JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.40.48.120

34.40.48.120 was found in our database!

This IP was reported 25 times. Confidence of Abuse is 73%: ?

73%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	120.48.40.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.40.48.120

Whois 34.40.48.120

IP Abuse Reports for 34.40.48.120:

This IP address has been reported a total of 25 times from 11 distinct sources. 34.40.48.120 was first reported on June 8th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇮 administrator	2026-06-10 22:17:35 (1 day ago)	2026-06-08 13:18:02,447 fail2ban.actions [1104]: NOTICE [apache-badbots] Ban 34.40.48.120 20 ... show more 2026-06-08 13:18:02,447 fail2ban.actions [1104]: NOTICE [apache-badbots] Ban 34.40.48.120 2026-06-10 00:08:49,586 fail2ban.actions [1080]: NOTICE [apache-badbots] Ban 34.40.48.120 2026-06-08 13:18:02,447 fail2ban.actions [1104]: NOTICE [apache-badbots] Ban 34.40.48.120 2026-06-10 00:08:49,586 fail2ban.actions [1080]: NOTICE [apache-badbots] Ban 34.40.48.120 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-09 21:59:13 (2 days ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08. show less	Web App Attack SSH Hacking
🇫🇷 masterguru	2026-06-09 12:44:10 (2 days ago)	Too much 404 requests in 1 minute. Operator GE matched 10 at IP:block_script. (46020-201)	Hacking
🇫🇷 masterguru	2026-06-09 08:34:21 (2 days ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 34.40.48.120 (DE/Germany/120.48.40.34.bc.googl ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 34.40.48.120 (DE/Germany/120.48.40.34.bc.googleusercontent.com): 1 in the last 3600 secs (0-196) show less	Hacking
🇬🇧 AvonleaConsulting	2026-06-08 22:58:00 (3 days ago)	Attempts to probe web pages for vulnerable PHP or other applications	Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-08 22:02:23 (3 days ago)	Auto-ban: >3000 req/min op 2026-06-08	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-08 20:51:24 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 34.40.48.120 (120.48.40.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.40.48.120 (120.48.40.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 16:51:21.126429 2026] [security2:error] [pid 17154:tid 17166] [client 34.40.48.120:58138] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "staging.torreydc.com"] [uri "/.git/config"] [unique_id "aicrScau3E-abelJuS1kwQAAAUo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 20:04:58 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 34.40.48.120 (120.48.40.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.40.48.120 (120.48.40.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 16:04:53.087476 2026] [security2:error] [pid 18735:tid 18735] [client 34.40.48.120:58530] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "us.abecasis.com"] [uri "/.git/config"] [unique_id "aicgZbDHZESyM2ISr1q7XwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 19:27:00 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 34.40.48.120 (120.48.40.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.40.48.120 (120.48.40.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 15:26:53.974886 2026] [security2:error] [pid 24644:tid 24644] [client 34.40.48.120:39898] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "123clearmyticket.com"] [uri "/.git/config"] [unique_id "aicXfZSfqAp9zgJ3-yhG9AAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 17:38:14 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 34.40.48.120 (120.48.40.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.40.48.120 (120.48.40.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 13:38:10.149733 2026] [security2:error] [pid 29415:tid 29415] [client 34.40.48.120:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.looksllc.com"] [uri "/.git/config"] [unique_id "aib-Ao72pOrrlIZIgVsggQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇹 services.org.pl	2026-06-08 17:04:36 (3 days ago)	connect() failed (111: Connection refused) while connecting to upstream, client: 34.40.48.120, serve ... show more connect() failed (111: Connection refused) while connecting to upstream, client: 34.40.48.120, server: keycloak.services.org.pl, request: "GET /.git/config HTTP/1.1", upstream: "https://127.0.0.1:8443/.git/config", host: "keycloak.services.org.pl" show less	Bad Web Bot Web App Attack
🇬🇧 AvonleaConsulting	2026-06-08 16:13:15 (3 days ago)	Scanning unused Default website or suspicious access to valid sites from IP marked as abusive	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 11:39:18 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 34.40.48.120 (120.48.40.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.40.48.120 (120.48.40.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 07:39:11.592101 2026] [security2:error] [pid 15778:tid 15778] [client 34.40.48.120:45690] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mezensen.com"] [uri "/.git/config"] [unique_id "aiap30zR9rm4DJwACISSowAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇴 INTEQ	2026-06-08 11:23:44 (3 days ago)	Web attack from 34.40.48.120	Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 08:33:18 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 34.40.48.120 (120.48.40.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.40.48.120 (120.48.40.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 04:33:13.500495 2026] [security2:error] [pid 24804:tid 24804] [client 34.40.48.120:54172] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "shawnlayne.com"] [uri "/.git/config"] [unique_id "aiZ-SXxK7r5D57B0zX8thgAAAIo"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 25 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.13.26.42

🇹🇳 197.5.145.150

🇳🇱 45.148.10.95

🇷🇴 2.57.121.112

🇺🇸 206.232.2.50

🇺🇸 203.88.119.100

🇷🇺 195.161.68.153

🇻🇪 190.142.97.50

🇪🇸 158.158.76.1

🇺🇸 66.132.172.110

🇺🇸 52.159.229.68

🇲🇾 49.124.152.223

🇺🇸 20.83.185.81

🇪🇬 197.44.15.210

🇺🇸 192.227.210.218

🇮🇳 125.19.182.118

🇲🇾 121.123.141.251

🇮🇳 117.193.17.180

🇮🇪 108.129.118.103

🇺🇸 107.167.34.125