JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.35.88.212

34.35.88.212 was found in our database!

This IP was reported 40 times. Confidence of Abuse is 53%: ?

53%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	212.88.35.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇿🇦 South Africa
City	Johannesburg, Gauteng

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.35.88.212

Whois 34.35.88.212

IP Abuse Reports for 34.35.88.212:

This IP address has been reported a total of 40 times from 21 distinct sources. 34.35.88.212 was first reported on May 7th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 evicky2002	2026-05-20 04:30:47 (2 weeks ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=1)	Hacking Brute-Force SSH
🇳🇱 homeshowdomain.nl	2026-05-09 21:59:13 (4 weeks ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-08. show less	Web App Attack SSH Hacking
🇩🇪 Ba-Yu	2026-05-08 16:22:02 (4 weeks ago)	General hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇫🇷 JPPO	2026-05-08 08:16:39 (1 month ago)	Port 443 : GET /.git or /.git/HEAD, /.git/config ... /.DS_store	Web App Attack
🇺🇸 TPI-Abuse	2026-05-08 06:39:42 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 34.35.88.212 (212.88.35.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.35.88.212 (212.88.35.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 02:39:38.961618 2026] [security2:error] [pid 29925:tid 29925] [client 34.35.88.212:35724] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "utahproaudio.com"] [uri "/.git/config"] [unique_id "af2FKhqFi2a3ImSTCyBnUAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Vano Ganzzz	2026-05-08 06:19:38 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from ZA. Action taken: BLOCK ASN: 396982 (Google LLC) Prot ... show more Triggered Cloudflare WAF (firewallCustom) from ZA. Action taken: BLOCK ASN: 396982 (Google LLC) Protocol: HTTP/1.1 (GET method) Endpoint: /.git/config Timestamp: 2026-05-08T06:19:38Z Ray ID: 9f865a9c38812858 UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Safari/537.36 show less	Bad Web Bot
Anonymous	2026-05-08 06:05:02 (1 month ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Web App Attack Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-08 05:12:41 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 34.35.88.212 (212.88.35.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.35.88.212 (212.88.35.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 01:12:34.137285 2026] [security2:error] [pid 10788:tid 10788] [client 34.35.88.212:40366] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sekelconsulting.com.z-mgmt.com"] [uri "/.git/config"] [unique_id "af1wwkKh7PXhom5xTdliQQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-08 04:52:29 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 34.35.88.212 (212.88.35.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.35.88.212 (212.88.35.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 00:52:25.796732 2026] [security2:error] [pid 16896:tid 16896] [client 34.35.88.212:42238] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "matterofbritain.com"] [uri "/.git/config"] [unique_id "af1sCSFAKf9DUSQe-j_GZQAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-08 04:32:39 (1 month ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇫🇷 masterguru	2026-05-08 03:52:27 (1 month ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.35.88.212 (ZA/South Africa/212.88. ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.35.88.212 (ZA/South Africa/212.88.35.34.bc.googleusercontent.com): 2 in the last 3600 secs (0-193) show less	Hacking
🇺🇸 TPI-Abuse	2026-05-08 02:40:54 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 34.35.88.212 (212.88.35.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.35.88.212 (212.88.35.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 07 22:40:50.712206 2026] [security2:error] [pid 11312:tid 11312] [client 34.35.88.212:37108] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.sydat.abramczuk.me"] [uri "/.git/config"] [unique_id "af1NMn3B7SElbiMpUxuSEwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-08 02:20:45 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 34.35.88.212 (212.88.35.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.35.88.212 (212.88.35.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 07 22:20:37.945315 2026] [security2:error] [pid 18167:tid 18167] [client 34.35.88.212:37736] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "radicalchange.org"] [uri "/.git/config"] [unique_id "af1Idb1v7dbz9Yd3ZtkfkgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 NihiliousMonk	2026-05-08 02:10:28 (1 month ago)	Fail2Ban report from jail npm-scanners	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-08 01:30:22 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 34.35.88.212 (212.88.35.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.35.88.212 (212.88.35.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 07 21:30:18.632992 2026] [security2:error] [pid 30513:tid 30513] [client 34.35.88.212:52716] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chalet-4saisons.com"] [uri "/.git/config"] [unique_id "af08qg94KwQ--c_nKu7_PQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 40 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇰 203.124.44.231

🇺🇸 192.3.196.157

🇷🇺 176.109.97.11

🇳🇱 176.65.148.84

🇺🇸 172.236.254.181

🇪🇸 85.61.90.129

🇷🇴 80.94.92.171

🇺🇸 76.132.238.43

🇺🇸 71.6.232.30

🇺🇸 66.132.186.220

🇦🇺 51.161.128.68

🇳🇱 45.148.10.157

🇳🇱 45.148.10.152

🇺🇬 197.239.14.215

🇿🇦 173.194.171.216

🇯🇵 159.26.119.30

🇺🇸 143.198.150.150

🇨🇳 113.140.95.2

🇮🇶 65.20.198.159

🇺🇸 31.57.63.117