JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.131.81.20

34.131.81.20 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 76%: ?

76%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	20.81.131.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇮🇳 India
City	New Delhi, Delhi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.131.81.20

Whois 34.131.81.20

IP Abuse Reports for 34.131.81.20:

This IP address has been reported a total of 17 times from 13 distinct sources. 34.131.81.20 was first reported on July 12th 2025, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 cmbplf	2026-06-26 02:41:20 (8 hours ago)	1.168 requests with url.path */.git/config	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-26 01:49:13 (9 hours ago)	(mod_security) mod_security (id:210492) triggered by 34.131.81.20 (20.81.131.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.131.81.20 (20.81.131.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 21:49:05.387671 2026] [security2:error] [pid 27671:tid 27671] [client 34.131.81.20:58256] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "backspaced.com"] [uri "/admin/.git/config"] [unique_id "aj3akYpkBBfeF5BYJFEi6wAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 e.fierstra	2026-06-26 01:04:56 (9 hours ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 00:56:14 (9 hours ago)	(mod_security) mod_security (id:210492) triggered by 34.131.81.20 (20.81.131.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.131.81.20 (20.81.131.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 20:56:08.639938 2026] [security2:error] [pid 1577:tid 1577] [client 34.131.81.20:36902] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "zaril.com"] [uri "/web/.git/config"] [unique_id "aj3OKFqQ4oocMIOCkxQmNwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-06-26 00:44:00 (10 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 00:04:05 (10 hours ago)	(mod_security) mod_security (id:210492) triggered by 34.131.81.20 (20.81.131.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.131.81.20 (20.81.131.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 20:04:00.148218 2026] [security2:error] [pid 18582:tid 18582] [client 34.131.81.20:57760] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.riedmannfamily.com"] [uri "/v2/.git/config"] [unique_id "aj3B8F2Vu5XTAY63P3NRsAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-25 21:33:37 (13 hours ago)	Too many Status 50X (30) Scanning/Probing (30)	Brute-Force Web App Attack
Anonymous	2026-06-25 16:30:48 (18 hours ago)	Attempt to access sensitive file MD	Hacking Web App Attack
🇩🇪 4server	2026-06-25 16:04:08 (18 hours ago)	[ThuJun2518:04:03.8177282026][security2:error][pid1542822:tid1542949][client34.131.81.20:0]ModSecuri ... show more [ThuJun2518:04:03.8177282026][security2:error][pid1542822:tid1542949][client34.131.81.20:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"server8.4host.ch\"][uri\"/code/.git/config\"][unique_id\"aj1Rc1M-mjkOzdSRHPz93AAAANU\"] show less	Port Scan Brute-Force Web App Attack
Anonymous	2026-06-25 14:11:05 (20 hours ago)	Bot / scanning and/or hacking attempts: GET /www/.git/config HTTP/1.1, GET /shop/.git/config HTTP/1. ... show more Bot / scanning and/or hacking attempts: GET /www/.git/config HTTP/1.1, GET /shop/.git/config HTTP/1.1, GET /blog/.git/config HTTP/1.1, GET /htdocs/.git/config HTTP/1.1, GET /v1/.git/config HTTP/1.1, GET /app/.git/config HTTP/1.1, GET /frontend/.git/config HTTP/1.1, GET /dist/.git/config HTTP/1.1, GET /build/.git/config HTTP/1.1, GET /v2/.git/config HTTP/1.1, GET /project/.git/config HTTP/1.1, GET /public/.git/config HTTP/1.1, GET /src/.git/config HTTP/1.1, GET /backend/.git/config HTTP/1.1, GET /v3/.git/config HTTP/1.1, GET /admin/.git/config HTTP/1.1, GET /wp-content/.git/config HTTP/1.1, GET /.git/config HTTP/1.1, GET /assets/.git/config HTTP/1.1, GET /dashboard/.git/config HTTP/1.1, GET /html/.git/config HTTP/1.1, GET /code/.git/config HTTP/1.1, GET /wordpress/.git/config HTTP/1.1 show less	Hacking Web App Attack
🇩🇪 tinect	2026-06-25 12:52:13 (22 hours ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇩🇪 paissangroup	2026-06-25 12:39:02 (22 hours ago)	Multiple WAF Violations	Web App Attack
🇫🇷 Baking333	2026-06-25 12:32:29 (22 hours ago)	[redacted] 34.131.81.20 - - [25/Jun/2026:13:32:28 +0100] "GET /.git/config HTTP/1.1" 200 5427 0/4462 ... show more [redacted] 34.131.81.20 - - [25/Jun/2026:13:32:28 +0100] "GET /.git/config HTTP/1.1" 200 5427 0/44627 "-" "Mozilla/5.0 (Linux; Android 5.1.1; KYF39 Build/100.0.2039; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/55.0.2883.91 Mobile Safari/537.36" [redacted] 34.131.81.20 - - [25/Jun/2026:13:32:28 +0100] "GET /v1/.git/config HTTP/1.1" 200 5427 0/33711 "-" "Mozilla/5.0 (Linux; Android 9; SM-G9600) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.89 Mobile Safari/537.36" show less	Bad Web Bot Web App Attack
🇳🇱 Savvii	2026-06-25 11:30:07 (23 hours ago)	15 attempts against mh-modsecurity-ban on solar	Brute-Force Web App Attack
🇮🇹 VHosting	2025-07-12 07:30:11 (11 months ago)	Detected attack by Imunify360	Brute-Force Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇩 2405:d340:2:ad30::1000

🇺🇸 207.90.244.21

🇳🇱 195.178.110.228

🇸🇬 161.118.218.103

🇭🇰 152.32.189.59

🇺🇸 64.62.156.142

🇺🇸 47.77.216.27

🇳🇱 45.148.10.33

🇦🇺 220.240.104.100

🇺🇸 173.54.251.127

🇷🇴 141.98.83.240

🇨🇳 119.48.135.88

🇭🇰 91.208.73.57

🇲🇩 45.15.226.100

🇺🇸 20.163.14.22

🇬🇧 2a00:23c7:728c:fa01:40a6:1db9:954e:6fe3

🇺🇸 162.216.150.172

🇵🇰 103.170.179.20

🇺🇸 64.94.156.224

🇷🇺 46.72.69.239