JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.53.156.85

34.53.156.85 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 58%: ?

58%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	85.156.53.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇧🇪 Belgium
City	Brussels, Brussels Capital

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.53.156.85

Whois 34.53.156.85

IP Abuse Reports for 34.53.156.85:

This IP address has been reported a total of 26 times from 11 distinct sources. 34.53.156.85 was first reported on June 8th 2026, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 pm33	2026-06-11 13:25:03 (6 days ago)	Unauthorized connections HTTP 403	Web App Attack
Anonymous	2026-06-11 12:18:34 (6 days ago)	34.53.156.85 - - [11/Jun/2026:14:18:32 +0200] "GET /wp-includes/js/dist/i18n.min.js.map HTTP/1.1" 40 ... show more 34.53.156.85 - - [11/Jun/2026:14:18:32 +0200] "GET /wp-includes/js/dist/i18n.min.js.map HTTP/1.1" 404 13473 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0 Safari/537.36" 34.53.156.85 - - [11/Jun/2026:14:18:31 +0200] "GET /wp-includes/js/dist/i18n.min.js.map HTTP/1.1" 404 60864 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0 Safari/537.36" 34.53.156.85 - - [11/Jun/2026:14:18:31 +0200] "GET /wp-includes/js/dist/hooks.min.js.map HTTP/1.1" 404 60864 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0 Safari/537.36" 34.53.156.85 - - [11/Jun/2026:14:18:33 +0200] "GET /wp-includes/js/dist/hooks.min.js.map HTTP/1.1" 404 13473 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0 Safari/537.36" 34.53.156.85 - - [11/Jun/2026:14:18:31 +0200] "GET /wp-includes/js/wp-emoji-release.min.js.map HTTP/1.1" 404 60864 "-" "Mozilla/5.0 (X11; Linux x86_64 ... show less	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-11 06:09:16 (1 week ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 34.53.156.85 (BE/Belgium/85.156.53.34.bc.googl ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 34.53.156.85 (BE/Belgium/85.156.53.34.bc.googleusercontent.com): 1 in the last 3600 secs (0-195) show less	Hacking
🇳🇱 homeshowdomain.nl	2026-06-09 21:59:34 (1 week ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08. show less	Web App Attack SSH Hacking
🇫🇷 masterguru	2026-06-09 16:21:56 (1 week ago)	Too much 404 requests in 1 minute. Operator GE matched 10 at IP:block_script. (46020-201)	Hacking
🇫🇷 masterguru	2026-06-09 08:03:29 (1 week ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 34.53.156.85 (BE/Belgium/85.156.53.34.bc.googl ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 34.53.156.85 (BE/Belgium/85.156.53.34.bc.googleusercontent.com): 1 in the last 3600 secs (0-195) show less	Hacking
🇳🇱 homeshowdomain.nl	2026-06-08 22:09:00 (1 week ago)	Auto-ban: >3000 req/min op 2026-06-08	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-08 20:08:27 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.53.156.85 (85.156.53.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.53.156.85 (85.156.53.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 16:08:20.828666 2026] [security2:error] [pid 3595:tid 3595] [client 34.53.156.85:42510] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.blockadegc.weyoungrenovations.com"] [uri "/.git/config"] [unique_id "aichNIhcK4E95Kdu5wzpzgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 18:36:54 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.53.156.85 (85.156.53.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.53.156.85 (85.156.53.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 14:36:46.963664 2026] [security2:error] [pid 25059:tid 25059] [client 34.53.156.85:51534] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thommesen.net"] [uri "/.git/config"] [unique_id "aicLvsiI_zOreXbXk8V05AAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 18:18:39 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.53.156.85 (85.156.53.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.53.156.85 (85.156.53.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 14:18:34.688569 2026] [security2:error] [pid 933:tid 933] [client 34.53.156.85:52464] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "anythingsoldworldwide.com"] [uri "/.git/config"] [unique_id "aicHenQHxPGb-EKEjU2gTQAAAEA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 12:02:51 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.53.156.85 (85.156.53.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.53.156.85 (85.156.53.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 08:02:45.121325 2026] [security2:error] [pid 3497:tid 3497] [client 34.53.156.85:47264] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.aws.corepest.com"] [uri "/.git/config"] [unique_id "aiavZa0DsSr3oQFrmiTMoAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-06-08 10:30:35 (1 week ago)	Try to access /.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 08:54:11 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.53.156.85 (85.156.53.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.53.156.85 (85.156.53.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 04:54:07.210935 2026] [security2:error] [pid 32257:tid 32257] [client 34.53.156.85:60514] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.pharmasalesconnect.circlehealthcaregroup.com"] [uri "/.git/config"] [unique_id "aiaDLxVNGVjS6ZeT8V-afAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Charlesiv	2026-06-08 08:01:35 (1 week ago)	Triggered Cloudflare WAF (firewallCustom) from BE. Action taken: BLOCK ASN: 396982 (Google LLC) Prot ... show more Triggered Cloudflare WAF (firewallCustom) from BE. Action taken: BLOCK ASN: 396982 (Google LLC) Protocol: HTTP/1.1 (GET method) Endpoint: /.git/config Timestamp: 2026-06-08T07:09:01Z Ray ID: a0861194985b6ff3 UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.87 Safari/537.36 show less	Bad Web Bot
🇺🇸 itsnixk	2026-06-08 08:01:03 (1 week ago)	(mod_security) mod_security (id:930130) triggered by 34.53.156.85 (BE/Belgium/85.156.53.34.bc.google ... show more (mod_security) mod_security (id:930130) triggered by 34.53.156.85 (BE/Belgium/85.156.53.34.bc.googleusercontent.com): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Mon Jun 08 04:00:59.591058 2026] [security2:error] [pid 26848:tid 26874] [remote 34.53.156.85:0] ModSecurity: Access denied with code 406 (phase 1). Matched phrase ".git/" at REQUEST_FILENAME. [file "/etc/modsecurity.d/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "150"] [id "930130"] [msg "Restricted File Access Attempt"] [redacted] [severity "CRITICAL"] [ver "OWASP_CRS/4.26.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "OWASP_CRS/ATTACK-LFI"] [tag "capec/1000/255/153/126"] [redacted] [uri "/.git/config"] [unique_id "aiZ2u3jjIn0fnOUQ6vv-SQAAIgg"] show less	Port Scan

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 85.217.140.22

🇺🇸 162.216.149.230

🇺🇸 135.119.16.163

🇳🇱 91.92.40.10

🇳🇱 45.148.10.152

🇧🇪 34.62.177.255

🇩🇪 8.209.119.142

🇳🇱 185.242.226.73

🇧🇷 177.8.156.228

🇺🇸 173.252.70.3

🇭🇰 152.32.225.11

🇺🇸 150.107.38.128

🇮🇩 114.10.47.235

🇳🇵 103.162.235.190

🇿🇦 102.223.72.7

🇨🇦 57.134.215.133

🇨🇳 43.143.73.189

🇺🇸 216.73.217.113

🇧🇩 119.148.102.108

🇺🇸 67.227.134.37