JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.155.30.66

104.155.30.66 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 82%: ?

82%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	66.30.155.104.bc.googleusercontent.com
Domain Name	google.com
Country	🇧🇪 Belgium
City	Brussels, Brussels Capital

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.155.30.66

Whois 104.155.30.66

IP Abuse Reports for 104.155.30.66:

This IP address has been reported a total of 22 times from 22 distinct sources. 104.155.30.66 was first reported on February 8th 2026, and the most recent report was 11 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 NXTwoThou	2026-06-11 07:35:19 (11 hours ago)	Verb	Web App Attack
🇺🇸 Starburst SysOp Team	2026-06-11 07:16:19 (11 hours ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-mnz6-1)	Hacking Bad Web Bot
🇺🇸 kosada.com	2026-06-11 06:28:06 (12 hours ago)	Web vulnerability probing: / (bogus vhost/SNI)	Web App Attack
🇫🇷 Faeeth	2026-06-11 06:25:46 (12 hours ago)	Multiple hits on Honeypot UID:PTRW50NM46 Port:Http (80)	Brute-Force
🇩🇪 0x44	2026-06-11 05:48:04 (12 hours ago)	Abusive host detected - Web probing for vulnerabilities	Web App Attack Hacking
🇳🇱 donarev419	2026-06-11 05:28:10 (13 hours ago)	Connection to port 80 with data transfer. Data preview: GET / HTTP/1.1 Host: 109.110.170.76:80 Use ... show more Connection to port 80 with data transfer. Data preview: GET / HTTP/1.1 Host: 109.110.170.76:80 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) Apple show less	Port Scan Hacking
🇩🇪 Serpentex	2026-06-11 05:09:00 (13 hours ago)	104.155.30.66 - - [11/Jun/2026:07:08:54 +0200] "\x16\x03\x01\x05\xC4\x01\x00\x05\xC0\x03\x03\x9F@E\x ... show more 104.155.30.66 - - [11/Jun/2026:07:08:54 +0200] "\x16\x03\x01\x05\xC4\x01\x00\x05\xC0\x03\x03\x9F@E\xD6~\x9C\xD5\xB3U\xC62X\xF2C\x01\xDDUN\|Yh\x06z\xF3)7X\xC9\xC6\xBD+\x82 \xB9\xB3bZhf\xAD^\xAF\x80\xF6B\xB7=\xE4X" 400 150 "-" "-" 104.155.30.66 - - [11/Jun/2026:07:08:59 +0200] ";\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x00\xD4\x07\x00\x00\x00\x00\x00\x00admin.$cmd\x00\x00\x00\x00\x00\xFF\xFF\xFF\xFF\x14\x00\x00\x00\x01hello\x00\x00\x00\x00\x00\x00\x00\xF0?\x00" 400 150 "-" "-" 104.155.30.66 - - [11/Jun/2026:07:08:59 +0200] "\x94L\x9C\x10\x05P\x07\x09\xEE+_\xE2\x99\xC24$\x09\x0Fr\xE2\x01\xD9\x9C\xBB\x1C\xEC\x18:\xFF\x94\xCF" 400 150 "-" "-" ... show less	Bad Web Bot Web App Attack
🇧🇷 mubusys.com	2026-06-11 05:06:46 (13 hours ago)	104.155.30.66 - - [11/Jun/2026:02:06:33 -0300] "\x16\x03\x01\x05\xC4\x01\x00\x05\xC0\x03\x03\xBB\x18 ... show more 104.155.30.66 - - [11/Jun/2026:02:06:33 -0300] "\x16\x03\x01\x05\xC4\x01\x00\x05\xC0\x03\x03\xBB\x18\xDA\xE5*FZEg\xA1!C3\xA0\x80M\x06\x9F\xC8j2\xC2\x7F\x7F\xB7\x81\xBCb)TL\x02 \xCD\xCB\xF1\xCCg\xB1%\xEA0\x98\xC6\xED?C\xD4l2\xBC\x88;S\x19\xAB\xC8\xEE65$sS\x06H\x002\xC0+\xC0/\xC0,\xC00\xCC\xA9\xCC\xA8\xC0\x09\xC0\x13\xC0" 400 157 "-" "-" "-" 104.155.30.66 - - [11/Jun/2026:02:06:39 -0300] ";\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x00\xD4\x07\x00\x00\x00\x00\x00\x00admin.$cmd\x00\x00\x00\x00\x00\xFF\xFF\xFF\xFF\x14\x00\x00\x00\x01hello\x00\x00\x00\x00\x00\x00\x00\xF0?\x00" 400 157 "-" "-" "-" show less	Hacking Brute-Force
