AbuseIPDB » 34.39.220.50
34.39.220.50 was found in our database!
This IP was reported 7 times. Confidence of
Abuse
is 42% : ?
ISP
Google LLC
Usage Type
Data Center/Web Hosting/Transit
ASN
AS396982
Hostname(s)
50.220.39.34.bc.googleusercontent.com
Domain Name
google.com
Country
๐ง๐ท
Brazil
City
Sao Paulo, Sao Paulo
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 34.39.220.50 :
This IP address has been reported a total of
7
times from
6 distinct
sources.
34.39.220.50 was first reported on
June 28th 2026 , and the most recent report was
15 hours ago .
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐ณ๐ฑ
homeshowdomain.nl
2026-06-30 21:59:30
(15 hours ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-29.
show less
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-29 06:49:35
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 34.39.220.50 (50.220.39.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.39.220.50 (50.220.39.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 02:49:32.069275 2026] [security2:error] [pid 21555:tid 21555] [client 34.39.220.50:57586] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.juca.com.mx"] [uri "/build/.git/config"] [unique_id "akIVfH8a34xaoVhR2D1zigAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-06-29 05:33:54
(2 days ago)
Multiple WAF Violations
Web App Attack
๐ฉ๐ช
Hary74656
2026-06-29 01:30:12
(2 days ago)
[Mon Jun 29 03:29:57.575957 2026] [security2:error] [pid 2268:tid 2492] [client 34.39.220.50:39684] ...
show more
[Mon Jun 29 03:29:57.575957 2026] [security2:error] [pid 2268:tid 2492] [client 34.39.220.50:39684] [client 34.39.220.50] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/.git/" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.git/ found within REQUEST_FILENAME: /symfony/.git/config"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "odin.weavernet.at"] [uri "/symfony/.git/config"] [unique_id "akHKkLjP6OPNXK-sYx3JmAAAAng"]
[Mon Jun 29 03:29:57.575961 2026] [security2:error] [pid 1990:tid 2090] [client 34.39.220.50:39714] [client 34.39.220.50] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/.git/" at REQUEST_FILENAME. [
...
show less
Web App Attack
๐ฉ๐ช
filstal.org
2026-06-29 00:44:29
(2 days ago)
Web reconnaissance detected: automated probing for sensitive files, backup archives, admin panels an ...
show more
Web reconnaissance detected: automated probing for sensitive files, backup archives, admin panels and known vulnerability paths.
show less
Hacking
Brute-Force
Web App Attack
๐จ๐ฆ
ISPLtd
2026-06-29 00:00:21
(2 days ago)
Jun 28 21:00:20 34.39.220.50 TCP SPT=56254 DPT=443 SYN
Jun 28 21:00:20 34.39.220.50 TCP SPT=56238 DP ...
show more
Jun 28 21:00:20 34.39.220.50 TCP SPT=56254 DPT=443 SYN
Jun 28 21:00:20 34.39.220.50 TCP SPT=56238 DPT=443 SYN
Jun 28 21:00:20 34.39.220.50 TCP SPT=56230 DPT=443 SYN
...
show less
DDoS Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 23:34:04
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 34.39.220.50 (50.220.39.34.bc.googleusercontent ...
show more
(mod_security) mod_security (id:210492) triggered by 34.39.220.50 (50.220.39.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 19:33:59.139507 2026] [security2:error] [pid 22475:tid 22475] [client 34.39.220.50:60574] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.fourmarket.com.joqlawncare.com"] [uri "/shop/.git/config"] [unique_id "akGvZ_tw5WA6dOND-thAaQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Showing 1 to
7
of 7 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: