JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.154.143.68

34.154.143.68 was found in our database!

This IP was reported 40 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	68.143.154.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇮🇹 Italy
City	Milan, Lombardy

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.154.143.68

Whois 34.154.143.68

IP Abuse Reports for 34.154.143.68:

This IP address has been reported a total of 40 times from 31 distinct sources. 34.154.143.68 was first reported on June 9th 2026, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 thetomtaylor.co.uk	2026-06-15 02:08:01 (5 days ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01,ice02,mx01,mx02,m ... show more Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01,ice02,mx01,mx02,mx03,wa01] show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 04:17:01 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.154.143.68 (68.143.154.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.154.143.68 (68.143.154.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 00:16:56.363980 2026] [security2:error] [pid 6145:tid 6145] [client 34.154.143.68:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/config/config.yml" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.psychoclast.com"] [uri "/config/config.yml"] [unique_id "aiuIOMvBbwb77il1E8GSvgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-11 23:20:12 (1 week ago)	Bot / seems abusive / Apache connections: 21	DDoS Attack Web Spam Bad Web Bot Web App Attack
🇦🇱 router.al	2026-06-11 20:45:06 (1 week ago)	06/11/2026-20:45:06.236603 34.154.143.68 Protocol: 6 ET WEB_SERVER WEB-PHP phpinfo access	Port Scan
🇳🇱 Cloud86 B.V.	2026-06-11 13:39:03 (1 week ago)	categories: DDoS Attack	DDoS Attack
🇦🇺 AWW-Admin	2026-06-11 12:32:45 (1 week ago)	(mod_security) mod_security triggered on hostname [redacted] 34.154.143.68 (IT/Italy/68.143.154.34.b ... show more (mod_security) mod_security triggered on hostname [redacted] 34.154.143.68 (IT/Italy/68.143.154.34.bc.googleusercontent.com) show less	SQL Injection
🇬🇧 thetomtaylor.co.uk	2026-06-11 07:07:02 (1 week ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [wa01,wa02]	Hacking Brute-Force Bad Web Bot Web App Attack
🇩🇪 updown.io	2026-06-11 06:40:16 (1 week ago)	{"level":"info","ts":1781160013.7197804,"logger":"http.log.access.log1","msg":"handled request","req ... show more {"level":"info","ts":1781160013.7197804,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.154.143.68","remote_port":"43948","client_ip":"34.154.143.68","proto":"HTTP/1.1","method":"GET","host":"tsrqponupdate.jihgfedgc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io","uri":"/configprops","headers":{"User-Agent":["Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; Maxthon 2.0)"],"Accept-Charset":["utf-8"],"Accept-Encoding":["gzip"],"Connection":["close"]}},"bytes_read":0,"user_id":"","duration":0.000097476,"size":0,"status":308,"resp_headers":{"Content-Type":[],"Server":["Caddy"],"Connection":["close"],"Location":["https://tsrqponupdate.jihgfedgc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io/configprops"]}} {"level":"info","ts":1781160013.7230275,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"3 ... show less	DDoS Attack Web App Attack
🇫🇷 masterguru	2026-06-11 05:47:50 (1 week ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.154.143.68 (IT/Italy/68.143.154.34 ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.154.143.68 (IT/Italy/68.143.154.34.bc.googleusercontent.com): 2 in the last 3600 secs (0-196) show less	Hacking
🇩🇪 rh24	2026-06-11 04:00:37 (1 week ago)	(apache-useragents) Failed apache-useragents trigger with match [redacted] from 34.154.143.68 (IT/It ... show more (apache-useragents) Failed apache-useragents trigger with match [redacted] from 34.154.143.68 (IT/Italy/68.143.154.34.bc.googleusercontent.com) show less	Bad Web Bot
🇩🇪 Phenix Info	2026-06-11 03:41:36 (1 week ago)	SmallGuard.fr/Prestashop Massive 403	Web App Attack
🇳🇱 wlt-blocker	2026-06-10 23:50:31 (1 week ago)	Unauthorized access to webpage admin	Web App Attack
🇧🇷 Halux	2026-06-10 19:39:01 (1 week ago)	34.154.143.68 Probing protected path or service	Web App Attack
🇩🇪 4server	2026-06-10 14:27:09 (1 week ago)	[WedJun1016:27:08.6449152026][security2:error][pid485836:tid485862][client34.154.143.68:0]ModSecurit ... show more [WedJun1016:27:08.6449152026][security2:error][pid485836:tid485862][client34.154.143.68:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"elyon2.ch.136-243-54-122.cpanel.site\"][uri\"/trace\"][unique_id\"ail0PAnD-oqdqUqjMM3uwwAAAAQ\"] show less	Port Scan Brute-Force Web App Attack
🇬🇧 consul.to	2026-06-10 14:20:43 (1 week ago)	Web attack/malicious scanning detected	Web App Attack

Showing 1 to 15 of 40 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.236.228.202

🇪🇸 217.160.204.180

🇫🇮 178.20.210.151

🇱🇹 91.224.92.17

🇱🇹 81.30.98.158

🇱🇹 45.227.254.170

🇨🇳 27.204.196.167

🇻🇳 14.224.190.218

🇯🇵 8.216.5.224

🇲🇾 172.197.216.13

🇺🇸 91.230.168.245

🇳🇱 77.165.10.99

🇰🇷 221.146.243.237

🇷🇴 193.46.255.86

🇧🇷 160.20.33.223

🇵🇰 153.117.17.25

🇷🇺 95.165.142.8

🇨🇿 92.62.233.214

🇳🇱 86.54.31.32

🇩🇪 69.5.169.54