JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.80.29.86

34.80.29.86 was found in our database!

This IP was reported 37 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	86.29.80.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇹🇼 Taiwan
City	Taipei, Taiwan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.80.29.86

Whois 34.80.29.86

IP Abuse Reports for 34.80.29.86:

This IP address has been reported a total of 37 times from 28 distinct sources. 34.80.29.86 was first reported on June 8th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇱 dcnet	2026-06-11 22:00:10 (3 days ago)	FortiGate detected DOS attack from IPv4 address 34.80.29.86	DDoS Attack
🇩🇪 Lino Project	2026-06-11 17:01:00 (3 days ago)	CrowdSec abuse IP report (host SRV-2) Scenario: crowdsecurity/http-sensitive-files	Hacking
🇩🇪 updown.io	2026-06-11 13:27:04 (3 days ago)	{"level":"info","ts":1781184422.8200512,"logger":"http.log.access.log1","msg":"handled request","req ... show more {"level":"info","ts":1781184422.8200512,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.80.29.86","remote_port":"55092","client_ip":"34.80.29.86","proto":"HTTP/1.1","method":"GET","host":"edupdate.update.yxwvutsrqlbnnkwkyxzxwww8bab2a5f-df77-4330-8c52-284b6b1ab1f1.random.159.89.98.98.nip.io","uri":"/.env.prod.bak","headers":{"User-Agent":["MOT-V9mm/00.62 UP.Browser/6.2.3.4.c.1.123 (GUI) MMP/2.0"],"Accept-Charset":["utf-8"],"Accept-Encoding":["gzip"],"Connection":["close"]}},"bytes_read":0,"user_id":"","duration":0.000075845,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://edupdate.update.yxwvutsrqlbnnkwkyxzxwww8bab2a5f-df77-4330-8c52-284b6b1ab1f1.random.159.89.98.98.nip.io/.env.prod.bak"],"Content-Type":[]}} {"level":"info","ts":1781184422.9219186,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.80.29.86","remote_port":"55126","client_ip":"34.80.29.86","proto":"HTTP/1 ... show less	DDoS Attack Web App Attack
🇳🇱 Site.eu	2026-06-11 10:52:43 (3 days ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 XICTRON	2026-06-11 10:45:05 (3 days ago)	ModSecurity rule violation detected by Fail2Ban	Web App Attack
🇬🇧 consul.to	2026-06-11 06:41:05 (3 days ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 4server	2026-06-11 06:26:05 (3 days ago)	[ThuJun1108:26:02.1188222026][security2:error][pid1569298:tid1569413][client34.80.29.86:0]ModSecurit ... show more [ThuJun1108:26:02.1188222026][security2:error][pid1569298:tid1569413][client34.80.29.86:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"atelier-lara.ch\"][uri\"/.env.example\"][unique_id\"aipU-lsHA7thoRWP81FMjwAAAMk\"] show less	Port Scan Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-10 22:05:20 (4 days ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-09. show less	Web App Attack SSH Hacking
🇮🇹 Inartis	2026-06-10 18:44:28 (4 days ago)	34.80.29.86 - - [10/Jun/2026:20:44:25 +0200] "GET /.env.backup.txt HTTP/1.1" 403 4992 "-" "Mozilla/4 ... show more 34.80.29.86 - - [10/Jun/2026:20:44:25 +0200] "GET /.env.backup.txt HTTP/1.1" 403 4992 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; InfoPath.2)" ... show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Mangelot Hosting	2026-06-10 14:41:44 (4 days ago)	(modsecurity) srv103 ModSecurity 34.80.29.86 (TW/Taiwan/86.29.80.34.bc.googleusercontent.com): 10 in ... show more (modsecurity) srv103 ModSecurity 34.80.29.86 (TW/Taiwan/86.29.80.34.bc.googleusercontent.com): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇳🇱 Site.eu	2026-06-10 10:47:11 (4 days ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 NewWavesApp	2026-06-10 09:29:30 (4 days ago)	(mod_security) mod_security triggered on hostname [redacted] 34.80.29.86 (TW/Taiwan/86.29.80.34.bc.g ... show more (mod_security) mod_security triggered on hostname [redacted] 34.80.29.86 (TW/Taiwan/86.29.80.34.bc.googleusercontent.com): (CF_ENABLE) show less	SQL Injection
🇨🇭 🇨🇭 Hosting	2026-06-10 05:10:15 (4 days ago)	Automated WAF report: 125-150 blocked requests from this IP detected by our WAF.	Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-10 05:03:50 (5 days ago)	URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .b ... show more URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .backup/ .bak/ .bck/ .bk/ .bkp/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .cnf/ .com/ .compositefont/ .config/ .conf/ .copy/ .crt/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dist/ .dll/ .dos/ .dpkg-dist/ .drv/ .gadget/ .hta/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .inf/ .ini/ .jks/ .jse/ .key/ .licx/ .lnk/ .log/ .mdb/ .msc/ .ocx/ .old/ .pass/ .pdb/ .pfx/ .pif/ .pem/ .pol/ .prf/ .printer/ .pwd/ .rdb/ .rdp/ .reg/ .resources/ .resx/ .sav/ .save/ .scr/ .sct/ .sh/ .shs/ .sql/ .sqlite/ .sqlite3/ .swap/ .swo/ .swp/ .sys/ .temp/ .tfstate/ .tlb/ .tmp/ .vb/ .vbe/ .vbs/ .vbproj/ .vsdisco/ .vxd/ .webinfo/ .ws/ .wsc/ .wsf/ .wsh/ .xsd/ .xsx/" at TX:extension. (920440-201) show less	Hacking
🇺🇸 TPI-Abuse	2026-06-10 01:56:31 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 34.80.29.86 (86.29.80.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 34.80.29.86 (86.29.80.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 21:56:26.999326 2026] [security2:error] [pid 30665:tid 30678] [client 34.80.29.86:39366] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "petrovicimagery.com"] [uri "/.env.development.local"] [unique_id "aijESj30_3JbbNzR7oxMLwAAAMc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 37 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 122.176.100.127

🇺🇸 107.150.97.175

🇺🇸 99.92.204.98

🇫🇷 91.231.89.246

🇺🇸 64.236.131.210

🇷🇺 62.231.20.54

🇺🇸 40.76.124.68

🇳🇱 185.242.226.73

🇺🇸 172.184.211.166

🇭🇰 152.32.252.65

🇨🇳 106.13.69.159

🇫🇷 82.67.70.210

🇺🇸 40.77.167.32

🇮🇱 34.165.160.59

🇺🇸 34.41.219.169

🇺🇸 20.124.91.101

🇨🇳 1.12.70.96

🇺🇸 216.25.89.104

🇧🇪 198.235.24.255

🇫🇷 188.165.255.23