JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.78.93.64

34.78.93.64 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 96%: ?

96%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	64.93.78.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇧🇪 Belgium
City	Brussels, Brussels Capital

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.78.93.64

Whois 34.78.93.64

IP Abuse Reports for 34.78.93.64:

This IP address has been reported a total of 17 times from 16 distinct sources. 34.78.93.64 was first reported on June 13th 2026, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 updown.io	2026-06-13 15:13:50 (6 hours ago)	{"level":"info","ts":1781363629.00257,"logger":"http.log.access.log1","msg":"handled request","reque ... show more {"level":"info","ts":1781363629.00257,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.78.93.64","remote_port":"38112","client_ip":"34.78.93.64","proto":"HTTP/1.1","method":"GET","host":"status.zain.app","uri":"/actuator/trace","headers":{"Accept-Charset":["utf-8"],"Accept-Encoding":["gzip"],"Connection":["close"],"User-Agent":["Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.21 (KHTML, like Gecko) konqueror/4.14.10 Safari/537.21"]},"tls":{"resumed":false,"version":772,"cipher_suite":4865,"proto":"","server_name":"status.zain.app","ech":false}},"bytes_read":0,"user_id":"","duration":0.000117895,"size":0,"status":429,"resp_headers":{"Server":["Caddy"],"Alt-Svc":["h3=\":443\"; ma=2592000"],"Retry-After":["1"]}} {"level":"info","ts":1781363629.0039973,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.78.93.64","remote_port":"38144","client_ip":"34.78.93.64","proto":"HTTP/1.1","method":"GET","host":"status.zain.app","uri":" ... show less	DDoS Attack Web App Attack
🇳🇱 e.fierstra	2026-06-13 14:48:03 (6 hours ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
Anonymous	2026-06-13 14:14:12 (7 hours ago)	Bot / seems abusive / Apache connections: 223	DDoS Attack Web Spam Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-13 13:37:45 (7 hours ago)	BAD BOT - Detected and Blocked.. Matched phrase "jaunt" at REQUEST_HEADERS:User-Agent. (1100000-196)	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-13 13:09:12 (8 hours ago)	(mod_security) mod_security (id:210730) triggered by 34.78.93.64 (64.93.78.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210730) triggered by 34.78.93.64 (64.93.78.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 09:09:08.009689 2026] [security2:error] [pid 13751:tid 13775] [client 34.78.93.64:52170] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.wintechltd.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.wintechltd.com"] [uri "/.config/gcloud/credentials.db"] [unique_id "ai1WdM9cWMFIRz02AtLaOwAAAVE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-13 12:27:14 (9 hours ago)	(caddyscan) Scanner path probe from 34.78.93.64 (BE/Belgium/64.93.78.34.bc.googleusercontent.com): 5 ... show more (caddyscan) Scanner path probe from 34.78.93.64 (BE/Belgium/64.93.78.34.bc.googleusercontent.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 34.78.93.64 - - [13/Jun/2026:12:27:13 +0000] "GET /actuator/logfile HTTP/1.1" [REDACTED] 200 2627 34.78.93.64 - - [13/Jun/2026:12:27:13 +0000] "GET /config/.aws/credentials HTTP/1.1" [REDACTED] 200 2627 34.78.93.64 - - [13/Jun/2026:12:27:13 +0000] "GET /app/actuator/logfile HTTP/1.1" [REDACTED] 200 2627 34.78.93.64 - - [13/Jun/2026:12:27:13 +0000] "GET /backend/actuator/heapdump HTTP/1.1" [REDACTED] 200 2627 34.78.93.64 - - [13/Jun/2026:12:27:13 +0000] "GET /server/actuator/env HTTP/1.1" show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-13 12:13:44 (9 hours ago)	(mod_security) mod_security (id:210730) triggered by 34.78.93.64 (64.93.78.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210730) triggered by 34.78.93.64 (64.93.78.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 08:13:37.550535 2026] [security2:error] [pid 26994:tid 26994] [client 34.78.93.64:59796] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|jresm.net\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "jresm.net"] [uri "/.config/gcloud/credentials.db"] [unique_id "ai1JcYwSEwff7rcWNmlCOwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 igerman	2026-06-13 11:31:56 (9 hours ago)	caddy probes: api: GET /api/actuator/configprops(DROP), GET /api/actuator/env(DROP), GET /api/actuat ... show more caddy probes: api: GET /api/actuator/configprops(DROP), GET /api/actuator/env(DROP), GET /api/actuator/heapdump(DROP), GET /api/actuator/logfile(DROP) \| web: GET /actuator/auditevents(DROP), GET /actuator/configprops(DROP), GET /actuator/dump(DROP), GET /actuator/env(DROP), GET /actuator/heapdump(DROP), GET /actuator/httptrace(DROP), GET /actuator/logfile(DROP), GET /actuator/sessions(DROP), GET /actuator/threaddump(DROP), GET /actuator/trace(DROP), GET /app/actuator/configprops(DROP), GET /app/actuator/env(DROP), GET /app/actuator/heapdump(DROP), GET /app/actuator/logfile(DROP), GET /backend/actuator/env(DROP), GET /env(DROP), GET /v1/actuator/configprops(DROP), GET /v1/actuator/env(DROP), GET /v1/actuator/heapdump(DROP), GET /v2/actuator/configprops(DROP), GET /v2/actuator/heapdump(DROP) show less	Web App Attack
Anonymous	2026-06-13 10:39:43 (10 hours ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇫🇷 dynamix	2026-06-13 10:05:35 (11 hours ago)	Multiple WAF Violations	Web App Attack
Anonymous	2026-06-13 09:09:47 (12 hours ago)	Aggressive web scan	Web App Attack
🇺🇸 mnsf	2026-06-13 06:06:50 (15 hours ago)	Scanning/Probing (61) Request Overload (383)	Brute-Force Web App Attack
🇬🇧 consul.to	2026-06-13 05:14:11 (16 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 Savvii	2026-06-13 04:27:36 (17 hours ago)	20 attempts against mh_ha-misbehave-ban on ec102950	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2026-06-13 03:55:03 (17 hours ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.140

🇨🇳 111.126.133.75

🇨🇦 85.217.149.24

🇳🇱 45.148.10.157

🇦🇺 34.129.174.15

🇩🇪 213.209.159.158

🇺🇸 208.84.100.110

🇨🇱 201.186.40.161

🇺🇸 147.185.132.63

🇨🇳 119.55.41.116

🇹🇼 111.70.9.143

🇷🇺 109.195.179.94

🇸🇬 103.189.234.85

🇮🇳 103.176.160.146

🇮🇳 103.86.180.10

🇸🇬 43.156.151.5

🇺🇸 13.89.125.21

🇻🇪 190.142.97.50

🇺🇸 174.35.25.178

🇬🇧 172.253.82.16