JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.96.135.64

34.96.135.64 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 43%: ?

43%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	64.135.96.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.96.135.64

Whois 34.96.135.64

IP Abuse Reports for 34.96.135.64:

This IP address has been reported a total of 10 times from 8 distinct sources. 34.96.135.64 was first reported on June 14th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-15 22:05:55 (1 week ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-14. show less	Web App Attack SSH Hacking
🇬🇧 consul.to	2026-06-15 03:13:07 (1 week ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 00:19:11 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.96.135.64 (64.135.96.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.96.135.64 (64.135.96.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 20:19:04.304438 2026] [security2:error] [pid 28542:tid 28542] [client 34.96.135.64:43402] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/config/config.yml" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.adamsclothiers.com"] [uri "/config/config.yml"] [unique_id "ai9E-Ly_a3wj-o_xTaJZjgAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-06-14 16:30:27 (1 week ago)	Web vulnerability probing: /actuator/logfile	Web App Attack
🇪🇸 robotstxt	2026-06-14 11:29:21 (1 week ago)	34.96.135.64 - - [14/Jun/2026:11:29:16 +0000] "GET /mail.zip HTTP/1.1" 404 153 "-" "MOT-V9mm/00.62 U ... show more 34.96.135.64 - - [14/Jun/2026:11:29:16 +0000] "GET /mail.zip HTTP/1.1" 404 153 "-" "MOT-V9mm/00.62 UP.Browser/6.2.3.4.c.1.123 (GUI) MMP/2.0" "-" 34.96.135.64 - - [14/Jun/2026:11:29:16 +0000] "GET /mailer.zip HTTP/1.1" 404 153 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:2.0b4pre) Gecko/20100815 Minefield/4.0b4pre" "-" 34.96.135.64 - - [14/Jun/2026:11:29:20 +0000] "GET /mailer/sendgrid.js HTTP/1.1" 404 185 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.96 Safari/537.36" "-" 34.96.135.64 - - [14/Jun/2026:11:29:20 +0000] "GET /mailer/sendgrid.py HTTP/1.1" 404 185 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/36.0.1985.125 Safari/537.36" "-" 34.96.135.64 - - [14/Jun/2026:11:29:20 +0000] "GET /mail/sendgrid.py HTTP/1.1" 404 185 "-" "Mozilla/5.0 (Linux; Android 9; SM-G955N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36" "-" ... show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-14 07:51:41 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 34.96.135.64 (64.135.96.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210730) triggered by 34.96.135.64 (64.135.96.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 03:51:36.335939 2026] [security2:error] [pid 15764:tid 15764] [client 34.96.135.64:40818] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|synergystudios.org\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "synergystudios.org"] [uri "/.config/gcloud/credentials.db"] [unique_id "ai5diIAh_TFByrz1wc1HTwAAADw"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-14 07:24:49 (1 week ago)	Excessive 404/403 errors	Brute-Force
🇧🇪 cmbplf	2026-06-14 06:30:45 (1 week ago)	193 requests with url.path credentials.json 170 requests with url.path config.json 109 requests ... show more 193 requests with url.path credentials.json 170 requests with url.path config.json 109 requests with url.path config.php 108 requests with url.path secrets.json 105 requests with url.path *config.yml show less	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-14 05:45:51 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 34.96.135.64 (64.135.96.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210730) triggered by 34.96.135.64 (64.135.96.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 01:45:45.522790 2026] [security2:error] [pid 11710:tid 11710] [client 34.96.135.64:53346] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|mail.yourpath.help\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mail.yourpath.help"] [uri "/.config/gcloud/credentials.db"] [unique_id "ai5ACZ3cGCX_2ra1XG2stAAAAH4"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-14 05:12:44 (1 week ago)	Multiple WAF Violations	Web App Attack

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 212.192.240.10

🇭🇰 199.45.155.83

🇮🇳 103.176.160.146

🇮🇶 37.237.164.231

🇺🇸 20.106.57.141

🇺🇸 9.234.8.125

🇲🇽 187.141.210.92

🇩🇪 135.125.152.18

🇨🇳 112.94.98.133

🇺🇸 67.144.17.62

🇯🇵 60.111.52.180

🇧🇷 20.226.50.160

🇳🇱 2001:67c:e60:c0c:192:42:116:108

🇲🇾 202.165.15.132

🇳🇱 193.233.127.72

🇧🇷 191.23.62.139

🇮🇩 117.20.56.26

🇭🇰 114.111.54.189

🇨🇳 106.13.100.52

🇨🇦 85.217.149.38