AbuseIPDB » 34.16.180.131

34.16.180.131 was found in our database!

This IP was reported 65 times. Confidence of Abuse is 90%: ?

90%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	131.180.16.34.bc.googleusercontent.com
Domain Name	google.com
Country	United States of America
City	Las Vegas, Nevada

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 34.16.180.131

Whois 34.16.180.131

IP Abuse Reports for 34.16.180.131:

This IP address has been reported a total of 65 times from 44 distinct sources. 34.16.180.131 was first reported on June 1st 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
Cynar & Cinny	2025-06-25 16:10:22 (2 weeks ago)	httpd_block_log	Bad Web Bot
TPI-Abuse	2025-06-24 23:21:01 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 34.16.180.131 (131.180.16.34.bc.googleuserconte ... show more(mod_security) mod_security (id:210492) triggered by 34.16.180.131 (131.180.16.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 24 19:20:54.660006 2025] [security2:error] [pid 2376494:tid 2376494] [client 34.16.180.131:57422] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nivotrol.innovacionesnimba.com"] [uri "/.git/config"] [unique_id "aFsy1jApxfiEEDH173C_dgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Charlesiv	2025-06-24 23:02:25 (2 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK ASN: 396982 (GOOG ... show moreTriggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK ASN: 396982 (GOOGLE-CLOUD-PLATFORM) Protocol: HTTP/1.1 (GET method) Endpoint: /.git/config Timestamp: 2025-06-24T21:23:33Z Ray ID: 954f4977fa167d1f UA: Empty string show less	Bad Web Bot
oh.mg	2025-06-24 22:48:26 (2 weeks ago)	[Wed Jun 25 00:48:24.595370 2025] [security2:error] [pid 3514626:tid 3514645] [client 34.16.180.131: ... show more[Wed Jun 25 00:48:24.595370 2025] [security2:error] [pid 3514626:tid 3514645] [client 34.16.180.131:35458] [client 34.16.180.131] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.10.0-dev"] [tag "anomaly-evaluation"] [tag "OWASP_CRS"] [hostname "oh.ke"] [uri "/.git/config"] [unique_id "aFsrOGWpWes2nPq4Eg-hTQAAARE"] [Wed Jun 25 00:48:25.502242 2025] [security2:error] [pid 3521856:tid 3521881] [client 34.16.180.131:39596] [client 34.16.180.131] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.10.0-dev"] [tag "a ... show less	Bad Web Bot Web App Attack
etu brutus	2025-06-24 22:41:34 (2 weeks ago)	34.16.180.131 Blocked by [Attack Vector List] ...	Hacking Brute-Force Exploited Host
MPL	2025-06-24 22:06:06 (2 weeks ago)	tcp/443 (2 or more attempts)	Port Scan
FeG Deutschland	2025-06-24 21:59:56 (2 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
dwmp	2025-06-24 21:51:04 (2 weeks ago)	Url probing: /.git/config/	Web App Attack
as211431.net	2025-06-24 21:24:44 (2 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/1. ... show moreTriggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /.git/config UA: Empty string This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Interceptor_HQ	2025-06-24 21:24:21 (2 weeks ago)	request_uri: /.git/config -- automatic report --	Hacking Brute-Force
Anonymous	2025-06-24 21:13:02 (2 weeks ago)	Bot / scanning and/or hacking attempts: GET /.git/config HTTP/1.1	Hacking Web App Attack
Anonymous	2025-06-24 20:34:37 (2 weeks ago)	Restricted File Access Requests	Hacking Brute-Force
Bedios GmbH	2025-06-24 19:57:55 (2 weeks ago)	Login credentials theft attempt	Hacking
aranguren.org	2025-06-24 19:37:11 (2 weeks ago)	34.16.180.131 - - [25/Jun/2025:04:47:48 +1000] "GET /.git/config HTTP/1.1" 301 241 "-" "-" 34. ... show more34.16.180.131 - - [25/Jun/2025:04:47:48 +1000] "GET /.git/config HTTP/1.1" 301 241 "-" "-" 34.16.180.131 - - [25/Jun/2025:05:33:43 +1000] "GET /.git/config HTTP/1.1" 301 241 "-" "-" 34.16.180.131 - - [25/Jun/2025:05:37:11 +1000] "GET /.git/config HTTP/1.1" 301 241 "-" "-" ... show less	Web App Attack
COMPLEX	2025-06-24 19:23:57 (2 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK ASN: 396982 (GOOG ... show moreTriggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK ASN: 396982 (GOOGLE-CLOUD-PLATFORM) Protocol: HTTP/1.1 (GET method) Endpoint: /.git/config show less	Bad Web Bot

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