JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.81.164.108

34.81.164.108 was found in our database!

This IP was reported 33 times. Confidence of Abuse is 99%: ?

99%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	108.164.81.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇹🇼 Taiwan
City	Taipei, Taiwan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.81.164.108

Whois 34.81.164.108

IP Abuse Reports for 34.81.164.108:

This IP address has been reported a total of 33 times from 23 distinct sources. 34.81.164.108 was first reported on June 8th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Site.eu	2026-06-13 03:13:53 (1 week ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 LRob.fr	2026-06-11 18:45:20 (1 week ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇨🇭 🇨🇭 Hosting	2026-06-11 05:10:15 (1 week ago)	Automated WAF report: 125-150 blocked requests from this IP detected by our WAF.	Bad Web Bot Web App Attack
🇳🇱 e.fierstra	2026-06-11 02:34:17 (1 week ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇬🇧 andypiper	2026-06-11 01:02:54 (1 week ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-11 00:48:15 (1 week ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-201)	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 00:10:43 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.81.164.108 (108.164.81.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.81.164.108 (108.164.81.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 20:10:36.858065 2026] [security2:error] [pid 21377:tid 21377] [client 34.81.164.108:60284] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "todotex.com"] [uri "/frontend/.env.backup"] [unique_id "ain8_Pyw1qORqDAENYRM8wAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-10 23:16:59 (1 week ago)	Excessive multi-domain requests	Brute-Force
🇫🇷 HerrWolf	2026-06-10 20:30:05 (1 week ago)	CrowdSec Detection: crowdsecurity/http-bad-user-agent	Bad Web Bot
🇲🇾 Rizzy	2026-06-10 16:17:48 (1 week ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇩🇪 updown.io	2026-06-10 13:36:52 (1 week ago)	{"level":"info","ts":1781098611.7906742,"logger":"http.log.access.log1","msg":"handled request","req ... show more {"level":"info","ts":1781098611.7906742,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.81.164.108","remote_port":"50232","client_ip":"34.81.164.108","proto":"HTTP/1.1","method":"GET","host":"onmlkjilkjidcbihgc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io","uri":"/.env.prod","headers":{"User-Agent":["Mozilla/5.0 (Linux; Android 7.0; SM-J327T1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.3578.99 Mobile Safari/537.36"],"Accept-Charset":["utf-8"],"Accept-Encoding":["gzip"],"Connection":["close"]}},"bytes_read":0,"user_id":"","duration":0.000087746,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://onmlkjilkjidcbihgc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io/.env.prod"],"Content-Type":[]}} {"level":"info","ts":1781098611.7962306,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.81.164.108","remote_port":"50218","client_ip":"34.81. ... show less	DDoS Attack Web App Attack
🇺🇦 URAN Publishing Service	2026-06-10 12:53:08 (1 week ago)	34.81.164.108 - - [10/Jun/2026:15:53:07 +0300] "GET /backend/api/.env HTTP/1.1" 404 3320 "-" "Mozill ... show more 34.81.164.108 - - [10/Jun/2026:15:53:07 +0300] "GET /backend/api/.env HTTP/1.1" 404 3320 "-" "Mozilla/5.0 (Linux; U; Android 3.0; en-us; Xoom Build/HRI39) AppleWebKit/525.10 (KHTML, like Gecko) Version/3.0.4 Mobile Safari/523.12.2" 34.81.164.108 - - [10/Jun/2026:15:53:07 +0300] "GET /staging/.env HTTP/1.1" 404 3320 "-" "Mozilla/5.0 (Linux; Android 9; ELE-L09) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 11:32:05 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.81.164.108 (108.164.81.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.81.164.108 (108.164.81.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 07:32:00.469721 2026] [security2:error] [pid 9141:tid 9141] [client 34.81.164.108:37016] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "title36.com"] [uri "/src/.env.backup"] [unique_id "ailLMPSkrca6HkOQz8hQPAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Hazzard	2026-06-10 10:58:29 (1 week ago)	(mod_security) mod_security triggered on hostname [redacted]): (CF_ENABLE)	SQL Injection
Anonymous	2026-06-10 10:12:04 (1 week ago)	Bot / scanning and/or hacking attempts: GET /services/.env HTTP/1.1, GET /app/.env.local HTTP/1.1, G ... show more Bot / scanning and/or hacking attempts: GET /services/.env HTTP/1.1, GET /app/.env.local HTTP/1.1, GET /app/.env.old HTTP/1.1, GET /.env.docker HTTP/1.1, GET /api/.env.production HTTP/1.1, GET /api/.env.staging HTTP/1.1, GET /app/.env HTTP/1.1, GET /app/.env.dev HTTP/1.1, GET /app/.env.backup HTTP/1.1, GET /api/.env HTTP/1.1, GET /v1/.env HTTP/1.1, GET /services/.env.production HTTP/1.1, GET /app/.env.staging HTTP/1.1, GET /.env.production.local HTTP/1.1, GET /app/.env.bak HTTP/1.1, GET /v3/.env HTTP/1.1, GET /api/.env.bak HTTP/1.1, GET /api/v3/.env HTTP/1.1, GET /app/.env.prod HTTP/1.1, GET /v2/.env HTTP/1.1, GET /app/api/.env HTTP/1.1, GET /.env.demo HTTP/1.1, GET /api/v1/.env HTTP/1.1, GET /.env~ HTTP/1.1, GET /.env.staging HTTP/1.1, GET /service/.env HTTP/1.1, GET /api/v2/.env HTTP/1.1, GET /.env.local HTTP/1.1, GET /.env.production HTTP/1.1, GET /api/.env.local HTTP/1.1, GET /.env.prod.bak HTTP/1.1, GET /app/.env.production HTTP/1.1, GET /env.bak HTTP/1.1, GET /.env.template HTTP/1.1 show less	Hacking Web App Attack

Showing 1 to 15 of 33 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇾 202.165.29.123

🇺🇸 140.82.18.172

🇺🇸 103.143.11.150

🇿🇦 102.129.60.107

🇧🇬 78.128.114.110

🇩🇪 69.5.169.128

🇺🇸 66.132.172.249

🇮🇳 45.248.194.76

🇦🇷 45.238.106.134

🇧🇪 34.156.223.187

🇻🇳 14.225.7.70

🇪🇸 5.225.56.216

🇨🇳 182.242.168.109

🇺🇸 162.216.150.218

🇭🇰 156.245.239.180

🇫🇮 147.185.133.66

🇧🇬 91.148.190.150

🇩🇪 69.5.169.160

🇩🇪 69.5.169.35

🇰🇷 59.24.133.197