JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.53.148.138

34.53.148.138 was found in our database!

This IP was reported 31 times. Confidence of Abuse is 71%: ?

71%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	138.148.53.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇧🇪 Belgium
City	Brussels, Brussels Capital

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.53.148.138

Whois 34.53.148.138

IP Abuse Reports for 34.53.148.138:

This IP address has been reported a total of 31 times from 15 distinct sources. 34.53.148.138 was first reported on June 8th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 SpaceHost-Server	2026-06-09 22:29:36 (1 week ago)		Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 15:51:18 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.53.148.138 (138.148.53.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.53.148.138 (138.148.53.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 11:51:12.440214 2026] [security2:error] [pid 15870:tid 15870] [client 34.53.148.138:33238] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.howwegothere.info.digifonics.com"] [uri "/.git/config"] [unique_id "aig2cLDxyVDL5RRj31-fTAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 14:43:23 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.53.148.138 (138.148.53.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.53.148.138 (138.148.53.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 10:43:16.852452 2026] [security2:error] [pid 11588:tid 11675] [client 34.53.148.138:54702] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "web21.dnchosting.com"] [uri "/.git/config"] [unique_id "aigmhIpfdIqB_CiRpSsUQQAAAMo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-09 13:42:22 (1 week ago)	34.53.148.138 - - [09/Jun/2026:13:42:21 +0000] "GET /.git/config HTTP/1.1" 404 49818 "-" "Mozilla/5. ... show more 34.53.148.138 - - [09/Jun/2026:13:42:21 +0000] "GET /.git/config HTTP/1.1" 404 49818 "-" "Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.142 Safari/537.36" ... show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 13:41:28 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.53.148.138 (138.148.53.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.53.148.138 (138.148.53.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 09:41:23.056236 2026] [security2:error] [pid 2426:tid 2426] [client 34.53.148.138:46518] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.exchange.ic1.solutions.ic1.biz"] [uri "/.git/config"] [unique_id "aigYA7UdXrr8ksn2ZbzH_wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 12:54:30 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.53.148.138 (138.148.53.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.53.148.138 (138.148.53.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 08:54:23.546547 2026] [security2:error] [pid 16253:tid 16253] [client 34.53.148.138:52722] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jordanware.com"] [uri "/.git/config"] [unique_id "aigM_ybkGoKoDHDPqF6HBQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 lakered	2026-06-09 07:44:35 (1 week ago)	Detectors: [NGINX] \| Reasons: Nginx Honeypot: Sensitive configuration file search \| Tech Evidence: J ... show more Detectors: [NGINX] \| Reasons: Nginx Honeypot: Sensitive configuration file search \| Tech Evidence: JA4H: a83879c1bea7e144bd89493c163fd51d, Incomplete-Browser-Profile (Missing: Accept, Accept-Language), Fake-Chrome-Desktop (No-CH), TLS-JA4-Spoofing-Detected (UA claims Browser but JA4 reports No-HTTP/2: t13d190900), JA4: t13d190900 \| UA: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.81 Safari/537.36 show less	Hacking Web App Attack
🇩🇪 iNetWorker	2026-06-09 06:28:15 (1 week ago)	trolling for resource vulnerabilities	Web App Attack
🇫🇮 inlink.ltd	2026-06-09 06:01:07 (1 week ago)	dot file probe	Web App Attack
🇧🇪 voormedia	2026-06-09 00:45:55 (1 week ago)	Accessed trap at '/.git/config'	Web App Attack
🇫🇷 SpaceHost-Server	2026-06-08 22:29:35 (1 week ago)		Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-08 22:04:38 (1 week ago)	Auto-ban: >3000 req/min op 2026-06-08	Web App Attack SSH Hacking
🇬🇧 Smish	2026-06-08 20:12:43 (1 week ago)	HONEYPOT HIT --> Fail2ban time=1780949562 log=2026-06-08T21:12:42+01:00 ip=34.53.148.138 host=vmhost ... show more HONEYPOT HIT --> Fail2ban time=1780949562 log=2026-06-08T21:12:42+01:00 ip=34.53.148.138 host=vmhost01.mci.as210667.net method=GET uri="/.git/config" status=404 ua="Mozilla/5.0 (Linux; U; Android 4.0.3; en-us; KFTT Build/IML74K) AppleWebKit/535.19 (KHTML, like Gecko) Silk/2.1 Mobile Safari/535.19 Silk-Accelerated=true" ref="-" rid=4f0a1c598abf09030c48dc8e8023ceed show less	Web App Attack
Anonymous	2026-06-08 20:05:01 (1 week ago)	suspicious request in access.log	Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 19:19:33 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.53.148.138 (138.148.53.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.53.148.138 (138.148.53.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 15:19:25.860532 2026] [security2:error] [pid 7302:tid 7327] [client 34.53.148.138:48092] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.deathsigns.plumeraproductions.com"] [uri "/.git/config"] [unique_id "aicVveEUDot_8pf-SRv9vAAAAJc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 31 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2603:c020:15:3b73::14

🇲🇽 187.191.48.23

🇳🇱 172.94.9.159

🇺🇸 136.0.251.127

🇺🇸 66.132.186.232

🇹🇼 60.199.224.38

🇨🇳 47.95.207.179

🇺🇸 44.221.69.13

🇺🇸 165.227.15.71

🇺🇸 136.144.35.42

🇨🇦 104.223.84.84

🇺🇸 98.80.4.7

🇳🇱 45.148.10.157

🇺🇸 44.226.158.50

🇺🇸 44.171.11.231

🇮🇳 125.23.183.18

🇮🇩 103.172.20.218

🇵🇱 87.251.64.158

🇨🇦 85.217.149.21

🇧🇬 78.128.71.55