JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.22.240.3

34.22.240.3 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 60%: ?

60%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	3.240.22.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇧🇪 Belgium
City	Brussels, Brussels Capital

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.22.240.3

Whois 34.22.240.3

IP Abuse Reports for 34.22.240.3:

This IP address has been reported a total of 12 times from 12 distinct sources. 34.22.240.3 was first reported on September 13th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-06-09 00:17:55 (1 week ago)	Too many Status 40X (11) Scanning/Probing (61) Request Overload (394)	Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-08 21:59:48 (1 week ago)	Auto-ban: >3000 req/min op 2026-06-08	Web App Attack SSH Hacking
🇨🇭 4server	2026-06-08 14:01:16 (1 week ago)	[MonJun0816:01:12.6991182026][security2:error][pid355831:tid356643][client34.22.240.3:0]ModSecurity: ... show more [MonJun0816:01:12.6991182026][security2:error][pid355831:tid356643][client34.22.240.3:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"dolltherapy.ch.81-17-25-250.cpanel.site\"][uri\"/heapdump\"][unique_id\"aibLKIC-b9FvaYEQbZ9NtgAAARE\"] show less	Hacking Web App Attack
🇧🇪 Ivo Vynckier	2026-06-08 13:56:00 (1 week ago)	34.22.240.3 - - [08/Jun/2026:05:08:26 +0200] "GET /actuator/env HTTP/1.1" 301 298 "-" "Mozilla/5.0 ( ... show more 34.22.240.3 - - [08/Jun/2026:05:08:26 +0200] "GET /actuator/env HTTP/1.1" 301 298 "-" "Mozilla/5.0 (compatible; alexa site audit/1.0; +http://www.alexa.com/help/webmasters; )" 34.22.240.3 - - [08/Jun/2026:05:08:26 +0200] "GET /heapdump HTTP/1.1" 301 294 "-" "Jigsaw/2.2.5 W3C_CSS_Validator_JFouffa/2.0" 34.22.240.3 - - [08/Jun/2026:05:08:26 +0200] "GET /actuator/sessions HTTP/1.1" 301 303 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_2) AppleWebKit/537.4 (KHTML like Gecko) Chrome/22.0.1229.79 Safari/537.4" 34.22.240.3 - - [08/Jun/2026:05:08:26 +0200] "GET /actuator/threaddump HTTP/1.1" 301 305 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 12_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/12.1 Mobile/15E148 Safari/604.1" show less	Web App Attack
🇫🇷 masterguru	2026-06-08 09:46:23 (1 week ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.22.240.3 (BE/Belgium/3.240.22.34.b ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.22.240.3 (BE/Belgium/3.240.22.34.bc.googleusercontent.com): 1 in the last 3600 secs (0-195) show less	Hacking
🇧🇾 lns.bz	2026-06-08 09:34:50 (1 week ago)	Too many 404 requests [BY]	Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 03:58:23 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 34.22.240.3 (3.240.22.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210730) triggered by 34.22.240.3 (3.240.22.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 23:58:17.004206 2026] [security2:error] [pid 25966:tid 25966] [client 34.22.240.3:57986] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|juca.com.mx\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "juca.com.mx"] [uri "/.config/gcloud/credentials.db"] [unique_id "aiY92QqdPjPYePHrGDc9ZgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 wteiken	2026-06-08 03:56:30 (1 week ago)	2026-06-07T23:56:29.975925-04:00 rocinante.teiken.net kernel: [820555.485305] syn_limit:IN=ens5 OUT= ... show more 2026-06-07T23:56:29.975925-04:00 rocinante.teiken.net kernel: [820555.485305] syn_limit:IN=ens5 OUT= MAC=0a:ff:cf:a1:a5:bb:0a:f3:ae:05:2f:b7:08:00 SRC=34.22.240.3 DST=192.168.16.119 LEN=60 TOS=0x00 PREC=0x00 TTL=57 ID=4691 DF PROTO=TCP SPT=40384 DPT=443 WINDOW=65320 RES=0x00 SYN URGP=0 2026-06-07T23:56:29.979681-04:00 rocinante.teiken.net kernel: [820555.489043] syn_limit:IN=ens5 OUT= MAC=0a:ff:cf:a1:a5:bb:0a:f3:ae:05:2f:b7:08:00 SRC=34.22.240.3 DST=192.168.16.119 LEN=60 TOS=0x00 PREC=0x00 TTL=57 ID=32069 DF PROTO=TCP SPT=40398 DPT=443 WINDOW=65320 RES=0x00 SYN URGP=0 2026-06-07T23:56:29.989320-04:00 rocinante.teiken.net kernel: [820555.498751] syn_limit:IN=ens5 OUT= MAC=0a:ff:cf:a1:a5:bb:0a:f3:ae:05:2f:b7:08:00 SRC=34.22.240.3 DST=192.168.16.119 LEN=60 TOS=0x00 PREC=0x00 TTL=57 ID=57001 DF PROTO=TCP SPT=40402 DPT=443 WINDOW=65320 RES=0x00 SYN URGP=0 2026-06-07T23:56:29.989437-04:00 rocinante.teiken.net kernel: [820555.501392] syn_limit:IN=ens5 OUT= MAC=0a:ff:cf:a1:a5:bb:0a:f3:ae:05 ... show less	Port Scan
Anonymous	2026-06-08 03:49:38 (1 week ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇨🇭 backslash	2026-06-08 03:42:02 (1 week ago)	block ruleset Badbot using very old user-agents 5CF3CDB778C7D82564405B86B9242E612F378C68	Bad Web Bot
🇳🇱 Cloud86 B.V.	2026-06-08 00:26:05 (1 week ago)	categories: DDoS Attack	DDoS Attack
Anonymous	2025-09-13 21:44:21 (9 months ago)	postfix	Email Spam Web App Attack

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 203.55.81.2

🇺🇦 194.44.62.10

🇧🇷 186.226.184.118

🇳🇱 178.253.23.71

🇸🇬 121.6.81.59

🇮🇳 116.73.240.74

🇺🇸 16.58.56.214

🇨🇩 2620:171:99:f003:9999::50

🇧🇪 198.235.24.137

🇳🇱 192.42.116.66

🇺🇸 66.132.172.124

🇺🇸 20.15.200.100

🇧🇷 205.210.31.243

🇺🇸 205.210.31.98

🇮🇩 180.247.61.114

🇭🇰 152.32.129.236

🇨🇳 223.75.156.89

🇦🇺 203.185.198.246

🇳🇱 185.93.89.130

🇰🇷 182.209.190.102