JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.27.238.43

34.27.238.43 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 68%: ?

68%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	43.238.27.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	Council Bluffs, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.27.238.43

Whois 34.27.238.43

IP Abuse Reports for 34.27.238.43:

This IP address has been reported a total of 32 times from 15 distinct sources. 34.27.238.43 was first reported on April 7th 2023, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-10 22:00:58 (1 week ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-09. show less	Web App Attack SSH Hacking
🇧🇪 boxed-it	2026-06-09 16:37:48 (1 week ago)	GET /.git/config (Tarpitted for 1d15h8m28s, wasted 8.06MB)	Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 16:35:45 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.27.238.43 (43.238.27.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.27.238.43 (43.238.27.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 12:35:39.972268 2026] [security2:error] [pid 18287:tid 18287] [client 34.27.238.43:50054] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "holland-kadaster-registration.com"] [uri "/.git/config"] [unique_id "aihA29KTUO6muzOkwhlQNgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-06-09 15:40:17 (1 week ago)	26.801 requests with url.path .git/	Brute-Force Bad Web Bot
🇷🇴 INTEQ	2026-06-09 14:00:38 (1 week ago)	Web attack from 34.27.238.43	Web App Attack
🇩🇪 big-cloud.nl	2026-06-09 13:58:27 (1 week ago)	Try to access /.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 13:31:10 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.27.238.43 (43.238.27.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.27.238.43 (43.238.27.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 09:31:04.833175 2026] [security2:error] [pid 14328:tid 14328] [client 34.27.238.43:50552] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gutefrequenzen.circulodesonido.org"] [uri "/.git/config"] [unique_id "aigVmI-YOU9R2ZIpzbY3FQAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 12:05:48 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.27.238.43 (43.238.27.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.27.238.43 (43.238.27.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 08:05:44.891370 2026] [security2:error] [pid 467:tid 467] [client 34.27.238.43:52450] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "salonpurelodi.com"] [uri "/.git/config"] [unique_id "aigBmD9flgEJZHFva3PevgAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 11:17:06 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.27.238.43 (43.238.27.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.27.238.43 (43.238.27.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 07:17:02.521527 2026] [security2:error] [pid 27195:tid 27195] [client 34.27.238.43:56360] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rassehundeverein.com"] [uri "/.git/config"] [unique_id "aif2LqVJ_2Wwf6lzSDlTbwAAAF0"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-06-09 10:46:41 (1 week ago)	IM360 WAF: Direct access to sensitive file or dotfile MV:/.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 08:36:53 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.27.238.43 (43.238.27.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.27.238.43 (43.238.27.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 04:36:45.656173 2026] [security2:error] [pid 25306:tid 25306] [client 34.27.238.43:55458] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "alianzallc.com"] [uri "/.git/config"] [unique_id "aifQnRpEl9HWVIDUSXz_xQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 4server	2026-06-09 07:51:22 (1 week ago)	[TueJun0909:51:19.5156592026][security2:error][pid2575691:tid2575811][client34.27.238.43:0]ModSecuri ... show more [TueJun0909:51:19.5156592026][security2:error][pid2575691:tid2575811][client34.27.238.43:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"gmpsol.ch.136-243-54-122.cpanel.site\"][uri\"/.git/config\"][unique_id\"aifF9-a0HLIJCppIdckexQAAAIY\"] show less	Port Scan Brute-Force Web App Attack
Anonymous	2026-06-09 04:50:55 (1 week ago)	34.27.238.43 - - [09/Jun/2026:12:50:54 +0800] "GET /.git/config HTTP/1.1" 404 196 "-" "Mozilla/5.0 ( ... show more 34.27.238.43 - - [09/Jun/2026:12:50:54 +0800] "GET /.git/config HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Linux; Android 9; SAMSUNG SM-G973F Build/PPR1.180610.011) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/9.4 Chrome/67.0.3396.87 Mobile Safari/537.36" ... show less	Bad Web Bot Web App Attack
🇩🇪 Lino Project	2026-06-09 04:20:49 (1 week ago)	34.27.238.43 - - [09/Jun/2026:06:20:45 +0200] "GET /.git/config HTTP/1.1" 403 5100 "-" "Mozilla/5.0 ... show more 34.27.238.43 - - [09/Jun/2026:06:20:45 +0200] "GET /.git/config HTTP/1.1" 403 5100 "-" "Mozilla/5.0 (Windows NT 6.0) AppleWebKit/535.2 (KHTML, like Gecko) Chrome/15.0.874.120 Safari/535.2" ... show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 03:58:38 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.27.238.43 (43.238.27.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.27.238.43 (43.238.27.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 23:58:34.541882 2026] [security2:error] [pid 450:tid 468] [client 34.27.238.43:57080] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.catishly.piazza9.com"] [uri "/.git/config"] [unique_id "aiePasZptRTXluqVr7YpHgAAAFA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 91.92.42.147

🇺🇸 172.253.213.22

🇫🇷 85.217.140.40

🇺🇸 52.180.146.145

🇻🇳 14.225.206.187

🇸🇦 5.244.186.183

🇺🇸 167.172.152.94

🇺🇸 129.153.145.135

🇨🇳 120.240.178.200

🇱🇹 81.30.98.62

🇮🇳 43.230.201.45

🇨🇳 39.164.94.190

🇰🇷 219.241.105.100

🇩🇪 213.209.159.225

🇧🇷 205.210.31.175

🇱🇰 203.115.31.50

🇭🇰 165.154.41.6

🇱🇹 91.224.92.17

🇬🇧 89.37.172.140

🇬🇧 80.1.51.168