AbuseIPDB » 34.95.12.28
34.95.12.28
This IP was reported 7 times. Confidence of
Abuse
is 16% : ?
ISP
Google LLC
Usage Type
Data Center/Web Hosting/Transit
ASN
AS396982
Hostname(s)
28.12.95.34.bc.googleusercontent.com
Domain Name
google.com
Country
๐จ๐ฆ
Canada
City
Montreal, Quebec
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 34.95.12.28 :
This IP address has been reported a total of
7
times from
3 distinct
sources.
34.95.12.28 was first reported on
May 17th 2026 , and the most recent report was
2 weeks ago
Old Reports:
The most recent abuse report for this IP address is from
2 weeks ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
2026-05-17 14:00:36
(2 weeks ago)
(PERMBLOCK) 34.95.12.28 (CA/Canada/28.12.95.34.bc.googleusercontent.com) has had more than 4 temp bl ...
show more
(PERMBLOCK) 34.95.12.28 (CA/Canada/28.12.95.34.bc.googleusercontent.com) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs:
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2026-05-17 12:58:50
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.95.12.28 (28.12.95.34.bc.googleusercontent.c ...
show more
(mod_security) mod_security (id:210492) triggered by 34.95.12.28 (28.12.95.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 17 08:58:44.278899 2026] [security2:error] [pid 27266:tid 27266] [client 34.95.12.28:44382] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ahsigns.com"] [uri "/.git/config"] [unique_id "agm7hJpCIBe8JX_wQ-2MrQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-17 11:34:34
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.95.12.28 (28.12.95.34.bc.googleusercontent.c ...
show more
(mod_security) mod_security (id:210492) triggered by 34.95.12.28 (28.12.95.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 17 07:34:27.457465 2026] [security2:error] [pid 6586:tid 6610] [client 34.95.12.28:57906] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ahsdistance.org"] [uri "/.git/config"] [unique_id "agmnwy-awVpsxHv_WHENZQAAAQw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
2026-05-17 11:09:47
(2 weeks ago)
(caddyscan) Scanner path probe from 34.95.12.28 (CA/Canada/28.12.95.34.bc.googleusercontent.com): 5 ...
show more
(caddyscan) Scanner path probe from 34.95.12.28 (CA/Canada/28.12.95.34.bc.googleusercontent.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 34.95.12.28 - - [17/May/2026:11:09:43 +0000] "GET /.git/config HTTP/1.1"
[REDACTED] 200 2627 34.95.12.28 - - [17/May/2026:11:09:43 +0000] "GET /.env HTTP/1.1"
[REDACTED] 200 2627 34.95.12.28 - - [17/May/2026:11:09:43 +0000] "GET /.env.local HTTP/1.1"
[REDACTED] 200 2627 34.95.12.28 - - [17/May/2026:11:09:43 +0000] "GET /.env.production HTTP/1.1"
[REDACTED] 200 2627 34.95.12.28 - - [17/May/2026:11:09:43 +0000] "GET /.env.staging HTTP/1.1"
show less
Port Scan
2026-05-17 10:48:14
(2 weeks ago)
(caddyscan) Scanner path probe from 34.95.12.28 (CA/Canada/28.12.95.34.bc.googleusercontent.com): 5 ...
show more
(caddyscan) Scanner path probe from 34.95.12.28 (CA/Canada/28.12.95.34.bc.googleusercontent.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 34.95.12.28 - - [17/May/2026:10:48:11 +0000] "GET /.git/config HTTP/1.1"
[REDACTED] 200 2627 34.95.12.28 - - [17/May/2026:10:48:11 +0000] "GET /.env HTTP/1.1"
[REDACTED] 200 2627 34.95.12.28 - - [17/May/2026:10:48:11 +0000] "GET /.env.local HTTP/1.1"
[REDACTED] 200 2627 34.95.12.28 - - [17/May/2026:10:48:11 +0000] "GET /.env.production HTTP/1.1"
[REDACTED] 200 2627 34.95.12.28 - - [17/May/2026:10:48:11 +0000] "GET /.env.staging HTTP/1.1"
show less
Port Scan
๐ฉ๐ช
alainlux
2026-05-17 09:29:00
(2 weeks ago)
180 requests 404 and a few AH01071
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-17 07:44:24
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 34.95.12.28 (28.12.95.34.bc.googleusercontent.c ...
show more
(mod_security) mod_security (id:210492) triggered by 34.95.12.28 (28.12.95.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 17 03:44:20.241386 2026] [security2:error] [pid 5921:tid 5951] [client 34.95.12.28:45722] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ahrgroup.com"] [uri "/.git/config"] [unique_id "aglx1EybHfmDCSKqIq1YIQAAAFc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Showing 1 to
7
of 7 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: