JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.158.127.97

34.158.127.97 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 71%: ?

71%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	97.127.158.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇳🇱 Netherlands
City	Groningen, Groningen

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.158.127.97

Whois 34.158.127.97

IP Abuse Reports for 34.158.127.97:

This IP address has been reported a total of 17 times from 11 distinct sources. 34.158.127.97 was first reported on June 8th 2026, and the most recent report was 13 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 big-cloud.nl	2026-06-08 18:53:18 (13 minutes ago)	Try to access /.git/config	Web App Attack
🇬🇧 Oakley	2026-06-08 18:52:00 (14 minutes ago)	(confirmed_bot_sig) Confirmed bot	Hacking
🇺🇸 TPI-Abuse	2026-06-08 18:44:35 (21 minutes ago)	(mod_security) mod_security (id:210492) triggered by 34.158.127.97 (97.127.158.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.158.127.97 (97.127.158.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 14:44:31.873244 2026] [security2:error] [pid 12461:tid 12461] [client 34.158.127.97:58490] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.ez1productions.thinksite.net"] [uri "/.git/config"] [unique_id "aicNj9I08p7oTuBs--FzeAAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-08 18:35:03 (31 minutes ago)	suspicious request in access.log	Web App Attack
🇷🇴 INTEQ	2026-06-08 18:32:32 (33 minutes ago)	Web attack from 34.158.127.97	Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 18:25:21 (41 minutes ago)	(mod_security) mod_security (id:210492) triggered by 34.158.127.97 (97.127.158.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.158.127.97 (97.127.158.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 14:25:15.379770 2026] [security2:error] [pid 9805:tid 9805] [client 34.158.127.97:34144] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.expatcolombia.net"] [uri "/.git/config"] [unique_id "aicJC11pkFc7pUMyb6GDnAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 18:08:13 (58 minutes ago)	(mod_security) mod_security (id:210492) triggered by 34.158.127.97 (97.127.158.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.158.127.97 (97.127.158.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 14:08:09.869061 2026] [security2:error] [pid 3628:tid 3628] [client 34.158.127.97:46174] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.evtoy.danged.com"] [uri "/.git/config"] [unique_id "aicFCUeU-H_yMlGSRETpeQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 17:48:08 (1 hour ago)	(mod_security) mod_security (id:210492) triggered by 34.158.127.97 (97.127.158.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.158.127.97 (97.127.158.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 13:48:03.440062 2026] [security2:error] [pid 32374:tid 32374] [client 34.158.127.97:48654] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.eutoc.com.qcyprus.com"] [uri "/.git/config"] [unique_id "aicAUwv1bAjUjQEg2SgoKgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 voormedia	2026-06-08 17:45:38 (1 hour ago)	Accessed trap at '/.git/config'	Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 17:32:58 (1 hour ago)	(mod_security) mod_security (id:210492) triggered by 34.158.127.97 (97.127.158.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.158.127.97 (97.127.158.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 13:32:54.052339 2026] [security2:error] [pid 19160:tid 19175] [client 34.158.127.97:58886] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.ethniclivesmatter.aafm.us"] [uri "/.git/config"] [unique_id "aib8xlXDbGgUtltlEVHKvAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 bescared	2026-06-08 17:20:09 (1 hour ago)	F2B - Malicious activity detected. URL Probing. -8ff06ede-	Hacking Bad Web Bot Web App Attack
🇨🇭 ALPHANET	2026-06-08 17:13:23 (1 hour ago)	web exploits	Hacking Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 17:12:15 (1 hour ago)	(mod_security) mod_security (id:210492) triggered by 34.158.127.97 (97.127.158.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.158.127.97 (97.127.158.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 13:12:10.983947 2026] [security2:error] [pid 10414:tid 10414] [client 34.158.127.97:46972] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.es.nagareinkpaper.ahijado.org"] [uri "/.git/config"] [unique_id "aib36iIM2xm1d-6Or1lvMAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇸🇪 SkyDancer	2026-06-08 17:01:02 (2 hours ago)	Multiple intrusion attempts via http/https on known vulnerable url offsets. Attack automatically blo ... show more Multiple intrusion attempts via http/https on known vulnerable url offsets. Attack automatically blocked by SkyDancer Ai(web-X). show less	Hacking Brute-Force
🇫🇮 Erpelstolz	2026-06-08 16:57:17 (2 hours ago)	external host: 34.158.127.97 - - [08/Jun/2026:18:57:16 +0200] "GET /.git/config HTTP/1.1" 403 5605 " ... show more external host: 34.158.127.97 - - [08/Jun/2026:18:57:16 +0200] "GET /.git/config HTTP/1.1" 403 5605 "-" "-" CF-Ray:- CF-IP:- show less	Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 154.204.4.68

🇮🇪 128.251.36.118

🇨🇿 46.135.100.183

🇳🇱 45.148.10.157

🇸🇬 43.134.42.6

🇹🇷 31.40.204.166

🇷🇴 2.57.121.25

🇩🇪 213.209.159.56

🇹🇿 197.186.55.77

🇮🇪 185.192.16.29

🇩🇪 167.94.145.30

🇺🇸 166.88.81.247

🇸🇬 152.42.236.39

🇭🇰 125.59.145.78

🇲🇾 121.123.141.251

🇯🇵 119.83.84.92

🇫🇷 91.196.152.35

🇮🇷 62.220.120.184

🇭🇰 45.142.154.98

🇩🇪 213.209.159.227