JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.180.28.4

34.180.28.4 was found in our database!

This IP was reported 35 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	4.28.180.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇮🇳 India
City	Mumbai, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.180.28.4

Whois 34.180.28.4

IP Abuse Reports for 34.180.28.4:

This IP address has been reported a total of 35 times from 28 distinct sources. 34.180.28.4 was first reported on June 13th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 sid3windr	2026-06-16 17:52:31 (2 days ago)	GET /wp-content/.git/config (Tarpitted for 1d15h8m28s, wasted 8.06MB)	Web App Attack
🇳🇿 Antinson	2026-06-15 07:35:16 (4 days ago)	Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)	Bad Web Bot
🇳🇱 e.fierstra	2026-06-15 07:28:48 (4 days ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-06-15 07:27:24 (4 days ago)	2.363 requests with url.path .git/ 1.948 requests with url.path */.git/config	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-15 06:10:08 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 34.180.28.4 (4.28.180.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 34.180.28.4 (4.28.180.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 02:09:58.004487 2026] [security2:error] [pid 1284:tid 1306] [client 34.180.28.4:34920] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.abroma.com"] [uri "/static/.git/config"] [unique_id "ai-XNmE90nWF5dIooXbwswAAAJI"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 SCHAPPY	2026-06-15 05:44:01 (4 days ago)	Brute-force attack to identify web exploits	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-15 05:34:40 (4 days ago)	Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-197)	Hacking Web App Attack
🇷🇺 DZBOT	2026-06-15 04:19:01 (4 days ago)	DZBOT: Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 03:37:34 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 34.180.28.4 (4.28.180.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 34.180.28.4 (4.28.180.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 23:37:29.548337 2026] [security2:error] [pid 3794:tid 3794] [client 34.180.28.4:56608] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mispar.solutions"] [uri "/project/.git/config"] [unique_id "ai9zebk7HmF21ILErzNEhwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 dbmwebdesign	2026-06-15 02:25:23 (4 days ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇮🇹 abuseiphack	2026-06-15 02:12:38 (4 days ago)	Automatic report for brute force attack	Bad Web Bot
Anonymous	2026-06-15 02:04:45 (4 days ago)	(mod_security) mod_security triggered on hostname [redacted] 34.180.28.4 (IN/India/4.28.180.34.bc.go ... show more (mod_security) mod_security triggered on hostname [redacted] 34.180.28.4 (IN/India/4.28.180.34.bc.googleusercontent.com) show less	SQL Injection
🇺🇸 TPI-Abuse	2026-06-15 01:48:30 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 34.180.28.4 (4.28.180.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 34.180.28.4 (4.28.180.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 21:48:26.210979 2026] [security2:error] [pid 10695:tid 10695] [client 34.180.28.4:56730] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "footballxp.com"] [uri "/symfony/.git/config"] [unique_id "ai9Z6hwGCFLLiANw7hlsBgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Bedios GmbH	2026-06-15 00:53:04 (4 days ago)	Wordpress hacking attempt	Web App Attack
🇫🇷 masterguru	2026-06-15 00:50:44 (4 days ago)	Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-193)	Hacking Web App Attack

Showing 1 to 15 of 35 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 182.253.87.114

🇳🇱 91.92.40.233

🇳🇱 91.92.40.5

🇫🇷 90.63.199.41

🇰🇷 61.76.38.54

🇮🇳 45.40.57.23

🇩🇪 216.58.207.46

🇻🇳 125.212.158.38

🇮🇳 115.240.169.234

🇷🇴 92.118.39.62

🇳🇱 91.92.40.12

🇧🇬 45.88.138.45

🇨🇦 20.116.34.103

🇯🇵 5.104.85.221

🇺🇸 216.218.206.124

🇬🇧 195.96.139.124

🇨🇳 192.140.185.8

🇺🇸 185.117.225.64

🇹🇷 185.95.84.67

🇨🇳 183.202.161.65