JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.101.117.159

34.101.117.159 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 49%: ?

49%

ISP	Google Asia Pacific Pte. Ltd. (GAPPL)
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	159.117.101.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.101.117.159

Whois 34.101.117.159

IP Abuse Reports for 34.101.117.159:

This IP address has been reported a total of 18 times from 9 distinct sources. 34.101.117.159 was first reported on June 13th 2026, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-14 22:01:14 (6 days ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-13. show less	Web App Attack SSH Hacking
🇪🇸 tutaim.com	2026-06-13 22:00:12 (1 week ago)	⛔ [14/06/26] This IP has been detected performing multiple attacks on websites (4 attempts blocked). ... show more ⛔ [14/06/26] This IP has been detected performing multiple attacks on websites (4 attempts blocked). Potential malicious activity. show less	Brute-Force SSH Web App Attack FTP Brute-Force
🇺🇸 TPI-Abuse	2026-06-13 13:47:27 (1 week ago)	(mod_security) mod_security (id:949110) triggered by 34.101.117.159 (159.117.101.34.bc.googleusercon ... show more (mod_security) mod_security (id:949110) triggered by 34.101.117.159 (159.117.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 09:47:23.281390 2026] [security2:error] [pid 12590:tid 12590] [client 34.101.117.159:43698] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "nevawade.com"] [uri "/.git/config"] [unique_id "ai1fawFGH1UkSZzCCKJboQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 13:16:54 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.101.117.159 (159.117.101.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.101.117.159 (159.117.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 09:16:48.387621 2026] [security2:error] [pid 13566:tid 13566] [client 34.101.117.159:49298] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.bernsteinip.com"] [uri "/.git/config"] [unique_id "ai1YQDRaOxbQSMw0Ep_SXwAAACU"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 lakered	2026-06-13 13:03:07 (1 week ago)	Detectors: [NGINX] \| Reasons: Nginx Honeypot: Sensitive configuration file search \| Tech Evidence: J ... show more Detectors: [NGINX] \| Reasons: Nginx Honeypot: Sensitive configuration file search \| Tech Evidence: JA4H: 7846604a00a5f913539d1a1ffb04c370, Incomplete-Browser-Profile (Missing: Accept, Accept-Language), TLS-JA4-Spoofing-Detected (UA claims Browser but JA4 reports No-HTTP/2: t13d190900), JA4: t13d190900 \| UA: Mozilla/5.0 (iPod; U; CPU iPhone OS 2_2_1 like Mac OS X; en-us) AppleWebKit/525.18.1 (KHTML, like Gecko) Version/3.1.1 Mobile/5H11a Safari/525.20 show less	Hacking Web App Attack
🇧🇪 voormedia	2026-06-13 12:59:49 (1 week ago)	Accessed trap at '/.git/config'	Web App Attack
🇫🇷 masterguru	2026-06-13 12:11:37 (1 week ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.101.117.159 (ID/Indonesia/159.117. ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.101.117.159 (ID/Indonesia/159.117.101.34.bc.googleusercontent.com): 1 in the last 3600 secs (0-195) show less	Hacking
🇺🇸 TPI-Abuse	2026-06-13 11:20:50 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.101.117.159 (159.117.101.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.101.117.159 (159.117.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 07:20:45.600157 2026] [security2:error] [pid 9550:tid 9550] [client 34.101.117.159:50952] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.learn.panmaneecnc.com"] [uri "/.git/config"] [unique_id "ai09DYrGrcAJ3Am_VcHn6gAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 10:19:40 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.101.117.159 (159.117.101.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.101.117.159 (159.117.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 06:19:33.105025 2026] [security2:error] [pid 17185:tid 17206] [client 34.101.117.159:51436] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.stoborough.org.aafm.us"] [uri "/.git/config"] [unique_id "ai0utUrmJknK1x_IBnnHVwAAAU4"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 tutaim.com	2026-06-13 09:00:06 (1 week ago)	⛔ [13/06/26] This IP has been detected performing multiple attacks on websites (4 attempts blocked). ... show more ⛔ [13/06/26] This IP has been detected performing multiple attacks on websites (4 attempts blocked). Potential malicious activity. show less	Brute-Force SSH Web App Attack FTP Brute-Force
🇺🇸 TPI-Abuse	2026-06-13 08:08:40 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.101.117.159 (159.117.101.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.101.117.159 (159.117.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 04:08:37.071626 2026] [security2:error] [pid 27351:tid 27351] [client 34.101.117.159:37388] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cancersquared.com"] [uri "/.git/config"] [unique_id "ai0QBWToI86TRHPStNUeeAAAACc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 06:54:53 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.101.117.159 (159.117.101.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.101.117.159 (159.117.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 02:54:50.152533 2026] [security2:error] [pid 14940:tid 14940] [client 34.101.117.159:48760] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.weddingcapitalpartners.vittariadesign.com"] [uri "/.git/config"] [unique_id "aiz-uh3ayrrtg-pLOFZc5QAAAEU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 06:32:39 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.101.117.159 (159.117.101.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.101.117.159 (159.117.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 02:32:32.961329 2026] [security2:error] [pid 11122:tid 11122] [client 34.101.117.159:56062] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "swampoodlegrounds.com"] [uri "/.git/config"] [unique_id "aiz5gLSJyFWFjPoHpotlXwAAAFM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 05:50:23 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.101.117.159 (159.117.101.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.101.117.159 (159.117.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 01:50:17.506473 2026] [security2:error] [pid 30112:tid 30112] [client 34.101.117.159:45086] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "beechleafdesign.com"] [uri "/.git/config"] [unique_id "aizvmZcVLZ49R87Ppdo-cQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 ambor	2026-06-13 05:25:26 (1 week ago)	L0ss Honeypot: Git configuration file access attempt. Path: /.git/config	Web App Attack

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.229

🇮🇩 103.112.245.85

🇷🇺 80.253.31.232

🇱🇹 62.60.130.139

🇩🇪 185.254.97.154

🇮🇳 167.71.239.213

🇳🇱 91.92.40.204

🇺🇸 67.215.227.141

🇺🇸 44.55.134.192

🇬🇧 35.203.210.70

🇺🇸 3.94.156.104

🇹🇼 202.39.153.245

🇸🇬 114.119.163.52

🇷🇴 80.94.92.164

🇺🇸 44.226.216.39

🇺🇸 44.89.153.233

🇺🇸 3.81.32.112

🇸🇪 171.25.158.87

🇮🇳 103.107.60.45

🇷🇺 62.183.82.70