JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.146.125.162

34.146.125.162 was found in our database!

This IP was reported 25 times. Confidence of Abuse is 52%: ?

52%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	162.125.146.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.146.125.162

Whois 34.146.125.162

IP Abuse Reports for 34.146.125.162:

This IP address has been reported a total of 25 times from 18 distinct sources. 34.146.125.162 was first reported on October 16th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇱 spd.co.il	2026-05-30 03:03:08 (2 weeks ago)	Unauthorized access attempts on ports: 80	Port Scan
🇺🇦 Scientific Route	2026-05-28 08:32:12 (3 weeks ago)	34.146.125.162 - - [28/May/2026:11:32:11 +0300] "GET /.env.local HTTP/1.1" 404 437 "-" "Mozilla/5.0 ... show more 34.146.125.162 - - [28/May/2026:11:32:11 +0300] "GET /.env.local HTTP/1.1" 404 437 "-" "Mozilla/5.0 (compatible; Crusader/1.0)" 34.146.125.162 - - [28/May/2026:11:32:11 +0300] "GET /.env.old HTTP/1.1" 404 437 "-" "Mozilla/5.0 (compatible; Crusader/1.0)" ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-05-28 08:32:01 (3 weeks ago)	34.146.125.162 - - [28/May/2026:11:32:00 +0300] "GET /api/backend/.env HTTP/1.1" 404 3059 "-" "Mozil ... show more 34.146.125.162 - - [28/May/2026:11:32:00 +0300] "GET /api/backend/.env HTTP/1.1" 404 3059 "-" "Mozilla/5.0 (compatible; Crusader/1.0)" 34.146.125.162 - - [28/May/2026:11:32:00 +0300] "GET /portal/.env HTTP/1.1" 404 3060 "-" "Mozilla/5.0 (compatible; Crusader/1.0)" ... show less	Web App Attack
🇩🇪 ger-stg-sifi1	2026-05-28 07:10:34 (3 weeks ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇩🇰 castipo	2026-05-28 05:43:21 (3 weeks ago)	nginx-env :: 34.146.125.162 - - [28/May/2026:12:43:20 +0700] "GET /internal/.env HTTP/2.0" 444 0 "-" ... show more nginx-env :: 34.146.125.162 - - [28/May/2026:12:43:20 +0700] "GET /internal/.env HTTP/2.0" 444 0 "-" "Mozilla/5.0 (compatible; Crusader/1.0)" host="[ip]" cfip="-" cfray="-" show less	Web App Attack Hacking
🇩🇪 kivitendo.de	2026-05-28 04:01:44 (3 weeks ago)	[Thu May 28 06:01:45.277384 2026] [access_compat:error] [pid 51483:tid 51498] [client 34.146.125.162 ... show more [Thu May 28 06:01:45.277384 2026] [access_compat:error] [pid 51483:tid 51498] [client 34.146.125.162:47902] AH01797: client denied by server configuration: /var/www/kivitendo-erp/config/.env.local [Thu May 28 06:01:45.321894 2026] [access_compat:error] [pid 51483:tid 51521] [client 34.146.125.162:47886] AH01797: client denied by server configuration: /var/www/kivitendo-erp/config/.env ... show less	Brute-Force Web App Attack
🇫🇷 AzurHOSTS	2026-05-28 02:57:14 (3 weeks ago)	[AZURHOSTS] DDoS Attack Report - This IP has been flagged by our system.	DDoS Attack Brute-Force
🇺🇸 cwytech	2026-05-28 01:50:08 (3 weeks ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: crowdsecurity/http-sensitive-files.	Bad Web Bot Web App Attack
🇳🇱 oisecnet	2026-05-27 21:01:52 (3 weeks ago)	Automated report: Unauthorized vulnerability scanning detected on 2026-05-27. 171 requests from this ... show more Automated report: Unauthorized vulnerability scanning detected on 2026-05-27. 171 requests from this IP. show less	Brute-Force Web App Attack SSH
🇺🇸 technojoe99	2026-05-27 07:29:37 (3 weeks ago)	Exploit scan from 34.146.125.162. GET /.git/config HTTP/1.1.	Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 07:23:45 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 34.146.125.162 (162.125.146.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.146.125.162 (162.125.146.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 03:23:41.331767 2026] [security2:error] [pid 8790:tid 8790] [client 34.146.125.162:33408] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.gisresults.com"] [uri "/.git/config"] [unique_id "ahab_VJuUPxyZGjUjL6ejQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 04:59:40 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 34.146.125.162 (162.125.146.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.146.125.162 (162.125.146.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 00:59:35.588646 2026] [security2:error] [pid 4280:tid 4280] [client 34.146.125.162:42520] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.machineryenchantress.com"] [uri "/.git/config"] [unique_id "ahZ6N2dI3Wsby3MYn0QaKgAAAF4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 04:24:33 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 34.146.125.162 (162.125.146.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.146.125.162 (162.125.146.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 00:24:29.555463 2026] [security2:error] [pid 30694:tid 30694] [client 34.146.125.162:47262] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.jkg1.com"] [uri "/.git/config"] [unique_id "ahZx_fGkRQDLacnSnIvBCgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 03:22:59 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 34.146.125.162 (162.125.146.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.146.125.162 (162.125.146.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 23:22:53.093560 2026] [security2:error] [pid 20874:tid 20874] [client 34.146.125.162:50058] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.neconebooks.com"] [uri "/.git/config"] [unique_id "ahZjjch6YwlBS2pHM2DsbQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-27 02:05:08 (3 weeks ago)	WAF repeated trigger detected by Fail2Ban	Web App Attack

Showing 1 to 15 of 25 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 2400:cb00:1032:1000:8d8:c264:8c14:cdcb

🇲🇾 202.165.29.123

🇨🇳 175.2.34.46

🇺🇸 103.143.238.100

🇫🇷 80.15.223.148

🇺🇸 74.7.244.52

🇪🇸 149.91.97.132

🇺🇸 147.185.132.72

🇻🇳 118.69.226.76

🇰🇷 116.123.150.231

🇲🇦 105.154.187.179

🇺🇸 104.232.79.58

🇵🇪 38.25.65.200

🇷🇺 109.200.111.164

🇺🇸 45.130.83.241

🇻🇳 45.119.212.99

🇩🇪 3.75.135.91

🇺🇸 205.210.31.36

🇬🇧 193.176.29.8

🇮🇳 175.101.131.169