JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.64.253.234

34.64.253.234 was found in our database!

This IP was reported 49 times. Confidence of Abuse is 100%: ?

100%

ISP	Google Asia Pacific Pte. Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	234.253.64.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇰🇷 Korea (the Republic of)
City	Seoul, Seoul

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.64.253.234

Whois 34.64.253.234

IP Abuse Reports for 34.64.253.234:

This IP address has been reported a total of 49 times from 28 distinct sources. 34.64.253.234 was first reported on June 8th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 masterguru	2026-06-12 04:15:45 (1 week ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-193)	Hacking Web App Attack
🇬🇧 consul.to	2026-06-12 02:47:11 (1 week ago)	Web attack/malicious scanning detected	Web App Attack
🇬🇧 andypiper	2026-06-12 01:01:59 (1 week ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
Anonymous	2026-06-11 20:32:30 (1 week ago)	34.64.253.234 - - [11/Jun/2026:22:32:29 +0200] "GET /app/api/.env HTTP/1.1" 404 5425 "-" "Mozilla/5. ... show more 34.64.253.234 - - [11/Jun/2026:22:32:29 +0200] "GET /app/api/.env HTTP/1.1" 404 5425 "-" "Mozilla/5.0 (Linux; Android 6.0.1; Redmi 4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36" ... show less	Brute-Force Web App Attack
🇩🇪 updown.io	2026-06-11 18:24:25 (1 week ago)	{"level":"info","ts":1781202264.617451,"logger":"http.log.access.log1","msg":"handled request","requ ... show more {"level":"info","ts":1781202264.617451,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.64.253.234","remote_port":"52712","client_ip":"34.64.253.234","proto":"HTTP/1.1","method":"GET","host":"status.powertree.ai","uri":"/staging/.env","headers":{"User-Agent":["Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.108 Safari/537.36"],"Accept-Charset":["utf-8"],"Accept-Encoding":["gzip"],"Connection":["close"]},"tls":{"resumed":false,"version":772,"cipher_suite":4865,"proto":"","server_name":"status.powertree.ai","ech":false}},"bytes_read":0,"user_id":"","duration":0.000158102,"size":0,"status":429,"resp_headers":{"Alt-Svc":["h3=\":443\"; ma=2592000"],"Retry-After":["1"],"Server":["Caddy"]}} {"level":"info","ts":1781202264.6188836,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.64.253.234","remote_port":"52738","client_ip":"34.64.253.234","proto":"HTTP/1.1","method":"GET ... show less	DDoS Attack Web App Attack
🇳🇱 Cloud86 B.V.	2026-06-11 14:39:05 (1 week ago)	categories: DDoS Attack	DDoS Attack
Anonymous	2026-06-11 11:10:21 (1 week ago)	Aggressive web scan	Web App Attack
🇳🇱 Site.eu	2026-06-11 01:16:48 (1 week ago)	Excessive multi-domain requests	Brute-Force
🇨🇦 john doe	2026-06-10 23:26:02 (1 week ago)	SentinelBot: Env File Hunting (score: 73)	Bad Web Bot
🇩🇪 4server	2026-06-10 22:19:56 (1 week ago)	[ThuJun1100:19:54.4049432026][security2:error][pid1011668:tid1011775][client34.64.253.234:0]ModSecur ... show more [ThuJun1100:19:54.4049432026][security2:error][pid1011668:tid1011775][client34.64.253.234:0]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch\"\\\\\\\\.copy\$\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf\"][line\"1170\"][id\"390586\"][rev\"1\"][msg\"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessbackupfile$disablethisruleifyourequireaccesstofilesthatendwith.copy$\"][severity\"CRITICAL\"][hostname\"ipv6.gmint.ch\"][uri\"/.env.copy\"][unique_id\"ainjCp2CDLgF1bPdKEcjdgAAAMs\"] show less	Port Scan Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-10 22:01:56 (1 week ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-09. show less	Web App Attack SSH Hacking
Anonymous	2026-06-10 21:08:05 (1 week ago)	Bot / scanning and/or hacking attempts: GET /api/.env.staging HTTP/1.1, GET /temp/.env HTTP/1.1, GET ... show more Bot / scanning and/or hacking attempts: GET /api/.env.staging HTTP/1.1, GET /temp/.env HTTP/1.1, GET /frontend/.env.production HTTP/1.1, GET /.env.development.local HTTP/1.1, GET /public/.env HTTP/1.1, GET /app/.env HTTP/1.1, GET /wp/.env HTTP/1.1, GET /app/.env.backup HTTP/1.1, GET /private/.env.production HTTP/1.1, GET /backend/api/.env HTTP/1.1, GET /config/.env.local HTTP/1.1, GET /frontend/.env.local HTTP/1.1, GET /services/.env.local HTTP/1.1, GET /server/.env.backup HTTP/1.1, GET /app/.env.old HTTP/1.1, GET /v2/.env HTTP/1.1, GET /backend/.env.local HTTP/1.1, GET /staging/.env HTTP/1.1, GET /production/.env HTTP/1.1, GET /backend/.env.dev HTTP/1.1, GET /.env.qa HTTP/1.1, GET /server/.env.local HTTP/1.1, GET /api/backend/.env HTTP/1.1, GET /wordpress/.env HTTP/1.1, GET /config/.env.production HTTP/1.1, GET /frontend/.env.prod HTTP/1.1, GET /.env.production HTTP/1.1, GET /services/.env.production HTTP/1.1, GET /admin/.env.backup HTTP/1.1 show less	Hacking Web App Attack
🇫🇷 masterguru	2026-06-10 14:36:53 (1 week ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.64.253.234 (KR/South Korea/234.253 ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.64.253.234 (KR/South Korea/234.253.64.34.bc.googleusercontent.com): 1 in the last 3600 secs (0-195) show less	Hacking
🇧🇪 cmbplf	2026-06-10 12:45:52 (1 week ago)	985 requests with url.path *.env	Brute-Force Bad Web Bot
🇬🇧 consul.to	2026-06-10 12:00:56 (1 week ago)	Web attack/malicious scanning detected	Web App Attack

Showing 1 to 15 of 49 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇺 170.64.179.187

🇮🇳 103.84.236.242

🇺🇸 173.244.60.241

🇮🇳 152.52.196.134

🇧🇷 138.185.185.211

🇨🇳 123.12.34.76

🇨🇳 110.242.70.52

🇩🇪 45.3.45.208

🇩🇪 43.157.18.187

🇬🇧 34.142.4.9

🇨🇳 223.167.206.115

🇨🇳 223.109.141.9

🇰🇷 211.223.107.86

🇺🇸 162.216.149.207

🇰🇷 115.68.208.117

🇮🇩 103.253.244.242

🇳🇱 80.251.153.178

🇺🇸 44.210.85.55

🇸🇬 43.153.204.181

🇨🇳 39.106.37.58