JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.125.96.201

34.125.96.201 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 81%: ?

81%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	201.96.125.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	Las Vegas, Nevada

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.125.96.201

Whois 34.125.96.201

IP Abuse Reports for 34.125.96.201:

This IP address has been reported a total of 16 times from 14 distinct sources. 34.125.96.201 was first reported on June 14th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 dynamix	2026-06-15 19:09:36 (2 days ago)	Multiple WAF Violations	Web App Attack
🇧🇪 cmbplf	2026-06-15 18:30:31 (2 days ago)	2.146 requests with url.path .git/ 2.029 requests with url.path */.git/config	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-15 18:09:09 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 34.125.96.201 (201.96.125.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.125.96.201 (201.96.125.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 14:09:02.575516 2026] [security2:error] [pid 23289:tid 23309] [client 34.125.96.201:36546] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stephanie.stauffer.name"] [uri "/app/.git/config"] [unique_id "ajA_viUhuiPsUjylIaBKbAAAAE0"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 patrisei	2026-06-15 17:16:27 (2 days ago)	You are now banned for 10 years by Schiffdorf-West Patrol. Trigger: crowdsecurity/http-sensitive-fil ... show more You are now banned for 10 years by Schiffdorf-West Patrol. Trigger: crowdsecurity/http-sensitive-files show less	Port Scan Web App Attack
🇳🇱 e.fierstra	2026-06-15 17:04:38 (2 days ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 17:04:09 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 34.125.96.201 (201.96.125.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.125.96.201 (201.96.125.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 13:04:03.427802 2026] [security2:error] [pid 18425:tid 18425] [client 34.125.96.201:55202] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "elmawamarine.com"] [uri "/app/.git/config"] [unique_id "ajAwgx_Nn-UE235rVAXkZgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-15 15:43:54 (2 days ago)	34.125.96.201 - - [16/Jun/2026:00:43:54 +0900] "GET /app/.git/config HTTP/1.1" 403 3072 "-" "mukewan ... show more 34.125.96.201 - - [16/Jun/2026:00:43:54 +0900] "GET /app/.git/config HTTP/1.1" 403 3072 "-" "mukewang/7.2.0 (iPhone; iOS 12.3.1; Scale/2.00) webview" 34.125.96.201 - - [16/Jun/2026:00:43:54 +0900] "GET /public/.git/config HTTP/1.1" 403 3072 "-" "Mozilla/5.0 (X11; OpenBSD amd64; rv:30.0) Gecko/20100101 Firefox/30.0" 34.125.96.201 - - [16/Jun/2026:00:43:54 +0900] "GET /static/.git/config HTTP/1.1" 403 3071 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/12.0.1 Safari/605.1.15" 34.125.96.201 - - [16/Jun/2026:00:43:54 +0900] "GET /assets/.git/config HTTP/1.1" 403 3072 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:10.0.1) Gecko/20100101 Firefox/10.0.1" 34.125.96.201 - - [16/Jun/2026:00:43:54 +0900] "GET /frontend/.git/config HTTP/1.1" 403 3072 "-" "Mozilla/5.0 (Linux; Android 5.1.1; Coolpad 3622A Build/LMY47V) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.83 Mobile Safari/537.36" ... show less	Brute-Force
