JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.40.61.126

34.40.61.126 was found in our database!

This IP was reported 38 times. Confidence of Abuse is 65%: ?

65%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	126.61.40.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.40.61.126

Whois 34.40.61.126

IP Abuse Reports for 34.40.61.126:

This IP address has been reported a total of 38 times from 13 distinct sources. 34.40.61.126 was first reported on June 8th 2026, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-13 08:07:20 (6 days ago)	Trying to access config files	Web App Attack
Anonymous	2026-06-11 13:07:11 (1 week ago)	Trying to access config files	Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-09 22:03:21 (1 week ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08. show less	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-09 16:39:37 (1 week ago)	(mod_security) mod_security (id:949110) triggered by 34.40.61.126 (126.61.40.34.bc.googleusercontent ... show more (mod_security) mod_security (id:949110) triggered by 34.40.61.126 (126.61.40.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 12:39:31.945970 2026] [security2:error] [pid 15617:tid 15617] [client 34.40.61.126:47422] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "alliancegroupga.com"] [uri "/.git/config"] [unique_id "aihBwyjtrDHdjWOP-uQz5AAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-09 16:07:00 (1 week ago)	Trying to access config files	Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 15:58:12 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.40.61.126 (126.61.40.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.40.61.126 (126.61.40.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 11:58:08.875274 2026] [security2:error] [pid 13792:tid 13792] [client 34.40.61.126:49454] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lexingtonlimobus.com"] [uri "/.git/config"] [unique_id "aig4ECfA0mG2C7g1MZv-zAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Axel	2026-06-09 15:23:34 (1 week ago)	Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.git/config ... show more Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.git/config Server: UK-01 show less	Web App Attack Hacking SQL Injection
🇺🇸 TPI-Abuse	2026-06-09 13:50:20 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.40.61.126 (126.61.40.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.40.61.126 (126.61.40.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 09:50:15.695788 2026] [security2:error] [pid 15323:tid 15323] [client 34.40.61.126:42036] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "herston.net"] [uri "/.git/config"] [unique_id "aigaF3M1B7BFKA-Oe130QwAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 4server	2026-06-09 13:46:18 (1 week ago)	[TueJun0915:46:13.5170212026][security2:error][pid1344526:tid1344742][client34.40.61.126:0]ModSecuri ... show more [TueJun0915:46:13.5170212026][security2:error][pid1344526:tid1344742][client34.40.61.126:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"cpanel.buonviaggio.ch\"][uri\"/.git/config\"][unique_id\"aigZJXqTbnB4Bo0hfDez4gAAAQo\"] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 11:57:51 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.40.61.126 (126.61.40.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.40.61.126 (126.61.40.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 07:57:45.213622 2026] [security2:error] [pid 4299:tid 4299] [client 34.40.61.126:37264] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.onlineteacher.info.amybeam.com"] [uri "/.git/config"] [unique_id "aif_uWOiF8agZ7NB1f1yhQAAAEk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 10:17:17 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.40.61.126 (126.61.40.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.40.61.126 (126.61.40.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 06:17:13.177536 2026] [security2:error] [pid 25360:tid 25360] [client 34.40.61.126:53366] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.jbsellsre.burlison.com"] [uri "/.git/config"] [unique_id "aifoKe5ceT3_x1lKQoar_QAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 09:23:24 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.40.61.126 (126.61.40.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.40.61.126 (126.61.40.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 05:23:20.453046 2026] [security2:error] [pid 3957:tid 3957] [client 34.40.61.126:35500] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.scanlanlaserdesign.nashes.net"] [uri "/.git/config"] [unique_id "aifbiJfHiwSCh4KWxyNsLQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 08:33:32 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.40.61.126 (126.61.40.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.40.61.126 (126.61.40.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 04:33:28.565587 2026] [security2:error] [pid 9619:tid 9619] [client 34.40.61.126:49368] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.34.gisur.com"] [uri "/.git/config"] [unique_id "aifP2NJzvMoewYEIORoN4AAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 srebrakowski.com	2026-06-09 08:28:42 (1 week ago)	crowdsec/waf-detected-exploits	Brute-Force
🇺🇸 TPI-Abuse	2026-06-09 07:18:54 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.40.61.126 (126.61.40.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.40.61.126 (126.61.40.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 03:18:51.150189 2026] [security2:error] [pid 29735:tid 29735] [client 34.40.61.126:44550] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sr.handyrehab.com"] [uri "/.git/config"] [unique_id "aie-W2E-6e21VMi9QgCqPgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 38 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 223.233.86.226

🇺🇸 147.93.179.147

🇲🇾 60.48.168.39

🇨🇦 209.50.188.109

🇹🇼 198.235.24.71

🇨🇳 182.43.164.191

🇧🇷 177.47.202.31

🇫🇷 92.150.62.238

🇷🇺 91.211.236.106

🇳🇱 91.92.40.13

🇩🇪 81.28.6.82

🇷🇴 80.94.95.211

🇨🇳 59.82.83.62

🇬🇧 35.203.211.44

🇫🇷 2a01:e0a:100a:c2e0:c5bf:41b:f965:35ce

🇩🇪 194.88.98.86

🇧🇷 190.115.84.25

🇧🇷 177.12.118.74

🇱🇰 173.239.196.183

🇺🇸 162.216.150.16