JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.64.58.156

34.64.58.156 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 55%: ?

55%

ISP	Google Asia Pacific Pte. Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	156.58.64.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇰🇷 Korea (the Republic of)
City	Seoul, Seoul

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.64.58.156

Whois 34.64.58.156

IP Abuse Reports for 34.64.58.156:

This IP address has been reported a total of 9 times from 8 distinct sources. 34.64.58.156 was first reported on June 25th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 e.fierstra	2026-06-26 02:00:39 (2 hours ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇪🇸 robotstxt	2026-06-26 01:59:50 (2 hours ago)	34.64.58.156 - - [26/Jun/2026:01:59:39 +0000] "GET /mailer.zip HTTP/1.1" 404 178 "-" "Mozilla/5.0 (W ... show more 34.64.58.156 - - [26/Jun/2026:01:59:39 +0000] "GET /mailer.zip HTTP/1.1" 404 178 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.87 Safari/537.36" "-" 34.64.58.156 - - [26/Jun/2026:01:59:39 +0000] "GET /mail.zip HTTP/1.1" 404 146 "-" "SonyEricssonZ800/R1Y Browser/SEMC-Browser/4.1 Profile/MIDP-2.0 Configuration/CLDC-1.1 UP.Link/6.3.0.0.0" "-" 34.64.58.156 - - [26/Jun/2026:01:59:41 +0000] "GET /mailer/sendgrid.py HTTP/1.1" 404 178 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.100 Safari/537.36" "-" 34.64.58.156 - - [26/Jun/2026:01:59:41 +0000] "GET /mail/sendgrid.py HTTP/1.1" 404 146 "-" "Opera/9.80 (X11; Linux i686) Presto/2.12.388 Version/12.16" "-" 34.64.58.156 - - [26/Jun/2026:01:59:41 +0000] "GET /mailer/sendgrid.php HTTP/1.1" 404 178 "-" "Mozilla/5.0 (X11; NetBSD) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/27.0.1453.116 Safari/537.36" "-" ... show less	Bad Web Bot
🇬🇧 consul.to	2026-06-26 01:46:18 (2 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 01:23:17 (3 hours ago)	(mod_security) mod_security (id:210730) triggered by 34.64.58.156 (156.58.64.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210730) triggered by 34.64.58.156 (156.58.64.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 21:23:09.119919 2026] [security2:error] [pid 30286:tid 30286] [client 34.64.58.156:56446] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|bradmackenzie.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "bradmackenzie.com"] [uri "/.config/gcloud/credentials.db"] [unique_id "aj3UfWyRCwhH3QE8PGf_8AAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-25 23:04:00 (5 hours ago)	Excessive 404/403 errors	Brute-Force
🇩🇪 dispaisyenterprises	2026-06-25 22:46:45 (5 hours ago)	Triggered Cloudflare WAF (firewallManaged) from KR. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpo ... show more Triggered Cloudflare WAF (firewallManaged) from KR. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoint: /wp-config.php~ \| UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.3578.80 Safari/537.36 • Reported by DisPaisy Enterprises (dispaisy.systems) show less	Bad Web Bot
🇳🇱 Savvii	2026-06-25 19:01:16 (9 hours ago)	20 attempts against mh-misbehave-ban on redirect	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 15:55:41 (12 hours ago)	(mod_security) mod_security (id:210730) triggered by 34.64.58.156 (156.58.64.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210730) triggered by 34.64.58.156 (156.58.64.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 11:55:33.666017 2026] [security2:error] [pid 21007:tid 21007] [client 34.64.58.156:57260] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|trafficstopper.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "trafficstopper.com"] [uri "/.config/gcloud/credentials.db"] [unique_id "aj1Pdc2l8OeSLprxHDkg-QAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇿 Antinson	2026-06-25 15:41:31 (12 hours ago)	Scraping with a high error ratio and request rate	Bad Web Bot

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 201.86.228.236

🇸🇬 152.32.218.149

🇹🇼 101.13.4.124

🇬🇧 35.203.210.116

🇺🇸 20.65.195.112

🇨🇳 182.43.19.187

🇧🇩 103.20.229.194

🇺🇸 100.28.191.174

🇳🇱 91.92.40.4

🇸🇨 45.194.67.30

🇯🇵 15.152.235.113

🇨🇳 223.73.214.239

🇬🇧 193.163.125.201

🇲🇾 183.171.41.105

🇮🇩 103.165.139.145

🇳🇱 91.92.40.14

🇳🇱 91.92.40.8

🇫🇷 82.102.18.188

🇮🇩 36.64.131.68

🇺🇸 205.210.31.82