JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 35.241.89.59

35.241.89.59 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 62%: ?

62%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	59.89.241.35.bc.googleusercontent.com
Domain Name	google.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 35.241.89.59

Whois 35.241.89.59

IP Abuse Reports for 35.241.89.59:

This IP address has been reported a total of 16 times from 9 distinct sources. 35.241.89.59 was first reported on June 13th 2026, and the most recent report was 21 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-13 22:03:26 (21 hours ago)	Auto-ban: >3000 req/min op 2026-06-13	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-13 15:56:34 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 35.241.89.59 (59.89.241.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.241.89.59 (59.89.241.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 11:56:28.573461 2026] [security2:error] [pid 7112:tid 7112] [client 35.241.89.59:58658] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.desoucey.com.monmouthbottleshop.com"] [uri "/.git/config"] [unique_id "ai19rObcFfQGR8ZtNJkLJgAAACg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 14:03:01 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 35.241.89.59 (59.89.241.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.241.89.59 (59.89.241.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 10:02:56.234487 2026] [security2:error] [pid 487:tid 487] [client 35.241.89.59:52526] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "agapeoffice.agapeaccountingllc.com"] [uri "/.git/config"] [unique_id "ai1jEK43mgZaStuJdZftMgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 13:26:06 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 35.241.89.59 (59.89.241.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.241.89.59 (59.89.241.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 09:25:57.469749 2026] [security2:error] [pid 11607:tid 11607] [client 35.241.89.59:58596] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.qpr1.scc1.us"] [uri "/.git/config"] [unique_id "ai1aZRoV273lzFU9F2JwlgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 4server	2026-06-13 12:46:58 (1 day ago)	[SatJun1314:46:50.3470242026][security2:error][pid1216322:tid1216594][client35.241.89.59:0]ModSecuri ... show more [SatJun1314:46:50.3470242026][security2:error][pid1216322:tid1216594][client35.241.89.59:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"webdisk.aeapcl.ch\"][uri\"/.git/config\"][unique_id\"ai1ROkexZI5vcigkjpLUgAAAAQI\"] show less	Hacking Web App Attack
🇩🇪 4server	2026-06-13 12:25:04 (1 day ago)	[SatJun1314:24:58.3468502026][security2:error][pid1098136:tid1098253][client35.241.89.59:0]ModSecuri ... show more [SatJun1314:24:58.3468502026][security2:error][pid1098136:tid1098253][client35.241.89.59:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"acquathermic.ch.136-243-54-122.cpanel.site\"][uri\"/.git/config\"][unique_id\"ai1MGv5ZPHdXkHhzXs0UjgAAAQM\"] show less	Port Scan Brute-Force Web App Attack
Anonymous	2026-06-13 12:10:01 (1 day ago)	suspicious request in access.log	Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 11:59:08 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 35.241.89.59 (59.89.241.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.241.89.59 (59.89.241.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 07:59:01.790159 2026] [security2:error] [pid 13057:tid 13057] [client 35.241.89.59:47096] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nancy-whittington.com"] [uri "/.git/config"] [unique_id "ai1GBboJFNIuW4Lp7AE5NAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-13 11:02:16 (1 day ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 35.241.89.59 (HK/Hong Kong/59.89.241. ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 35.241.89.59 (HK/Hong Kong/59.89.241.35.bc.googleusercontent.com): 1 in the last 3600 secs (0-195) show less	Hacking
🇺🇸 TPI-Abuse	2026-06-13 10:50:37 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 35.241.89.59 (59.89.241.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.241.89.59 (59.89.241.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 06:50:32.910613 2026] [security2:error] [pid 20225:tid 20225] [client 35.241.89.59:57752] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.empoweringyou.edgeimprov.com"] [uri "/.git/config"] [unique_id "ai01-H4ClQvHve4RSLTP_QAAAD0"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-06-13 09:06:45 (1 day ago)	12.610 requests in 1 hour (6d10h59m)	Brute-Force Bad Web Bot
🇩🇪 big-cloud.nl	2026-06-13 08:44:13 (1 day ago)	Try to access /.git/config	Web App Attack
🇦🇺 2000cn.com.au	2026-06-13 07:50:53 (1 day ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇺🇸 TPI-Abuse	2026-06-13 05:36:43 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 35.241.89.59 (59.89.241.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.241.89.59 (59.89.241.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 01:36:35.837198 2026] [security2:error] [pid 29791:tid 29835] [client 35.241.89.59:43058] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.bronnimann.kylight.com"] [uri "/.git/config"] [unique_id "aizsY-MrysLTvSZDdb9bJgAAAM0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 04:48:24 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 35.241.89.59 (59.89.241.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.241.89.59 (59.89.241.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 00:48:16.923791 2026] [security2:error] [pid 3625:tid 3625] [client 35.241.89.59:45464] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "carboncreekwood.com"] [uri "/.git/config"] [unique_id "aizhEBb-TDoMKqPi3Ni7zwAAAFk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 61.37.150.6

🇨🇳 182.204.181.151

🇪🇨 181.39.158.27

🇩🇿 154.243.94.8

🇧🇩 103.183.62.0

🇹🇭 101.109.253.244

🇳🇱 91.92.241.196

🇬🇧 87.236.176.81

🇩🇪 64.89.163.28

🇬🇧 34.39.16.70

🇬🇧 195.96.139.201

🇻🇳 171.237.176.209

🇩🇪 167.172.108.197

🇺🇸 157.230.150.187

🇹🇭 110.238.115.146

🇩🇪 69.5.169.245

🇨🇳 42.194.181.182

🇬🇧 213.166.84.62

🇧🇪 198.235.24.217

🇯🇵 152.32.146.182