JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.166.229.195

34.166.229.195 was found in our database!

This IP was reported 37 times. Confidence of Abuse is 43%: ?

43%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	195.229.166.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇸🇦 Saudi Arabia
City	Dammam, Eastern Province

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.166.229.195

Whois 34.166.229.195

IP Abuse Reports for 34.166.229.195:

This IP address has been reported a total of 37 times from 17 distinct sources. 34.166.229.195 was first reported on May 9th 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-05-10 22:00:32 (1 month ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-09. show less	Web App Attack SSH Hacking
🇧🇪 cmbplf	2026-05-10 02:37:18 (1 month ago)	549 requests with url.path */.git/config	Brute-Force Bad Web Bot
🇮🇩 Burayot	2026-05-10 02:32:42 (1 month ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 34.166.229.195 (SA/Saudi Arabia/195 ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 34.166.229.195 (SA/Saudi Arabia/195.229.166.34.bc.googleusercontent.com): 2 in the last 3600 secs show less	Web App Attack
🇳🇿 Antinson	2026-05-10 02:32:30 (1 month ago)	Scraping with a high error ratio and request rate Requests to unauthorized or suspicious endpoints ( ... show more Scraping with a high error ratio and request rate Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.) show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-10 02:05:08 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 34.166.229.195 (195.229.166.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.166.229.195 (195.229.166.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 22:05:02.529973 2026] [security2:error] [pid 8603:tid 8603] [client 34.166.229.195:48616] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.flexseller.scala-global.com"] [uri "/.git/config"] [unique_id "af_nzux2V8qKux9dgkRXlgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 ALPHANET	2026-05-10 01:56:16 (1 month ago)	web exploits	Hacking Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-05-10 01:43:27 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 34.166.229.195 (195.229.166.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.166.229.195 (195.229.166.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 21:43:20.140590 2026] [security2:error] [pid 9132:tid 9132] [client 34.166.229.195:53806] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "isleofcain.com"] [uri "/.git/config"] [unique_id "af_iuPAyBFmxnPs6CLSAGQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-10 00:49:55 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 34.166.229.195 (195.229.166.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.166.229.195 (195.229.166.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 20:49:50.373286 2026] [security2:error] [pid 16904:tid 16904] [client 34.166.229.195:35370] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "railfairofseo.com"] [uri "/.git/config"] [unique_id "af_WLsG6orECm7-eCWpX9wAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 SafBH	2026-05-10 00:37:54 (1 month ago)	CrowdSec Decision: Attempted to access a forbidden path / Vulnerability probing: "[/.git/config]"	Web App Attack
🇳🇱 homeshowdomain.nl	2026-05-09 22:00:13 (1 month ago)	Auto-ban: >3000 req/min op 2026-05-09	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-05-09 21:51:40 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 34.166.229.195 (195.229.166.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.166.229.195 (195.229.166.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 17:51:34.295778 2026] [security2:error] [pid 6051:tid 6051] [client 34.166.229.195:57762] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "csmedicalbilling.com"] [uri "/.git/config"] [unique_id "af-sZrUtr-CRUElcBTxneAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Bruce5051	2026-05-09 21:40:33 (1 month ago)	34.166.229.195 - - [09/May/2026:14:40:32 -0700] "GET /.git/config HTTP/1.1" 403 180 "-" "Mozilla/5.0 ... show more 34.166.229.195 - - [09/May/2026:14:40:32 -0700] "GET /.git/config HTTP/1.1" 403 180 "-" "Mozilla/5.0 (Linux; U; Android 7.1.2; el-gr; Redmi 4X Build/N2G47H) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/71.0.3578.141 Mobile Safari/537.36 XiaoMi/MiuiBrowser/10.9.7-g" ... show less	Hacking Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-09 21:24:52 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 34.166.229.195 (195.229.166.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.166.229.195 (195.229.166.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 17:24:48.068477 2026] [security2:error] [pid 32049:tid 32049] [client 34.166.229.195:33158] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ipostsocialmedia.com"] [uri "/.git/config"] [unique_id "af-mILdgxwj5RQsB2MwWnwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-09 21:08:09 (1 month ago)	[10/May/2026:07:08:08 +1000] "GET /.git/config HTTP/1.1" 301 292 "Mozilla/5.0 (Linux; Android 9; ONE ... show more [10/May/2026:07:08:08 +1000] "GET /.git/config HTTP/1.1" 301 292 "Mozilla/5.0 (Linux; Android 9; ONEPLUS A6000) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36" show less	Hacking Web App Attack
🇫🇷 masterguru	2026-05-09 21:07:58 (1 month ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.166.229.195 (SA/Saudi Arabia/195.2 ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.166.229.195 (SA/Saudi Arabia/195.229.166.34.bc.googleusercontent.com): 1 in the last 3600 secs (0-195) show less	Hacking

Showing 1 to 15 of 37 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.150.178

🇳🇱 146.103.115.7

🇷🇺 94.180.250.11

🇺🇸 66.132.224.25

🇺🇸 34.61.126.164

🇰🇷 222.108.39.109

🇺🇸 172.212.189.79

🇧🇷 170.231.190.18

🇻🇳 116.118.44.131

🇨🇳 42.228.253.116

🇬🇧 35.203.211.196

🇮🇱 34.165.71.203

🇺🇸 13.90.206.6

🇳🇱 195.178.110.188

🇱🇻 185.113.139.51

🇪🇪 158.173.75.236

🇫🇮 77.42.47.60

🇩🇪 69.5.169.90

🇩🇪 45.86.202.60

🇸🇬 101.47.156.170