JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.159.96.89

34.159.96.89 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 90%: ?

90%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	89.96.159.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.159.96.89

Whois 34.159.96.89

IP Abuse Reports for 34.159.96.89:

This IP address has been reported a total of 15 times from 15 distinct sources. 34.159.96.89 was first reported on June 14th 2026, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 Aetherweb Ark	2026-06-15 02:04:46 (3 hours ago)	(mod_security) mod_security (id:949110) triggered by 34.159.96.89 (DE/Germany/89.96.159.34.bc.google ... show more (mod_security) mod_security (id:949110) triggered by 34.159.96.89 (DE/Germany/89.96.159.34.bc.googleusercontent.com): N in the last X secs show less	Web App Attack
🇷🇺 DZBOT	2026-06-15 01:51:03 (3 hours ago)	DZBOT: Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇬🇧 consul.to	2026-06-15 00:27:53 (4 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 Philister11	2026-06-15 00:23:12 (4 hours ago)	CrowdSec: crowdsecurity/http-admin-interface-probing (DE/AS396982)	Web App Attack Hacking
🇩🇪 grassau.com	2026-06-14 19:21:13 (9 hours ago)	Port Scan detected from 34.159.96.89 (DE/Germany/Hesse/Frankfurt am Main/89.96.159.34.bc.googleuse ... show more Port Scan detected from 34.159.96.89 (DE/Germany/Hesse/Frankfurt am Main/89.96.159.34.bc.googleusercontent.com). show less	Port Scan
Anonymous	2026-06-14 14:23:17 (14 hours ago)	(mod_security) mod_security triggered on hostname [redacted] 34.159.96.89 (89.96.159.34.bc.googleuse ... show more (mod_security) mod_security triggered on hostname [redacted] 34.159.96.89 (89.96.159.34.bc.googleusercontent.com): (CF_ENABLE) show less	SQL Injection
🇧🇷 diego	2026-06-14 13:15:27 (15 hours ago)	[rede-188] 2026-06-14 12:58:53, Client: 34.159.96.89, Protocol: 6, Unauthorized activity to HTTP: GE ... show more [rede-188] 2026-06-14 12:58:53, Client: 34.159.96.89, Protocol: 6, Unauthorized activity to HTTP: GET /api/.env.dev show less	Web App Attack
🇫🇷 COMAITE	2026-06-14 12:10:47 (16 hours ago)	Suspicious URL access.	Web App Attack
🇺🇸 mnsf	2026-06-14 07:06:48 (21 hours ago)	Scanning/Probing (117) Request Overload (122)	Brute-Force Web App Attack
🇩🇪 updown.io	2026-06-14 05:30:55 (23 hours ago)	{"level":"info","ts":1781415054.6134136,"logger":"http.log.access.log1","msg":"handled request","req ... show more {"level":"info","ts":1781415054.6134136,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.159.96.89","remote_port":"40776","client_ip":"34.159.96.89","proto":"HTTP/1.1","method":"GET","host":"status.boobooloo.com","uri":"/.env.test","headers":{"Connection":["close"],"User-Agent":["nook browser/1.0"],"Accept-Charset":["utf-8"],"Accept-Encoding":["gzip"]},"tls":{"resumed":false,"version":772,"cipher_suite":4865,"proto":"","server_name":"status.boobooloo.com","ech":false}},"bytes_read":0,"user_id":"","duration":0.000104259,"size":0,"status":429,"resp_headers":{"Server":["Caddy"],"Alt-Svc":["h3=\":443\"; ma=2592000"],"Retry-After":["1"]}} {"level":"info","ts":1781415054.6162245,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.159.96.89","remote_port":"40874","client_ip":"34.159.96.89","proto":"HTTP/1.1","method":"GET","host":"status.boobooloo.com","uri":"/.env.sample","headers":{"User-Agent":["iTunes/9.0.2 (Windows; N)"],"A ... show less	DDoS Attack Web App Attack
🇳🇱 Site.eu	2026-06-14 05:07:25 (23 hours ago)	Excessive 404/403 errors	Brute-Force
🇩🇪 4server	2026-06-14 03:56:14 (1 day ago)	[SunJun1405:56:12.4857912026][security2:error][pid2116871:tid2116988][client34.159.96.89:0]ModSecuri ... show more [SunJun1405:56:12.4857912026][security2:error][pid2116871:tid2116988][client34.159.96.89:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"www.sanierung-pilzen-schimmel.ch.risanamento-funghi-muffa.ch\"][uri\"/api/.env.production\"][unique_id\"ai4mXCovUShlNO6HEXWmfQAAANU\"] show less	Port Scan Brute-Force Web App Attack
🇮🇹 VHosting	2026-06-14 03:45:04 (1 day ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇳🇱 SysAdmin Dylan	2026-06-14 02:16:14 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.159.96.89 (89.96.159.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.159.96.89 (89.96.159.34.bc.googleusercontent.com): 10 in the last 3600 secs show less	Brute-Force
Anonymous	2026-06-14 02:05:23 (1 day ago)	Aggressive web scan	Web App Attack

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 198.11.178.150

🇺🇸 167.88.165.96

🇨🇳 117.149.196.215

🇵🇰 110.93.224.226

🇺🇸 104.232.79.58

🇩🇪 69.5.169.190

🇦🇪 5.38.44.228

🇰🇷 222.110.147.56

🇬🇧 188.240.59.2

🇻🇳 123.26.219.4

🇨🇳 116.147.65.8

🇧🇪 104.155.61.210

🇳🇱 85.121.55.219

🇺🇸 66.189.58.119

🇨🇳 47.96.149.64

🇺🇸 35.227.48.248

🇯🇵 34.180.127.152

🇧🇷 34.151.214.243

🇺🇸 34.134.181.153

🇺🇸 34.125.210.194