JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.18.215.80

34.18.215.80 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	80.215.18.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇶🇦 Qatar
City	Doha, Baladiyat ad Dawhah

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.18.215.80

Whois 34.18.215.80

IP Abuse Reports for 34.18.215.80:

This IP address has been reported a total of 34 times from 23 distinct sources. 34.18.215.80 was first reported on May 3rd 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 andypiper	2026-06-12 01:01:29 (1 week ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
Anonymous	2026-06-12 00:14:11 (1 week ago)	(caddyscan) Scanner path probe from 34.18.215.80 (QA/Qatar/80.215.18.34.bc.googleusercontent.com): 5 ... show more (caddyscan) Scanner path probe from 34.18.215.80 (QA/Qatar/80.215.18.34.bc.googleusercontent.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 34.18.215.80 - - [12/Jun/2026:00:14:09 +0000] "GET /actuator/httptrace HTTP/1.1" [REDACTED] 200 2627 34.18.215.80 - - [12/Jun/2026:00:14:09 +0000] "GET /api/actuator/heapdump HTTP/1.1" [REDACTED] 200 2627 34.18.215.80 - - [12/Jun/2026:00:14:09 +0000] "GET /api/actuator/logfile HTTP/1.1" [REDACTED] 200 2627 34.18.215.80 - - [12/Jun/2026:00:14:09 +0000] "GET /backend/actuator/env HTTP/1.1" [REDACTED] 200 2627 34.18.215.80 - - [12/Jun/2026:00:14:09 +0000] "GET /.aws/credentials HTTP/1.1" show less	Port Scan
🇬🇧 consul.to	2026-06-11 19:27:37 (1 week ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 rh24	2026-06-11 19:13:26 (1 week ago)	(mod_security) mod_security triggered on hostname [redacted] 34.18.215.80 (QA/Qatar/80.215.18.34.bc. ... show more (mod_security) mod_security triggered on hostname [redacted] 34.18.215.80 (QA/Qatar/80.215.18.34.bc.googleusercontent.com) show less	SQL Injection
🇺🇦 URAN Publishing Service	2026-06-11 18:40:16 (1 week ago)	34.18.215.80 - - [11/Jun/2026:21:40:07 +0300] "GET /secrets.env HTTP/1.1" 404 3297 "-" "Mozilla/5.0 ... show more 34.18.215.80 - - [11/Jun/2026:21:40:07 +0300] "GET /secrets.env HTTP/1.1" 404 3297 "-" "Mozilla/5.0 (X11; FreeBSD amd64; rv:5.0) Gecko/20100101 Firefox/5.0" 34.18.215.80 - - [11/Jun/2026:21:40:09 +0300] "GET /wp-config.php HTTP/1.1" 404 3299 "-" "Mozilla/5.0 Slackware/13.37 (X11; U; Linux x86_64; en-US) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.41" ... show less	Web App Attack
🇳🇱 Cloud86 B.V.	2026-06-11 13:52:05 (1 week ago)	categories: DDoS Attack	DDoS Attack
Anonymous	2026-06-11 11:03:38 (1 week ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: QA, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: QA, Attack patterns: WordPress scanning, Backup file probing, Cloud secrets probing show less	Bad Web Bot Web App Attack
🇩🇪 grassau.com	2026-06-11 06:49:15 (1 week ago)	Port Scan detected from 34.18.215.80 (QA/Qatar/Baladiyat ad Dawhah/Doha/80.215.18.34.bc.googleuser ... show more Port Scan detected from 34.18.215.80 (QA/Qatar/Baladiyat ad Dawhah/Doha/80.215.18.34.bc.googleusercontent.com). show less	Port Scan
