JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.131.45.80

34.131.45.80 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 81%: ?

81%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	80.45.131.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇮🇳 India
City	New Delhi, Delhi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.131.45.80

Whois 34.131.45.80

IP Abuse Reports for 34.131.45.80:

This IP address has been reported a total of 14 times from 13 distinct sources. 34.131.45.80 was first reported on June 13th 2026, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-13 21:59:03 (13 hours ago)	Auto-ban: >3000 req/min op 2026-06-13	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-13 14:40:25 (20 hours ago)	(mod_security) mod_security (id:210831) triggered by 34.131.45.80 (80.45.131.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210831) triggered by 34.131.45.80 (80.45.131.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 10:40:20.732390 2026] [security2:error] [pid 4715:tid 4715] [client 34.131.45.80:49418] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|edensgroup.com\|F\|4"] [data "grub-client"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "edensgroup.com"] [uri "/app/service-account.json"] [unique_id "ai1r1HnZj354nHrzINB48wAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 lns.bz	2026-06-13 12:52:05 (22 hours ago)	Web app attack [PL.Lu]	Exploited Host Web App Attack
🇬🇧 consul.to	2026-06-13 12:18:33 (22 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇨🇭 backslash	2026-06-13 10:33:04 (1 day ago)	block ruleset Badbot using very old user-agents 5CF3CDB778C7D82564405B86B9242E612F378C68	Bad Web Bot
🇺🇸 Major Hostility	2026-06-13 10:26:08 (1 day ago)	"GET /Dockerfile HTTP/1.1" 404 "GET /api/docker-compose.prod.yml HTTP/1.1" 404 "GET /settings.ini HT ... show more "GET /Dockerfile HTTP/1.1" 404 "GET /api/docker-compose.prod.yml HTTP/1.1" 404 "GET /settings.ini HTTP/1.1" 404 "GET /app/docker-compose.yml HTTP/1.1" 404 "GET /app/docker-compose.prod.yml HTTP/1.1" 404 "GET /docker-compose.override.yml HTTP/1.1" 404 "GET /backend/docker-compose.yml HTTP/1.1" 404 "GET /config.yaml HTTP/1.1" 404 "GET /config.yml HTTP/1.1" 404 "GET /config.env HTTP/1.1" 404 "GET /config.json HTTP/1.1" 404 "GET /configuration.php HTTP/1.1" 404 "GET /configuration.json HTTP/1.1" 404 "GET /config.ini HTTP/1.1" 404 "GET /docker-compose.local.yml HTTP/1.1" 404 "GET /settings.py HTTP/1.1" 404 "GET /configuration.yml HTTP/1.1" 404 "GET /settings.yml HTTP/1.1" 404 "GET /settings.jso show less	Web App Attack
🇳🇱 WeCloudit-Anti-Abuse	2026-06-13 07:30:02 (1 day ago)	SPAM - Bruteforce Attack - DDOS 5	Email Spam Brute-Force
🇭🇷 bubausluge	2026-06-13 06:39:42 (1 day ago)	Detected by Aegis SOC: Web Scanner \| MITRE: T1595.001 \| Fails: 450 \| Period: 2026-06-13T06:31:56 to ... show more Detected by Aegis SOC: Web Scanner \| MITRE: T1595.001 \| Fails: 450 \| Period: 2026-06-13T06:31:56 to 2026-06-13T06:32:03 show less	Port Scan
🇩🇪 4server	2026-06-13 05:41:00 (1 day ago)	[SatJun1307:40:58.1701832026][security2:error][pid665448:tid665493][client34.131.45.80:0]ModSecurity ... show more [SatJun1307:40:58.1701832026][security2:error][pid665448:tid665493][client34.131.45.80:0]ModSecurity:Accessdeniedwithcode403$phase2$.OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded$TotalScore:5$\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"aati.ch.136-243-54-122.cpanel.site\"][uri\"/env\"][unique_id\"aiztap9nXD9O3-soMJJ4qAAAAEE\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 mnsf	2026-06-13 05:07:02 (1 day ago)	Scanning/Probing (61) Request Overload (383)	Brute-Force Web App Attack
🇦🇺 rubixstudios	2026-06-13 04:52:02 (1 day ago)	Excessive HTTP requests consistent with automated attack behaviour detected by Imunify360	DDoS Attack Brute-Force Web App Attack
🇮🇹 VHosting	2026-06-13 04:25:03 (1 day ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 03:36:51 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.131.45.80 (80.45.131.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.131.45.80 (80.45.131.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 23:36:44.353164 2026] [security2:error] [pid 32159:tid 32159] [client 34.131.45.80:39144] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/config/config.yml" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.sgtpepperonis.jbaydeliveries.com"] [uri "/config/config.yml"] [unique_id "aizQTFKfqOpl6PgkBuc1QwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Cloud86 B.V.	2026-06-13 03:13:02 (1 day ago)	categories: DDoS Attack	DDoS Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 20.169.50.188

🇺🇸 216.73.216.60

🇺🇸 184.105.139.86

🇺🇸 162.216.150.226

🇮🇳 103.149.194.236

🇮🇳 103.21.79.242

🇲🇰 95.86.30.130

🇺🇸 67.20.132.65

🇧🇷 45.205.1.246

🇺🇸 35.192.23.40

🇯🇵 34.146.122.180

🇺🇸 24.105.248.218

🇹🇷 178.245.173.104

🇧🇧 104.200.105.43

🇱🇹 77.90.185.238

🇿🇦 41.181.156.205

🇬🇧 34.89.26.140

🇺🇸 162.216.149.114

🇹🇼 114.34.57.52

🇧🇪 34.62.50.145