [unique_id "ai9gs4XPLnBHzGovSVvaGAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇱 router.al	2026-06-15 01:35:21 (5 days ago)	06/15/2026-01:35:21.272336 35.189.52.64 Protocol: 6 GPL WEB_SERVER 403 Forbidden	Port Scan
🇬🇧 andypiper	2026-06-15 01:01:34 (5 days ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇮🇹 madaello	2026-06-15 00:58:32 (5 days ago)	35.189.52.64 - - [15/Jun/2026:02:58:29 +0200] "GET /site/.git/config HTTP/1.1" 404 99124 "-" "EmailW ... show more 35.189.52.64 - - [15/Jun/2026:02:58:29 +0200] "GET /site/.git/config HTTP/1.1" 404 99124 "-" "EmailWolf 1.00" ... show less	Bad Web Bot
🇫🇷 masterguru	2026-06-15 00:34:37 (5 days ago)	Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-195)	Hacking Web App Attack

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 222.253.111.60

🇧🇷 179.125.169.27

🇵🇰 119.152.229.154

🇺🇸 107.150.100.201

🇮🇩 103.210.250.30

🇱🇹 81.30.98.225

🇺🇸 66.132.186.213

🇨🇦 54.39.203.149

🇲🇽 187.149.145.147

🇰🇷 115.140.161.61

🇮🇩 103.164.173.66

🇭🇺 89.134.210.182

🇨🇳 36.133.45.189

🇺🇸 20.168.124.105

🇩🇪 2a0b:f4c2:2::56

🇲🇿 196.28.226.66

🇳🇱 195.178.110.188

🇧🇷 191.255.104.211

🇨🇷 190.171.113.102

🇫🇮 147.185.133.180