JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.126.138.3

34.126.138.3 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 62%: ?

62%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	3.138.126.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.126.138.3

Whois 34.126.138.3

IP Abuse Reports for 34.126.138.3:

This IP address has been reported a total of 14 times from 10 distinct sources. 34.126.138.3 was first reported on June 16th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-27 21:59:22 (1 day ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-26. show less	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-26 02:35:30 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 34.126.138.3 (3.138.126.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.126.138.3 (3.138.126.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 22:35:26.169382 2026] [security2:error] [pid 28055:tid 28055] [client 34.126.138.3:60484] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.yournewphotos.tijuanabible.org"] [uri "/.git/config"] [unique_id "aj3lbvVpr59fTkw39C40HQAAAE0"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-26 01:58:59 (2 days ago)	Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-196)	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 01:51:21 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 34.126.138.3 (3.138.126.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.126.138.3 (3.138.126.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 21:51:17.485873 2026] [security2:error] [pid 6926:tid 6926] [client 34.126.138.3:56036] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.fixmywellwater.keyston.net"] [uri "/app/.git/config"] [unique_id "aj3bFdDHYhG8Ynps6FaCiwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 01:29:00 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 34.126.138.3 (3.138.126.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.126.138.3 (3.138.126.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 21:28:54.682704 2026] [security2:error] [pid 22593:tid 22639] [client 34.126.138.3:56012] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.houstondermatology.net.aafm.us"] [uri "/v2/.git/config"] [unique_id "aj3V1gRu8wv0K5K374K5pgAAAM8"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 e.fierstra	2026-06-26 00:58:34 (2 days ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇺🇸 alecj.com	2026-06-25 23:33:18 (3 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
Anonymous	2026-06-25 23:04:22 (3 days ago)	XSS Attempt	Hacking
🇳🇱 Savvii	2026-06-25 17:18:27 (3 days ago)	20 attempts against mh-misbehave-ban on ficus	Brute-Force Bad Web Bot Web App Attack
🇧🇾 lns.bz	2026-06-25 16:49:44 (3 days ago)	Too many 404 requests [BY]	Web App Attack
🇳🇱 Savvii	2026-06-25 15:38:53 (3 days ago)	20 attempts against mh_ha-misbehave-ban on crop	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-25 15:25:22 (3 days ago)	Multiple WAF Violations	Web App Attack
🇮🇹 VHosting	2026-06-16 06:40:04 (1 week ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 06:13:58 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 34.126.138.3 (3.138.126.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210730) triggered by 34.126.138.3 (3.138.126.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 02:13:52.798376 2026] [security2:error] [pid 16299:tid 16299] [client 34.126.138.3:55346] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.ehrlichfamily.net.ehrlichmedia.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.ehrlichfamily.net.ehrlichmedia.com"] [uri "/.config/gcloud/credentials.db"] [unique_id "ajDpoP9ZNMrzau0Ulc1e7wAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇦 77.109.21.46

🇺🇸 2607:f8b0:400e:c0c::121

🇧🇷 189.123.96.1

🇰🇷 183.109.153.173

🇳🇱 162.252.198.223

🇻🇳 160.191.101.139

🇭🇰 124.156.129.246

🇷🇺 2001:1bb0:e000:1e::1ac

🇫🇷 205.237.105.154

🇺🇸 172.236.228.39

🇺🇸 146.88.240.105

🇹🇷 94.154.43.36

🇫🇷 85.217.140.36

🇺🇸 64.227.1.43

🇳🇱 45.148.10.147

🇨🇳 43.143.123.201

🇫🇮 35.228.113.53

🇭🇰 35.220.161.253

🇺🇸 34.182.173.13

🇺🇸 34.170.170.165