JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.22.95.20

34.22.95.20 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 96%: ?

96%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	20.95.22.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇰🇷 Korea (the Republic of)
City	Seoul, Seoul

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.22.95.20

Whois 34.22.95.20

IP Abuse Reports for 34.22.95.20:

This IP address has been reported a total of 21 times from 18 distinct sources. 34.22.95.20 was first reported on June 14th 2026, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 sid3windr	2026-06-16 03:17:24 (5 hours ago)	GET /.git/config (Tarpitted for 1d15h8m30s, wasted 8.06MB)	Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-15 22:02:05 (11 hours ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-14. show less	Web App Attack SSH Hacking
🇳🇱 oisecnet	2026-06-15 21:03:41 (12 hours ago)	Automated report: Unauthorized vulnerability scanning detected on 2026-06-15. 273 requests from this ... show more Automated report: Unauthorized vulnerability scanning detected on 2026-06-15. 273 requests from this IP. show less	Brute-Force Web App Attack SSH
🇺🇸 Vianpyro	2026-06-15 01:49:36 (1 day ago)	Honeypot: 62 request(s) in 2 min. Paths: /backend/.git/config, /frontend/.git/config, /app/.git/conf ... show more Honeypot: 62 request(s) in 2 min. Paths: /backend/.git/config, /frontend/.git/config, /app/.git/config, /v2/.git/config, /v1/.git/config. Method(s): GET. UA: iTunes/9.0.2 (Windows; N). ASN: 396982 (Google LLC). show less	Web App Attack Bad Web Bot Hacking Brute-Force
🇺🇸 TPI-Abuse	2026-06-15 01:46:21 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.22.95.20 (20.95.22.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 34.22.95.20 (20.95.22.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 21:46:15.975461 2026] [security2:error] [pid 10038:tid 10038] [client 34.22.95.20:33796] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mundanestudies.org"] [uri "/public/.git/config"] [unique_id "ai9ZZ4CKPNypx_6d3bwuSwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 Origon	2026-06-15 01:06:06 (1 day ago)	http-sensitive-files - IP: 34.22.95.20 - time="2026-06-15T03:06:05+02:00" level=info msg="(555f66b4 ... show more http-sensitive-files - IP: 34.22.95.20 - time="2026-06-15T03:06:05+02:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-sensitive-files by ip 34.22.95.20 (KR/396982) : 4h ban on Ip 34.22.95.20" module=db show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 00:14:05 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.22.95.20 (20.95.22.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 34.22.95.20 (20.95.22.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 20:14:01.776628 2026] [security2:error] [pid 14405:tid 14405] [client 34.22.95.20:48372] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "partybussantafe.com"] [uri "/blog/.git/config"] [unique_id "ai9Dyep09Z6P2a41Q698OwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-15 00:07:56 (1 day ago)	Abuse Detected (30)	Brute-Force Web App Attack
🇲🇾 Rizzy	2026-06-14 23:58:05 (1 day ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇩🇪 FeG Deutschland	2026-06-14 23:25:06 (1 day ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 23:17:27 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.22.95.20 (20.95.22.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 34.22.95.20 (20.95.22.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 19:17:21.459807 2026] [security2:error] [pid 31743:tid 31743] [client 34.22.95.20:50558] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "freeinfo.com"] [uri "/project/.git/config"] [unique_id "ai82gXCIjWYcfYjNiT95LQAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 spirttm	2026-06-14 22:48:15 (1 day ago)	34.22.95.20 - - [14/Jun/2026:22:48:14 +0000] "GET /src/.git/config HTTP/1.1" 403 125 "-" "Mozilla/5. ... show more 34.22.95.20 - - [14/Jun/2026:22:48:14 +0000] "GET /src/.git/config HTTP/1.1" 403 125 "-" "Mozilla/5.0 (X11; Linux i686; rv:49.0) Gecko/20100101 Firefox/49.0" 34.22.95.20 - - [14/Jun/2026:22:48:14 +0000] "GET /blog/.git/config HTTP/1.1" 403 186 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36" 34.22.95.20 - - [14/Jun/2026:22:48:14 +0000] "GET /public/.git/config HTTP/1.1" 403 186 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3804.0 Safari/537.36" 34.22.95.20 - - [14/Jun/2026:22:48:14 +0000] "GET /api/.git/config HTTP/1.1" 403 186 "-" "Mozilla/5.0 (Linux; Android 4.0.4; BNTV400 Build/IMM76L) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.111 Safari/537.36" 34.22.95.20 - - [14/Jun/2026:22:48:14 +0000] "GET /app/.git/config HTTP/1.1" 403 186 "-" "Mozilla/5.0 (Linux; Android 9; ANE-LX1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36" 34. ... show less	Port Scan Web App Attack
🇳🇱 Savvii	2026-06-14 22:27:44 (1 day ago)	20 attempts against mh-misbehave-ban on kiwi	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-06-14 21:42:03 (1 day ago)	block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638	Bad Web Bot
Anonymous	2026-06-14 21:40:01 (1 day ago)	suspicious request in access.log	Web App Attack

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 203.116.129.55

🇺🇸 192.145.119.199

🇫🇷 185.177.72.51

🇻🇪 181.189.57.71

🇨🇳 180.167.128.202

🇧🇷 177.75.218.89

🇿🇦 154.68.161.255

🇮🇳 113.193.234.210

🇨🇳 101.96.220.237

🇫🇷 79.127.134.227

🇺🇸 71.71.1.199

🇮🇶 65.20.233.110

🇭🇰 47.83.222.193

🇵🇪 181.64.202.87

🇪🇨 177.234.194.158

🇻🇳 163.61.182.82

🇯🇵 152.32.202.151

🇨🇳 139.214.251.205

🇻🇳 116.110.103.101

🇫🇷 91.231.89.107