JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.64.120.96

34.64.120.96 was found in our database!

This IP was reported 39 times. Confidence of Abuse is 100%: ?

100%

ISP	Google Asia Pacific Pte. Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	96.120.64.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇰🇷 Korea (the Republic of)
City	Seoul, Seoul

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.64.120.96

Whois 34.64.120.96

IP Abuse Reports for 34.64.120.96:

This IP address has been reported a total of 39 times from 24 distinct sources. 34.64.120.96 was first reported on June 13th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Kotuhan	2026-06-15 10:56:32 (3 days ago)	Honeypot: this IP sent web exploit attempts (RCE/SQLi/traversal/CVE probes) against a decoy host wit ... show more Honeypot: this IP sent web exploit attempts (RCE/SQLi/traversal/CVE probes) against a decoy host with no real service. show less	Web App Attack Hacking
Anonymous	2026-06-15 10:08:05 (3 days ago)	34.64.120.96 - - [15/Jun/2026:18:08:04 +0800] "GET /src/.git/config HTTP/1.1" 404 196 "-" "Mozilla/5 ... show more 34.64.120.96 - - [15/Jun/2026:18:08:04 +0800] "GET /src/.git/config HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.7; rv:20.0) Gecko/20100101 Firefox/20.0" ... show less	Bad Web Bot Web App Attack
🇳🇿 Antinson	2026-06-15 09:55:25 (3 days ago)	Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)	Bad Web Bot
🇵🇱 sefinek.net	2026-06-15 09:53:28 (3 days ago)	Triggered Cloudflare WAF (firewallCustom) from KR. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoi ... show more Triggered Cloudflare WAF (firewallCustom) from KR. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoint: /web/.git/config \| UA: Mozilla/5.0 (Linux; Android 9; H8314) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇧🇾 shopmax	2026-06-15 09:00:58 (3 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇫🇷 masterguru	2026-06-15 08:36:51 (3 days ago)	Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-196)	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 08:04:43 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 34.64.120.96 (96.120.64.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.64.120.96 (96.120.64.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 04:04:38.278634 2026] [security2:error] [pid 2536:tid 2561] [client 34.64.120.96:51244] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "electriccommunicationsmarketing.org.bestofthis.com"] [uri "/src/.git/config"] [unique_id "ai-yFnZWR0545pLs3NhzeAAAAVM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 07:31:14 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 34.64.120.96 (96.120.64.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.64.120.96 (96.120.64.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 03:31:09.669561 2026] [security2:error] [pid 5456:tid 5456] [client 34.64.120.96:35546] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.anchorroots.com.daisydoesoap.com"] [uri "/.git/config"] [unique_id "ai-qPTjJN-brWjhl6dFw4gAAACo"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇴 iulianh	2026-06-15 07:04:29 (3 days ago)	*	Brute-Force SSH
🇳🇱 Savvii	2026-06-15 05:54:49 (3 days ago)	20 attempts against mh-misbehave-ban on kiwi	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 05:50:46 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 34.64.120.96 (96.120.64.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.64.120.96 (96.120.64.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 01:50:41.189032 2026] [security2:error] [pid 4603:tid 4603] [client 34.64.120.96:41594] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "meliaethelwoodard.com"] [uri "/.git/config"] [unique_id "ai-SsQx9Gbphk999p1dbWAAAAFU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 CBJ	2026-06-15 05:44:59 (3 days ago)	fail2ban: apache-filepath-recon ...	Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 04:43:43 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 34.64.120.96 (96.120.64.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.64.120.96 (96.120.64.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 00:43:38.735850 2026] [security2:error] [pid 6412:tid 6412] [client 34.64.120.96:33432] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.germanflatts.mohawk-ny.org"] [uri "/.git/config"] [unique_id "ai-C-oco3FL4JgbyytpxTAAAAIs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 04:26:11 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 34.64.120.96 (96.120.64.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.64.120.96 (96.120.64.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 00:26:04.564306 2026] [security2:error] [pid 12258:tid 12258] [client 34.64.120.96:58358] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.postermodelsxxx.postermodelsworldwideinc.com"] [uri "/frontend/.git/config"] [unique_id "ai9-3FR6CwuCrocqKqLFTgAAADY"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇷 setupgr	2026-06-15 02:39:43 (3 days ago)	(mod_security) mod_security (id:11000011) triggered by 34.64.120.96: 1 in the last 86400 secs; Ports ... show more (mod_security) mod_security (id:11000011) triggered by 34.64.120.96: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Mon Jun 15 05:39:38.322105 2026] [security2:error] [pid 921871:tid 922053] [client 34.64.120.96:42728] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "googleusercontent.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "128"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 96.120.64.34.bc.googleusercontent.com"] [hostname "mail.cpanagiotou.gr"] [uri "/api/.git/config"] [unique_id "ai9l6u2clReoPvlJKlh_kgAAANc"] show less	Port Scan

Showing 1 to 15 of 39 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇫 180.94.75.42

🇩🇪 178.27.90.142

🇮🇳 168.144.30.140

🇸🇬 149.118.48.73

🇩🇪 69.5.169.59

🇺🇸 47.254.44.103

🇭🇰 220.246.36.42

🇬🇧 193.163.125.47

🇦🇫 180.94.75.202

🇺🇸 173.64.70.46

🇮🇳 165.22.213.104

🇻🇳 125.212.244.35

🇨🇳 120.48.175.69

🇨🇳 117.22.159.4

🇭🇰 114.111.53.214

🇨🇳 112.123.107.129

🇧🇬 78.128.112.30

🇺🇸 54.89.47.153

🇩🇪 45.135.194.83

🇳🇱 31.42.176.142