JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.80.125.6

34.80.125.6 was found in our database!

This IP was reported 54 times. Confidence of Abuse is 88%: ?

88%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	6.125.80.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇹🇼 Taiwan
City	Taipei, Taiwan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.80.125.6

Whois 34.80.125.6

IP Abuse Reports for 34.80.125.6:

This IP address has been reported a total of 54 times from 39 distinct sources. 34.80.125.6 was first reported on May 7th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 evicky2002	2026-05-20 04:30:47 (2 weeks ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=1)	Hacking Brute-Force SSH
🇨🇭 Peter-Johann Sarbach	2026-05-09 05:46:24 (3 weeks ago)	Hacking website	Hacking
🇳🇱 homeshowdomain.nl	2026-05-08 22:04:27 (3 weeks ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-07. show less	Web App Attack SSH Hacking
Anonymous	2026-05-08 04:32:03 (3 weeks ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 octageeks.com	2026-05-08 04:06:40 (3 weeks ago)	Wordpress malicious attack:[octablocked]	Web App Attack
🇨🇭 TheCoon	2026-05-08 03:45:01 (3 weeks ago)	Automated: Credential theft attempt - JSON bomb served	Web App Attack Hacking
Anonymous	2026-05-08 00:05:08 (3 weeks ago)	WAF repeated trigger detected by Fail2Ban	Web App Attack
🇺🇸 TPI-Abuse	2026-05-08 00:00:25 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 34.80.125.6 (6.125.80.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 34.80.125.6 (6.125.80.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 07 20:00:20.355545 2026] [security2:error] [pid 6997:tid 6997] [client 34.80.125.6:51326] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.upascendia.com"] [uri "/.git/config"] [unique_id "af0nlOLx6llmQxbE-Ys10QAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 UMP-PL	2026-05-07 23:53:28 (3 weeks ago)	Webserver scan (backups, phpadmin, etc.)	Web App Attack
🇺🇸 TPI-Abuse	2026-05-07 23:43:47 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 34.80.125.6 (6.125.80.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 34.80.125.6 (6.125.80.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 07 19:43:42.901851 2026] [security2:error] [pid 6103:tid 6103] [client 34.80.125.6:41974] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.twccsolutions.com"] [uri "/.git/config"] [unique_id "af0jrv5vetfiSno6rIKvdgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-05-07 23:28:05 (3 weeks ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-05-07 23:06:23 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 34.80.125.6 (6.125.80.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 34.80.125.6 (6.125.80.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 07 19:06:18.645578 2026] [security2:error] [pid 14501:tid 14501] [client 34.80.125.6:58458] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.tonispray.com"] [uri "/.git/config"] [unique_id "af0a6h-71AkI3VhISXrw9gAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Lino Project	2026-05-07 22:57:54 (3 weeks ago)	34.80.125.6 - - [08/May/2026:00:57:51 +0200] "GET /.git/config HTTP/1.1" 403 3760 "-" "-" ...	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Murazaki	2026-05-07 22:51:47 (3 weeks ago)	mail.thenest.media 34.80.125.6 - - [08/May/2026:00:37:01 +0200] "GET /.git/config HTTP/1.1" 503 190 ... show more mail.thenest.media 34.80.125.6 - - [08/May/2026:00:37:01 +0200] "GET /.git/config HTTP/1.1" 503 190 "-" "-" "-" ... show less	Hacking
🇺🇸 TPI-Abuse	2026-05-07 22:44:16 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 34.80.125.6 (6.125.80.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 34.80.125.6 (6.125.80.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 07 18:44:10.197467 2026] [security2:error] [pid 19278:tid 19278] [client 34.80.125.6:34344] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.theuf.org"] [uri "/.git/config"] [unique_id "af0Vuvm3IBkCqAMmEdPDHwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 54 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇮 186.77.207.215

🇧🇴 181.188.176.242

🇸🇬 165.22.52.238

🇳🇱 160.119.76.108

🇸🇬 157.245.50.190

🇨🇳 150.255.52.131

🇫🇮 65.109.36.162

🇨🇳 59.52.101.117

🇸🇪 13.60.172.24

🇨🇳 220.197.195.66

🇺🇸 216.25.89.86

🇧🇷 205.210.31.241

🇧🇪 198.235.24.198

🇬🇹 181.209.144.131

🇮🇩 114.10.44.176

🇺🇸 72.90.241.209

🇳🇱 45.142.193.169

🇸🇬 3.0.92.16

🇺🇸 2607:f8b0:4001:c56::123

🇨🇳 220.181.172.244