JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.101.138.43

34.101.138.43 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 66%: ?

66%

ISP	Google Asia Pacific Pte. Ltd. (GAPPL)
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	43.138.101.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.101.138.43

Whois 34.101.138.43

IP Abuse Reports for 34.101.138.43:

This IP address has been reported a total of 23 times from 10 distinct sources. 34.101.138.43 was first reported on June 8th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-09 22:02:36 (1 day ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08. show less	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-09 16:01:49 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.101.138.43 (43.138.101.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.101.138.43 (43.138.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 12:01:43.452214 2026] [security2:error] [pid 21448:tid 21448] [client 34.101.138.43:37296] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "alsetsystems.com"] [uri "/.git/config"] [unique_id "aig45xjn15oU0GqxejAbKQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 15:21:31 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.101.138.43 (43.138.101.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.101.138.43 (43.138.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 11:21:23.431377 2026] [security2:error] [pid 7499:tid 7499] [client 34.101.138.43:40786] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mediatvplus.com"] [uri "/.git/config"] [unique_id "aigvcy4gRFA7VtK7UutXQwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 etu brutus	2026-06-09 15:07:55 (1 day ago)	34.101.138.43 has been banned for [WebApp Attack] ...	Hacking Bad Web Bot Web App Attack
🇦🇺 2000cn.com.au	2026-06-09 14:52:24 (1 day ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇺🇸 TPI-Abuse	2026-06-09 14:43:54 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.101.138.43 (43.138.101.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.101.138.43 (43.138.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 10:43:48.107853 2026] [security2:error] [pid 17016:tid 17016] [client 34.101.138.43:40420] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.fluff.infolinkqr.com"] [uri "/.git/config"] [unique_id "aigmpIK3E1238xOz2fmVXAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 10:59:35 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.101.138.43 (43.138.101.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.101.138.43 (43.138.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 06:59:32.309097 2026] [security2:error] [pid 28069:tid 28069] [client 34.101.138.43:47498] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.santaclausphonecall.com.evannine.com"] [uri "/.git/config"] [unique_id "aifyFFUici77NiqoEHY-CgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-09 10:57:43 (1 day ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.101.138.43 (ID/Indonesia/43.138.10 ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.101.138.43 (ID/Indonesia/43.138.101.34.bc.googleusercontent.com): 1 in the last 3600 secs (0-195) show less	Hacking
🇹🇼 tye	2026-06-09 07:34:59 (1 day ago)	Wazuh Alert Evidence: [Tue Jun 09 15:34:56.908400 2026] [security2:error] [pid 4028667] [client 34.1 ... show more Wazuh Alert Evidence: [Tue Jun 09 15:34:56.908400 2026] [security2:error] [pid 4028667] [client 34.101.138.43:40574] [client 34.101.138.43] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/etc/apache2/owasp-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.23.0-dev"] [tag "anomaly-evaluation"] [tag "OWASP_CRS"] [hostname "www.tye.asia"] [uri "/.git/config"] [unique_id "aifCIOFpIigA6sHxIT7AuwAAAAQ"] show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 06:05:35 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.101.138.43 (43.138.101.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.101.138.43 (43.138.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 02:05:31.918332 2026] [security2:error] [pid 16983:tid 16983] [client 34.101.138.43:50574] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "towida.com"] [uri "/.git/config"] [unique_id "aietK8LqbPpxvwL3--wX0QAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 inlink.ltd	2026-06-09 04:19:38 (1 day ago)	dot file probe	Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 03:42:36 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.101.138.43 (43.138.101.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.101.138.43 (43.138.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 23:42:27.965662 2026] [security2:error] [pid 30064:tid 30064] [client 34.101.138.43:32882] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "1healthplace.com"] [uri "/.git/config"] [unique_id "aieLo7E6efWl_zjtu8zKbAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 4server	2026-06-09 03:31:53 (1 day ago)	[TueJun0905:31:49.4745362026][security2:error][pid3293737:tid3293953][client34.101.138.43:0]ModSecur ... show more [TueJun0905:31:49.4745362026][security2:error][pid3293737:tid3293953][client34.101.138.43:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"piffarerio.ch.81-17-25-250.cpanel.site\"][uri\"/.git/config\"][unique_id\"aieJJd6jjaM7LTt9mjqSNgAAAEA\"] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 01:18:23 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 34.101.138.43 (43.138.101.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.101.138.43 (43.138.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 21:18:18.117491 2026] [security2:error] [pid 13266:tid 13266] [client 34.101.138.43:39054] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.guthrieclan.us.joshuashands.org"] [uri "/.git/config"] [unique_id "aidp2iWgdBNZgDdwq5aQLQAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 21:13:59 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 34.101.138.43 (43.138.101.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.101.138.43 (43.138.101.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 17:13:52.291625 2026] [security2:error] [pid 26844:tid 26844] [client 34.101.138.43:34708] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stricklinphotography.com"] [uri "/.git/config"] [unique_id "aicwkJkLiw93qN8g7-JhuQAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.208.49.189

🇧🇷 170.82.151.76

🇮🇪 2a05:d018:10df:d400:57c6:6205:aaad:80e8

🇺🇸 216.25.89.77

🇬🇧 213.166.84.35

🇺🇸 205.169.39.56

🇲🇾 203.121.40.210

🇬🇧 194.50.235.135

🇦🇷 186.22.19.183

🇺🇸 134.209.127.152

🇺🇸 91.230.168.16

🇬🇧 81.19.219.211

🇺🇸 40.119.40.156

🇰🇷 14.63.196.175

🇷🇴 2.57.121.112

🇨🇳 210.16.168.11

🇮🇩 180.249.161.219

🇺🇸 104.22.62.149

🇺🇸 91.230.168.28

🇺🇸 66.132.172.141