JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.128.117.203

34.128.117.203 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 41%: ?

41%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	203.117.128.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.128.117.203

Whois 34.128.117.203

IP Abuse Reports for 34.128.117.203:

This IP address has been reported a total of 13 times from 7 distinct sources. 34.128.117.203 was first reported on June 13th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-14 22:00:13 (1 week ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-13. show less	Web App Attack SSH Hacking
🇳🇱 homeshowdomain.nl	2026-06-13 22:03:38 (1 week ago)	Auto-ban: >3000 req/min op 2026-06-13	Web App Attack SSH Hacking
🇬🇧 foxxelabs	2026-06-13 16:38:38 (1 week ago)	Automated report from FoxxeLabs Sentinel. Path probed: /.git/config \| Project: anseo \| Reason(s): Kn ... show more Automated report from FoxxeLabs Sentinel. Path probed: /.git/config \| Project: anseo \| Reason(s): Known exploit path: /.git/config \| User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3 show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 16:04:42 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.128.117.203 (203.117.128.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.128.117.203 (203.117.128.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 12:04:36.593408 2026] [security2:error] [pid 4454:tid 4454] [client 34.128.117.203:47272] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.ticmatopografiaeingenieria.com.spyasociados.com"] [uri "/.git/config"] [unique_id "ai1_lOvLqqSshJriWfsB_wAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 11:31:05 (1 week ago)	(mod_security) mod_security (id:949110) triggered by 34.128.117.203 (203.117.128.34.bc.googleusercon ... show more (mod_security) mod_security (id:949110) triggered by 34.128.117.203 (203.117.128.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 07:31:01.879406 2026] [security2:error] [pid 25276:tid 25276] [client 34.128.117.203:56938] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "jadabellportfolio.com"] [uri "/.git/config"] [unique_id "ai0_dfaq_kdO24LOSTUfIgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 10:12:04 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.128.117.203 (203.117.128.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.128.117.203 (203.117.128.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 06:11:58.487812 2026] [security2:error] [pid 25354:tid 25375] [client 34.128.117.203:60620] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "secretdecoded.com"] [uri "/.git/config"] [unique_id "ai0s7t9NmnT3Hu_T22lZrAAAAFI"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 voormedia	2026-06-13 09:37:04 (1 week ago)	Accessed trap at '/.git/config'	Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 08:40:29 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.128.117.203 (203.117.128.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.128.117.203 (203.117.128.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 04:40:23.419865 2026] [security2:error] [pid 3989:tid 4013] [client 34.128.117.203:57446] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "flutelesson.nl"] [uri "/.git/config"] [unique_id "ai0Xd5s2WjFqEGMbELSs1wAAARU"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-13 07:43:19 (1 week ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.128.117.203 (ID/Indonesia/203.117. ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.128.117.203 (ID/Indonesia/203.117.128.34.bc.googleusercontent.com): 1 in the last 3600 secs (0-195) show less	Hacking
🇺🇸 TPI-Abuse	2026-06-13 06:51:49 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.128.117.203 (203.117.128.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.128.117.203 (203.117.128.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 02:51:43.474753 2026] [security2:error] [pid 9879:tid 9879] [client 34.128.117.203:46068] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.ted.krakowski.org"] [uri "/.git/config"] [unique_id "aiz9_8y4qIZmLSjyAvxuuQAAADI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 04:53:43 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.128.117.203 (203.117.128.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.128.117.203 (203.117.128.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 00:53:40.090388 2026] [security2:error] [pid 4835:tid 4835] [client 34.128.117.203:57654] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.willyouanswerthecall.com"] [uri "/.git/config"] [unique_id "aiziVIpfZ44tNKbs_Xyf9QAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-13 04:06:53 (1 week ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇯🇵 pixelboost.kr	2026-06-13 03:36:56 (1 week ago)	34.128.117.203 - - [13/Jun/2026:12:36:55 +0900] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 ( ... show more 34.128.117.203 - - [13/Jun/2026:12:36:55 +0900] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:41.0) Gecko/20100101 Firefox/41.0" ... show less	Bad Web Bot Web App Attack

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 211.22.166.107

🇧🇪 198.235.24.221

🇪🇸 196.196.150.5

🇺🇦 194.28.197.127

🇬🇧 193.58.104.171

🇦🇷 190.244.39.224

🇧🇷 187.6.151.194

🇮🇩 182.8.211.53

🇨🇳 139.226.100.109

🇵🇹 109.50.185.153

🇮🇳 103.190.7.203

🇭🇰 103.81.170.109

🇺🇸 66.132.224.26

🇺🇸 65.49.20.100

🇺🇸 64.62.156.226

🇨🇳 59.38.131.149

🇲🇾 49.124.148.19

🇺🇸 47.251.90.59

🇳🇱 45.148.10.157

🇬🇧 217.146.80.126