JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.76.253.138

34.76.253.138 was found in our database!

This IP was reported 46 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	138.253.76.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇧🇪 Belgium
City	Brussels, Brussels Capital

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.76.253.138

Whois 34.76.253.138

IP Abuse Reports for 34.76.253.138:

This IP address has been reported a total of 46 times from 18 distinct sources. 34.76.253.138 was first reported on June 8th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 thetomtaylor.co.uk	2026-06-10 09:06:02 (1 day ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice01,wa01,wa02]	Hacking Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-09 22:02:06 (1 day ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08. show less	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-09 14:24:45 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.76.253.138 (138.253.76.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.76.253.138 (138.253.76.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 10:24:37.631097 2026] [security2:error] [pid 22436:tid 22436] [client 34.76.253.138:57612] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dancingbearprinting.com"] [uri "/.git/config"] [unique_id "aigiJfFRLJ4QakLT5o15bgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 12:28:47 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.76.253.138 (138.253.76.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.76.253.138 (138.253.76.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 08:28:40.301435 2026] [security2:error] [pid 3042:tid 3042] [client 34.76.253.138:33658] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.affid.org"] [uri "/.git/config"] [unique_id "aigG-MXSmekOMazZISuw1wAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 11:41:35 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 34.76.253.138 (138.253.76.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.76.253.138 (138.253.76.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 07:41:31.831442 2026] [security2:error] [pid 23495:tid 23495] [client 34.76.253.138:49676] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "couturebikini.com"] [uri "/.git/config"] [unique_id "aif76_gJkXuL65xWXjaB3gAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-06-09 10:51:52 (2 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 10:38:14 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 34.76.253.138 (138.253.76.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.76.253.138 (138.253.76.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 06:38:10.574801 2026] [security2:error] [pid 13282:tid 13282] [client 34.76.253.138:49148] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "claireashton.com"] [uri "/.git/config"] [unique_id "aiftEi-OQKs49T0GhpSBewAAAEs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 09:21:28 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 34.76.253.138 (138.253.76.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.76.253.138 (138.253.76.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 05:21:21.063021 2026] [security2:error] [pid 3726:tid 3726] [client 34.76.253.138:50954] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.fatcavestudios.fatcavemedia.com"] [uri "/.git/config"] [unique_id "aifbEU_YhdD7lLoLSI9HYwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Little Iguana	2026-06-09 08:47:17 (2 days ago)	Attempt to hack Wordpress Login, XMLRPC or other login	Hacking
🇳🇿 Antinson	2026-06-09 08:15:43 (2 days ago)	Scraping with a high error ratio and request rate Requests to unauthorized or suspicious endpoints ( ... show more Scraping with a high error ratio and request rate Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.) show less	Bad Web Bot
🇬🇧 thetomtaylor.co.uk	2026-06-09 08:08:01 (2 days ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice01,ice02,wa01]	Hacking Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 06:44:05 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 34.76.253.138 (138.253.76.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.76.253.138 (138.253.76.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 02:43:58.485412 2026] [security2:error] [pid 26251:tid 26251] [client 34.76.253.138:59148] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kmp.net"] [uri "/.git/config"] [unique_id "aie2LtwbS3gWE13dQWOTiwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 05:24:03 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 34.76.253.138 (138.253.76.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.76.253.138 (138.253.76.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 01:23:57.117632 2026] [security2:error] [pid 28801:tid 28801] [client 34.76.253.138:33576] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thehealthyplaceclayton.com"] [uri "/.git/config"] [unique_id "aiejbfENeEXujiSXTl493gAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 as211431.net	2026-06-09 05:23:55 (2 days ago)	Triggered Cloudflare WAF (firewallCustom) from BE. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from BE. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /.git/config UA: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.142 Safari/537.36 OPR/62.0.3331.116 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇫🇷 masterguru	2026-06-09 04:45:21 (2 days ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.76.253.138 (BE/Belgium/138.253.76. ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.76.253.138 (BE/Belgium/138.253.76.34.bc.googleusercontent.com): 1 in the last 3600 secs (0-195) show less	Hacking

Showing 1 to 15 of 46 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2a01:111:f403:d111::2

🇮🇳 2409:40f4:1c:67cf:8995:983b:25e9:93b4

🇻🇳 210.211.99.176

🇳🇱 209.250.241.109

🇮🇳 202.53.94.246

🇺🇸 135.237.126.244

🇮🇳 116.193.128.26

🇸🇬 94.231.206.36

🇸🇬 47.79.201.84

🇺🇸 20.246.109.120

🇺🇸 2607:f8b0:4004:100d::122

🇩🇪 213.209.159.235

🇺🇸 147.185.132.212

🇨🇳 111.228.13.226

🇱🇹 84.15.187.19

🇹🇷 78.188.213.8

🇭🇰 65.181.88.245

🇺🇸 35.231.16.65

🇨🇱 34.176.178.213

🇲🇺 197.225.146.23