JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.95.58.138

34.95.58.138 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 88%: ?

88%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	138.58.95.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇨🇦 Canada
City	Montreal, Quebec

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.95.58.138

Whois 34.95.58.138

IP Abuse Reports for 34.95.58.138:

This IP address has been reported a total of 18 times from 17 distinct sources. 34.95.58.138 was first reported on June 13th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Mangelot Hosting	2026-06-15 10:03:34 (1 day ago)	(modsecurity) srv103 ModSecurity 34.95.58.138 (CA/Canada/138.58.95.34.bc.googleusercontent.com): 10 ... show more (modsecurity) srv103 ModSecurity 34.95.58.138 (CA/Canada/138.58.95.34.bc.googleusercontent.com): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇳🇴 jad-abuse	2026-06-15 09:30:54 (1 day ago)	ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: env_probe. O ... show more ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: env_probe. Observed by 1 sensor(s); 166 hits. show less	Web App Attack
🇧🇪 cmbplf	2026-06-15 06:41:09 (1 day ago)	544 requests with url.path *.env	Brute-Force Bad Web Bot
🇳🇱 Cloud86 B.V.	2026-06-15 01:13:03 (1 day ago)	categories: DDoS Attack	DDoS Attack
🇪🇸 pipeline.es	2026-06-15 00:56:12 (1 day ago)	Web scanning / probing for vulnerable paths \| URL: /frontend/.env.dev \| Evidence: viajeseco.orbishot ... show more Web scanning / probing for vulnerable paths \| URL: /frontend/.env.dev \| Evidence: viajeseco.orbishoteles.com 34.95.58.138 - - [15/Jun/2026:02:55:24 +0200] \"GET /frontend/.env.dev HTTP/1.1\" 404 3577 \"-\" \"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.75 Safari/537.36\" GEOIP_COUNTRY_CODE=CA \| ASN: GOOGLE-CLOUD-PLATFORM \| Country: CA show less	Port Scan Web App Attack
🇫🇮 as211431.net	2026-06-15 00:34:00 (1 day ago)	Triggered Cloudflare WAF (firewallCustom) from CA. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from CA. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /sendgrid/.env.local UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 mnsf	2026-06-15 00:16:22 (1 day ago)	Too many Status 50X (166) Scanning/Probing (161) Request Overload (166)	Brute-Force Web App Attack
🇳🇱 Site.eu	2026-06-14 23:17:00 (1 day ago)	Excessive 404/403 errors	Brute-Force
🇳🇱 Savvii	2026-06-14 12:55:15 (2 days ago)	20 attempts against mh-misbehave-ban on frost	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Octopuce	2026-06-14 06:31:07 (2 days ago)	Aggressive web search of vulnerable pages: /backend/.env /test/.env /qa/.env /development/.env /app/ ... show more Aggressive web search of vulnerable pages: /backend/.env /test/.env /qa/.env /development/.env /app/api/.env ... show less	Web App Attack
🇨🇭 4server	2026-06-14 05:02:03 (2 days ago)	[SunJun1407:02:01.5706032026][security2:error][pid572451:tid573721][client34.95.58.138:0]ModSecurity ... show more [SunJun1407:02:01.5706032026][security2:error][pid572451:tid573721][client34.95.58.138:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"365\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"fondazionemontgrand.ch\"][uri\"/.env~\"][unique_id\"ai41ycvToNSN3y5LMPjf5QAAAMc\"] show less	Hacking Web App Attack
🇩🇪 updown.io	2026-06-14 04:42:43 (2 days ago)	{"level":"info","ts":1781412161.8629558,"logger":"http.log.access.log1","msg":"handled request","req ... show more {"level":"info","ts":1781412161.8629558,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.95.58.138","remote_port":"38136","client_ip":"34.95.58.138","proto":"HTTP/1.1","method":"GET","host":"status.adeptdeveloper.com","uri":"/.env.production","headers":{"Connection":["close"],"User-Agent":["Mozilla/5.0 (Linux; Android 6.0.1; OPPO A57 Build/MMB29M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/66.0.3359.126 MQQBrowser/6.2 TBS/044813 Mobile Safari/537.36 MMWEBID/6886 MicroMessenger/7.0.6.1460(0x27000634) Process/tools NetType/WIFI Language/zh_CN"],"Accept-Charset":["utf-8"],"Accept-Encoding":["gzip"]},"tls":{"resumed":false,"version":772,"cipher_suite":4865,"proto":"","server_name":"status.adeptdeveloper.com","ech":false}},"bytes_read":0,"user_id":"","duration":0.000081015,"size":0,"status":429,"resp_headers":{"Alt-Svc":["h3=\":443\"; ma=2592000"],"Retry-After":["1"],"Server":["Caddy"]}} {"level":"info","ts":1781412161.8659382,"logger":"h ... show less	DDoS Attack Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 03:06:10 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 34.95.58.138 (138.58.95.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.95.58.138 (138.58.95.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 23:06:04.673634 2026] [security2:error] [pid 23697:tid 23713] [client 34.95.58.138:50316] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.bluemountainmachining.eliteproductions.tv"] [uri "/.env"] [unique_id "ai4anKlLo-QfLnMcjtCIPAAAAM4"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 grassau.com	2026-06-14 02:56:00 (2 days ago)	Port Scan detected from 34.95.58.138 (CA/Canada/Quebec/Montreal/138.58.95.34.bc.googleusercontent. ... show more Port Scan detected from 34.95.58.138 (CA/Canada/Quebec/Montreal/138.58.95.34.bc.googleusercontent.com). show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-14 02:16:08 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 34.95.58.138 (138.58.95.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.95.58.138 (138.58.95.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 22:16:04.199755 2026] [security2:error] [pid 27193:tid 27193] [client 34.95.58.138:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.top-brand.us"] [uri "/.env.prod.bak"] [unique_id "ai4O5L43B7rcHK_FpqPTAAAAAFA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 31.28.9.212

🇮🇩 202.152.201.166

🇭🇰 202.73.4.82

🇩🇪 194.88.98.114

🇺🇸 172.190.118.230

🇯🇵 172.104.93.159

🇺🇸 132.148.30.167

🇵🇰 119.30.119.219

🇨🇳 116.204.68.233

🇷🇺 95.165.182.238

🇺🇸 38.34.175.89

🇺🇸 2607:f8b0:4864:20::1042

🇺🇸 209.95.120.176

🇿🇦 197.95.58.201

🇧🇷 191.37.186.104

🇺🇸 134.122.21.135

🇨🇳 121.204.171.142

🇫🇷 91.196.152.221

🇩🇪 69.5.169.175

🇺🇸 66.132.172.237