AbuseIPDB » 34.21.241.126
34.21.241.126 was found in our database!
This IP was reported 6 times. Confidence of
Abuse
is 26%: ?
| ISP |
Google LLC
|
| Usage Type |
Data Center/Web Hosting/Transit
|
| ASN |
AS396982
|
| Hostname(s) |
126.241.21.34.bc.googleusercontent.com
|
| Domain Name |
google.com
|
| Country |
๐ธ๐ฌ
Singapore
|
| City |
Singapore
|
IP info including ISP, Usage Type, and Location provided
by IPInfo. Updated weekly.
IP Abuse Reports for 34.21.241.126:
This IP address has been reported a total of
6
times from
6 distinct
sources.
34.21.241.126 was first reported on
, and the most recent report was
.
Old Reports:
The most recent abuse report for this IP address is from
. It is possible that this IP is no longer involved in abusive activities.
| Reporter |
IoA Timestamp (UTC)
|
Comment |
Categories |
|
|
๐ฉ๐ช
maxpower
|
|
(exploit_critical) REGOLA 2 - Critical File Exploit Attempt 34.21.241.126 (SG/Singapore/126.241.21.3 ...
show more
(exploit_critical) REGOLA 2 - Critical File Exploit Attempt 34.21.241.126 (SG/Singapore/126.241.21.34.bc.googleusercontent.com): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 34.21.241.126 - - [30/May/2026:07:00:30 +0200] "GET /config/.aws/credentials HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1664.3 Safari/537.36" "-" host=145.239.233.177
34.21.241.126 - - [30/May/2026:07:00:30 +0200] "GET /app/secrets.json HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.181 Safari/537.36" "-" host=145.239.233.177
show less
|
Port Scan
|
|
|
๐ณ๐ฑ
Savvii
|
|
20 attempts against mh-misbehave-ban on storm
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 34.21.241.126 (126.241.21.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210730) triggered by 34.21.241.126 (126.241.21.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 29 19:58:06.681612 2026] [security2:error] [pid 23798:tid 23798] [client 34.21.241.126:43326] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||192.64.150.244|F|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "192.64.150.244"] [uri "/.config/gcloud/credentials.db"] [unique_id "ahooDjQv1Tnlz3NrYrsY8wAAAAQ"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐ฉ๐ช
EGP Abuse Dept
|
|
Scanning for web/db/file exploits on tpc-013.mach3builders.nl
|
SQL Injection
Bad Web Bot
Web App Attack
|
|
|
๐ซ๐ท
dynamix
|
|
Multiple WAF Violations
|
Web App Attack
|
|
|
๐ฆ๐บ
afleventoffice.com.au
|
|
\x16\x03\x01
|
Web App Attack
|
|
Showing 1 to
6
of 6 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: