JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.104.211.66

34.104.211.66 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 72%: ?

72%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	66.211.104.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.104.211.66

Whois 34.104.211.66

IP Abuse Reports for 34.104.211.66:

This IP address has been reported a total of 22 times from 14 distinct sources. 34.104.211.66 was first reported on May 26th 2026, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-05-28 22:01:30 (6 days ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-27. show less	Web App Attack SSH Hacking
Anonymous	2026-05-28 11:25:11 (6 days ago)	Aggressive web scan	Web App Attack
🇳🇱 knock	2026-05-28 10:36:02 (6 days ago)	Knock-Knock honeypot brute-force: proto8 (36 total hits)	Brute-Force
🇺🇸 NeverBehave	2026-05-28 09:05:41 (6 days ago)	[fail2ban] service ocserv jail	Brute-Force Web App Attack
🇩🇪 XICTRON	2026-05-28 08:55:04 (6 days ago)	ModSecurity rule violation detected by Fail2Ban	Web App Attack
🇫🇷 dynamix	2026-05-28 04:15:49 (6 days ago)	Multiple WAF Violations	Web App Attack
Anonymous	2026-05-28 04:00:03 (6 days ago)	\| Suspicious URL access.	Web App Attack Hacking SQL Injection
🇩🇪 Blexyel	2026-05-27 07:25:26 (1 week ago)	34.104.211.66 - - [27/May/2026:09:25:26 +0200] "GET /.git/config HTTP/1.1" 200 265 "-" "Mozilla/5.0 ... show more 34.104.211.66 - - [27/May/2026:09:25:26 +0200] "GET /.git/config HTTP/1.1" 200 265 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.85 Safari/537.36 OPR/32.0.1948.25" "pingusmc.org" ... show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 05:48:37 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.104.211.66 (66.211.104.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.104.211.66 (66.211.104.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 01:48:31.936892 2026] [security2:error] [pid 5387:tid 5387] [client 34.104.211.66:53226] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.lhhs69.org"] [uri "/.git/config"] [unique_id "ahaFr3p7oAchHBIgt89eMgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 05:31:28 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.104.211.66 (66.211.104.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.104.211.66 (66.211.104.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 01:31:23.900533 2026] [security2:error] [pid 1488:tid 1488] [client 34.104.211.66:54552] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.elainebroussard.com"] [uri "/.git/config"] [unique_id "ahaBq_5mx_PrK1-8A5zlqgAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-27 04:05:36 (1 week ago)	WAF repeated trigger detected by Fail2Ban	Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 03:16:30 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.104.211.66 (66.211.104.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.104.211.66 (66.211.104.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 23:16:23.520501 2026] [security2:error] [pid 8225:tid 8225] [client 34.104.211.66:58286] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.hisim.com.tr"] [uri "/.git/config"] [unique_id "ahZiB4IGEGo5Pcu-dtJopwAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 02:39:18 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.104.211.66 (66.211.104.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.104.211.66 (66.211.104.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 22:39:12.961308 2026] [security2:error] [pid 14312:tid 14312] [client 34.104.211.66:47602] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.xarq.es"] [uri "/.git/config"] [unique_id "ahZZUHZUwLzhRtd4O5WFWAAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-05-27 02:11:32 (1 week ago)	Attempted access to sensitive endpoint (/.git/config) detected. Automated scan or unauthorized probi ... show more Attempted access to sensitive endpoint (/.git/config) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 01:21:39 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.104.211.66 (66.211.104.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.104.211.66 (66.211.104.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 21:21:34.018760 2026] [security2:error] [pid 1007:tid 1028] [client 34.104.211.66:49058] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.boracayglobal.org"] [uri "/.git/config"] [unique_id "ahZHHj4gL4kpR5QwhoMbNgAAAMk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 201.158.13.62

🇯🇵 52.195.145.233

🇺🇸 49.51.196.113

🇨🇳 223.109.49.232

🇮🇳 202.53.94.246

🇧🇪 198.235.24.186

🇹🇷 176.41.30.76

🇺🇸 172.59.186.220

🇺🇸 107.20.175.218

🇺🇸 104.37.185.2

🇷🇴 80.94.92.186

🇺🇸 49.51.188.165

🇨🇳 220.189.253.198

🇹🇼 220.134.189.56

🇺🇸 195.184.76.247

🇸🇬 103.250.11.156

🇷🇴 92.118.39.236

🇺🇸 69.164.245.204

🇯🇵 47.91.31.15

🇦🇷 45.227.218.37