JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.39.197.82

34.39.197.82 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 67%: ?

67%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	82.197.39.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇧🇷 Brazil
City	Sao Paulo, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.39.197.82

Whois 34.39.197.82

IP Abuse Reports for 34.39.197.82:

This IP address has been reported a total of 18 times from 15 distinct sources. 34.39.197.82 was first reported on June 14th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-15 22:02:47 (1 week ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-14. show less	Web App Attack SSH Hacking
🇩🇪 updown.io	2026-06-15 09:21:55 (2 weeks ago)	{"level":"info","ts":1781515314.0499113,"logger":"http.log.access.log1","msg":"handled request","req ... show more {"level":"info","ts":1781515314.0499113,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.39.197.82","remote_port":"32782","client_ip":"34.39.197.82","proto":"HTTP/1.1","method":"GET","host":"status.hiltonbreaks.com","uri":"/admin/.env.local","headers":{"User-Agent":["Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.108 Safari/537.36"],"Accept-Charset":["utf-8"],"Accept-Encoding":["gzip"],"Connection":["close"]},"tls":{"resumed":false,"version":772,"cipher_suite":4865,"proto":"","server_name":"status.hiltonbreaks.com","ech":false}},"bytes_read":0,"user_id":"","duration":0.00012054,"size":0,"status":429,"resp_headers":{"Server":["Caddy"],"Alt-Svc":["h3=\":443\"; ma=2592000"],"Retry-After":["1"]}} {"level":"info","ts":1781515314.0519555,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.39.197.82","remote_port":"32916","client_ip":"34.39.197.82","proto":"HTTP/1.1","method":"GET","host" ... show less	DDoS Attack Web App Attack
🇩🇪 4server	2026-06-15 07:05:24 (2 weeks ago)	[MonJun1509:05:18.4099382026][security2:error][pid3921116:tid3921138][client34.39.197.82:0]ModSecuri ... show more [MonJun1509:05:18.4099382026][security2:error][pid3921116:tid3921138][client34.39.197.82:0]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch\"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf\\|boot\\\\\\\\.ini\\|web.config\)\\\\\\\\b\\|$\\|\^\\|\\\\\\\\.\\\\\\\\.$/etc/\\|/\\\\\\\\.$\?:history\\|bash_history\\|sh_history\\|env$\$\)\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf\"][line\"204\"][id\"390709\"][rev\"30\"][msg\"Atomicorp.comWAFRules:Attempttoaccessprotectedfileremotely\"][data\"/.env\"][severity\"CRITICAL\"][hostname\"volcano.ch.136-243-54-122.cpanel.site\"][uri\"/build/.env\"][unique_id\"ai-kLjRj6IUSlEDyt8bOWAAAARM\"] show less	Port Scan Brute-Force Web App Attack
🇳🇱 Site.eu	2026-06-15 06:48:37 (2 weeks ago)	Excessive multi-domain requests	Brute-Force
Anonymous	2026-06-15 05:24:12 (2 weeks ago)	Bot / seems abusive / Apache connections: 99	DDoS Attack Web Spam Bad Web Bot Web App Attack
🇳🇱 e.fierstra	2026-06-15 04:13:11 (2 weeks ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-06-15 04:01:48 (2 weeks ago)	IM360 WAF: Direct access to sensitive file or dotfile MV:/.env.local	Web App Attack
🇳🇱 Cloud86 B.V.	2026-06-15 03:13:02 (2 weeks ago)	categories: DDoS Attack	DDoS Attack
🇦🇹 penguin-solutions.at	2026-06-15 02:17:14 (2 weeks ago)	Excessive 403/404 errors ...	Brute-Force Web App Attack
🇩🇪 rh24	2026-06-15 01:59:34 (2 weeks ago)	(apache-useragents) Failed apache-useragents trigger with match [redacted] from 34.39.197.82 (BR/Bra ... show more (apache-useragents) Failed apache-useragents trigger with match [redacted] from 34.39.197.82 (BR/Brazil/82.197.39.34.bc.googleusercontent.com) show less	Bad Web Bot
🇬🇧 consul.to	2026-06-15 00:35:59 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 Site.eu	2026-06-14 21:22:29 (2 weeks ago)	Excessive 404/403 errors	Brute-Force
🇺🇸 TPI-Abuse	2026-06-14 07:27:50 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 34.39.197.82 (82.197.39.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.39.197.82 (82.197.39.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 03:27:43.539321 2026] [security2:error] [pid 12931:tid 12931] [client 34.39.197.82:42858] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.unwaved.com"] [uri "/api/.env"] [unique_id "ai5X76Ko38cP-rpHHsflkAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 07:03:49 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 34.39.197.82 (82.197.39.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.39.197.82 (82.197.39.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 03:03:41.804124 2026] [security2:error] [pid 23157:tid 23157] [client 34.39.197.82:37806] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kraftrealestate.kraftrentals.com"] [uri "/.env.backup.txt"] [unique_id "ai5STU0ckm69vNDxaFpkMAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-14 06:09:11 (2 weeks ago)	Multiple WAF Violations	Web App Attack

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 195.96.139.56

🇮🇳 125.23.204.74

🇨🇳 124.160.173.22

🇰🇷 119.192.210.110

🇨🇳 101.126.64.76

🇷🇴 92.118.39.74

🇹🇭 61.19.69.203

🇨🇭 51.107.68.88

🇺🇸 20.65.194.9

🇫🇷 2a02:c207:2243:7875::1

🇰🇷 211.196.31.2

🇺🇸 69.10.63.170

🇺🇸 45.33.54.96

🇻🇳 27.71.230.31

🇩🇪 2a01:4f8:c012:889e::1

🇷🇴 92.118.39.148

🇮🇳 64.227.150.86

🇮🇳 47.15.114.158

🇸🇬 43.172.196.117

🇻🇳 14.179.85.240