🇩🇪 updown.io	2026-06-10 22:12:51 (1 week ago)	{"level":"info","ts":1781129570.8020475,"logger":"http.log.access.log1","msg":"handled request","req ... show more {"level":"info","ts":1781129570.8020475,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.18.215.80","remote_port":"35294","client_ip":"34.18.215.80","proto":"HTTP/1.1","method":"GET","host":"update.update.mlkjihgfedcfehgc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io","uri":"/actuator/heapdump","headers":{"Accept-Encoding":["gzip"],"Connection":["close"],"User-Agent":["Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_5_8; en-US) AppleWebKit/532.8 (KHTML, like Gecko) Chrome/4.0.302.2 Safari/532.8"],"Accept-Charset":["utf-8"]}},"bytes_read":0,"user_id":"","duration":0.000076867,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://update.update.mlkjihgfedcfehgc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io/actuator/heapdump"],"Content-Type":[]}} {"level":"info","ts":1781129570.822905,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.18.215.80","rem ... show less	DDoS Attack Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-10 22:02:15 (1 week ago)	Auto-ban: 249 malicious requests on 2026-06-09 (e.g., env/backup probes, brute-force, or error burst ... show more Auto-ban: 249 malicious requests on 2026-06-09 (e.g., env/backup probes, brute-force, or error bursts). show less	Web App Attack SSH Hacking
🇩🇪 LRob.fr	2026-06-10 20:15:07 (1 week ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
Anonymous	2026-06-10 18:55:33 (1 week ago)	Bot / scanning and/or hacking attempts: GET /docker-compose.staging.yml HTTP/1.1, GET /api/parameter ... show more Bot / scanning and/or hacking attempts: GET /docker-compose.staging.yml HTTP/1.1, GET /api/parameters.yml HTTP/1.1, GET /private.key HTTP/1.1, GET /.htaccess HTTP/1.1, GET /phpinfo.php HTTP/1.1, GET /debug.log HTTP/1.1, GET /backend/docker-compose.yml HTTP/1.1, GET /server/application.properties HTTP/1.1, GET /backend/application.properties HTTP/1.1, GET /_profiler/phpinfo HTTP/1.1, GET /logs/error.log HTTP/1.1, GET /server/config.yml HTTP/1.1, GET /private_key.pem HTTP/1.1, GET /app/parameters.yml HTTP/1.1, GET /phptest.php HTTP/1.1, GET /settings.php HTTP/1.1, GET /web.config HTTP/1.1, GET /backend/database.php HTTP/1.1, GET /app/database.yml HTTP/1.1, GET /nginx.config HTTP/1.1, GET /.github/workflows/deploy.yml HTTP/1.1, GET /config/config.php HTTP/1.1, GET /backend/database.yml HTTP/1.1, GET /.pypirc HTTP/1.1, GET /docker-compose.prod.yaml HTTP/1.1, GET /helm/values.yml HTTP/1.1, GET /src/application.properties HTTP/1.1, GET /app/heapdump HTTP/1.1, GET /profiler HTTP/1.1 show less	Hacking Web App Attack
Anonymous	2026-06-10 18:40:12 (1 week ago)	Bot / seems abusive / Apache connections: 80	DDoS Attack Web Spam Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-10 15:46:40 (1 week ago)	Excessive multi-domain requests	Brute-Force
Anonymous	2026-06-10 15:20:08 (1 week ago)	\| [Dangerous/Qatar] Aggressive IP 34.18.215.80 (~30 hits). Type: DoS Defender- Web server 400 error ... show more \| [Dangerous/Qatar] Aggressive IP 34.18.215.80 (~30 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 144.172.103.103

🇺🇸 48.214.144.100

🇺🇸 20.169.104.111

🇩🇪 213.209.159.236

🇹🇷 95.6.60.25

🇳🇱 45.153.34.181

🇿🇲 41.63.62.103

🇬🇧 35.203.210.40

🇧🇷 200.97.141.110

🇹🇿 197.186.28.48

🇳🇱 45.128.199.201

🇺🇸 40.77.167.59

🇳🇱 34.158.80.28

🇹🇼 1.162.223.232

🇩🇪 167.94.146.79

🇰🇷 121.148.184.47

🇹🇷 78.163.182.16

🇨🇳 211.149.134.60

🇧🇷 187.73.158.186

🇮🇳 152.58.154.212