JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.104.206.168

34.104.206.168 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 68%: ?

68%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	168.206.104.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.104.206.168

Whois 34.104.206.168

IP Abuse Reports for 34.104.206.168:

This IP address has been reported a total of 16 times from 14 distinct sources. 34.104.206.168 was first reported on June 8th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-08 17:02:24 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 34.104.206.168 (168.206.104.34.bc.googleusercon ... show more (mod_security) mod_security (id:210730) triggered by 34.104.206.168 (168.206.104.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 13:02:19.688341 2026] [security2:error] [pid 32301:tid 32301] [client 34.104.206.168:55502] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|yoshiyukiya.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "yoshiyukiya.com"] [uri "/.config/gcloud/credentials.db"] [unique_id "aib1myZU7ChuXmQbaBZ8GgAAAFw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 15:30:15 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 34.104.206.168 (168.206.104.34.bc.googleusercon ... show more (mod_security) mod_security (id:210730) triggered by 34.104.206.168 (168.206.104.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 11:30:08.248991 2026] [security2:error] [pid 15606:tid 15606] [client 34.104.206.168:58002] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.buddh.net.greighhouse.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.buddh.net.greighhouse.com"] [uri "/.config/gcloud/credentials.db"] [unique_id "aibgAN-vIPNZWWwuRpw1igAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 e.fierstra	2026-06-08 14:36:13 (1 week ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 13:59:52 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.104.206.168 (168.206.104.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.104.206.168 (168.206.104.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 09:59:44.913652 2026] [security2:error] [pid 31817:tid 31817] [client 34.104.206.168:33906] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "candlecrawler.trade.fiyaplatform.com"] [uri "/wp-config.php"] [unique_id "aibK0CscME4FM_hSMVYx4gAAAIg"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 BlueWire Hosting	2026-06-08 13:42:20 (1 week ago)	Bad bot ignoring robot.txt	Bad Web Bot
🇳🇱 Site.eu	2026-06-08 12:13:15 (1 week ago)	Excessive 404/403 errors	Brute-Force
🇳🇱 ConsulHosting	2026-06-08 09:45:26 (1 week ago)	Excessive failed CAPTCHA attempts (CAPTCHA DoS)	Web App Attack
🇪🇸 pipeline.es	2026-06-08 09:16:31 (1 week ago)	Web scanning / probing for vulnerable paths \| URL: /phpinfo.php \| Evidence: atlas-viagens.pt 34.104. ... show more Web scanning / probing for vulnerable paths \| URL: /phpinfo.php \| Evidence: atlas-viagens.pt 34.104.206.168 - - [08/Jun/2026:11:15:57 +0200] \"GET /phpinfo.php HTTP/1.1\" 404 21349 \"-\" \"Mozilla/5.0 (Linux; Android 9; CLT-AL00 Build/HUAWEICLT-AL00; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/66.0.3359.126 MQQBrowser/6.2 TBS/044807 Mobile Safari/537.36 MMWEBID/9069 MicroMessenger/7.0.6.1460(0x27000634) Process/tools NetType/WIFI Language/zh_CN\" GEOIP_C \| ASN: GOOGLE-CLOUD-PLATFORM \| Country: JP show less	Port Scan Web App Attack
🇨🇦 Mediashaker	2026-06-08 08:48:01 (1 week ago)	(apache-scanners) Failed apache-scanners trigger with match [redacted] from 34.104.206.168 (JP/Japan ... show more (apache-scanners) Failed apache-scanners trigger with match [redacted] from 34.104.206.168 (JP/Japan/168.206.104.34.bc.googleusercontent.com) show less	Port Scan
🇩🇪 paissangroup	2026-06-08 07:50:32 (1 week ago)	Multiple WAF Violations	Web App Attack
🇳🇱 Savvii	2026-06-08 04:30:30 (1 week ago)	20 attempts against mh-misbehave-ban on sedna	Brute-Force Bad Web Bot Web App Attack
🇩🇪 EGP Abuse Dept	2026-06-08 03:20:50 (1 week ago)	Scanning for web/db/file exploits on nvcopmaat.nl	SQL Injection Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-08 03:08:12 (1 week ago)	Scanning/Probing (67) Request Overload (389)	Brute-Force Web App Attack
🇮🇹 VHosting	2026-06-08 02:15:04 (1 week ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
Anonymous	2026-06-08 02:04:07 (1 week ago)	Multiple web server 400 error codes from same source ip	Web App Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 221.151.251.129

🇸🇴 197.231.202.201

🇷🇺 193.232.59.105

🇨🇴 186.97.203.162

🇮🇳 182.95.223.46

🇸🇬 152.42.240.74

🇺🇸 129.121.116.121

🇮🇳 128.185.209.30

🇮🇳 122.160.142.194

🇮🇹 93.149.38.138

🇰🇿 92.47.46.174

🇱🇹 81.30.98.142

🇩🇪 69.5.169.248

🇧🇬 62.133.47.13

🇲🇾 49.124.152.234

🇳🇱 45.148.10.240

🇺🇸 7.236.176.162

🇪🇸 5.250.185.57

🇨🇳 218.94.115.164

🇷🇺 193.232.59.235