JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.65.57.3

34.65.57.3 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 21%: ?

21%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	3.57.65.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇨🇭 Switzerland
City	Zurich, Zurich

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.65.57.3

Whois 34.65.57.3

IP Abuse Reports for 34.65.57.3:

This IP address has been reported a total of 8 times from 7 distinct sources. 34.65.57.3 was first reported on May 10th 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 KCByte LLC	2026-05-19 17:10:03 (1 month ago)	X-Real-IP: 34.65.57.3 [19/May/2026:17:08:24.955176 0000] agyZCGSf1Gxe3Nehnm8o7gAAAEI 34.65.57.3 377 ... show more X-Real-IP: 34.65.57.3 [19/May/2026:17:08:24.955176 0000] agyZCGSf1Gxe3Nehnm8o7gAAAEI 34.65.57.3 37760 127.0.0.1 7080 X-Real-IP: 34.65.57.3 show less	Web App Attack
🇫🇷 geeek	2026-05-19 11:39:30 (1 month ago)	Port scanning: 8080 TCP Blocked	Port Scan
🇹🇷 ozyurterdem	2026-05-19 04:02:04 (1 month ago)	T-Pot honeypot: 26 conns — scanner. SiberKale Threat Intel.	Port Scan
🇫🇷 masterguru	2026-05-15 09:21:45 (1 month ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.65.57.3 (CH/Switzerland/3.57.65.34 ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.65.57.3 (CH/Switzerland/3.57.65.34.bc.googleusercontent.com): 2 in the last 3600 secs (0-193) show less	Hacking
Anonymous	2026-05-12 00:09:44 (1 month ago)	(PERMBLOCK) 34.65.57.3 (CH/Switzerland/3.57.65.34.bc.googleusercontent.com) has had more than 4 temp ... show more (PERMBLOCK) 34.65.57.3 (CH/Switzerland/3.57.65.34.bc.googleusercontent.com) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs: show less	Port Scan
🇺🇸 TPI-Abuse	2026-05-11 14:05:57 (1 month ago)	(mod_security) mod_security (id:210831) triggered by 34.65.57.3 (3.57.65.34.bc.googleusercontent.com ... show more (mod_security) mod_security (id:210831) triggered by 34.65.57.3 (3.57.65.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 11 10:05:53.540237 2026] [security2:error] [pid 24777:tid 24777] [client 34.65.57.3:44544] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.title36.itaxcenter.com\|F\|4"] [data "EmailWolf"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.title36.itaxcenter.com"] [uri "/actuator/configprops"] [unique_id "agHiQfTHA1xfcNsBLEfAJAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 OiledAmoeba	2026-05-11 10:36:16 (1 month ago)	2026/05/11 12:36:15 [error] 708#708: 3691375 open() "/usr/local/www/nginx/env" failed (2: No such f ... show more 2026/05/11 12:36:15 [error] 708#708: 3691375 open() "/usr/local/www/nginx/env" failed (2: No such file or directory), client: 34.65.57.3, server: mta-sts.ruhnke.cloud, request: "GET /env HTTP/1.1", host: "mta-sts.ruhnke.cloud" 2026/05/11 12:36:15 [error] 709#709: *3691381 open() "/usr/local/www/nginx/docker-compose.yml" failed (2: No such file or directory), client: 34.65.57.3, server: mta-sts.ruhnke.cloud, request: "GET /docker-compose.yml HTTP/1.1", host: "mta-sts.ruhnke.cloud" ... show less	Brute-Force
Anonymous	2026-05-10 14:55:29 (1 month ago)	(caddyscan) Scanner path probe from 34.65.57.3 (CH/Switzerland/3.57.65.34.bc.googleusercontent.com): ... show more (caddyscan) Scanner path probe from 34.65.57.3 (CH/Switzerland/3.57.65.34.bc.googleusercontent.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 34.65.57.3 - - [10/May/2026:14:15:21 +0000] "GET /actuator/configprops HTTP/1.1" [REDACTED] 200 2627 34.65.57.3 - - [10/May/2026:14:15:21 +0000] "GET /actuator/env HTTP/1.1" [REDACTED] 200 2627 34.65.57.3 - - [10/May/2026:14:15:21 +0000] "GET /actuator/heapdump HTTP/1.1" [REDACTED] 200 2627 34.65.57.3 - - [10/May/2026:14:55:25 +0000] "GET /actuator/heapdump HTTP/1.1" [REDACTED] 200 2627 34.65.57.3 - - [10/May/2026:14:55:25 +0000] "GET /actuator/configprops HTTP/1.1" show less	Port Scan

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 198.98.56.227

🇻🇳 115.77.111.2

🇧🇪 35.190.215.72

🇳🇱 185.93.89.43

🇭🇰 182.16.91.202

🇦🇷 167.250.5.37

🇻🇳 103.189.208.13

🇺🇸 67.205.173.253

🇺🇸 45.156.129.71

🇧🇷 20.226.85.77

🇨🇳 14.103.111.110

🇳🇱 195.178.110.28

🇲🇾 47.250.87.241

🇧🇷 45.176.106.39

🇰🇷 20.214.144.22

🇺🇸 205.210.31.90

🇨🇳 106.75.23.247

🇹🇷 88.249.195.23

🇧🇪 198.235.24.183

🇲🇾 182.62.233.72