JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.118.23.254

34.118.23.254 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 44%: ?

44%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	254.23.118.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇵🇱 Poland
City	Warsaw, Mazovia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.118.23.254

Whois 34.118.23.254

IP Abuse Reports for 34.118.23.254:

This IP address has been reported a total of 16 times from 13 distinct sources. 34.118.23.254 was first reported on May 19th 2026, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-05-23 22:00:30 (3 weeks ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-22. show less	Web App Attack SSH Hacking
🇧🇪 cmbplf	2026-05-22 20:41:57 (3 weeks ago)	648 requests with url.path .git/	Brute-Force Bad Web Bot
🇧🇪 voormedia	2026-05-22 19:47:05 (3 weeks ago)	Accessed trap at '/.git/config'	Web App Attack
🇩🇪 big-cloud.nl	2026-05-22 19:10:09 (3 weeks ago)	Try to access /.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-05-22 18:02:00 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 34.118.23.254 (254.23.118.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.118.23.254 (254.23.118.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 14:01:55.739903 2026] [security2:error] [pid 15383:tid 15383] [client 34.118.23.254:33100] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.alknetsocom.alknetso.name"] [uri "/.git/config"] [unique_id "ahCaEztN5IVuVy3TClJC4QAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 inlink.ltd	2026-05-22 17:52:51 (3 weeks ago)	dot file probe	Web App Attack
Anonymous	2026-05-22 16:20:01 (3 weeks ago)	suspicious request in access.log	Web App Attack
🇺🇸 OceanTreasure	2026-05-22 13:55:06 (3 weeks ago)	tcp/443; Git configuration exposure attempt: "GET /.git/config" @ 2026-05-22T13:50:15Z [proxy]	Web App Attack
🇭🇺 bcsaba	2026-05-22 13:50:18 (3 weeks ago)	Probing for .git: 34.118.23.254 - - [22/May/2026:15:50:15 +0200] "GET /.git/config HTTP/1.1" 403 548 ... show more Probing for .git: 34.118.23.254 - - [22/May/2026:15:50:15 +0200] "GET /.git/config HTTP/1.1" 403 548 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.87 Safari/537.36" show less	Web App Attack
🇺🇸 TPI-Abuse	2026-05-22 12:46:44 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 34.118.23.254 (254.23.118.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.118.23.254 (254.23.118.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 08:46:40.846352 2026] [security2:error] [pid 24639:tid 24639] [client 34.118.23.254:36500] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "elhosting.us"] [uri "/.git/config"] [unique_id "ahBQMOilQWVu7kPWKCzMSAAAAC8"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-05-22 10:32:06 (3 weeks ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.118.23.254 (PL/Poland/254.23.118.3 ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.118.23.254 (PL/Poland/254.23.118.34.bc.googleusercontent.com): 1 in the last 3600 secs (0-197) show less	Hacking
🇱🇻 garmtech.com	2026-05-22 10:03:38 (3 weeks ago)	Attempted access to sensitive endpoint (/.git/config) detected. Automated scan or unauthorized probi ... show more Attempted access to sensitive endpoint (/.git/config) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇺🇸 TPI-Abuse	2026-05-22 09:23:08 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 34.118.23.254 (254.23.118.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.118.23.254 (254.23.118.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 05:23:01.514883 2026] [security2:error] [pid 10490:tid 10490] [client 34.118.23.254:55908] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.dgroupsa.com"] [uri "/.git/config"] [unique_id "ahAgdZQoXCLEfTLh1vHpEwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-22 08:06:50 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 34.118.23.254 (254.23.118.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.118.23.254 (254.23.118.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 04:06:42.592865 2026] [security2:error] [pid 31303:tid 31303] [client 34.118.23.254:51686] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.kaylamaclaincounseling.com"] [uri "/.git/config"] [unique_id "ahAOkoZfM_7c4e7g0dOjjgAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Cloud86 B.V.	2026-05-22 00:29:06 (3 weeks ago)	categories: DDoS Attack	DDoS Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 202.152.204.159

🇹🇷 185.255.95.139

🇳🇱 157.245.73.170

🇺🇸 104.234.32.225

🇩🇪 80.66.72.211

🇬🇧 35.203.211.190

🇺🇸 2001:470:2cc:1::28b

🇺🇸 208.84.100.11

🇮🇳 165.99.53.89

🇺🇸 162.216.149.74

🇮🇳 103.123.227.10

🇱🇹 62.60.130.60

🇳🇱 45.148.10.151

🇬🇧 35.203.211.149

🇰🇷 218.150.184.241

🇸🇪 185.197.74.239

🇮🇩 163.7.6.41

🇷🇺 93.124.97.2

🇷🇺 89.109.40.134

🇵🇱 87.251.64.158