🇦🇺 gregoo23	2026-06-11 04:27:20 (14 hours ago)	104.155.30.66 - - [11/Jun/2026:14:27:15 +1000] "GET / HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 1 ... show more 104.155.30.66 - - [11/Jun/2026:14:27:15 +1000] "GET / HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36" 104.155.30.66 - - [11/Jun/2026:14:27:17 +1000] "\x16\x03\x01\x05\xC4\x01\x00\x05\xC0\x03\x03V\xE6\x22Q\xEEs,\xC4\x96o\xA7~\xF5\xC9S\x88\xA8O\x82>\xF5&\x05\x93\xAAN\xFD\xFE\x8B\x0E\xEC\xB9 \xA2\x0B\x7F7=7(\xCE\xA6\xA7\xC0\xA7}\x03\xEDs\xA9\xA4\x166H1\xF1\x82\xF4\x91\xF8Oi[\xAC\xC5\x002\xC0+\xC0/\xC0,\xC00\xCC\xA9\xCC\xA8\xC0\x09\xC0\x13\xC0" 400 154 "-" "-" 104.155.30.66 - - [11/Jun/2026:14:27:18 +1000] "GET / HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36" ... show less	Bad Web Bot Web App Attack
🇺🇸 nyt	2026-06-11 04:14:27 (14 hours ago)	Empty UA + error	Web App Attack
🇬🇧 essinghigh	2026-06-11 03:47:49 (14 hours ago)	IPS Detection: 104.155.30.66 -> DPT: 80	Port Scan
🇺🇸 antlac1	2026-06-11 03:33:59 (15 hours ago)	crowdsecurity/http-probing	Brute-Force Web App Attack
🇺🇸 itsnixk	2026-06-11 03:22:21 (15 hours ago)	(mod_security) mod_security (id:913100) triggered by 104.155.30.66 (BE/Belgium/66.30.155.104.bc.goog ... show more (mod_security) mod_security (id:913100) triggered by 104.155.30.66 (BE/Belgium/66.30.155.104.bc.googleusercontent.com): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Wed Jun 10 23:22:19.814609 2026] [security2:error] [pid 192815:tid 192959] [client 104.155.30.66:16696] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "nmap" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity.d/REQUEST-913-SCANNER-DETECTION.conf"] [line "56"] [id "913100"] [msg "Found User-Agent associated with security scanner"] [redacted] [severity "CRITICAL"] [ver "OWASP_CRS/4.26.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-reputation-scanner"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "OWASP_CRS/SCANNER-DETECTION"] [tag "capec/1000/118/224/541/310"] [redacted] [uri "/"] [unique_id "aiop62Eoj3-0AMjIWxrxDwAAAH0"] show less	Port Scan
🇳🇱 soverin	2026-06-11 02:50:24 (15 hours ago)	Network scan on port 80	Email Spam
🇧🇪 cmbplf	2026-02-08 09:01:01 (4 months ago)	34.089 requests in 1 hour (1mo3d5h)	Brute-Force Bad Web Bot

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.172

🇰🇷 118.37.214.187

🇨🇳 116.228.195.251

🇫🇷 89.83.88.44

🇨🇳 61.178.164.46

🇺🇸 205.210.31.24

🇨🇦 85.217.149.44

🇸🇬 47.128.20.232

🇮🇹 45.91.20.11

🇭🇰 45.78.18.39

🇺🇸 20.12.231.72

🇺🇸 185.226.196.25

🇸🇪 171.25.158.58

🇺🇸 143.42.164.127

🇺🇸 108.181.4.175

🇻🇳 103.9.204.84

🇺🇸 66.132.172.219

🇰🇷 14.55.31.113

🇺🇸 216.180.246.49

🇹🇭 202.29.224.166