JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.180.34.125

34.180.34.125 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 62%: ?

62%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	125.34.180.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇮🇳 India
City	Mumbai, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.180.34.125

Whois 34.180.34.125

IP Abuse Reports for 34.180.34.125:

This IP address has been reported a total of 13 times from 13 distinct sources. 34.180.34.125 was first reported on June 8th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-08 22:04:49 (1 week ago)	Auto-ban: >3000 req/min op 2026-06-08	Web App Attack SSH Hacking
🇪🇸 robotstxt	2026-06-08 17:17:44 (1 week ago)	34.180.34.125 - - [08/Jun/2026:17:17:43 +0000] "\x16\x03\x01\x00\xEA\x01\x00\x00\xE6\x03\x03\x99\xEC ... show more 34.180.34.125 - - [08/Jun/2026:17:17:43 +0000] "\x16\x03\x01\x00\xEA\x01\x00\x00\xE6\x03\x03\x99\xEC\x04?\xD3\x22t\xAD\x18\xFE%\xD7\x1F\x91\x9E\x1B\xDE\xC2\x13\x92\xED\xB2,\x89$\x08\xE3\xFB\x83`@\x07 \xC0\xCCK\xD4\xBE-:\xAD\x05\xC9\x81lm\x93HFs\xF8_\xB4d\x05\x84#\x10\xD9\xFD\x0Bpud\xA1\x00&\xC0+\xC0/\xC0,\xC00\xCC\xA9\xCC\xA8\xC0\x09\xC0\x13\xC0" 400 150 "-" "-" "-" 34.180.34.125 - - [08/Jun/2026:17:17:43 +0000] "\x16\x03\x01\x00\xEA\x01\x00\x00\xE6\x03\x03\x91\xA2L\x97fF\xD3\xC3\xD0\xFDV\x8A\xA4" 400 150 "-" "-" "-" 34.180.34.125 - - [08/Jun/2026:17:17:43 +0000] "\x16\x03\x01\x00\xEA\x01\x00\x00\xE6\x03\x03:(\x99\x88\xE7\xF9jCp_\xDC:\xE5\xD7\x9F\x00\x00&\x0F\xA0\xE9\xFE\xC3\x0E\x80Sq\x9C\x11p\xDD\xD5 \x18?V\x87\xA2\xD2gj\x1Cw\xFE\xD0\x9E\x9D\|\xE8\xA3\xCCo\xEF!\xD1\xFAIn$\xE2\xA9\x14\xA4\xB7" 400 150 "-" "-" "-" 34.180.34.125 - - [08/Jun/2026:17:17:43 +0000] "\x16\x03\x01\x00\xEA\x01\x00\x00\xE6\x03\x03v^E\x0FM\x98>\xA0>\x98Q\xBE\x81\xEF\xF3Jw\xD89;\xB4\xAB2l\x07\x90\xB8\xCB\x92\xE2" 4 ... show less	Web Spam Web App Attack
🇩🇪 updown.io	2026-06-08 15:54:57 (1 week ago)	{"level":"info","ts":1780934094.8468797,"logger":"http.log.access.log1","msg":"handled request","req ... show more {"level":"info","ts":1780934094.8468797,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.180.34.125","remote_port":"46706","client_ip":"34.180.34.125","proto":"HTTP/1.1","method":"GET","host":"update.zyxwvutsrqporqponmlkjihgc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io","uri":"/.env.save","headers":{"Accept-Encoding":["gzip"],"Connection":["close"],"User-Agent":["nook browser/1.0"],"Accept-Charset":["utf-8"]}},"bytes_read":0,"user_id":"","duration":0.000083468,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://update.zyxwvutsrqporqponmlkjihgc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io/.env.save"],"Content-Type":[]}} {"level":"info","ts":1780934094.8721392,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.180.34.125","remote_port":"46714","client_ip":"34.180.34.125","proto":"HTTP/1.1","method":"GET","host":"update.zyxwvutsrqporqponmlkj ... show less	DDoS Attack Web App Attack
🇺🇸 mnsf	2026-06-08 11:07:04 (1 week ago)	Scanning/Probing (38)	Brute-Force Web App Attack
🇺🇸 interbiznw.com	2026-06-08 10:22:03 (1 week ago)	malicious-web-requests-vulnerability-scanning	Hacking Brute-Force Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 06:01:54 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.180.34.125 (125.34.180.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.180.34.125 (125.34.180.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 02:01:50.119717 2026] [security2:error] [pid 10923:tid 10944] [client 34.180.34.125:60914] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.maxpowered.kylight.com"] [uri "/.env.stage"] [unique_id "aiZazlKUCRTiSfwwqqrvwAAAAdE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 dbmwebdesign	2026-06-08 04:50:20 (1 week ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇦🇺 tekgnosis	2026-06-08 04:28:29 (1 week ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
Anonymous	2026-06-08 03:40:06 (1 week ago)	34.180.34.125 - - [08/Jun/2026:11:40:06 +0800] "GET /.env.development.local HTTP/1.1" 404 196 "-" "M ... show more 34.180.34.125 - - [08/Jun/2026:11:40:06 +0800] "GET /.env.development.local HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Linux; Android 9; ONEPLUS A5010) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.89 Mobile Safari/537.36" 34.180.34.125 - - [08/Jun/2026:11:40:06 +0800] "GET /.env.dev.local HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.5; en-US; rv:1.9.1) Gecko/20090624 Firefox/3.5" 34.180.34.125 - - [08/Jun/2026:11:40:06 +0800] "GET /.env.production.local HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Linux; Android 9; LG-H930) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36" 34.180.34.125 - - [08/Jun/2026:11:40:06 +0800] "GET /.env.orig HTTP/1.1" 404 196 "-" "Mozilla/5.0 (iPod; U; CPU iPhone OS 2_2_1 like Mac OS X; en-us) AppleWebKit/525.18.1 (KHTML, like Gecko) Version/3.1.1 Mobile/5H11a Safari/525.20" 34.180.34.125 - - [08/Jun/2026:11:40:06 +0800] "GET /.env~ HTTP/1.1" 404 196 "-" "Opera/9.80 (Android; Opera Mini/43.3.2254/150.36; U; en ... show less	Bad Web Bot Web App Attack
🇮🇹 VHosting	2026-06-08 03:30:03 (1 week ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇫🇷 dynamix	2026-06-08 03:25:28 (1 week ago)	Multiple WAF Violations	Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-08 03:07:03 (1 week ago)	Blocked by CSF 13 firewall - Rule: US/United States/125.34.180.34.bc.googleusercontent.com	Web App Attack
🇩🇪 tentwentyfour	2026-06-08 02:28:41 (1 week ago)	Blocked for probing for sensitive web application components	Brute-Force Web App Attack

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 69.5.169.111

🇩🇪 69.5.169.110

🇺🇸 47.252.46.218

🇸🇬 45.78.202.217

🇺🇸 44.40.73.254

🇨🇳 223.10.232.229

🇧🇷 190.115.84.25

🇺🇸 147.185.132.54

🇪🇸 79.116.23.158

🇩🇪 69.5.169.107

🇩🇪 69.5.169.106

🇩🇪 69.5.169.11

🇺🇸 44.4.54.168

🇰🇷 220.119.37.141

🇧🇪 198.235.24.242

🇳🇱 195.178.110.30

🇳🇱 178.16.54.22

🇨🇦 144.217.77.180

🇻🇳 116.110.146.181

🇩🇪 69.5.169.105