JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.154.245.232

34.154.245.232 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	232.245.154.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇮🇹 Italy
City	Milan, Lombardy

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.154.245.232

Whois 34.154.245.232

IP Abuse Reports for 34.154.245.232:

This IP address has been reported a total of 34 times from 27 distinct sources. 34.154.245.232 was first reported on June 9th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-11 22:00:57 (1 day ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-10. show less	Web App Attack SSH Hacking
🇳🇱 wlt-blocker	2026-06-11 15:56:22 (1 day ago)	Unauthorized access to webpage admin	Web App Attack
🇮🇩 Burayot	2026-06-11 14:52:20 (1 day ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 34.154.245.232 (IT/Italy/232.245.154 ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 34.154.245.232 (IT/Italy/232.245.154.34.bc.googleusercontent.com): 2 in the last 3600 secs show less	Web App Attack
🇳🇱 Cloud86 B.V.	2026-06-11 13:52:01 (1 day ago)	categories: DDoS Attack	DDoS Attack
🇨🇦 polycoda	2026-06-11 11:31:36 (2 days ago)	AutoBlock: 🎯 Vulnerability Scanner (Non Decay-Based) - ⚙️ Configuration File Access (Non Decay-Based ... show more AutoBlock: 🎯 Vulnerability Scanner (Non Decay-Based) - ⚙️ Configuration File Access (Non Decay-Based) show less	Hacking Web App Attack
🇫🇷 masterguru	2026-06-11 10:55:55 (2 days ago)	BAD BOT - Detected and Blocked.. Matched phrase "jaunt" at REQUEST_HEADERS:User-Agent. (1100000-193)	Bad Web Bot
🇳🇱 debestelapp	2026-06-11 06:45:06 (2 days ago)		Web App Attack
🇳🇱 Site.eu	2026-06-10 15:44:20 (2 days ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 big-cloud.nl	2026-06-10 13:07:25 (2 days ago)	Try to access /.aws/credentials	Web App Attack
🇧🇪 voormedia	2026-06-10 10:20:54 (3 days ago)	Accessed trap at '/actuator/env'	Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 09:29:45 (3 days ago)	(mod_security) mod_security (id:210730) triggered by 34.154.245.232 (232.245.154.34.bc.googleusercon ... show more (mod_security) mod_security (id:210730) triggered by 34.154.245.232 (232.245.154.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 05:29:41.623632 2026] [security2:error] [pid 7487:tid 7487] [client 34.154.245.232:39766] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|billystuff.net\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "billystuff.net"] [uri "/.config/gcloud/credentials.db"] [unique_id "aikuhUh9ErDDaD60JO-tvwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-10 08:45:12 (3 days ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Web App Attack Brute-Force Bad Web Bot
🇩🇪 updown.io	2026-06-10 08:30:43 (3 days ago)	{"level":"info","ts":1781080242.7315922,"logger":"http.log.access.log1","msg":"handled request","req ... show more {"level":"info","ts":1781080242.7315922,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.154.245.232","remote_port":"36932","client_ip":"34.154.245.232","proto":"HTTP/1.1","method":"GET","host":"aupdate.yxwvutsvutsnmlbnnkwkyxzxwww8bab2a5f-df77-4330-8c52-284b6b1ab1f1.random.159.89.98.98.nip.io","uri":"/actuator/sessions","headers":{"User-Agent":["Mozilla/5.0 (Linux; Android 8.1.0; GM 6 d) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36"],"Accept-Charset":["utf-8"],"Accept-Encoding":["gzip"],"Connection":["close"]}},"bytes_read":0,"user_id":"","duration":0.000087688,"size":0,"status":308,"resp_headers":{"Connection":["close"],"Location":["https://aupdate.yxwvutsvutsnmlbnnkwkyxzxwww8bab2a5f-df77-4330-8c52-284b6b1ab1f1.random.159.89.98.98.nip.io/actuator/sessions"],"Content-Type":[],"Server":["Caddy"]}} {"level":"info","ts":1781080242.7428396,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34 ... show less	DDoS Attack Web App Attack
Anonymous	2026-06-10 05:45:11 (3 days ago)	Bot / seems abusive / Apache connections: 67	DDoS Attack Web Spam Bad Web Bot Web App Attack
🇩🇪 XICTRON	2026-06-10 02:10:05 (3 days ago)	ModSecurity rule violation detected by Fail2Ban	Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 36.154.134.146

🇵🇭 143.44.133.95

🇩🇪 141.11.45.97

🇺🇿 94.158.58.138

🇺🇸 70.37.89.177

🇺🇸 66.132.172.112

🇮🇩 36.69.231.249

🇧🇪 34.78.29.97

🇺🇸 17.22.253.152

🇺🇸 193.3.53.3

🇨🇳 123.145.34.222

🇻🇳 103.172.236.15

🇫🇷 82.102.18.118

🇷🇺 81.22.48.19

🇴🇲 89.147.135.174

🇭🇰 23.91.97.170

🇮🇷 2.182.118.151

🇪🇨 193.30.14.163

🇸🇬 172.253.84.215

🇧🇷 168.121.99.168