JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.40.240.238

34.40.240.238 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	238.240.40.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇦🇺 Australia
City	Sydney, New South Wales

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.40.240.238

Whois 34.40.240.238

IP Abuse Reports for 34.40.240.238:

This IP address has been reported a total of 30 times from 20 distinct sources. 34.40.240.238 was first reported on June 8th 2026, and the most recent report was 21 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-09 21:59:09 (21 hours ago)	Auto-ban: >3000 req/min op 2026-06-09	Web App Attack SSH Hacking
🇨🇿 ddw	2026-06-09 15:32:12 (1 day ago)	ModSecurity detection - Rules: 930130(Restricted File Access Attempt)	Web App Attack
🇫🇷 masterguru	2026-06-09 13:09:04 (1 day ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.40.240.238 (AU/Australia/238.240.4 ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.40.240.238 (AU/Australia/238.240.40.34.bc.googleusercontent.com): 1 in the last 3600 secs (0-195) show less	Hacking
🇺🇸 TPI-Abuse	2026-06-09 06:44:31 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.40.240.238 (238.240.40.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.40.240.238 (238.240.40.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 02:44:26.150054 2026] [security2:error] [pid 29507:tid 29507] [client 34.40.240.238:43692] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.countrycottagetogo.buffaloweddingdeejay.com"] [uri "/.git/config"] [unique_id "aie2StR3Xy7LWi4A8pTRewAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇴 INTEQ	2026-06-09 06:44:24 (1 day ago)	Web attack from 34.40.240.238	Web App Attack
🇩🇪 FeG Deutschland	2026-06-09 05:20:22 (1 day ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 05:06:42 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.40.240.238 (238.240.40.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.40.240.238 (238.240.40.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 01:06:36.752187 2026] [security2:error] [pid 24830:tid 24830] [client 34.40.240.238:39226] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.thebestac.com"] [uri "/.git/config"] [unique_id "aiefXLLAErhtvb2EFh1cbAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 03:55:13 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.40.240.238 (238.240.40.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.40.240.238 (238.240.40.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 23:55:09.223966 2026] [security2:error] [pid 450:tid 456] [client 34.40.240.238:33066] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.eafm.org.aafm.us"] [uri "/.git/config"] [unique_id "aieOncZptRTXluqVr7YnFQAAAEQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-06-09 03:39:38 (1 day ago)	Try to access /.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 01:50:47 (1 day ago)	(mod_security) mod_security (id:949110) triggered by 34.40.240.238 (238.240.40.34.bc.googleuserconte ... show more (mod_security) mod_security (id:949110) triggered by 34.40.240.238 (238.240.40.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 21:50:42.078099 2026] [security2:error] [pid 1440:tid 1440] [client 34.40.240.238:50886] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "www.sio-org.cescfoundation.org"] [uri "/.git/config"] [unique_id "aidxctr32QTaAUza8cGpIQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 01:34:58 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.40.240.238 (238.240.40.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.40.240.238 (238.240.40.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 21:34:53.556028 2026] [security2:error] [pid 12509:tid 12509] [client 34.40.240.238:52506] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.zmgmt.com"] [uri "/.git/config"] [unique_id "aidtveijIZ0H5kD7lcPh6wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 00:53:36 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.40.240.238 (238.240.40.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.40.240.238 (238.240.40.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 20:53:29.882457 2026] [security2:error] [pid 13304:tid 13304] [client 34.40.240.238:58164] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.anatolyaleksin.com"] [uri "/.git/config"] [unique_id "aidkCe3DY4H0eOR0S3aa2QAAAGU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-09 00:19:03 (1 day ago)	Too many Status 40X (13) Scanning/Probing (13)	Brute-Force Web App Attack
🇫🇷 dynamix	2026-06-08 22:45:48 (1 day ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 19:51:33 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.40.240.238 (238.240.40.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.40.240.238 (238.240.40.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 15:51:29.684033 2026] [security2:error] [pid 5728:tid 5728] [client 34.40.240.238:43730] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "northfultonneurology.com"] [uri "/.env.production"] [unique_id "aicdQQF33596TuKYdzl5WAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇭 203.154.158.195

🇺🇸 151.245.234.33

🇺🇸 136.175.83.165

🇺🇸 65.111.11.56

🇺🇸 208.87.242.161

🇺🇸 195.184.76.231

🇺🇸 173.194.94.146

🇨🇳 122.114.255.230

🇺🇸 71.163.137.13

🇺🇸 3.213.85.234

🇷🇴 2.57.121.112

🇧🇷 163.176.167.78

🇨🇳 115.190.153.156

🇮🇩 103.239.165.114

🇿🇦 102.220.87.78

🇫🇷 91.231.89.153

🇳🇱 89.190.156.12

🇰🇷 59.15.58.148

🇸🇬 20.157.117.15

🇬🇧 191.96.110.39