JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.21.172.155

34.21.172.155 was found in our database!

This IP was reported 35 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	155.172.21.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.21.172.155

Whois 34.21.172.155

IP Abuse Reports for 34.21.172.155:

This IP address has been reported a total of 35 times from 28 distinct sources. 34.21.172.155 was first reported on June 13th 2026, and the most recent report was 16 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-15 22:04:31 (16 hours ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-14. show less	Web App Attack SSH Hacking
🇧🇪 cmbplf	2026-06-15 17:15:00 (21 hours ago)	4.190 requests from abuseipdb.com blacklisted IP (1yr6mos6d)	Brute-Force Bad Web Bot
🇳🇿 Antinson	2026-06-15 05:00:59 (1 day ago)	Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)	Bad Web Bot
Anonymous	2026-06-15 04:11:12 (1 day ago)	Bot / seems abusive / Apache connections: 20	DDoS Attack Web Spam Bad Web Bot Web App Attack
🇷🇺 DZBOT	2026-06-15 03:36:53 (1 day ago)	DZBOT: Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 02:16:01 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.21.172.155 (155.172.21.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.21.172.155 (155.172.21.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 22:15:55.367983 2026] [security2:error] [pid 21259:tid 21259] [client 34.21.172.155:47782] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thesiteworks.windisfun.com"] [uri "/.git/config"] [unique_id "ai9gWwYUKxDn5SVOCFqs7AAAAEA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 01:29:41 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.21.172.155 (155.172.21.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.21.172.155 (155.172.21.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 21:29:34.238134 2026] [security2:error] [pid 5295:tid 5295] [client 34.21.172.155:45692] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.sieder.com.ar.sieder.com"] [uri "/admin/.git/config"] [unique_id "ai9Vfvpq4dWjG7eFFTTkdQAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 stinpriza	2026-06-15 00:31:22 (1 day ago)	common Web Exploits being scanned	Web App Attack
🇫🇷 sthoyer.de	2026-06-15 00:09:06 (1 day ago)	34.21.172.155 - - [15/Jun/2026:02:09:05 +0200] "GET /public/.git/config HTTP/1.1" 302 495 "-" "Mozil ... show more 34.21.172.155 - - [15/Jun/2026:02:09:05 +0200] "GET /public/.git/config HTTP/1.1" 302 495 "-" "Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/28.0.1469.0 Safari/537.36" 34.21.172.155 - - [15/Jun/2026:02:09:05 +0200] "GET /build/.git/config HTTP/1.1" 302 495 "-" "osee2unifiedRelease/1466 osee2unifiedReleaseVersion/6.9.1 Mozilla/5.0 (iPhone; CPU iPhone OS 12_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Mobile/15E148" 34.21.172.155 - - [15/Jun/2026:02:09:05 +0200] "GET /admin/.git/config HTTP/1.1" 302 495 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.103 Safari/537.36 OPR/60.0.3255.59" ... show less	Web App Attack
🇱🇺 conseilgouz	2026-06-15 00:07:48 (1 day ago)	are-17 : Block hidden directories=>/site/.git/config(/)	Hacking
🇩🇪 LRob.fr	2026-06-14 23:45:09 (1 day ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇳🇴 jad-abuse	2026-06-14 23:09:09 (1 day ago)	ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_exposure ... show more ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_exposure. Observed by 1 sensor(s); 60 hits. show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 22:43:52 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.21.172.155 (155.172.21.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.21.172.155 (155.172.21.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 18:43:48.453678 2026] [security2:error] [pid 15569:tid 15569] [client 34.21.172.155:55412] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thegameforeverybody.com"] [uri "/v3/.git/config"] [unique_id "ai8upN0Dx-BV-MAapHXL4QAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 4server	2026-06-14 22:37:03 (1 day ago)	[MonJun1500:36:59.4656422026][security2:error][pid2397636:tid2397661][client34.21.172.155:0]ModSecur ... show more [MonJun1500:36:59.4656422026][security2:error][pid2397636:tid2397661][client34.21.172.155:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"www.orabonastudio.it.136-243-54-122.cpanel.site\"][uri\"/app/.git/config\"][unique_id\"ai8tC1JCBUvnhLQgbZXY7AAAAA4\"] show less	Port Scan Brute-Force Web App Attack
🇫🇷 pm33	2026-06-14 22:32:31 (1 day ago)	Probing for resource vulnerabilities HTTP(S)	Web App Attack

Showing 1 to 15 of 35 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 178.178.222.61

🇨🇳 223.84.209.188

🇲🇽 187.190.35.163

🇺🇸 184.105.139.73

🇸🇬 168.138.160.145

🇷🇺 152.32.227.23

🇭🇰 143.14.86.201

🇺🇸 107.173.93.231

🇺🇸 104.194.71.233

🇸🇬 103.187.146.90

🇺🇸 65.49.1.166

🇺🇸 64.62.156.38

🇸🇬 43.134.96.24

🇨🇦 192.18.158.112

🇺🇸 172.253.244.154

🇺🇸 162.240.109.188

🇸🇬 138.2.102.192

🇮🇳 117.192.105.192

🇨🇦 104.252.28.105

🇷🇺 91.218.112.207