🇩🇪 tinect	2026-06-15 15:43:33 (2 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇪🇸 robotstxt	2026-06-15 15:43:24 (2 days ago)	34.125.96.201 - - [15/Jun/2026:15:43:24 +0000] "\x16\x03\x01\x00\xEA\x01\x00\x00\xE6\x03\x03\x86M\x0 ... show more 34.125.96.201 - - [15/Jun/2026:15:43:24 +0000] "\x16\x03\x01\x00\xEA\x01\x00\x00\xE6\x03\x03\x86M\x0C_\xE5b\x1B#\xC7\x96\xA0\xC7fs\x975\xDB\x02\xEE(\xE0AB\x04\xD9\x80X}\x14\x1Cy\x14 \x1Cw\xD3\xB3vQ\xA6\x9D\xA82e\xF0\xD2\xAE\xAA\x14\x1F\xAFRJI\x01\x06\x8E?\xCA\xC2\xE3e7M\xD8\x00&\xC0+\xC0/\xC0,\xC00\xCC\xA9\xCC\xA8\xC0\x09\xC0\x13\xC0" 400 150 "-" "-" "-" 34.125.96.201 - - [15/Jun/2026:15:43:24 +0000] "\x16\x03\x01\x00\xEA\x01\x00\x00\xE6\x03\x03\xD7\x9A\xA3z\x99\x19\x02\xE1\xCB\xE2aD\xE2\xD4jz\xA0I\x8A+\xAD\xDD\xEE\xAC+g(n\x95\x9AQ\xEA \x10\x10Z4o\xA4D\x9E\x10" 400 150 "-" "-" "-" 34.125.96.201 - - [15/Jun/2026:15:43:24 +0000] "\x16\x03\x01\x00\xEA\x01\x00\x00\xE6\x03\x03L\xD7\|j\x18d\xF4\x1A\x88\x96v\x94X\xE6\x19\x1F\xBC\xDE\x14h\xD46\xFE0b\x9C\x02\xDA\xC7\x8DnE }\xA1O\x87\x8Ao\x87c\x9C\xB2\xFBg\x18\xEBC\xD8\xE5[\xA3\xEA \xDBX\xB8Xv\xE2\xAD\xF9\xF7\x007\x00&\xC0+\xC0/\xC0,\xC00\xCC\xA9\xCC\xA8\xC0\x09\xC0\x13\xC0" 400 150 "-" "-" "-" 34.125.96.201 - - [15/Jun/2026:15:43:24 +0000] "\x16 ... show less	Web Spam Web App Attack
🇩🇪 hackthetime	2026-06-15 15:29:33 (2 days ago)	Tried to access .git/config file (`/.git/config`)	Web App Attack
🇳🇱 Savvii	2026-06-15 13:00:25 (2 days ago)	29 attempts against mh_ha-misbehave-ban on plum	Brute-Force Bad Web Bot Web App Attack
🇪🇸 pipeline.es	2026-06-15 03:23:59 (3 days ago)	Web scanning / probing for vulnerable paths \| URL: /apps/frontend/.env \| Evidence: www.tuviajecongui ... show more Web scanning / probing for vulnerable paths \| URL: /apps/frontend/.env \| Evidence: www.tuviajeconguia.com 34.125.96.201 - - [15/Jun/2026:05:23:33 +0200] \"GET /apps/frontend/.env HTTP/1.1\" 404 4311 \"-\" \"Opera/9.80 (J2ME/MIDP; Opera Mini/5.0.16823/1428; U; en) Presto/2.2.0\" GEOIP_COUNTRY_CODE=US \| ASN: GOOGLE-CLOUD-PLATFORM \| Country: US show less	Port Scan Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 02:08:01 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 34.125.96.201 (201.96.125.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.125.96.201 (201.96.125.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 22:07:54.829075 2026] [security2:error] [pid 32342:tid 32342] [client 34.125.96.201:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.blog.nyemdr.com"] [uri "/.env.dev"] [unique_id "ai9eepkLUR5SwY9qH0T2GwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Cloud86 B.V.	2026-06-14 23:52:01 (3 days ago)	categories: DDoS Attack	DDoS Attack
🇮🇹 VHosting	2026-06-14 07:45:04 (3 days ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 206.189.193.223

🇲🇽 200.77.172.159

🇳🇱 195.178.110.30

🇪🇸 172.110.219.251

🇵🇰 103.117.163.44

🇭🇰 103.49.62.60

🇧🇷 45.167.184.132

🇻🇳 27.79.44.149

🇻🇳 27.71.85.115

🇯🇵 8.216.7.75

🇺🇸 2a04:c300:400::1e6

🇮🇹 2a00:1450:4025:1805::12c

🇩🇪 213.209.159.11

🇧🇪 198.235.24.204

🇨🇳 180.153.236.232

🇺🇸 173.255.223.124

🇺🇸 172.210.9.131

🇺🇸 167.88.165.96

🇱🇹 158.173.79.149

🇺🇸 64.62.197.42